3229 Owasp Jobs - Page 19

Job Information Date Opened 21/07/2025 Job Type Permanent Work Experience 5+ years Industry IT Services Salary 25LPA City Bangalore North Province Karnataka Country India Postal Code 560002 Job Description About the Role: We are seeking a DevOps Engineer to lead the migration of multiple applications and services into a new AWS environment. This role requires a strategic thinker with hands-on technical expertise, a deep understanding of DevOps best practices, and the ability to guide and mentor other engineers. You will work closely with architects and technical leads to design, plan, and execute cloud-native solutions with a strong emphasis on automation, scalability, security, and performance. Key Responsibilities: Take full ownership of the migration process to AWS, including planning and execution. Work closely with architects to define the best approach for migrating applications into Amazon EKS. Mentor and guide a team of DevOps Engineers, assigning tasks and ensuring quality execution. Design and implement CI/CD pipelines using Jenkins, with an emphasis on security, maintainability, and scalability. Integrate static and dynamic code analysis tools (e.g., SonarQube) into the CI/CD process. Manage secure access to AWS services using IAM roles, least privilege principles, and container-based identity (e.g., workload identity). Create and manage Helm charts for Kubernetes deployments across multiple environments. Conduct data migrations between S3 buckets, PostgreSQL databases, and other data stores, ensuring data integrity and minimal downtime. Troubleshoot and resolve infrastructure and deployment issues, both in local containers and Kubernetes clusters. Required Skills & Expertise: CI/CD & DevOps Tools: Jenkins pipelines (DSL), SonarQube, Nexus or Artifactory Shell scripting, Python (with YAML/JSON handling) Git and version control best practices Containers & Kubernetes: Docker (multi-stage builds, non-root containers, troubleshooting) Kubernetes (services, ingress, service accounts, RBAC, DNS, Helm) Cloud Infrastructure (AWS): AWS services: EC2, EKS, S3, IAM, Secrets Manager, Route 53, WAF, KMS, RDS, VPC, Load Balancers Experience with IAM roles, workload identities, and secure AWS access patterns Network fundamentals: subnets, security groups, NAT, TLS/SSL, CA certificates, DNS routing Databases: PostgreSQL: pg_dump/pg_restore, user management, RDS troubleshooting Web & Security Concepts: NGINX, web servers, reverse proxies, path-based/host-based routing Session handling, load balancing (stateful vs stateless) Security best practices, OWASP Top 10, WAF (configuration/training), network-level security, RBAC, IAM policies Candidate Expectations: The ideal candidate should be able to: Explain best practices around CI/CD pipeline design and secure AWS integrations. Demonstrate complex scripting solutions and data processing tasks in Bash and Python. Describe container lifecycle, troubleshooting steps, and security hardening practices. Detail Kubernetes architecture, Helm chart design, and access control configurations. Show a deep understanding of AWS IAM, networking, service integrations, and cost-conscious design. Discuss TLS certificate lifecycle, trusted CA usage, and implementation in cloud-native environments. Preferred Qualifications: AWS Certified DevOps Engineer or equivalent certifications. Experience in FinTech, SaaS, or other regulated industries. Knowledge of cost optimization strategies in cloud environments. Familiarity with Agile/Scrum methodologies. Certifications or experience with ITIL or ISO 20000 frameworks are advantageous.

Job ID: 32699 Location: Bangalore, IN Area of interest: Technology Job type: Regular Employee Work style: Office Working Opening date: 15 Jul 2025 Job Summary Vulnerability Remediation Engineer will be part of the Cyber Risk Remediation team under the CIO function and lead the vulnerability management activities for retail bank division. The engineer will play a vital role in triaging, analysis and remediation of vulnerability findings to achieve security goals and risk reduction target for the department. The role requires optimal engagement with various stakeholders including technology delivery leads, information security officers and Collaborate with IT teams to develop and track effective remediation plans for identified vulnerabilities. Triaging - Assessment / analysis of vulnerability scan results to prioritize vulnerabilities based on severity, potential impact, and exploitability while aligning with the remediation priorities with the organization’s security standards. Remediation Planning - Develop strategies to identify, manage, and mitigate identified threats and vulnerabilities to attain desired risk profile and communicate strategies to key stakeholders. Collaborate with IT teams to develop and implement effective remediation plans for identified vulnerabilities. Advisory / Solution Consulting - Provide technical guidance on patching, configuration changes, and security best practices. Demonstrate in-depth knowledge and understanding of the global threat landscape, cybersecurity trends, emerging technologies, and provide expertise / consultation to application teams for vulnerability remediation. Risk Assessment - Evaluate the potential impact of vulnerabilities on the organization's systems and data. Collaborate with risk management teams to assess the overall risk posture and prioritize mitigation efforts. Assist with the selection of cost-effective security controls to mitigate risk (e.g., protection of information, systems, and processes) Key Responsibilities Strategy Remediation Advisory & Planning - Develop strategies to identify, manage, and mitigate identified threats and vulnerabilities to attain desired risk profile and communicate strategies to key stakeholders. Collaborate with IT teams to develop and implement effective remediation plans for identified vulnerabilities. Shift Left - Drive DevSecOps practices by integrating and managing automated secure coding tools within CI/CD pipelines, interpreting results, and collaborating with Development and Operations teams to embed security throughout the development lifecycle. Processes Prioritization - Assessment / analysis of vulnerability scan results to prioritize vulnerabilities based on severity, potential impact, and exploitability while aligning with the remediation priorities with the organization’s security standards. Possess a deep and broad understanding of core cybersecurity principles, common attack vectors (e.g., OWASP Top 10), mitigation techniques, cryptography, standard frameworks, and security across network, protocol, system, and application layers. People & Talent Advisory / Solution Consulting - Provide technical guidance on patching, configuration changes, and security best practices. Demonstrate in-depth knowledge and understanding of the global threat landscape, cybersecurity trends, emerging technologies, and provide expertise / consultation to application teams for vulnerability remediation. Risk Management Risk Assessment - Evaluate the potential impact of vulnerabilities on the organization's systems and data. Collaborate with risk management teams to assess the overall risk posture and prioritize mitigation efforts. Assist with the selection of cost-effective security controls to mitigate risk (e.g., protection of information, systems, and processes) Regulatory & Business Conduct Display exemplary conduct and live by the Group’s Values and Code of Conduct. Take personal responsibility for embedding the highest standards of ethics, including regulatory and business conduct, across Standard Chartered Bank. This includes understanding and ensuring compliance with, in letter and spirit, all applicable laws, regulations, guidelines and the Group Code of Conduct. Effectively and collaboratively identify, escalate, mitigate and resolve risk, conduct and compliance matters. Lead to achieve the outcomes set out in the Bank’s Conduct Principles: [Fair Outcomes for Clients; Effective Financial Markets; Financial Crime Compliance; The Right Environment.] * Serve as a Director of the Board Exercise authorities delegated by the Board of Directors and act in accordance with Articles of Association (or equivalent) Key stakeholders CIO, CISO, CISRO, ICS, WRB Technology – Domain Technology Leads, Chapter Leads – Production Engineering, Development Skills and Experience Cyber Security - Vulnerability Analysis Exploitability Analysis / Threat modelling Secure Coding / OWASP / CWE Scripting / Infrastructure as a Code Programming Languages (Java preferred) Security Shift Left / DevSecOps Vulnerability Scoring Systems (CVSS, EPSS etc) Solid understanding of information security policies, standards, and industry best practices Qualifications Education Bachelor’s degree in computer science, information security, or a related field Membership Preferred Security Research Organization memberships / awareness Certifications Professional certification such as CEH, CVA, CISSP, CISA, or CISM Languages English Competencies Action Oriented Collaborates Customer Focus Gives Clarity & Guidance Manages Ambiguity Develops Talent Drives Vision & Purpose Nimble Learning Decision Quality Courage Instills Trust Strategic Mindset Technical Competencies: This is a generic competency to evaluate candidate on role-specific technical skills and requirements About Standard Chartered We're an international bank, nimble enough to act, big enough for impact. For more than 170 years, we've worked to make a positive difference for our clients, communities, and each other. We question the status quo, love a challenge and enjoy finding new opportunities to grow and do better than before. If you're looking for a career with purpose and you want to work for a bank making a difference, we want to hear from you. You can count on us to celebrate your unique talents and we can't wait to see the talents you can bring us. Our purpose, to drive commerce and prosperity through our unique diversity, together with our brand promise, to be here for good are achieved by how we each live our valued behaviours. When you work with us, you'll see how we value difference and advocate inclusion. Together we: Do the right thing and are assertive, challenge one another, and live with integrity, while putting the client at the heart of what we do Never settle, continuously striving to improve and innovate, keeping things simple and learning from doing well, and not so well Are better together, we can be ourselves, be inclusive, see more good in others, and work collectively to build for the long term What we offer In line with our Fair Pay Charter, we offer a competitive salary and benefits to support your mental, physical, financial and social wellbeing. Core bank funding for retirement savings, medical and life insurance, with flexible and voluntary benefits available in some locations. Time-off including annual leave, parental/maternity (20 weeks), sabbatical (12 months maximum) and volunteering leave (3 days), along with minimum global standards for annual and public holiday, which is combined to 30 days minimum. Flexible working options based around home and office locations, with flexible working patterns. Proactive wellbeing support through Unmind, a market-leading digital wellbeing platform, development courses for resilience and other human skills, global Employee Assistance Programme, sick leave, mental health first-aiders and all sorts of self-help toolkits A continuous learning culture to support your growth, with opportunities to reskill and upskill and access to physical, virtual and digital learning. Being part of an inclusive and values driven organisation, one that embraces and celebrates our unique diversity, across our teams, business functions and geographies - everyone feels respected and can realise their full potential. Recruitment Assessments Some of our roles use assessments to help us understand how suitable you are for the role you've applied to. If you are invited to take an assessment, this is great news. It means your application has progressed to an important stage of our recruitment process. Visit our careers website www.sc.com/careers www.sc.com/careers

When you join Verizon You want more out of a career. A place to share your ideas freely — even if they’re daring or different. Where the true you can learn, grow, and thrive. At Verizon, we power and empower how people live, work and play by connecting them to what brings them joy. We do what we love — driving innovation, creativity, and impact in the world. Our V Team is a community of people who anticipate, lead, and believe that listening is where learning begins. In crisis and in celebration, we come together — lifting our communities and building trust in how we show up, everywhere & always. Want in? Join the #VTeamLife. What you’ll be doing... The work you'll be doing is to support mission and business-critical applications within Verizon. You will be enhancing the customer experience and building a world class solutions. Under the mentorship of a technical lead who would be supporting you on delivery, you will also work as a team member on various projects and mentor junior resources. You will help develop, implement and maintain this important application. Designing, developing and maintaining applications and databases by evaluating client needs, analyzing requirements and developing software systems. Testing and coordinating all user interfaces changes of Responsive Web Design. Executing full software development life cycle (SDLC) – concept, design, build, deploy, test, release and support. Ensuring application development sprint cycle is on track and adjusting the plan to meet release timelines. Acting independently, at the same time displaying excellent collaboration within and between various teams. Understanding the domain knowledge and adapting to an agile environment. Building reusable code and libraries for future use in front end and back end technologies. Mentoring junior developers in the team and leading them to deliver on projects. What we’re looking for… In this hybrid role, you'll have a defined work location that includes work from home and assigned office days set by your manager. What we’re looking for... You are curious about new technologies and the possibilities they create. You enjoy the challenge of supporting applications while exploring ways to improve upon the technology. You are driven and motivated, with good communication and analytical skills. You’re a sought-after team member that thrives in a dynamic work environment. You have a thirst for working on cutting edge technology with the drive to change the status quo. You'll need to have: Bachelor’s degree or four or more years of work experience. Four or more years of relevant experience. Experience on Frontend/Web technologies and backend services. Knowledge of SDLC and Agile Development. Knowledge of cloud-native application development. Effective code review, quality, performance tuning experience. Experience with UI framework. Experience with OWASP rules and mitigate security vulnerabilities using security tools like Fortify, Sonarcube, Blackduck etc. Experience with Unit testing framework like JUnit, Mokito. Experience monitoring tools like NewRelic. Ability to understand Agile and DevOps tools and technologies. Even better if you have one or more of the following: Experience with a high-performance, high-availability environment. Strong analytical, debugging skills. Good communication and presentation skills. Relevant certifications. Strong problem solving and debugging skills. If Verizon and this role sound like a fit for you, we encourage you to apply even if you don’t meet every “even better” qualification listed above. Why Verizon? Verizon is committed to maintaining a Total Rewards package which is competitive, valued by our employees, and differentiates us as an Employer of Choice. We are a ‘pay for performance’ company and your contribution is rewarded through competitive salaries, performance-based incentives and an employee Stock Program. We create an opportunity for us all to share in the success of Verizon and the value we help to create through this broad-based discretionary equity award program. Your benefits are market competitive and delivered by some of the best providers. You are provided with a full spectrum of health and wellbeing resources, including a first in-class Employee Assistance Program, to empower you to make positive health decisions. We offer generous paid time off benefits to help you manage your work life balance and opportunities for flexible working arrangements*. Verizon provides training and development for all levels, to help you enhance your skills and develop your career, from funding towards education assistance, award-winning training, online development tools and access to industry research. You will be able to take part in volunteering opportunities as part of our environmental, community and sustainability commitment. Your benefits package will vary depending on the country in which you work. subject to business approval Where you’ll be working In this hybrid role, you'll have a defined work location that includes work from home and assigned office days set by your manager. Scheduled Weekly Hours 40 Equal Employment Opportunity Verizon is an equal opportunity employer. We evaluate qualified applicants without regard to race, gender, disability or any other legally protected characteristics.

Job Title: Senior Software Engineer II (DevSecOps) Department: Technology Reports to: Software Engineering Manager / Infrastructure Manager Experience: 3+ years Location: Ahmedabad, India-Remote Overview As a DevSecOps Engineer at Genea, you will be a key player in shaping the secure delivery and operation of our SaaS products. You will ensure that security is embedded across our CI/CD pipelines, infrastructure, and software lifecycle while enabling developer productivity. You will champion secure-by-default practices and work closely with engineering teams to automate and monitor security controls, ensuring compliance and reliability at scale. Genea is an engineering company at heart. We hire people with a broad set of technical skills who are ready to take on some technology’s greatest challenges and make an impact on Genea’s end users. A DevSecOps Engineer’s approach should be customer-centric, security-focused, and results-driven. Transparency, teamwork, and dedication are essential qualities for this role. Duties and Responsibilities: Embed security best practices into CI/CD pipelines and infrastructure as code. Design, implement, and maintain security scanning and monitoring tools for vulnerabilities across containers, applications, and cloud environments. Work with developers to integrate security tools and policies without impacting delivery velocity. Develop and enforce policies for secrets management, IAM least privilege, and secure artifact storage. Support audits (e.g., SOC 2) by maintaining evidence of security controls. Monitor, triage, and respond to security events, coordinating with engineering and management. Drive incident response and post-mortem processes for security-related issues. Perform code and infrastructure reviews from a security perspective. Automate compliance checks and security benchmarks (CIS, OWASP, etc.). Contribute to documentation, runbooks, and internal knowledge sharing. Participate in or lead infrastructure and architecture reviews, advising on secure designs. Be available to support urgent production or security events outside of business hours. Qualifications: Bachelor’s degree in computer science, Information Security, or a related field. 3+ years of experience in DevOps, Cloud Infrastructure, or Security Engineering. Hands-on experience with AWS/Azure/GCP cloud security services and policies. Experience implementing vulnerability management (SCA, SAST, DAST) and container security tools (like Trivy, AWS Inspector, Aqua). Working knowledge of Infrastructure as Code (Terraform, CloudFormation, or similar). Experience managing CI/CD pipelines (GitHub Actions, Jenkins, or equivalent). Understanding of networking security, encryption, certificate management, and IAM. Familiarity with regulatory and compliance standards (SOC2, GDPR, etc.) is a plus. Strong scripting skills in Python, Bash, or similar. Experience with incident management and security monitoring tools (like GuardDuty, CloudTrail, ELK, etc.). Knowledge of Agile/Scrum development processes. Competencies: Security-First Mindset - Champions secure design and is vigilant about risk. Problem Solving - Identifies and resolves infrastructure or security issues quickly. Teamwork - Balances team and individual priorities; collaborates across teams to embed security. Adaptability - Handles shifting priorities, compliance changes, and evolving threat landscapes. Professionalism & Ethics - Upholds trust, integrity, and transparent communication. Technical Mastery - Continuously develops technical skills and shares knowledge. Oral & Written Communication - Clearly documents and explains security concepts to non-security teams. Perks and benefits we offer: ✨Work Your Way: Enjoy a flexible working environment that suits your lifestyle. ✨Time Off: 24 days of PTO and 10 holidays to unwind and pursue your passions. ✨Comprehensive Leave Options: Including maternity, paternity, adoption, wedding, and bereavement leaves to support you during important life events. ✨ Health & Safety First: Benefit from family health insurance and personal accident coverage beyond your CTC. ✨Top Workplace Honors: Celebrated as a Top Workplace from 2021 to 2024. ✨Balanced Workweek: Embrace a balanced life with our 5-day work schedule

We are seeking an accomplished and strategic Technical Manager to lead full-spectrum technology initiatives across modern enterprise environments. This role requires deep technical expertise, leadership excellence, and a solid understanding of full stack development, AI/ML, cloud computing, and digital platforms like **Salesforce**, **ServiceNow**, **Drupal**, and **WordPress**. The successful candidate will oversee architecture, execution, team growth, and delivery of scalable and secure solutions aligned with business goals. --- Key Responsibilities Technical Strategy & Solution Architecture * Define and drive the technical roadmap across frontend, backend, AI, cloud, and integration platforms. * Evaluate and integrate cutting-edge technologies (AI/ML, LLMs, automation, low-code platforms). * Architect scalable and secure enterprise solutions with modern design patterns and microservices. Engineering Management & Team Leadership * Lead high-performing engineering teams across multiple tech stacks and development methodologies. * Establish a collaborative, learning-focused engineering culture. * Mentor engineers, architects, and team leads to build technical capability and leadership pipelines. Project Delivery & Governance * Oversee full lifecycle of solution delivery including planning, estimation, design, development, testing, and deployment. * Ensure adherence to Agile/Scrum best practices, DevOps principles, and SDLC compliance. * Manage cross-team dependencies, technology standards, and code quality enforcement. Technology Stack Oversight * Provide technical direction across diverse platforms including: * Full Stack Web Development: React.js, Node.js, RESTful APIs, WebSocket * AI/ML & Python: Model training, data pipelines, NLP integration * Enterprise Platforms: .NET, Java Spring Boot, PHP (Laravel) * CMS & Web Frameworks: Drupal 9/10, WordPress (multisite & enterprise) * Low-code/No-code Platforms: PowerApps * CRM & ITSM Platforms: Salesforce (Admin & Dev), ServiceNow (workflow automation, ITSM) *DevOps & Cloud: AWS, Azure, Docker, Kubernetes, GitLab CI, Terraform Security, Compliance & Data Governance * Champion secure coding practices and data protection strategies (OWASP, NIST, ISO 27001). * Ensure accessibility compliance (WCAG, AODA, 508). * Oversee cloud governance, data retention, and policy enforcement aligned with regulatory requirements. Stakeholder & Budget Management * Serve as the key technical advisor to executive leadership, clients, and partners. * Translate business objectives into actionable technical plans. * Manage technical budgets, vendor partnerships, and cost optimization strategies. --- Required Skills & Qualifications * Bachelor’s or Master’s in Computer Science, Engineering, or a related field. * 10+ years of progressive experience in software engineering and solution architecture. * 5+ years in technical leadership or management roles. * Expertise in modern full stack development (React.js, Node.js, Python). * Proven experience with at least **two major platforms**: Salesforce, ServiceNow, Drupal, or WordPress. * Experience with AI/ML integration and cloud-native applications. * Strong command of DevOps, CI/CD automation, and scalable infrastructure. * Proficient in Agile/Scrum methodologies and engineering best practices. --- Preferred Skills * Salesforce certifications (Admin/Developer), ServiceNow administration/development experience. * Familiarity with chatbot/AI workflow integration. * Experience with monolithic-to-microservices transitions and legacy modernization. * Strong presentation and communication skills for stakeholder engagement. --- Why Join Us? * Shape the technical future of projects across industries like public sector, healthcare, education, and enterprise. * Work with cutting-edge tools and cross-functional agile teams. * Make high-impact decisions in a collaborative and empowering environment. Job Types: Full-time, Permanent Pay: ₹1,500,000.00 - ₹2,500,000.00 per year Benefits: Health insurance Paid sick time Paid time off Work Location: In person

Job title Senior Software Engineer - Dot Net, Ahmedabad India Ref # 223914 Location India - Ahmedabad Job family Corporate & Commercial Closing date: 04-Aug-2025 About the role In this role, you will serve as a senior technical developer pushing technologies to the limits. Work with our cross-technical teams to design and build the next generation applications keeping a mobile first approach where business so demands while adhering to standard coding practices Key responsibilities Develop high quality and reliable code with unit test cases, meeting given specifications. Create Documentation, sequence diagram and other low-level design artefacts. Perform code analysis, peer reviews, requirements analysis, software review, system risk analysis and software reliability analysis. Ensures the developed code covers the non-functional requirements including performance, security, auditing and integrity. Resolve production incidents or defects as needed, and proactively identify potential issues. before they appear in the production environment; contribute to the root cause analysis. Drive high performance and accountability for own deliverables. Work well within a team and always work for team success by supporting other team members, constructively acting on feedback, and identifying challenging opportunities that enhance career growth. Contribute in defining secure coding standards, and work in a team to follow best practices to ensure compliance with standards, quality, scalability and security of deliverables. Tackle challenges and solve complex problems on a daily basis. Ability to work independently with minimal supervision and ensure the transparency of the work. Good understanding of Software Development Life Cycle and Software Quality Assurance processes. Be part of an extraordinary story Your skills. Your imagination. Your ambition. Here, there are no boundaries to your potential and the impact you can make. You’ll find infinite opportunities to grow and work on the biggest, most rewarding challenges that will build your skills and experience. You have the chance to be a part of our future, and build the life you want while being part of an international community. Our best is here and still to come. To us, impossible is only a challenge. Join us as we dare to achieve what’s never been done before. Together, everything is possible Qualifications About you Bachelor’s Degree or Honors in Engineering/ Computer science/Mathematics/Sciences/Commerce or Equivalent with minimum 5 years with 3 years of job-related experience. Good command of English and should be able to articulate ideas / proposal properly AND A minimum 5 years of relevant experience and expertise in .NET, C# Hands on experience in MVC, WPF, WCF and Web API Hands on experience in RDBMS Databases (Oracle/SQL Server) Exposure to Entity Framework, Dapper (ORM) will be an added advantage Exposure to .NET Core, React JS, Webpack will be an added advantage Exposure to CI/CD technologies will be an added advantage You should have experience working on Agile development projects. You should have excellent verbal and written communications skills. You should possess strong analytical, interpersonal skills and be a proven team player. Knowledge of an Airline's Flight Operations data domain (Flight and Crew related domain) preferred Knowledge of JIRA / Azure DevOps boards, OpenShift preferred Knowledge of Cloud Native application development preferred OR Hands on Dot Net MVC, Dot Net Core 6.0, API with ASP.Net Core, Microservices with ASP.Net Core, C#, SQL Server / Oracle, Angular 12 / React JS Expertise in area(s) architecture domains such as data, infrastructure, business and/or software development. Implemented Design Principles, Design Patterns, Cache management, Authentication API and logging Hands on CI/CD implementation with Azure DevOps Hands on implementing OWASP Guidelines in the application. Worked on Large projects with Onsite/Offshore model Expertise in area(s) architecture domains such as data, infrastructure, business and/or software development. Experience working in Agile and Lean software development methodologies. Demonstrated ability to troubleshoot and program complex application stack. Must have good analytical and problem-solving skills. Excellent interpersonal communication and organizational skills. Experience in Leading a team of Developers Domain knowledge of Corporate functions such as HR, Finance, Facilities/Transport, Procurement would be added advantage. About Qatar Airways Group Our story started with four aircraft. Today, we deliver excellence across 12 different businesses coming together as one. We’ve grown fast, broken records and set trends that others follow. We don’t slow down by the fear of failure. Instead, we dare to achieve what’s never been done before. So whether you’re creating a unique experience for our customers or innovating behind the scenes, every person contributes to our proud story. A story of spectacular growth and determination. Now is the time to bring your best ideas and passion to a place where your ambition will know no boundaries, and be part of a truly global community About Qatar Airways Group Our story started with four aircraft. Today, we deliver excellence across 12 different businesses coming together as one. We’ve grown fast, broken records and set trends that others follow. We don’t slow down by the fear of failure. Instead, we dare to achieve what’s never been done before. So whether you’re creating a unique experience for our customers or innovating behind the scenes, every person contributes to our proud story. A story of spectacular growth and determination. Now is the time to bring your best ideas and passion to a place where your ambition will know no boundaries, and be part of a truly global community. https://aa115.taleo.net/careersection/QA_External_CS/jobapply.ftl?lang=en&job=223914

Job Description About the Role: We are seeking a DevOps Engineer to lead the migration of multiple applications and services into a new AWS environment. This role requires a strategic thinker with hands-on technical expertise, a deep understanding of DevOps best practices, and the ability to guide and mentor other engineers. You will work closely with architects and technical leads to design, plan, and execute cloud-native solutions with a strong emphasis on automation, scalability, security, and performance. Key Responsibilities Take full ownership of the migration process to AWS, including planning and execution. Work closely with architects to define the best approach for migrating applications into Amazon EKS. Mentor and guide a team of DevOps Engineers, assigning tasks and ensuring quality execution. Design and implement CI/CD pipelines using Jenkins, with an emphasis on security, maintainability, and scalability. Integrate static and dynamic code analysis tools (e.g., SonarQube) into the CI/CD process. Manage secure access to AWS services using IAM roles, least privilege principles, and container-based identity (e.g., workload identity). Create and manage Helm charts for Kubernetes deployments across multiple environments. Conduct data migrations between S3 buckets, PostgreSQL databases, and other data stores, ensuring data integrity and minimal downtime. Troubleshoot and resolve infrastructure and deployment issues, both in local containers and Kubernetes clusters. Required Skills & Expertise CI/CD & DevOps Tools: Jenkins pipelines (DSL), SonarQube, Nexus or Artifactory Shell scripting, Python (with YAML/JSON handling) Git and version control best practices Containers & Kubernetes Docker (multi-stage builds, non-root containers, troubleshooting) Kubernetes (services, ingress, service accounts, RBAC, DNS, Helm) Cloud Infrastructure (AWS) AWS services: EC2, EKS, S3, IAM, Secrets Manager, Route 53, WAF, KMS, RDS, VPC, Load Balancers Experience with IAM roles, workload identities, and secure AWS access patterns Network fundamentals: subnets, security groups, NAT, TLS/SSL, CA certificates, DNS routing Databases PostgreSQL: pg_dump/pg_restore, user management, RDS troubleshooting Web & Security Concepts NGINX, web servers, reverse proxies, path-based/host-based routing Session handling, load balancing (stateful vs stateless) Security best practices, OWASP Top 10, WAF (configuration/training), network-level security, RBAC, IAM policies Candidate Expectations The ideal candidate should be able to: Explain best practices around CI/CD pipeline design and secure AWS integrations. Demonstrate complex scripting solutions and data processing tasks in Bash and Python. Describe container lifecycle, troubleshooting steps, and security hardening practices. Detail Kubernetes architecture, Helm chart design, and access control configurations. Show a deep understanding of AWS IAM, networking, service integrations, and cost-conscious design. Discuss TLS certificate lifecycle, trusted CA usage, and implementation in cloud-native environments. Preferred Qualifications AWS Certified DevOps Engineer or equivalent certifications. Experience in FinTech, SaaS, or other regulated industries. Knowledge of cost optimization strategies in cloud environments. Familiarity with Agile/Scrum methodologies. Certifications or experience with ITIL or ISO 20000 frameworks are advantageous. check(event) ; career-website-detail-template-2 => apply(record.id,meta)" mousedown="lyte-button => check(event)" final-style="background-color:#68B54C;border-color:#68B54C;color:white;" final-class="lyte-button lyteBackgroundColorBtn lyteSuccess" lyte-rendered="">

Job Description We’re hiring a skilled and proactive Cyber Security Analyst – II to join our Information Security Group (ISG) at Grazitti Interactive. In this mid-level role, you’ll be at the forefront of managing advanced security incidents, conducting vulnerability assessments, and mentoring junior analysts. If you’re passionate about cybersecurity, thrive in fast-paced environments, and want to play a pivotal role in strengthening enterprise security, this role is for you. Key Skills 2–3 years of experience in cybersecurity or a related technical role Strong knowledge of cybersecurity principles, practices, technologies, and regulations In-depth understanding of network security, firewalls, and SIEM systems Experience with incident response and vulnerability management Familiarity with frameworks like OWASP Top 10 and SANS Top 25 Excellent analytical and problem-solving abilities Strong verbal and written communication skills Exposure to compliance frameworks and risk assessment methods Proficiency in MS Office tools (Excel, Word, PowerPoint) Relevant certifications (e.g., CompTIA Security+, CEH, OSCP) preferred Roles and Responsibilities Monitor and analyze advanced threats using SIEM tools and threat intelligence Lead incident response efforts and coordinate with relevant stakeholders Conduct detailed vulnerability assessments and recommend remediation actions Enhance security policies and support continuous process improvements Prepare detailed reports and security metrics for senior management Create and distribute security awareness and compliance training materials Mentor junior analysts and support their professional development Work closely with IT and cross-functional teams to integrate security into business operations Regularly communicate cybersecurity updates to internal stakeholders

Job Description We’re hiring a detail-oriented and experienced SOC Analyst – L2 to join our Information Security Group (ISG) at Grazitti Interactive. In this role, you’ll investigate complex incidents, perform in-depth threat analysis, lead proactive threat-hunting efforts, and mentor junior analysts. If you’re looking to deepen your cybersecurity expertise, manage critical incidents, and contribute to a mature SOC environment, this opportunity is tailor-made for you. Key Skills 2–3 years of experience in SOC or a similar cybersecurity-focused role Strong understanding of networking protocols, subnetting, routing, and addressing Proficient in Linux and Windows OS, system hardening, and architecture Deep understanding of Active Directory attacks and defense mechanisms Expertise in ELK Stack (Elasticsearch, Logstash, Kibana) for threat detection Experience in incident response, threat hunting, and forensic investigation Familiarity with OWASP Top 10, digital forensics, and malware analysis Proficiency in tools like TheHive, Cortex, MISP, OpenCTI, and Jira Ability to write detection rules for OWASP vulnerabilities and custom use cases Skilled in KQL, ESQL, and other query languages for log analysis Excellent communication and documentation skills Certifications like CompTIA Security+, CEH, OSDA, or BTL1 (preferred) Knowledge of frameworks such as MITRE ATT&CK and NIST CSF (a plus) Roles and Responsibilities Monitor security events and logs to detect advanced threats Conduct detailed investigations and lead real-time incident response Perform in-depth threat analysis using digital forensics tools Develop and optimize detection use cases and custom rules for SOC monitoring Harden Linux and Windows environments to prevent potential exploits Analyze threat intelligence and simulate attack scenarios to test detection readiness Collaborate across departments to embed cybersecurity into operations Mentor and guide junior SOC team members Regularly communicate security incidents and progress updates to stakeholders

Job Description We’re hiring an entry-level SOC Analyst – L1 to join our Information Security Group (ISG) at Grazitti Interactive. In this role, you’ll actively monitor security alerts, investigate incidents, and support threat prevention efforts within our Security Operations Center (SOC). If you’re passionate about cybersecurity, eager to build hands-on experience in incident handling, and want to work with modern security tools and frameworks, this opportunity is a perfect fit. Key Skills 1–2 years of experience in a SOC or similar cybersecurity role Strong knowledge of networking protocols, Linux/Windows OS, and system hardening Hands-on experience in incident response and digital forensics Familiarity with cybersecurity tools like ELK Stack, TheHive, Cortex, MISP, OpenCTI, and Jira Understanding of Active Directory architecture and attack vectors Working knowledge of OWASP Top 10 vulnerabilities and mitigation techniques Proficiency in query languages such as KQL and ESQL for log analysis Excellent written and verbal communication skills Relevant certifications such as CompTIA Security+, CEH, BTL1, OSDA (preferred) Familiarity with MITRE ATT&CK and NIST CSF (a plus) Roles and Responsibilities Continuously monitor security logs and alerts to detect potential threats Conduct triage, investigation, and documentation of incidents using forensic tools Harden Linux and Windows systems against known vulnerabilities Create and refine security use cases based on OWASP Top 10 and AD attack techniques Develop and maintain custom detection rules for enhanced SOC monitoring Optimize and manage security tools like ELK, Cortex, and MISP for effective response Collaborate with cross-functional teams to ensure compliance and integrate security best practices Simulate threat scenarios and participate in tabletop exercises Regularly communicate cybersecurity updates and incidents to internal stakeholders

About Us Please be aware we have noticed an increase in hiring scams potentially targeting Seismic candidates. Read our full statement on our Careers page. Seismic, a rapidly growing Forbes Cloud 100 company, is the global leader in enablement, helping organizations engage customers, enable teams, and ignite revenue growth. The Seismic Enablement CloudTM provides continuous guidance to improve behavior, content, and skills to win more deals and deliver better experiences. More than 2,200 organizations around the globe including IBM and American Express have made Seismic their enablement platform of choice. Seismic integrates with business-critical platforms including Microsoft, Salesforce, Google and Adobe. Seismic is headquartered in San Diego, with offices across North America, Europe, Australia and China. Seismic is committed to building an inclusive workplace that ignites growth for our employees and creates a culture of belonging that allows all employees to be seen and valued for who they are. Learn more about DEI at Seismic here. Overview Seismic is a leader in sales enablement technology, delivering integrated solutions that connect marketing, sales, and buyers to drive meaningful engagement. We develop cutting-edge SaaS solutions, ensuring innovation, quality, and global reach to meet our customer needs. We specialize in delivering modern, scalable, and multi-cloud solutions that empower businesses to succeed in today’s digital era. Leveraging the latest advancements in technology, including Generative AI, we are committed to driving innovation and transforming the way businesses operate. As we embark on an exciting journey of growth and expansion, we are seeking a talented Information Security Analyst to join our team in Hyderabad, India. Who You Are You are a highly motivated and detail-oriented security professional with 1-2 years of experience in information security. You possess a strong understanding of security principles and are passionate about identifying and mitigating vulnerabilities. You are a strong communicator and collaborator, with the ability to effectively communicate technical information to both technical and non-technical audiences. You are a quick learner, eager to expand your knowledge in the ever-evolving cybersecurity landscape, and possess a strong work ethic with a focus on continuous improvement. What You’ll Be Doing This role is responsible for identifying, assessing and mitigating security vulnerabilities in software applications. They work closely with development teams to integrate security practices into the Software Development Lifecycle (SDLC) and help ensure that applications are secure and compliant with relevant standards and regulations. As part of this role, you will assist with the following: Review AppSec (SAST/DAST/SCA/Container/API) vulnerabilities, evaluate risk and verify vulnerabilities Respond to customer RFPs within SLAs. Proactively review and triage alerts related to our security tool set (CrowdStrike, Netskope, Snyk, Veracode, NoName) Communicate with our engineering department on potential risks within their applications, best practices, and fixes. Support technical security assessments to ensure services follow secure design principles across our engineering portfolio. Work with the security operations team to integrate security tooling into the CI/CD pipeline to automate security testing and vulnerability detection. Document and updating information security processes. What You Bring To The Team Must Haves Minimum 1 –2 years of Information Security experience. Knowledge of OWASP Top 10, and related CWEs and CVEs. Solid understanding of information security best practices related to: Application security Cloud security GRC Ability to read and understand at an analyst level at least one major programming language and framework (C#, .NET, JavaScript, Python, Ruby, Java.) Foundational Knowledge with Application Security (Software composition analysis, Static/Dynamic analysis, and API Security) Experience with a ticketing tracking system (e.g. Jira) Great communication skills, with the ability to collaborate across development, operations, and security teams. Highly proficient in spoken and written English Completed at least one security certification (e.g. SEC+, ISC2 CC or any others) Nice To Haves Proficiency with a scripting language such as Python, PowerShell or Bash Experience with answering Vendor Security Questionnaires Experience with an access management solution. Threat modeling experience following STRIDE methodology. What We Have For You At Seismic, we’re committed to providing benefits and perks for the whole self. To explore our benefits available in each country, please visit the Global Benefits page. If you are an individual with a disability and would like to request a reasonable accommodation as part of the application or recruiting process, please click here. Headquartered in San Diego and with employees across the globe, Seismic is the global leader in sales enablement , backed by firms such as Permira, Ameriprise Financial, EDBI, Lightspeed Venture Partners, and T. Rowe Price. Seismic also expanded its team and product portfolio with the strategic acquisitions of SAVO, Percolate, Grapevine6, and Lessonly. Our board of directors is composed of several industry luminaries including John Thompson, former Chairman of the Board for Microsoft. Seismic is an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to gender, age, race, religion, or any other classification which is protected by applicable law. Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for this job. Duties, responsibilities and activities may change at any time with or without notice.

Are you a Product Security Analyst expert looking for a challenging opportunity? Join our Product Security team. We operate at the heart of the digital transformation of our business. Our team is responsible for Product Security including application security for our global organization. Partner with the best . We are looking for a Senior Product Security Analyst, with a focus in Product Security. In this role, you will work in a team and demonstrate working knowledge of systems and products and how they are secured in customers' businesses. As a Senior Product Security Engineer , you will be responsible for: Being responsible for providing technical leadership and defining, developing, and evolving security within software in a fast-paced and agile development environment using the latest secure software development technologies and infrastructure. Working with Cyber Security Leaders and SMEs to understand security requirements Performing penetration testing Collaborating with product and engineering teams to integrate security into the software development lifecycle (SDLC). Conducting threat modeling, design reviews, and code reviews to identify and mitigate security vulnerabilities. Performing static and dynamic application security testing (SAST/DAST), and manage results and remediation efforts. Leading security assessments of new and existing products, including third-party components and APIs. Developing and maintain secure coding guidelines and best practices. Supporting incident response and forensic investigations related to product security. Staying current with emerging threats, vulnerabilities, and security technologies. Assisting security champions in completing Threat Modeling and Architecture Risk Analysis on product features Providing guidance and advice on writing secure code that meets standards and delivers desired functionality, using the technology selected for the project Understanding application security methodologies and frameworks Leveraging Baker Hughes Digital’s tailored Secure SDL practice into specific engineering engagements Researching new application security technologies and implement them to improve application security. Maintaining a backlog of security-related tools that will improve the maintainability and security of our code and the pace of development Promoting best practices based on OWASP, SANS Top 25, and the Baker Hughes Digital SDL. Fuel your passion To be successful in this role you will: Have Bachelor's Degree in Computer Science or “STEM” Majors (Science, Technology, Engineering and Math). A minimum 2 years of professional experience in STEM related degree, Political Science/Government/International Affairs. Desired Characteristics Have Detailed working knowledge of two modern programming languages, such as java, python, or ruby Have Strong written and oral communication skills and successful security consulting background. Have at least 2 years of security consulting involvement with development team(s) that delivered software-based services Have Experience in developing secure applications Have a high energy and a result-oriented attitude/approach, with an understanding of release timelines and the need to enable development teams, not slow them down Have experience with Security Development Lifecycle processes Have Contribute to and lead discussions and communications within the team and outside, including customers and other business units Have Strong knowledge of Object Oriented Analysis and Design, Software Design Patterns and coding principles Have Experience with penetration testing tools, ability to replicate security defects uncovered by groups such as red team Have Good understanding of security tools and technologies to facilitate secure development. Working with us Our people are at the heart of what we do at Baker Hughes. We know we are better when all our people are developed, engaged and able to bring their whole authentic selves to work. We invest in the health and well-being of our workforce, train and reward talent and develop leaders at all levels to bring out the best in each other. Working for you Our inventions have revolutionized energy for over a century. But to keep going forward tomorrow, we know we must push the boundaries today. We prioritize rewarding those who embrace change with a package that reflects how much we value their input. Join us, and you can expect: Contemporary work-life balance policies and wellbeing activities Comprehensive private medical care options Safety net of life insurance and disability programs Tailored financial programs. Additional elected or voluntary benefits About Us: We are an energy technology company that provides solutions to energy and industrial customers worldwide. Built on a century of experience and conducting business in over 120 countries, our innovative technologies and services are taking energy forward – making it safer, cleaner and more efficient for people and the planet. Join Us: Are you seeking an opportunity to make a real difference in a company that values innovation and progress? Join us and become part of a team of people who will challenge and inspire you! Let’s come together and take energy forward. Baker Hughes Company is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, protected veteran status or other characteristics protected by law. R149646

`· 8+ years of professional software engineering experience, including 2+ years in a Staff · Engineer or equivalent technical leadership role. · Proven experience designing and building scalable, production-grade full stack applications. · Strong proficiency in Java and/or Kotlin on the backend, with experience building · RESTful APIs and microservices. · Proficiency with modern frontend frameworks such as React, Vue, or similar · JavaScript/TypeScript libraries. · Solid understanding of cloud-native architecture and experience deploying applications to cloud platforms (AWS, GCP, or Azure). · Experience with containerization and orchestration tools (Docker, Kubernetes). · Familiarity with secure software development practices and integrating security into full stack applications. · Skilled in automated testing, CI/CD pipelines, and modern DevOps workflows. Strong communication and collaboration skills, with experience working across engineering, product, and design teams. · Bachelor’s degree in Computer Science, Engineering, or a related field—or equivalent practical experience. · Experience working in an agile environment and collaborating with cross-functional teams. Passion for mentoring and coaching engineers. · Nice-to-Have Skills: · Experience with security-focused development (e.g., OWASP, SAST, DAST). · Knowledge of infrastructure as code (Terraform, CloudFormation). Familiarity with serverless architectures (AWS Lambda, API Gateway). ```

Job Title: Senior Software Engineer II (DevSecOps) Department: Technology Reports to: Software Engineering Manager / Infrastructure Manager Experience: 3+ years Location: Ahmedabad, India-Remote Overview As a DevSecOps Engineer at Genea, you will be a key player in shaping the secure delivery and operation of our SaaS products. You will ensure that security is embedded across our CI/CD pipelines, infrastructure, and software lifecycle while enabling developer productivity. You will champion secure-by-default practices and work closely with engineering teams to automate and monitor security controls, ensuring compliance and reliability at scale. Genea is an engineering company at heart. We hire people with a broad set of technical skills who are ready to take on some technology’s greatest challenges and make an impact on Genea’s end users. A DevSecOps Engineer’s approach should be customer-centric, security-focused, and results-driven. Transparency, teamwork, and dedication are essential qualities for this role. Duties And Responsibilities Embed security best practices into CI/CD pipelines and infrastructure as code. Design, implement, and maintain security scanning and monitoring tools for vulnerabilities across containers, applications, and cloud environments. Work with developers to integrate security tools and policies without impacting delivery velocity. Develop and enforce policies for secrets management, IAM least privilege, and secure artifact storage. Support audits (e.g., SOC 2) by maintaining evidence of security controls. Monitor, triage, and respond to security events, coordinating with engineering and management. Drive incident response and post-mortem processes for security-related issues. Perform code and infrastructure reviews from a security perspective. Automate compliance checks and security benchmarks (CIS, OWASP, etc.). Contribute to documentation, runbooks, and internal knowledge sharing. Participate in or lead infrastructure and architecture reviews, advising on secure designs. Be available to support urgent production or security events outside of business hours. Qualifications Bachelor’s degree in computer science, Information Security, or a related field. 3+ years of experience in DevOps, Cloud Infrastructure, or Security Engineering. Hands-on experience with AWS/Azure/GCP cloud security services and policies. Experience implementing vulnerability management (SCA, SAST, DAST) and container security tools (like Trivy, AWS Inspector, Aqua). Working knowledge of Infrastructure as Code (Terraform, CloudFormation, or similar). Experience managing CI/CD pipelines (GitHub Actions, Jenkins, or equivalent). Understanding of networking security, encryption, certificate management, and IAM. Familiarity with regulatory and compliance standards (SOC2, GDPR, etc.) is a plus. Strong scripting skills in Python, Bash, or similar. Experience with incident management and security monitoring tools (like GuardDuty, CloudTrail, ELK, etc.). Knowledge of Agile/Scrum development processes. Competencies Security-First Mindset - Champions secure design and is vigilant about risk. Problem Solving - Identifies and resolves infrastructure or security issues quickly. Teamwork - Balances team and individual priorities; collaborates across teams to embed security. Adaptability - Handles shifting priorities, compliance changes, and evolving threat landscapes. Professionalism & Ethics - Upholds trust, integrity, and transparent communication. Technical Mastery - Continuously develops technical skills and shares knowledge. Oral & Written Communication - Clearly documents and explains security concepts to non-security teams. Perks And Benefits We Offer ✨Work Your Way: Enjoy a flexible working environment that suits your lifestyle. ✨Time Off: 24 days of PTO and 10 holidays to unwind and pursue your passions. ✨Comprehensive Leave Options: Including maternity, paternity, adoption, wedding, and bereavement leaves to support you during important life events. ✨ Health & Safety First: Benefit from family health insurance and personal accident coverage beyond your CTC. ✨Top Workplace Honors: Celebrated as a Top Workplace from 2021 to 2024. ✨Balanced Workweek: Embrace a balanced life with our 5-day work schedule

Experience 4 to 8 years Location Mumbai ( onsite) Roles and Responsibilities Maintain the firm’s security, standards and guidelines Enforce policy and regulatory compliance. Ability to develop Policies, Standards and Guidelines from scratch as well as modify the existing ones. Defining and reviewing architecture review for new server /VLAN setup in an organisation Providing IT Security Risk advisories for business teams of the organisation Understanding of Infrastructure, Application security assessment and secure SDLC framework. Conduct and document Application and System risk assessments using the firms’ global standards and develop risk mitigation strategies. Work closely with the business and operations teams to identify risk in different processes and provide assistance in closure of the same. Understanding of OWASP, SANS, and NIST standards Contribution to Information Security strategy and raising security awareness across the organisation. Extensive knowledge on Firewall rule review process, role has the scope to expand further based on success and integration of the above core function. Understanding of Vulnerability Management process and conducting operational tasks related to this process Conducting and maintaining follow-ups on periodic basis with Business /Application teams Years of Experience 3 to 5 years Must have key skills Network architecture (Firewall Rules) / Moderate knowledge for Microsoft and RedHat Operating System / Cyber Security / Network Security

Are you a Product Security Analyst expert looking for a challenging opportunity? Join our Product Security team. We operate at the heart of the digital transformation of our business. Our team is responsible for Product Security including application security for our global organization. Partner with the best . We are looking for a Senior Product Security Analyst, with a focus in Product Security. In this role, you will work in a team and demonstrate working knowledge of systems and products and how they are secured in customers' businesses. As a Senior Product Security Engineer , you will be responsible for: Being responsible for providing technical leadership and defining, developing, and evolving security within software in a fast-paced and agile development environment using the latest secure software development technologies and infrastructure. Working with Cyber Security Leaders and SMEs to understand security requirements Performing penetration testing Collaborating with product and engineering teams to integrate security into the software development lifecycle (SDLC). Conducting threat modeling, design reviews, and code reviews to identify and mitigate security vulnerabilities. Performing static and dynamic application security testing (SAST/DAST), and manage results and remediation efforts. Leading security assessments of new and existing products, including third-party components and APIs. Developing and maintain secure coding guidelines and best practices. Supporting incident response and forensic investigations related to product security. Staying current with emerging threats, vulnerabilities, and security technologies. Assisting security champions in completing Threat Modeling and Architecture Risk Analysis on product features Providing guidance and advice on writing secure code that meets standards and delivers desired functionality, using the technology selected for the project Understanding application security methodologies and frameworks Leveraging Baker Hughes Digital’s tailored Secure SDL practice into specific engineering engagements Researching new application security technologies and implement them to improve application security. Maintaining a backlog of security-related tools that will improve the maintainability and security of our code and the pace of development Promoting best practices based on OWASP, SANS Top 25, and the Baker Hughes Digital SDL. Fuel your passion To be successful in this role you will: Have Bachelor's Degree in Computer Science or “STEM” Majors (Science, Technology, Engineering and Math). A minimum 2 years of professional experience in STEM related degree, Political Science/Government/International Affairs. Desired Characteristics Have Detailed working knowledge of two modern programming languages, such as java, python, or ruby Have Strong written and oral communication skills and successful security consulting background. Have at least 2 years of security consulting involvement with development team(s) that delivered software-based services Have Experience in developing secure applications Have a high energy and a result-oriented attitude/approach, with an understanding of release timelines and the need to enable development teams, not slow them down Have experience with Security Development Lifecycle processes Have Contribute to and lead discussions and communications within the team and outside, including customers and other business units Have Strong knowledge of Object Oriented Analysis and Design, Software Design Patterns and coding principles Have Experience with penetration testing tools, ability to replicate security defects uncovered by groups such as red team Have Good understanding of security tools and technologies to facilitate secure development. Working with us Our people are at the heart of what we do at Baker Hughes. We know we are better when all our people are developed, engaged and able to bring their whole authentic selves to work. We invest in the health and well-being of our workforce, train and reward talent and develop leaders at all levels to bring out the best in each other. Working for you Our inventions have revolutionized energy for over a century. But to keep going forward tomorrow, we know we must push the boundaries today. We prioritize rewarding those who embrace change with a package that reflects how much we value their input. Join us, and you can expect: Contemporary work-life balance policies and wellbeing activities Comprehensive private medical care options Safety net of life insurance and disability programs Tailored financial programs. Additional elected or voluntary benefits About Us: We are an energy technology company that provides solutions to energy and industrial customers worldwide. Built on a century of experience and conducting business in over 120 countries, our innovative technologies and services are taking energy forward – making it safer, cleaner and more efficient for people and the planet. Join Us: Are you seeking an opportunity to make a real difference in a company that values innovation and progress? Join us and become part of a team of people who will challenge and inspire you! Let’s come together and take energy forward. Baker Hughes Company is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, protected veteran status or other characteristics protected by law. R149646

ZS is a place where passion changes lives. As a management consulting and technology firm focused on improving life and how we live it, our most valuable asset is our people. Here you’ll work side-by-side with a powerful collective of thinkers and experts shaping life-changing solutions for patients, caregivers and consumers, worldwide. ZSers drive impact by bringing a client first mentality to each and every engagement. We partner collaboratively with our clients to develop custom solutions and technology products that create value and deliver company results across critical areas of their business. Bring your curiosity for learning; bold ideas; courage and passion to drive life-changing impact to ZS. Our most valuable asset is our people . At ZS we honor the visible and invisible elements of our identities, personal experiences and belief systems—the ones that comprise us as individuals, shape who we are and make us unique. We believe your personal interests, identities, and desire to learn are part of your success here. Learn more about our diversity, equity, and inclusion efforts and the networks ZS supports to assist our ZSers in cultivating community spaces, obtaining the resources they need to thrive, and sharing the messages they are passionate about. Offensive Security Analyst We are looking for a professional to join us as an Offensive Security Analyst in our Pune, India office. This professional will be responsible for conducting penetration tests and security assessments across cloud and on-premises environments. This role requires good technical expertise, out-of-box thinking, and effective communication skills to proactively identify, communicate and address security risks. What you’ll do: Typical daily work will consist of planning and performing penetration tests on cloud-based and on-premises infra & applications to identify security weaknesses and loopholes Support the penetration testing lifecycle—from information gathering and vulnerability scanning to manual exploitation and documentation Collaborate closely with the vulnerability management team to validate exploitable vulnerabilities and help prioritize remediation Collaborate with infra owners, developers, business teams to understand applications and infrastructure and provide practical, remediation-focused security advice Help create clear, actionable penetration testing reports including proof-of-concept, risk ratings, and remediation guidance Developing and testing custom exploits to demonstrate vulnerabilities and assess the potential impact on systems Conduct comprehensive cloud penetration tests targeting AWS, Azure, GCP to identify and exploit misconfigurations, insecure interfaces, and vulnerabilities in cloud services and applications Regularly review and enhance penetration testing methodologies and practices to adapt to evolving threats and technologies Participate in internal security knowledge-sharing sessions and team meetings to learn from senior testers and share discoveries What you’ll bring: Strong foundational understanding of information security principles Familiarity with tools such as: Nmap, Burp Suite, OWASP ZAP, Nikto (Web/App Testing) Nessus, OpenVAS, Kali Linux (Infrastructure Scanning), and Metasploit (for controlled exploit validation) Basic Knowledge of: OWASP Top 10 web application vulnerabilities Common infrastructure weaknesses (e.g., SMB, RDP, DNS, FTP, SMTP issues) Authentication and access control issues A deep interest in Cyber Security and a drive to learn about penetration testing skills through hands-on practice, research, and community engagement Comfort working in command-line environments (Linux shells, Windows CMD/PowerShell) for reconnaissance and exploitation. Strong analytical and problem-solving mindset, with the ability to break down complex problems and think creatively Eagerness to learn from real-world engagements and senior team members, with a growth mindset and a proactive approach to developing technical depth and practical experience Familiarity with secure communication protocols (e.g., HTTPS, SSH, VPNs) and how insecure configurations can be exploited Good verbal and written communication skills to clearly explain technical concepts and document findings Passion for cybersecurity, demonstrated through CTF participation, cybersecurity clubs, academic projects, personal labs, or platforms like Hack the Box, TryHackMe, or OverTheWire Good to have skills and abilities: Completion of relevant cybersecurity coursework or certifications Basic scripting in Python, Bash, or PowerShell for automating tasks or building internal tools Understanding of web application architecture (client-server model, HTTP protocol, APIs) Awareness of vulnerability disclosure platforms (e.g., CVE database) and responsible reporting practices Basic Knowledge of vulnerability management and scanning best practices such as CVE database and the CVS System used for scoring vulnerabilities Academic Qualifications: Bachelor’s degree in computer science/management of computer information/Cybersecurity 0-2 years of Penetration Testing / Red-Teaming / Offensive Security Must have Security Certifications: OSCP / CREST / GPEN / HTB-CPTS Security Certifications: CRTP/CARTP, CRTE, CRTO (I & II), OSEP, OSED, GRTP Cloud Certifications: AWS CLP, AWS Security Specialty Perks & Benefits: ZS offers a comprehensive total rewards package including health and well-being, financial planning, annual leave, personal growth and professional development. Our robust skills development programs, multiple career progression options and internal mobility paths and collaborative culture empowers you to thrive as an individual and global team member. We are committed to giving our employees a flexible and connected way of working. A flexible and connected ZS allows us to combine work from home and on-site presence at clients/ZS offices for the majority of our week. The magic of ZS culture and innovation thrives in both planned and spontaneous face-to-face connections. Travel: Travel is a requirement at ZS for client facing ZSers; business needs of your project and client are the priority. While some projects may be local, all client-facing ZSers should be prepared to travel as needed. Travel provides opportunities to strengthen client relationships, gain diverse experiences, and enhance professional growth by working in different environments and cultures. Considering applying? At ZS, we're building a diverse and inclusive company where people bring their passions to inspire life-changing impact and deliver better outcomes for all. We are most interested in finding the best candidate for the job and recognize the value that candidates with all backgrounds, including non-traditional ones, bring. If you are interested in joining us, we encourage you to apply even if you don't meet 100% of the requirements listed above. ZS is an equal opportunity employer and is committed to providing equal employment and advancement opportunities without regard to any class protected by applicable law. To Complete Your Application: Candidates must possess or be able to obtain work authorization for their intended country of employment.An on-line application, including a full set of transcripts (official or unofficial), is required to be considered. NO AGENCY CALLS, PLEASE. Find Out More At: www.zs.com

About Energy Exemplar In an era where the world is rapidly advancing towards a cleaner future through decarbonization, Energy Exemplar’s mission lies in ‘Empowering Transformative Energy Decisions’. Founded in 1999 in Adelaide, Australia, our award-winning software portfolio encompassing the modeling and simulation platform PLEXOS®, Aurora, and Adapt2, is trusted by innovative organizations across the globe. Through our technology and people, we strive to enable stakeholders from across the entire energy value chain to revolutionize the energy ecosystem and to collaboratively plan and execute for a sustainable energy future with unprecedented clarity, speed, and innovation. Our impact is global and is being recognized across the industry. Some of our recent accolades include: SaaS Company of the Year (2025) – Global Business Tech Awards. Environmental Impact Award (2025) – E+E Leaders Awards. IPPAI (Independent Power Producers Association of India) Power Awards (2025) - Winners Finalist: Platts Global Energy Awards (2024) – Grid Edge category Finalist: Reuters Global Energy Transition Awards (2024) – Technologies of Change Top 50 Marketing Team (2024) – Voted by the public at the ICON Awards. How We Work Energy Exemplar is growing fast around 30% year on year and, that growth is driven by how we work. We trust our team to deliver great results from wherever they work best, whether that’s at home, in the office, or on the move. We’re a global team that values ownership, integrity, and innovation. You’ll be supported to balance work and life in a way that works for you, and empowered to take initiative, solve problems, and make an impact, regardless of your background, location, or role. Our four core values, Customer Success, One Global Team, Integrity & Ownership, and Innovation Excellence aren’t just words. They show up in how we collaborate, how we solve, and how we grow together. About The Position Reporting to the Software Engineering Manager as a member of the Development team in India, the Software Engineer is responsible for delivering quality and performant software and design to handle the vast array of use cases that our customers have today. This role is responsible for Developing Software Solutions by learning information needs, discussing with managers, studying systems flow, data usage, finding problem areas and coming up with solutions & following the software development lifecycle. Work Type: Hybrid (3 days a week in office) Please note we are open to interviewing candidates from either Pune or Bangalore location as we have offices in both locations. Office Address: Energy Exemplar, WeWork, 12th Floor, 12A-106, Salarpuria Magnifica, Old Madras Road, Bengaluru, 560016 Office Address: 4th Floor, WeWork Amanora Crest, Amanora Park Town, Magarpatta, Hadapsar, Pune, Maharashtra 411028 We Are Looking For 9+ years of experience in product development field 2+ years of recent experience in building products on cloud Strong understanding of data structures, algorithms, and designing for performance Strong knowledge in OOPS with .Net, Entity Framework, C# and SQL Server or any RDBMS Hands-on experience with Microservices Architecture Hands-on experience in building products for Unix systems in addition to Windows Hands-on experience with CI/CD pipelines and experience with any of the following cloud services (AWS/Azure/GCP/Private cloud) Knowledge of asynchronous programming and WebAPI development is required Knowledge and awareness of cloud/ application security is a must (OWASP at the minimum) Extensive experience in mentoring junior engineers to success Strong logical, analytics and problem-solving skills Must be able to work effectively across team boundaries Strong oral and written communication skills Good to have experience with either Angular, Vue or React Candidate Requirements & Qualifications Graduate/Master's degree in Computer Science, Engineering, or a related discipline Strong logical, analytics and problem-solving skills Must be able to work effectively across team boundaries Attention to details Ability to work independently Energy Exemplar is proud to be an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all team members. We welcome applications from people of all backgrounds, experiences, identities, and abilities. Please let us know if you require accommodations at any stage of the recruitment process—we're here to support you in showcasing your full potential. Energy Exemplar respects your privacy and is committed to protecting the personal data you share during the recruitment process. This Candidate Privacy Notice explains how we collect, use, and protect your personal information when you apply for a role with us.

Greetings from Teknikoz Experience : 4-8 Years Location : Yangon, Myanmar (On-site) *Must have experience in Telecom Industry* Job Purpose: To lead QA activities across multiple CRs and projects, providing strategic direction, coordination, and hands-on test execution support to ensure the highest standards of delivery. Principal Accountabilities: •Define and implement test strategies, plans, and test case design for each delivery stream. •Act as both team lead and individual contributor—executing complex test cases and supporting defect analysis. •Experience managing or coordinating test environments and test data provisioning. •Coordinate test planning and execution across multiple teams (manual and automation). •Lead daily defect triage meetings and ensure proper RCA and closure. •Decision-making under pressure. •Conflict resolution and stakeholder management. •Ability to communicate test risks with business teams. •Track and report on test progress, quality metrics, and resource utilization. •Collaborate closely with business analysts, developers, and release managers to ensure test readiness and alignment. •Mentor junior team members and support knowledge sharing and onboarding. •Advocating the best testing practices across the delivery lifecycle. •Strong communication skills to align testing initiatives with business goals. •Estimating testing effort for new features/devs/enhancements. •Define and track quality KPIs (e.g., defect leakage rate, test coverage, cycle time) and continuously improve QA efficiency. •Working with customers and 3rd-party vendors. •Incident and defect management. •Test Delivery planning and milestone management. Qualifications: •Bachelor’s degree in computer science, Engineering, or related field. •10+ years of experience in software testing, including 3+ years in leadership capacity. •ISTQB Advanced Level, Certified Agile Tester, or similar •Proven ability to lead QA teams while also contributing as a hands-on tester. •Strong understanding of STLC, Agile, and Waterfall methodologies. •SQL for backend validation. •Advocate Shift-Left practices, drive early test coverage via TDD using tools like Cucumber or TestNG. •Knowledge of JUnit, or similar test frameworks. •Hands-on experience with Selenium/WebDriver. •Automation frameworks like TestNG, Cucumber, or Cypress •Awareness or exposure to performance testing tools like JMeter, LoadRunner •Basic understanding of security testing or vulnerability assessment (e.g., OWASP top 10) •Familiarity with API testing tools (e.g., Postman, REST-assured) and Git/Jenkins. •Good communication and documentation skills. •Experience with test management and defect tracking tools such as JIRA. •Understanding telecom, BSS testing environments is an advantage.

Are you a skilled cybersecurity professional with leadership experience in penetration testing? Join HackIT – a CERT-IN empaneled cybersecurity firm – as a Vulnerability Assessment and Penetration Testing (VAPT) Team Lead. What You'll Be Doing: Lead and manage a team of junior penetration testers Conduct Web, Mobile, API, and Network Security Testing (Manual + Automated) Perform SAST, DAST, and develop Proof-of-Concepts Guide clients with remediation plans and ensure project delivery within deadlines Communicate effectively with stakeholders and senior management Prepare high-quality technical reports What We’re Looking For: 3–5 years of experience in Application/Infrastructure/Network Pen Testing Prior experience as a Team Lead or Project Lead in a security testing role Strong knowledge of OWASP Top 10, NIST, MITRE ATT&CK Familiar with enterprise & open-source pen test tools Excellent problem-solving, leadership, and reporting skills Preferred Certifications: OSCP, CREST, GPEN, GXPN, Cloud Certifications, or equivalent Send your updated profiles to careers@hackit.co

This position is ON-SITE Working in the office 5 days / week. You'll be well placed in our dynamic and friendly Development Team. Situated in the prestigious Silver Utopia Building, Chakala, Andheri East, Mumbai – 400099, Maharashtra You will make significant contributions to the mobile payments industry by bringing engineering excellence in innovating new features and functions in customer centric applications. You will analyse product requirements, design implementations, and participate in integration testing. You will be part of a very innovative, dedicated, and high-performance team and need to match their level of excellence and thoroughness in delivering world-class banking applications. Requirements of the position The incumbent is expected to: Always consider Ziksu’s objectives first when undertaking all duties. Communicate effectively, model integrity and respect in all interactions. Operate within Ziksu’s framework, policies and procedures and ensure effective transparency and accountability in all activity. Collaborate with staff in other departments to achieve common goals and best practice. Facilitate business improvements as appropriate. Demonstrate analytical problem-solving skills, customer focus and alignment with Ziksu’s strategic objectives. Support organisational change and continuous improvement by actively contributing to achieve Ziksu’s vision, mission, and priorities. Comply with the requirements of Ziksu’s Code of Conduct and all relevant legislation including EEO, OSH and Records Management. Role specific responsibilities Design, develop, and maintain high-performance, secure backend applications using Java and Spring Boot . Build and manage RESTful APIs and microservices for fintech and payment systems , ensuring scalability, reliability, and compliance. Lead the design of system architecture and database schema for complex, data-driven applications. Continuously optimize code and infrastructure for performance, scalability, maintainability, and cost-efficiency. Collaborate cross-functionally with frontend, DevOps, QA, UI/UX, and product teams to ensure smooth integration and delivery. Oversee integration with third-party services (payment gateways, banks, KYC/AML APIs), including sandbox/live environment testing and compliance validation. Lead security planning , ensure adherence to industry security standards (OWASP, PCI-DSS) , and participate in code audits and threat modelling. Perform and oversee code reviews , ensuring best practices, code quality, maintainability, and knowledge sharing across the team. Take ownership of CI/CD pipeline setup and maintenance , ensuring fast, safe, and automated release cycles. Proactively monitor production systems , manage logs, and coordinate incident responses to minimize downtime and improve system observability. Mentor junior developers, delegate tasks, and assist in managing timelines, technical blockers, and quality deliverables. Document and maintain detailed technical specifications including system architecture, design decisions, API contracts , and technical how-to’s. Required Skills 7–10 years of strong experience with Java , Spring Boot , and REST API development . Proficiency with Oracle DB , MySQL , or PostgreSQL , including complex queries and database performance optimization. Deep understanding of backend architecture , design patterns , data structures , and algorithms . Strong hands-on experience with Docker , Jenkins , and modern CI/CD pipelines; Kubernetes experience is a plus. Experience in cloud-based deployments , ideally on Oracle Cloud or similar platforms (AWS, Azure, GCP). Expertise in Git , version control workflows, and collaboration tools. Proven experience in debugging , profiling , and performance tuning of backend applications. Knowledge of security best practices , encryption , authentication/authorization flows , and regulatory compliance in fintech. Practical understanding of Agile methodologies , including Scrum or Kanban. Strong written and verbal communication skills, with the ability to write technical documentation and communicate effectively with stakeholders. Bonus: Exposure to test automation tools (e.g., Selenium , JUnit , Postman ) and experience with DevSecOps practices. Qualifications & experience: Bachelor’s / master’s degree in engineering (Computer Science, Computer Engineering or related) Minimum 7–10 years of experience in Java programming You MUST ANSWER the QUESTIONS attached and PROVIDE YOUR RESUME. Please note: Preference will be given to availability for an IMMEDIATE START (within 7 Days). For any queries, please reach out to work@ziksu.com

Job Title: Consultant – VAPT Location: Navi Mumbai, Mumbai Experience Required: 2+ years Industry: Consulting Domain: Banking and Financial Services Work Mode: Work from Office (WFO) Joining: Immediate joiners preferred Key Responsibilities: Conduct end-to-end Vulnerability Assessment and Penetration Testing (VAPT) across web, mobile, network, and cloud infrastructure. Perform security assessments as per OWASP Top 10, SANS 25, and relevant standards. Identify, exploit, and document vulnerabilities with detailed remediation recommendations. Prepare technical and executive-level reports and present findings to internal teams and clients. Coordinate with client IT/security teams for fixes and re-validation. Maintain documentation and ensure adherence to security governance frameworks. Support audit and compliance requirements (e.g., RBI, ISO 27001, etc.). Work with Banking and Financial Services clients in a consulting environment. Desired Skills & Qualifications: Bachelor’s degree in Computer Science, Information Security, or related field. Relevant certifications preferred: CEH, OSCP (or working toward it) . Strong knowledge of security tools (Burp Suite, Nessus, Nmap, Metasploit, etc.). Understanding of BFS sector security needs and regulatory landscape. Good communication skills and client handling experience. Exposure to security governance and policy frameworks is a plus.

Life at MX We are driven by our moral imperative to advance mankind - and it all starts with our people, product and purpose. We always carry a deep sense of drive and passion with us. If you thrive in a challenging work environment, surrounded by incredible team members who will help you grow, MX is the right place for you. Come build with us and be part of an award-winning company that’s helping create meaningful and lasting change in the financial industry. Job Summary MX Technology, Inc. is a dynamic and rapidly growing financial company committed to helping to empower the world to be financially strong. Our team is passionate about driving innovation and achieving excellence in everything we do. We are seeking a highly motivated and versatile Offensive Application Security Engineer to join our team and contribute to our continued success. The Offensive Security Engineer will lead our Offensive Security program, focused on running penetration testing, red teams, and purple teams. The engineer will be responsible for performing various types of assessments, including but not limited to internet, intranet, wireless, web application penetration testing, mobile application penetration testing, in addition to threat modeling and source code reviews. Job Description: Perform penetration testing to identify and exploit security vulnerabilities affecting MX's assets Lead and execute complex third party Red Team engagements, simulating real-world attacker scenarios to uncover critical vulnerabilities across our network and applications Execute red and purple team exercises to highlight gaps in our security posture Understand the risk of identified vulnerabilities given likelihood and impact of exploitation. Clearly communicate findings to internal stakeholders including technical staff and senior leadership Partner with engineering and technical teams to develop remediation plans and track completion. Participate in knowledge sharing by mentoring junior team members and presenting findings, including opportunities to present at external conferences. Must Haves : Bachelor's Degree or higher in information security technology, Computer Science or related technical discipline Deep understanding of attack surfaces, including hands-on experience with various Cybersecurity technologies and standards (MITRE ATT&CK framework) A minimum of 5 years of work experience in penetration testing, scripting languages (Python, PowerShell, Java, Perl), and offensive tools Hands on experience with testing frameworks such as the PTES and OWASP Experience with responsible disclosure and publicly reported CVEs. Experience in using C2s and developing and deploying custom C2 and implants. Updated and familiarized with the latest exploits and security trends Applicable knowledge of Windows client/server, Unix/Linux systems, Mac OS, and cloud technologies such as AWS and Google Cloud Excellent writing and communication skills, attention to detail, and critical thinking skills Extensive experience conveying complex data in simple, concise language Work Environment In this role, a significant aspect of the job involves working in the office for a standard 40-hour workweek. We believe that the collaborative nature of our work and the face-to-face interactions among team members are essential for fostering a dynamic and productive work environment. Being present in the office enables seamless communication, facilitates quick decision-making, and encourages spontaneous collaboration that contributes to the overall success of our projects. We value the synergy that comes from having our team members physically together, allowing for immediate problem-solving, idea exchange, and team building. Compensation The expected earnings for this role could be comprised of a base salary and other forms of cash compensation, such as bonus or commissions as applicable. This pay range is just one component of MX's total rewards package. MX takes a number of factors into account when determining individual starting pay, including job and level they are hired into, location, skillset, peer compensation. Please note applicants applying for this position must have the legal right to work in India without the need for sponsorship. We are unable to provide work sponsorship for this role, and candidates should be able to verify their eligibility to work in the country independently. Proof of eligibility to work in India will be required as part of the hiring process. Work Environment In this role, a significant aspect of the job involves working in the office for a standard 40-hour workweek. We believe that the collaborative nature of our work and the face-to-face interactions among team members are essential for fostering a dynamic and productive work environment. Being present in the office enables seamless communication, facilitates quick decision-making, and encourages spontaneous collaboration that contributes to the overall success of our projects. We value the synergy that comes from having our team members physically together, allowing for immediate problem-solving, idea exchange, and team building. Compensation The expected earnings for this role could be comprised of a base salary and other forms of cash compensation, such as bonus or commissions as applicable. This pay range is just one component of MX’s total rewards package. MX takes a number of factors into account when determining individual starting pay, including job and level they are hired into, location, skillset, peer compensation. Please note applicants applying for this position must have the legal right to work in India without the need for sponsorship. We are unable to provide work sponsorship for this role, and candidates should be able to verify their eligibility to work in the country independently. Proof of eligibility to work in India will be required as part of the hiring process.

Perform Web Application Penetration Testing, Network VAPT, Mobile Application PT, Source code review, Wireless pen-testing. Write detailed reports on VAPT findings. Perform and present research on various attack vectors. Perform red teaming activities. Comprehend client needs and deliver security solutions tailored to intricate security testing and risk demands. Should be capable of handling escalations. Requirements - Should have a minimum of 2+ years or equivalent skills in the security domain. - Proficient in Web application penetration testing - Experience in Network VAPT, Active Directory penetration testing. - Skilled in manual testing and using Burp Suite Pro, WebInspect, Acunetix - Proficient in mobile application penetration testing (android and iOS) and thick client. - Experience in secure code review (manual and automated). - Certified in any of these certifications - OSCP, CRTP, CRTE, CRTO and any other relevant. - Good presentation and technical writing skills. Strong communication and good customer handling skills. - Good knowledge on OWASP security standards. Deep understanding of common security vulnerabilities. - Experience in red teaming activities is a plus. - Experience with any programming language is a plus.

Our technology services client is seeking multiple DevSecOps Security Engineer to join their team on a contract basis. These positions offer a strong potential for conversion to full-time employment upon completion of the initial contract period. Below are further details about the role: Role: DevSecOps Security Engineer Experience: 5- 7 Years Location: Mumbai, Pune, Hyderabad, Bangalore, Chennai, Kolkata Notice Period: Immediate- 15 Days Mandatory Skills: Devops Support, GitHub Actions, CI/CD Pipelines, Argocd , Snyk, multicloud (AWS/AZure/GCP) GIT, MS Tools, Docker, Kubernetes, Jfrog, SCA & SAST Job Description: A security expert who can write code as needed and knows the difference between Object vs Class vs Function programming. Strong passion and thorough understanding of what it takes to build and operate secure, reliable systems at scale. Strong passion and technical expertise to automate security functions via code. Strong technical expertise with Application, Cloud, Data, and Network Security best practices. Strong technical expertise with multi-cloud environments, including container/serverless and other microservice architectures. Strong technical expertise with older technology stacks, including mainframes and monolithic architectures. Strong technical expertise with SDLC, CI/CD tools, and Deployment Automation. Strong technical expertise with operating security for Windows Server and Linux Server systems. Strong technical expertise with configuration management, version control, and DevOps operational support. Strong experience with implementing security measures for both applications and data, with an understanding of the unique security requirements of data warehouse technologies such as Snowflake. Role Responsibilities Development & Enforcement Develop and enforce engineering security policies and standards. Develop and enforce data security policies and standards. Drive security awareness across the organization. Collaboration & Expertise Collaborate with Engineering and Business teams to develop secure engineering practices. Serve as the Subject Matter Expert for Application Security. Work with cross-functional teams to ensure security is considered throughout the software development lifecycle Analysis & Configuration Analyze, develop, and configure security solutions across multi-cloud, on-premises, and colocation environments, ensuring application security, integrity, confidentiality, and availability of data. Lead security testing, vulnerability analysis, and documentation. Operational Support Participate in operational on-call duties to support infrastructure across multiple regions and environments (cloud, on-premises, colocation). Develop incident response and recovery strategies. Qualifications Basic Qualifications 5+ years of experience in developing and deploying security technologies. A minimum of a Bachelor’s degree in Computer Science, Software Development, Software Engineering, or a related field, or equivalent alternative education, skills, and/or practical experience is required. Experience with modern Software Development Lifecycles and CI/CD practices Experience for the remediation of vulnerabilities sourced from Static Analysis (SAST), Open Source Scanning (SCA), Mobile Scanning (MAST) and API Scanning Proficiency in Public Clo\ud (AWS/Azure/GCP) & Network Security. Experience with Docker, Kubernetes, Security-as-Code, and Infrastructure-as-Code. Experience with one or more general-purpose programming/script languages including but not limited to: Java, C/C++, C#, Python, JavaScript, Shell Script, PowerShell. Strong experience with implementing and managing data protection measures and compliance with data protection regulations (e.g., GDPR, CCPA). Preferred Qualifications Strong technical expertise with Architecting Public Cloud solutions and processes. Strong technical expertise with Networking and Software-Defined Networking (SDN) principles. Strong technical expertise with developing and interpreting Network, Sequence, and Dataflow diagrams. Familiarity with OWASP Application Security Verification Standard Experience with direct, remote, and virtual teams. Understanding of at least one compliance framework (HIPAA, HITRUST, PCI, NIST, CSA). Strong technical expertise with Static Analysis, Open Source Scanning, Mobile Scanning, and API Scanning security solutions for data warehouses and big data platforms, particularly with technologies like GitHub Advanced Security, CodeQL, Checkmarx, and Snyk. Strong technical expertise in defining and implementing cyber resilience standards, policies, and programs for distributed cloud and network infrastructure, ensuring robust redundancy and system reliability. Education A minimum of a Bachelor’s degree in Computer Science, Software Development, Software Engineering, or a related field, or equivalent alternative education, skills, and/or practical experience is required. If you are interested, share the updated resume to madhuri.p@s3staff.com