Static Code analysis Static/dynamic testing of mobile applications Vulnerability Assessment Penetration Testing. SAST Penetration testing Vulnerability Assessment

Manual Penetration Testing using OWASP checklists, Penetration Testing, Security Configuration Review, Cloud Security Assessment, Cyber Security, Manual Penetration Testing using OWASP checklists, Penetration Testing, Security Configuration Review, Cloud Security Assessment, Cyber Security 4 to 6 years of experience conducting Application Security assessments Experienced in conducting Manual and Automated DAST for Web, API Thick client covering OWASP Top 10 Experienced in conducting Manual code review Experienced in Mobile VAPT (Both static and Dynamic) Knowledge of Infra VAPT or at least VA and configuration review Knowledge in Container / Docker security / Cloud Audit is a plus Certifications suck as CEH, CRTP, OSCP is preferred Good communication skills, ability to explain vulnerabilities to business users in simple terms Notice: Immediate to 15 days

Aqua, Vulnerability Assessment, Vulnerability Mitigation - Applicants should possess 7+ years of demonstrated experience in cybersecurity, network engineering, and/or infrastructure engineering 5 of the years must include hands on experience in one or many of the following areas - threat intelligence, server vulnerability management and container vulnerability management - 3 plus years experience administering cloud container vulnerability solutions like Aqua or Wix is required Candidates without this experience will not be considered - 3+ years working with container technologies and container vulnerabilities is required Candidates without this experience will not be considered - Experience with scanning solutions such as Rapid7, Qualys, or Tenable scanning is desired - Understanding of MITRE ATTCK and OWASP frameworks is desired - Understanding of malware and common attack types is desired

Penetration Testing, Manual Penetration Testing using OWASP checklists, Cloud Security Assessment, Security Configuration Review, Vulnerability Assessment, Vulnerability Mitigation, Cyber Security 4 to 6 years of experience conducting Application Security assessments Experienced in conducting Manual and Automated DAST for Web, API Thick client covering OWASP Top 10 Experienced in conducting Manual code review Experienced in Mobile VAPT (Both static and Dynamic) Knowledge of Infra VAPT or at least VA and configuration review Knowledge in Container / Docker security / Cloud Audit is a plus Certifications suck as CEH, CRTP, OSCP is preferred Good communication skills, ability to explain vulnerabilities to business users in simple terms

You are responsible for adhering to the defined operating procedures and guidelines in operating the application security services in the Managed Services model, which includes the following: o Understand and be compliant with the Service Level Agreements defined for the DevSecOps services; o Understand and deep knowledge of application security engineering principles, and helping clients development team and function to follow secure development practices which includes primarily monitoring and performing the security design review, architecture review, threat modeling, security testing, secure code review, secure build processes; o Well versed with the application deployment and configuration baselines, and understanding of how the application environment operates in a secure environment and how exceptions are handled during operations; o Facilitate use of technology-based tools or methodologies to continuously improve the monitoring, management and reliability of the service; o Perform manual and automated security assessment of the applications; o Involved in triaging and defect tracking process with the development team and helping the team to fix issues at the code level based on the priority of the tickets; o Be a liaison between the Application development and infrastructure team, and integrate the processes between infrastructure monitoring and operations processes with the secure development/testing and management processes; o Identifying, researching and analyzing application security events which may include emerging and existing persistent threats to the client's environment; and o Performing active monitoring and tracking of application related threat actors and tactics, techniques and procedures (TTPs), that could likely cause an impact to client organization

Need overall AppSec skills (SAST, DAST, Penetration testing) +Mobile app testing skills (Android, ioS). We should look for a candidate who has deep and diverse hands on exp in above skills. Also, The professional is expected to perform the application security activities - Static code assessment/ manual testing including mobile application testing for android and iOS apps.

Location Name: Pune Corporate Office - Mantri Job Purpose This position is open with Bajaj finserv ltd. Duties And Responsibilities Discover and Mitigate Cyber Risks and exploitable vulnerabilities on the internet facing apps/assets Conduct Regular Vulnerability Assessment and Penetration Testing of the applications Experience with latest technologies and security standards such as OWASP, CVSS, Mitre etc. Mobile App Reversing and pen testing as Android and iOS applications security standards Familiarity with malicious code identification and common hacker attack techniques Conduct regular Secure Code and Architecture Review, SAST and DAST Latest technology security – API, Microservices, RPA, IOT etc. Ethical Hacking and Red Teaming Activity (Addon preferred) Assess Third Party Partner vulnerabilities and security risk Remediations, Closures Tracking, Reporting and Management of all Cyber Risks Engage with technology Teams and partners and business units to resolve identified vulnerabilities within acceptable timelines Design and deliver actionable Information Security dashboards and scorecards Work with partners in carrying out comprehensive VAPT assessment Advanced understanding with working experience collecting and tracking threat intelligence Experience working with tracking, communicating, and prioritizing vulnerabilities and cyber threats to an enterprise-wide organization Required Qualifications And Experience Engineering / Computer Graduate with 3-5 years of Information / Cyber Security Experience Relevant Security Certifications like CEH, CPENT, PNPT, EJPT, EWPT, OSCP etc. preferred Prior experience of Security Testing, OWASP Top 10 and application security Prior experience of Penetration Testing Web Application, Mobile Applications and API Security testing Sound in latest application technologies and network attacks execution Good Written and Verbal Communication with Presentation Skills Good Team Player and sound in stakeholder management Threat Modelling, Cloud Security and WAF basics clarity DevOps / DevSecOps and Source Code security review experience is added boon Well versed with related tools and techniques of all the above Show more Show less

Why you will love this opportunity as Senior Software Engineer at Civica As a Senior Software Engineer ( Full Stack Developer), you will hold the exciting responsibility of developing, writing and maintaining testing code in alignment with the strategic roadmap set forth by the Product Management team. As an essential part of the Engineering Team, you will actively participate in technical discussions, engage in thorough design reviews, and take on challenging problem-solving endeavours. You will utilize both technical and interpersonal skills to support and mentor team members, promoting a culture of collaboration, ongoing improvement, and engineering excellence. Develop, write, troubleshoot, and support innovative applications utilizing .Net Core, C#, and Angular. Contribute innovative solutions to improve performance and cost efficiency in existing applications. Perform code reviews, coach fellow engineers, and champion Agile and modern development practices. Collaborate with stakeholders and teams, leading technical discussions and driving better outcomes. Help maintain CI/CD pipelines, suggest new tools and technologies, and stay updated on industry best practices. Preferred candidate profile What you will do to be successful in this role: Strong background in .Net development, including .Net Core, C#, and Angular. Minimum of 3 years in a relevant senior engineering role with proven expertise. Hands-on experience with cloud-based applications. Proven ability to develop secure and performant software solutions. Familiarity with databases like MS SQL and MongoDB. Advocacy for Agile methodologies and collaborative teamwork. Clear communication, problem-solving, and mentoring skills. Exposure to products for public sector clients. Experience in updating and modernizing legacy applications. We really do want you to bring your whole self to work. There is no such thing as the perfect candidate, so if you think you have what it takes, but don't necessarily meet every single point on the list, please still get in touch. We'd love to have a chat and see if you could be a great fit. Perks and benefits Why you'll love working with us We know that when our people are happy, they will work better and have greater work satisfaction. Here's what you can expect: We're all different - and we love this about us. We provide an inclusive, safe, and welcoming environment to all Civicans - there are heaps of opportunities to enable you to grow and be your best. Giving culture - we encourage you to "give back" with benefits such as our Days of Difference leave where you can volunteer for a charity of your choice. Flexible Work - Flexible work we have the technology and tools to support you to work from home and come into our offices now and then to catch up and socialise with colleagues. Apply for this job - Become part of something special Do you see yourself in this role? If so, then we would love to hear from you. We are an equal opportunity employer. We do not discriminate based on race, religion, colour, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status. In fact, we strongly believe that diversity of experience contributes to a broader collective perspective that will consistently lead to a better company and better outcomes. We are working hard to increase the diversity of our team wherever we can, and we actively encourage everyone to consider becoming a part of it.

Requirements 6–8 years of experience as a QA Engineer Expertise in automation testing tools (Selenium, PyTest) Experience with React front-end and Python back-end testing Hands-on experience with security penetration testing tools (e.g., OWASP ZAP, Burp Suite) Familiarity with Agile/Scrum methodologies Ability to document and troubleshoot errors Bachelor’s degree in Computer Science or related field Responsibilities Develop and execute automation scripts using tools like Selenium, WebDriverIO, Protractor, and PyTest Perform unit, integration, and E2E testing Create comprehensive test plans and test cases Track and document bugs, performing regression testing as needed Apply testing processes to meet client needs Stay updated with new testing tools and strategies Job Details Mode: Remote Interview process Screening R1 - Cultural fit Technical R1 - Live coding Technical R2 Final Round with Founder Show more Show less

Job Title: Security Test Engineer / Application Security Analyst Key Responsibilities Perform comprehensive vulnerability assessments and penetration testing, including tests for CSRF, XSS, SQL Injection, and other OWASP Top 10 vulnerabilities. Conduct Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST) on applications and APIs. Use security tools such as ZAP Proxy, Trivy, Burp Suite, Nikto, etc., to detect and validate vulnerabilities. Develop and execute test plans and test cases aligned with security frameworks and standards (e.g., OWASP, NIST). Collaborate with cross-functional teams to integrate security testing into CI/CD pipelines. Participate in bug triage and root cause analysis for identified vulnerabilities. Analyze application logs and system behavior to detect anomalies and trace potential threats. Review and evaluate security policies, propose improvements, and assist in ensuring policy enforcement. Maintain documentation related to security findings, test cases, and remediation guidance. Required Qualifications Bachelor’s degree in Computer Science, Cybersecurity, Information Technology, or related field. 5 + years of experience in security testing, vulnerability scanning, and application hardening. Strong understanding of web application security principles and secure coding practices. Hands-on experience with ZAP Proxy, Trivy, and/or similar tools. Familiarity with SAST/DAST tools and techniques. Knowledge of network and application-layer protocols and attacks. Solid understanding of bug triage processes and tracking systems like JIRA or Bugzilla. Strong analytical and problem-solving skills, with attention to detail. Skills: nikto,zap testing,sql injection,proxy,vulnerability,bug triage,penetration testing,vulnerability assessments,testing,analytical skills,root cause analysis,trivy,problem-solving skills,security frameworks,test cases,dynamic application security testing (dast),zap proxy,security policies,ci/cd pipelines,burp suite,static application security testing (sast) Show more Show less

Job Title: Security Test Engineer / Application Security Analyst Key Responsibilities Perform comprehensive vulnerability assessments and penetration testing, including tests for CSRF, XSS, SQL Injection, and other OWASP Top 10 vulnerabilities. Conduct Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST) on applications and APIs. Use security tools such as ZAP Proxy, Trivy, Burp Suite, Nikto, etc., to detect and validate vulnerabilities. Develop and execute test plans and test cases aligned with security frameworks and standards (e.g., OWASP, NIST). Collaborate with cross-functional teams to integrate security testing into CI/CD pipelines. Participate in bug triage and root cause analysis for identified vulnerabilities. Analyze application logs and system behavior to detect anomalies and trace potential threats. Review and evaluate security policies, propose improvements, and assist in ensuring policy enforcement. Maintain documentation related to security findings, test cases, and remediation guidance. Required Qualifications Bachelor’s degree in Computer Science, Cybersecurity, Information Technology, or related field. 5 + years of experience in security testing, vulnerability scanning, and application hardening. Strong understanding of web application security principles and secure coding practices. Hands-on experience with ZAP Proxy, Trivy, and/or similar tools. Familiarity with SAST/DAST tools and techniques. Knowledge of network and application-layer protocols and attacks. Solid understanding of bug triage processes and tracking systems like JIRA or Bugzilla. Strong analytical and problem-solving skills, with attention to detail. Skills: nikto,zap testing,sql injection,proxy,vulnerability,bug triage,penetration testing,vulnerability assessments,testing,analytical skills,root cause analysis,trivy,problem-solving skills,security frameworks,test cases,dynamic application security testing (dast),zap proxy,security policies,ci/cd pipelines,burp suite,static application security testing (sast) Show more Show less

🚀 We're Hiring: Cyber Security Trainer! 🔐 Are you passionate about Cyber Security and love sharing knowledge? We’re looking for a Cyber Security Trainer to conduct engaging seminars and hands-on training sessions for college students and corporate professionals. What You’ll Do: ✅ Conduct training on Cyber Security, Web Application Security, and VAPT ✅ Design hands-on labs and real-world practice sessions ✅ Develop and enhance course materials, assignments, and presentations ✅ Deliver webinars, workshops, and corporate training programs ✅ Assess trainee proficiency and provide constructive feedback ✅ Stay updated on the latest security threats, vulnerabilities, and best practices ✅ Travel to different locations (as needed) for training sessions What We’re Looking For: 🔹 Experience as a Cyber Security Trainer in areas like Network Security, Application Security (Web, Mobile, API), Cloud Security, and Security Operations 🔹 Hands-on expertise in Penetration Testing, OWASP Top 10, and Ethical Hacking 🔹 Strong communication, presentation, and organizational skills 🔹 Passion for teaching and mentoring security professionals 🔹 Relevant Cyber Security Certifications are a plus! Join us in shaping the next generation of cybersecurity experts! 🚀 📩 Interested? Apply now or share with someone who might be a great fit! #CyberSecurity #Hiring #Training #EthicalHacking #PenetrationTesting #OWASP #CloudSecurity #InfoSec Show more Show less

Role: Senior Security Specialist Location : Bangalore Working Model : Hybrid Final Round Interview : F2F Summary of essential job functions The overall responsibility of the team is to provide assurance to the management on the Information Security, Compliance and Risk Management of the organization globally. The candidate would be expected to lead security assessments of Products and Infrastructure globally. Education, Certification and Experience: Qualification Required: Bachelor/Master’s degree in Computer/ Information science, Software Engineering, Cybersecurity, or a related field Certification preferred: OSCP, OSWE, OSEP, ECSA|LPT, CPT, CEH Minimum experience: 08-10 years in Vulnerability Assessment and Penetration Testing- Thin & Thick Client, API , Infrastructure, Cloud, Mobile Competency Requirements: Performs a combination of duties in accordance with departmental guidelines: Hands-on experience in Vulnerability Assessment (VA) and Penetration Testing (PT) for Web, APIs, AI/ML models, Mobile , Network, and Infrastructure. Strong command of OWASP Top 10 with practical knowledge of attack vectors and mitigation strategies. Familiarity with industry standards and frameworks such as OSSTMM, OQASP, CESG, CREST, NIST, ISSAF, and PTES. Expertise in Secure Development Lifecycle (SDLC), including Threat Modeling, Secure Coding Practices, and Security Assessments. Proficient in both Static and Dynamic Application Security Testing (SAST, DAST, IAST), and Software Composition Analysis (SCA). Experience conducting secure code reviews and identifying logic flaws in code bases written in Java, .NET, C/C++, Python, etc. Knowledge of cryptographic protocols, secure communication, data security and key management. Hands-on with commercial and open-source tools: Burp Suite, OWASP ZAP, Acunetix, AppSpider,SQLMap, Nmap, Metasploit, Nessus, OpenVAS, Fortify, Checkmarx, Veracode, SonarQube, NexusIQ and Snyk. Proficient in assessing mobile applications (thick/hybrid clients) using tools like Dex2jar, ADB, Frida. Exposure to AuthN/AuthZ protocols such as OAuth, SAML, OIDC; ability to read, write, and interpret application logic. Familiarity with vulnerability standards: CVSS, CVE, CWE, CAPEC; and patch management lifecycle. Experience automating tasks via shell scripting and Python/Ruby/Php etc. Proficiency in secure code development and reviewing DAST/SAST reports across languages. Understanding security aspects in AWS, Azure, and GCP including IAM, VPC/VNet, S3/Blob storage, API gateway, Load Balancers, WAF, Containers (Docker), and Kubernetes. Experience in infrastructure/network penetration testing and exploitation techniques on Windows/Linux environments. Experience in mentoring, leading teams, and managing security assessments under tight deadlines. Manage third-party security assessments, including vendor risk evaluations, engagement oversight, and ensuring compliance with organizational security standards. Proven ability to provide technical oversight and drive engagement quality across security projects. Exposure to agile/scrum development methodologies and ability to work with cross-functional teams. Familiarity with security standards like PCI DSS, SOC, ISO 27001. Participation in bug bounty program and CTFs is a strong plus. Proactive learning approach, staying updated with evolving cybersecurity trends and technologies. Job Responsibilities: Plan, conduct, and close end-to-end Vulnerability Assessments and Penetration Tests for Web Applications, APIs, Mobile Apps, Thick Clients, Infrastructure, and Cloud environments. Perform both manual and automated security assessments to identify, validate, and prioritize vulnerabilities. Review application code in various programming languages and provide actionable remediation recommendations. Reproduce reported vulnerabilities with proof-of-concept (PoC) and assess associated risks. Evaluate new security tools and products for adoption and integration. Guide development teams on Secure Coding standards and OWASP-aligned practices. Lead and contribute to secure SDLC processes, threat modeling workshops, and risk reviews. Manage and triage security bugs from Bug Bounty programs, working closely with engineering teams to ensure timely resolution. Maintain and improve the security posture of applications across business units, aligning with best practices. Act as a security advisor on project teams, influencing architecture and design decisions. Drive security awareness initiatives and conduct training sessions for developers and QA teams. Update and maintain InfoSec policies and procedures in line with emerging threats, technologies, and compliance requirements; provide support to both internal and external auditors during security assessments and audits. Other Requirements: Strong ethics and understanding of ethics in business and information security. Proficiency in English (both written and oral communication skills). Ability to complete tasks and deliver professionally written reports for clients. Ability to present findings to technical staff and executives. Ability to interact with 247 internal stakeholders to review their requirements. Should be able to think “out of the box” and implement new attack vectors. Self-motivated, curious, knowledgeable pertaining to news and current events Show more Show less

Job Title: Penetration Tester Location: Remote Experience Required: 5 Years Employment Type: Full-Time Job Summary: We are seeking a highly skilled and experienced Senior Penetration Tester with 5 years of hands-on experience in offensive security. The ideal candidate will be responsible for conducting advanced security assessments, simulating real-world cyberattacks, and providing actionable recommendations to enhance the organization’s security posture. This role demands deep technical expertise, strong analytical skills, and the ability to communicate effectively with both technical and non-technical stakeholders. Key Responsibilities: Plan, execute, and document black-box, grey-box, and white-box penetration tests across various environments (web apps, networks, APIs, mobile, cloud, etc.) Conduct Red Team/Blue Team exercises and collaborate with threat hunters and SOC teams. Identify, exploit, and report vulnerabilities in systems, applications, and infrastructure. Develop and maintain custom exploitation tools, scripts, and payloads . Perform social engineering engagements , including phishing simulations and physical assessments (where applicable). Provide detailed, risk-based reporting , including technical findings, proof-of-concept exploits, and remediation guidance. Stay current with emerging threats, vulnerabilities, and tools in the cybersecurity domain. Mentor junior team members and contribute to the development of internal testing methodologies and frameworks. Participate in threat modeling, architecture reviews, and security design discussions . Required Skills and Qualifications: 5 years of professional experience in penetration testing, red teaming, or offensive security . Proficiency in tools such as Burp Suite, Metasploit, Nmap, Wireshark, Cobalt Strike, Nessus, etc. Deep understanding of OWASP Top 10 , MITRE ATT&CK , and NIST security frameworks . Strong knowledge of network protocols, web application architectures, cloud environments (AWS/Azure/GCP), and secure coding practices. Experience with manual testing techniques and not just automated scanners. Strong scripting and automation skills in Python, PowerShell, Bash, or Go . Experience with Active Directory exploitation , privilege escalation, and lateral movement techniques. Demonstrated ability to write clear, concise, and detailed technical reports. Strong verbal and written communication skills. Preferred Certifications (any of the following): Offensive Security Certified Professional (OSCP) Offensive Security Certified Expert (OSCE) Certified Red Team Professional (CRTP) GIAC Penetration Tester (GPEN) Certified Ethical Hacker (CEH) CREST Registered Tester or equivalent Show more Show less

Role In this key position, you will: • Design and develop high-performing Java and running on Linux. Ability to work on COBOL and mainframe (z/OS) technologies is a plus. • Participate in team prioritization discussions with product/business stakeholders. • Automate build, operation, and run aspects of software. • Ensure scalability, security, and reliability of applications on Linux-based and mainframe-based infrastructures. • Translate complex technical solutions into business impacts for non-technical audiences. • Lead mainframe modernization efforts, bridging legacy COBOL, JCL, DB2 systems with Linux and Java applications. • Perform demos/acceptance discussions in interaction with product owners. • Conduct design reviews, code reviews, and uphold coding standards. • Work closely with DevOps to automate deployments, and with BizOps to troubleshoot and resolve application, performance, and reliability issues. • Stay up to date with emerging technologies. All About You The ideal candidate for this position should possess: • 5+ years of software development experience in Java/Linux with strong shell scripting and Linux command line skills. Expereince working on Mainframe technologies is a plus. • 2+ years of experience with file transfer applications like Connect Direct, and file transfer protocols like SFTP, FTPS, etc.. • 2+ years of experience writing, optimizing, and automating tasks using Linux shell scripting. • Hands-on experience with IBM mainframe technologies, including COBOL, JCL, DB2, VSAM, CICS, and z/OS. • Expert in SQL queries and relational databases (DB2, Oracle, PostgreSQL) • Familiar with secure coding standards (e.g., OWASP, CWE, SEI CERT) and vulnerability management. • Awareness of security standards and RFC’s such as X.509 Certificates, SSH Keys, PGP encryption. • Has skills to orchestrate release workflows and pipelines and apply standardized pipelines via APIs to achieve CI and CD objectives using industry standard tools (e.g., Jenkins, XL Release, others). • Understands how to build robust tests to minimize defect leakage by performing regression, performance, deployment verification, and release testing. • Good knowledge of Scaled Agile Framework (SAFe). Show more Show less

We're Hiring! Our Client, one of the leading global financial services firms providing a wide range of investment banking, securities, investment management and wealth management services. The ideal candidate will be familiar with the full software design life cycle. Penetration Tester: Years of Experience : 2 To 9 years Location - Bangalore Joining : Only immediate joiner to Serving Notice Direct Responsibilities To perform Penetration testing (Gray Box and/or Black Box), for Web applications, Thick Client, API, and mobile applications. Understand and deep knowledge of application security engineering principles to follow secure development practices which includes secure build processes, secure code review, security testing. Understanding of the security tools in DevOps Processes Knowledge of one or more scripting languages for automation Collaborate with the developers to help them understand the vulnerabilities reported in application . Technical & Behavioral Competencies: Clear understanding of OWASP Top 10 - application security risks Tools/OS: Burp Suite, OWASP ZAP, Kali Linux Manual Security Testing & Analysis, Security Test Designing Excellent Interpersonal and presentation skills Strong in verbal and written communication Good analytical skills Strong Time Management Must be flexible, independent, self-motivated. Team Player Interested professionals kindly forward your updated CV to below mentioned email id Thanks and Regards, Sarulatha L Senior Executive - Talent Acquisition Teamware Solutions a division of Quantum Leap Consulting Pvt Ltd. Chennai E: sarulatha.l@twsol.com Show more Show less

Themesoft is seeking full-time Java Web Application Developers for one of our clients. Experience: 6-10 years of experience is mandatory. Location: Chennai (Hybrid) Position: Senior Java Developer Type: Full-Time Notice Period: Maximum 45 days of Notice period 🛠 Key Responsibilities: Apply secure coding practices to legacy codebases built with JSP and traditional Java frameworks, with emphasis on mitigating XSS and related vulnerabilities. Upgrade outdated libraries and dependencies (e.g., commons-fileupload, springframework) to address known security issues. Work collaboratively in a Git-based environment , contributing to code reviews and adhering to established workflows.0 ✅ Requirements: 5+ years of hands-on experience in Java web application development Strong proficiency in JSP , Servlets , and legacy Java web frameworks Proven experience managing and upgrading dependencies using Maven or Gradle Experience using Eclipse IDE for Java development Solid understanding of secure coding principles and familiarity with the OWASP Top 10 Comfortable with Git version control, including branching strategies, pull requests, and code reviews Strong communication skills with the ability to work both independently and in distributed teams If you are interested, share updated resume with mythili@themesoft.com #SeniorJavaDeveloper #JavaJobs #ChennaiJobs #HybridJobs #FullTimeJob #JavaDevelopment #SecureCoding #OWASPTop10 #LegacyCode #Maven #Gradle #EclipseIDE #GitWorkflow #JavaCareers #HiringNow #TechJobsIndia #SoftwareEngineering #BackendDeveloper #JavaExperts #ExperiencedProfessionals Show more Show less

The Security Operation Centre (SOC) Information Security Analyst are the first level responsible for ensuring the protection of digital assets from unauthorized access, identify security incidents and report to customers for both online and on-premises. The position monitors and responds to security events from managed customer security systems as part of a team on a rotating 24 x 7 x 365 basis. They are alert and aggressive to filter out suspicious activity and mitigate risks before any incident occur. Your background should include exposure to security technologies including firewalls, IPS/IDS, logging, monitoring and vulnerability management. You should understand network security practices. Excellent customer service while solving problems should be a top priority for you. Requirements Must-haves: 2-3 Year Experience as SOC Analyst – (Experience in SIEM Tool ELK & Wazuh preferable) Process and Procedure adherence General network knowledge and TCP/IP Troubleshooting Ability to trace down an endpoint on the network, based on ticket information Familiarity with system log information and what it means Understanding of common network services (web, mail, DNS, authentication) Knowledge of host-based firewalls, Anti-Malware, HIDS Knowledge of creating and modifying the dashboards. Understanding of common network device functions (firewall, IPS/IDS, NAC) General Desktop OS and Server OS knowledge TCP/IP, Internet Routing, UNIX / LINUX & Windows Deep Knowledge in SIEM, Ticketing tool, EDR, Vulnerability Management, MimeCast, DMARC tool. Excellent written and verbal communication skills. Good to have: · Good to have industry certifications on any SIEM Platform, CEH, C|SA, CompTIA Security+ & Others Main Responsibilities Tier 1 SOC analysts are incident responders, remediating serious attacks escalated from junior analyst, assessing the scope of the attack, and affected systems, and collecting data for further analysis. Work proactively to seek out weaknesses and stealthy attackers, review vulnerability assessments(CVEs) on monitored assets. Focus more on doing deep dives into datasets to understand what's happening during and after attacks. Leading efforts to counter SLA breaches and anticipating the likelihood of future security alerts,incidents. Monitor security events from the various SOC entry channels (SIEM, Tickets, Email and Phone),based on the security event severity and suspicious activities, escalate to managed service support teams, tier 2 information security specialists, and/or customer as appropriate to perform further investigation and resolution. Works as a Team lead for the SOC Analysts helping them to ensure that corporate data and technology platform components are safeguarded from known threats. Analyse the Events & incidents and identify the root cause. Assist in keeping the SIEM platform up to date and contribute to security strategies as an when newthreats emerge. Staying up to date with emerging security threats including applicable regulatory security requirements. Bring enhancements to SOC security process, procedures, and policies. · Document and maintain customer build documents, security procedures and processes. Document incidents to contribute to incident response and disaster recovery plans. Review critical incident reports and scheduled weekly & monthly reports and make sure they are technically and grammatically accurate. Keep updated with new threats, vulnerabilities, create/contribute to use cases, threat hunting etc. Keep updated with the likes of OWASP Top 10 vulnerabilities, Bleeping Computer articles etc., for acquiring the knowledge over current threats in security perspective. Other responsibilities and additional duties as assigned by the security management team or service delivery manager. Skills: Excellent event or log analytical skills Proven experience as IT Security Monitoring or similar role Exceptional organizing and time-management skills Very good communication abilities ELK, Wazuh, Splunk, ArcSight SIEM management skills Reporting Job Types: Full-time, Permanent Pay: Up to ₹70,000.00 per month Benefits: Internet reimbursement Schedule: Day shift Supplemental Pay: Performance bonus Application Question(s): Do you have any experience in SIEM Tools? Experience: minimum: 2 years (Required) Language: English (Required) Location: Kochi, Kerala (Required) Work Location: In person

Company: Ajmera Infotech Private Limited (AIPL) Location: Hyderabad (On-site) Experience: 3 – 5 years Position Type: Full-time, Permanent Shape Mobile Experiences That Save Lives Ajmera Infotech (AIPL) is home to 120+ engineers powering planet-scale systems for global innovators. We’re expanding our mobile team with iOS Developers who will contribute to FDA-compliant, SwiftUI-first apps for a billion-dollar health-tech platform (client name confidential). Your work will run on iPhones and iPads used daily by clinicians and patients worldwide—software that simply cannot fail. What Makes This Role Exciting Greenfield + Legacy modernization – build new SwiftUI features and support migration of existing UIKit code to clean architecture. Deep integration – work with BLE peripherals, secure data sync, offline workflows, Core Bluetooth, HealthKit, and biometrics. Hands-on impact – contribute to architecture decisions, testing strategies, CI/CD pipelines, and performance enhancements. Global collaboration – interact with US & EU engineers for reviews, coding standards, and DevOps practices. Compliance exposure – learn to build in alignment with FDA, HIPAA, and 21 CFR Part 11 regulations. Requirements Key Responsibilities Build and maintain scalable iOS apps using Swift (majority SwiftUI). Assist in migrating UIKit components to SwiftUI using MVVM / Clean Architecture principles. Integrate REST APIs, gRPC, and BLE devices into real-world use cases. Optimize app performance, memory usage, accessibility, and security (OWASP MASVS compliance). Write unit, UI, and integration tests; contribute to CI/CD pipelines (GitHub Actions / Azure DevOps). Participate in code reviews and uphold coding standards. Collaborate with product, design, backend, and QA teams to deliver sprint goals and regulatory artifacts. Contribute to mobile build/release processes and post-release issue monitoring. Must-Have Skills 3–5 years of iOS development experience with 1–2 years of hands-on SwiftUI work. Strong Swift and Combine fundamentals. Experience implementing MVVM, working with Core Bluetooth, URL Session/gRPC, and background processing. Proficiency with XCTest, XCUITest, and code quality tools like SwiftLint or Sonar. Exposure to App Store submission, TestFlight, and crash analytics tools (Crashlytics, Sentry). Solid understanding of Git and Agile-Scrum workflows. Nice-to-Have Experience in regulated domains such as medical, healthcare, or finance. Familiarity with cross-platform tools like Flutter or React Native. Understanding of GraphQL, SPM, or Kotlin Multiplatform (KMM). Exposure to Azure DevOps or GitHub Actions for mobile CI/CD. Benefits Benefits Medical insurance for you and your family. Competitive salary with performance-based increments. Flexible work hours and paid time off. High-end development equipment and device lab access. Sponsored training, certifications, and tech events. Apply Now Send your résumé or GitHub profile to jobs@ajmerainfotech.com with the subject: “iOS Developer II | Hyderabad” Show more Show less

About Marvell Marvell’s semiconductor solutions are the essential building blocks of the data infrastructure that connects our world. Across enterprise, cloud and AI, automotive, and carrier architectures, our innovative technology is enabling new possibilities. At Marvell, you can affect the arc of individual lives, lift the trajectory of entire industries, and fuel the transformative potential of tomorrow. For those looking to make their mark on purposeful and enduring innovation, above and beyond fleeting trends, Marvell is a place to thrive, learn, and lead. Your Team, Your Impact At Marvell, we are looking for a manager for Vulnerability Management, you will be responsible for developing and implementing strategies to enhance and mature the enterprise vulnerability management program. The role ensures the identification, assessment, and remediation of security vulnerabilities across the enterprise. What You Can Expect Vulnerability Management Program Development – design and implement a comprehensive vulnerability management program. Oversee vulnerability scanning tools to identify security vulnerabilities in enterprise systems, networks, and applications. Own and develop policies, procedures, and best practices for vulnerability scanning, assessment, and remediation. Perform risk-based prioritization of identified vulnerabilities. Collaborate with security analysts to conduct detailed assessments of critical vulnerabilities and develop POAM Work with cross-functional teams to develop remediation plans and timelines. Ensure timely patching or mitigation of vulnerabilities. Partner with IT and business teams to establish patching cadence, work with the change manager, and bring an automated patching process Develop and implement prioritized vulnerability remediation plans and work collaboratively with business. Track and report on remediation progress to stakeholders and leadership. Provide support for incident response and new systems onboarding processes in the application/system/infrastructure vulnerability security domain. Stay updated on emerging threats and vulnerabilities (emerging threats, zero days, latest attacks related to exploitation of vuln) through threat intelligence sources. Integrate threat intelligence into the vulnerability management process to address high-risk areas proactively. Build executive and business information security officer dashboards for the organization Define metrics and reporting to track program effectiveness and improvement. Develop and track key performance indicators (KPIs) for the vulnerability management program. Lead and manage vulnerability management projects, such as implementing new tools or processes. Lead a team of security engineers, providing mentorship and performance management in improving and automating processes wherever possible. Ensure compliance with security frameworks (e.g., ISO 27001, NIST CSF, TISAX, NIST 800-171, and SOX). Prepare for and support internal and external audits related to vulnerability management. What We're Looking For 10+ years of experience in Cybersecurity, vulnerability management, and security operations Bachelor’s Degree in Computer Science, Information Systems, Cybersecurity, or a related field Demonstrated background in deploying, owning, and configuring enterprise-level security tools/technology Experience scaling an enterprise vulnerability program across multiple environments, driving owner accountability and prioritization Hands-on experience and knowledge of vulnerability management tools such as Qualys, Rapid7, Tenable, and orchestration via SOAR or other platforms to automate vulnerability management program. In-depth knowledge across core domains – Vulnerability Management, External Attack Surface Management, Container Scanning, and Security Configuration Management Well-versed in penetration testing, vulnerability scanning, and red teaming methodologies and frameworks such as OWASP Top 10 and CWE 25. Demonstrated knowledge of networking and systems, and current vulnerability and threat trends. Strong understanding of network protocols, operating systems, and security technologies. Experience improving vulnerability prioritization models Excellent communication, collaboration, and interpersonal skills Cyber certifications (e.g., CISM, CISSP) or equivalent Additional Compensation And Benefit Elements With competitive compensation and great benefits, you will enjoy our workstyle within an environment of shared collaboration, transparency, and inclusivity. We’re dedicated to giving our people the tools and resources they need to succeed in doing work that matters, and to grow and develop with us. For additional information on what it’s like to work at Marvell, visit our Careers page. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability or protected veteran status. Show more Show less

Noida 2+ Years As per the Company Standards We are looking for a detail-oriented and analytical Software Test Engineer to join our dynamic team. You will be responsible for ensuring our software is robust, reliable, and meets the highest standards before it reaches our users. This role requires a passion for quality, a knack for breaking things, and a commitment to continuous improvement in a fast-paced, agile environment. Job Responsibilities Test Planning & Strategy: Design and develop comprehensive test plans and test cases based on product requirements and technical specifications. Manual & Automated Testing: Execute manual and automated tests across various platforms (web, mobile) to identify, document, and track defects from discovery to resolution using tools like Jira. Automation Development: Develop, maintain, and enhance automated test scripts and frameworks using tools like Selenium, Cypress, or Playwright to improve testing efficiency and coverage. Performance & Load Testing: Plan andexecute non-functional tests to ensure system performance, stability, andscalability under load. Security Testing: Perform baseline securitytesting to identify common vulnerabilities (such as OWASP Top 10) and work withthe development team to ensure remediation. Reporting & Analysis: Create detailed and understandable bug reports and test summary reports to communicate testing progress and product quality to stakeholders. Required Skills 2+ years of hands-on experience in software quality assurance and testing. Strong understanding of STLC, SDLC, and various testing methodologies (e.g., Agile, Scrum). Proven experience in writing clear, concise, and comprehensive test plans and test cases. Hands-on experience with automated testing tools such as Selenium , Cypress , or Playwright . Solid knowledge of at least one programming/scripting language, preferably Python or Java . Knowledge of common security vulnerabilities (e.g., OWASP Top 10) and basic security testing principles. Experience with API testing tools like Postman or Rest-Assured . Familiarity with bug tracking and project management tools like Jira or Azure DevOps . Excellent problem-solving skills and a keen eye for detail. Strong verbal and written communication skills ; able to articulate complex issues to both technical and non-technical team members. Nice-to-have Experience with performance and load testing tools such as JMeter or LoadRunner . Knowledge of CI/CD pipelines and experience integrating automated tests using tools like Jenkins or GitHub Actions . Familiarity with testing on cloud platforms ( AWS , Azure , or GCP ). Exposure to security testing principles and tools. Understanding of database concepts and experience with SQL .

Any certifications CEH(Mandatory), OSCP, CCSP Hands-on knowledge of Security testing methodologies like OWASP Top 10, SANS 25 etc., Ability to perform automated and manual hands-on penetration security testing e.g. DAST, SAST and SCA, identifying security risks within applications, cloud infrastructure, security controls and Network systems. Experience with penetration testing tools (e.g. Burp) Extensive knowledge of attack payloads for discovering security vulnerabilities Plan, execute, and report on all testing activities and outcomes Create findings reports and communicate to stakeholders Must possess at least 5 years of experience in delivering VAPT in Web(Thin and Thick Client), Mobile and APIs Should have good and effective communication skills in English. (Oral and written) The successful candidate must be highly motivated, fast learner, flexible, willing to assume responsibility and deliver quality work on time Constantly identify opportunities for enhancing productivity using automation and process improvements. Exposure to scripting languages(e.g. Shell) Knowledge on DevSecOps Show more Show less

About Apply Digital Apply Digital is a global experience transformation partner. We drive AI-powered change and measurable impact across complex, multi-brand ecosystems. Leveraging expertise that spans across the customer experience lifecycle from strategy, design to engineering and beyond, we enable our clients to modernize their organizations and maximize value for their business and customers. Our 750+ team members have helped transform global companies like Kraft Heinz, NFL, Moderna, Lululemon, Dropbox, Atlassian, A+E Networks, and The Very Group. Apply Digital was founded in 2016 in Vancouver, Canada. In the past nine years, we have grown to ten cities across North America, South America, the UK, Europe, and India. At Apply Digital, we believe in the “ One Team ” approach, where we operate within a ‘pod’ structure. Each pod brings together senior leadership, subject matter experts, and cross-functional skill sets, all working within a common tech and delivery framework. This structure is underpinned by well-oiled scrum and sprint cadences, keeping teams in step to release often and retrospectives to ensure we progress toward the desired outcomes. Wherever we work in the world, we envision Apply Digital as a safe, empowered, respectful and fun community for people, every single day. Together, we work to embody our SHAPE (smart, humble, active, positive, and excellent) values and make Apply Digital a space for our team to connect, grow, and support each other to make a difference. Visit our Careers page to learn how we can unlock your potential. LOCATION: Apply Digital is a hybrid friendly organization with remote options available if needed. The preferred candidate should be based in (or within a location commutable to) the Delhi/NCR region of India , working in hours that have an overlap with the Eastern Standard Timezone (EST). About The Client In your initial role, you will support Kraft Heinz, a global, multi-billion-dollar leader in consumer packaged foods and a valued client of ours for the past three years. Apply Digital has a bold and comprehensive mandate to drive Kraft Heinz’s digital transformation . Through implementable strategies, cutting-edge technology, and data-driven innovation we aim to enhance consumer engagement and maximize business value for Kraft Heinz. Our composable architecture, modern engineering practices, and deep expertise in AI, cloud computing, and customer data solutions have enabled game-changing digital experiences. Our cross-functional team has delivered significant milestones, including the launch of the What's Cooking App, the re-building of 120+ brand sites in over 20 languages, and most recently, the implementation of a robust Customer Data Platform (CDP) designed to drive media effectiveness. Our work has also been recognized internationally and has received multiple awards . While your work will start with supporting Kraft Heinz, you will also have future opportunities to collaborate with the global team on other international brands. THE ROLE: Apply Digital is seeking an Intermediate Front-end Software Engineer . The Intermediate Software Engineer role is an integral member of our engineering team, focused on providing robust technical solutions, strategic problem solving, and taking on increased leadership and mentorship opportunities. The individual in this role navigates complex learning objectives with minimal guidance, critically evaluates project technologies, and takes lead on medium-scale software projects. This role requires excellent communication skills, comprehensive technical documentation, and a strong commitment to professionalism and ethical conduct. The ideal candidate for this role has solid experience with Typescript and NextJs as well as content management systems such as Contentful. Strong English language proficiency and experience working with remote teams across North America and Latin America are required, as this role requires clear communication and coordination across distributed teams, including our clients. WHAT YOU’LL DO: Design and implement high-quality, test-driven frontend code for various client projects using TypeScript, Next.js and React. Optimize applications for Core Web Vitals (LCP, CLS, FID) to ensure high performance and superior user experience. Collaborate with designers and UX teams to implement seamless, accessible, and visually appealing interfaces. Implement components accurately based on highly specified figma designs or wireframes Define and maintain scalable component architecture using Storybook, and Tailwind CSS, or similar libraries. Understand and implement client-side state management solutions, React Query in particular. Work closely with backend teams to optimize REST API integrations, ensuring efficient data fetching and caching strategies. Create and maintain documentation, implement and follow best practices for development workflow. Collaborate effectively with team members to meet project deadlines. Contribute innovative ideas to ensure we deliver the best solutions for our clients. Stay updated on technology trends and continually enhance your skill set. WHAT WE’RE LOOKING FOR: Strong proficiency in English (written and verbal communication) is required. Experience working with remote teams in North America and LATAM, ensuring smooth collaboration across time zones. Solid Experience in TypeScript, with experience in modern Next.js (14+) and React (18+). Solid experience with modern CSS methodologies, specifically Tailwind CSS. Experience with modular front-end architectures, component-driven development, and design systems. Solid understanding of API consumption patterns, including REST, GraphQL and WebSockets. Experience with performance optimization techniques, including code-splitting, lazy loading, image optimization, and CDN strategies. Familiarity with headless CMS platforms, specifically Contentful. Some knowledge of front-end security best practices, including CSP, OWASP Top 10, and secure authentication/authorization mechanisms (OAuth, JWT). Ability to communicate effectively with technical and non-technical stakeholders. You should feel comfortable explaining technical concepts in simple terms. Experience working in fast-paced, Agile environments, balancing priorities across multiple projects. NICE TO HAVES: Experience with headless ecommerce platforms such as Commercetools. Understanding of containerization technologies for development environments. Understanding of Google Cloud Run as a web application run time environment. Back-end engineering experience, notably in NestJs. Experience with GCP and terraform. Experience with Edge computing and serverless deployments (Cloudflare Workers, Vercel). Experience with progressive web applications (PWAs) and service workers. Understanding of internationalization (i18n) and localization strategies. Familiarity with implementing A/B testing and personalization tools (Ninetailed, Segment). Familiarity with a11y and WCAG principles. Experience with CI/CD pipelines for front-end deployments (GitHub Actions preferred). #Promoted LIFE AT APPLY DIGITAL At Apply Digital, people are at the core of everything we do . We value your time, safety, and health, and strive to build a work community that can help you thrive and grow. Here are a few benefits we offer to support you: Location: Apply Digital is a hybrid friendly organization with remote options available if needed. The preferred candidate should be based in (or within a location commutable to) Delhi/NCR, with the ability to overlap with the US/NA times zones when required. Comprehensive Benefits: benefit from private healthcare coverage, contributions to your Provident fund, and a gratuity bonus after five years of service. Vacation policy: work-life balance is key to our team’s success, so we offer flexible personal time offer (PTO); allowing ample time away from work to promote overall well-being. Great projects: broaden your skills on a range of engaging projects with international brands that have a global impact. An inclusive and safe environment: we’re truly committed to building a culture where you are celebrated and everyone feels welcome and safe. Learning opportunities: we offer generous training budgets, including partner tech certifications, custom learning plans, workshops, mentorship, and peer support. Apply Digital is committed to building a culture where differences are celebrated, and everyone feels welcome. That’s why we value equal opportunity and nurture an inclusive workplace where our individual differences are recognized and valued. For more information, visit our website’s Diversity, Equity, and Inclusion (DEI) page. If you have special needs or accommodations at this stage of the recruitment process, please inform us as soon as possible by emailing us at careers@applydigital.com . Show more Show less

Cialfo is a leading platform connecting students, higher education institutions, and counselors through technology-driven solutions. Launched in 2017 with a mission to make education accessible to 100 million students, Cialfo provides a range of mobile and web solutions to students, K-12 institutions, and higher education institutions. We’re one of the fastest-growing tech startups in the region, consistently charting new heights! About This Role We are looking for a Quality Engineer to help our product team improve the quality of the software we develop. You will collaborate with the product team to understand how product features are meant to work and develop tests to validate and invalidate the features in development. You will participate in the product development process by maintaining and running test scenarios according to the feature being developed. If you are passionate about quality, we’d like to meet you. What You Will Be Doing Review and analyze the Cialfo platform and write test cases and test scripts to test the system. Review requirements, specifications, and technical design documents to provide timely and meaningful feedback. Create detailed, comprehensive, and well-structured test plans and test cases. Perform functional and non-functional testing as needed Troubleshoot and perform root cause analysis of the identified bugs/issues with short-term and long-term solutions. Identify, record, thoroughly document, and track bugs. Communicate efficiently with peers, Engineering, Design, and Product Managers regarding requirements and product issues. About You Qualifications 2+ years of professional experience as SQE in a manual capacity and minimum 1 year in automation testing is a mandate. Bachelor’s or Master’s in Computer Science, Software Engineering, or equivalent. Experience 2+ years of professional experience in non-functional areas: performance. Familiarity with tools like JMeter, and OWASP/ZAP will be considered a plus. Knowledge and experience of Test process in Agile. Knowledge and experience in using Test management and defect management tools i.e. TestRail, ALM, HPQC, Zephyr, JIRA with AIO, etc. Knowledge and experience in API testing using Postman. Sound knowledge of Software Development Life Cycle (SDLC) with experience in working with fast-paced production development teams. Ability to comprehend complex system architecture, and create appropriate test solutions. Applying appropriate test measurements and KPIs in the product/project. Skills & Qualities Good planning and organization skills. Excellent oral and written communication skills in English. Show more Show less

About the role As a Senior Cyber Security Partner; you will transform the security maturity of key product areas and teams. You will be the face of security group for them. Everything you do is in the context of the product; roadmap; its risk acceptance level; the technology stack; and its architecture. You build a comprehensive understanding of the threat landscape and its potential risks to the business. Through effective partnership; you engage the leadership to make well-informed decisions about security and privacy. You will be responsible for Following our Business Code of Conduct and always acting with integrity and due diligence and have these specific risk responsibilities: • Provide product and engineering teams with direction and guidance on all security matters. There is a whole security group to back you up; so it is not as scary as it sounds. • Engage engineering leadership on security roadmap and oversee security posture of what they build. • Co-own the security roadmap; discuss; prioritise; and co-develop plans for remediation for the product areas. • Empower security champions to succeed and creating a strong feedback loop for improvements. • Represent security in all product and architecture meet-ups. Be part of critical decisions about security. • Oversee product security activities; from the early development of security requirements; architecture reviews; and threat modelling; to strengthening application security; mitigating supply-chain risks; securing secrets; pipelines; reviewing vulnerabilities; and infrastructure security. • Perform security architecture reviews of third-party services. • Identify acceptable risk levels and assist with action plan; policy; and procedural changes for risk mitigation. • Adopt a risk-based approach and guide management in identifying business risks and potential impact to Tesco. Continuously seek both tactical and strategic solutions to enhance security. • As the security expert for the product area; engage across the security group to strengthen controls across identification; protection; detection; response; and recovery. • Oversee assurance activities like security testing; purple testing; assurance; auditing. • Reduce security fatigue for engineering and provide faster feedback within existing developer workflows; not adding another tool for them to check. • Empower the teams you work with; but also challenge the status-quo. • As a senior member of the team; engage across the security group on new ideas and initiatives. • Contribute to strengthen organisation standards and policies; develop cookbooks; secure patterns; take part in security research and tool evaluations. • You are committed to continuous improvement; seizing opportunities; and inspire change for the team. • Mentor others in the team and take part in enhancing their skills and career development. You will need To excel in this position, we expect you to have the following: • Possess experience across multiple sectors and have undertaken diverse roles in engineering and security. Demonstratable accomplishments of collaborating with leadership and management on security programmes and initiatives. • Good knowledge of various security domains, and solid experience in architecture practices and design patterns – the technology might have changed but most of the security challenges have not. • Experience in designing security and privacy controls with sound understanding of standards and regulation. • Experience in threat modelling, attack trees, vulnerability chaining, applying MITRE ATT&CK framework. • Good understanding of web applications, REST APIs, micro services, eventing, modern application frameworks, and mobile apps. • Good understanding of software architecture, network topologies, SaaS, PaaS, IaaS (infrastructure as a service). • Proficient in applying industry standards such as OWASP ASVS (Application Security Verification Standard), OWASP Top 10, CIS (Centre of Internet Security) controls and benchmarks. • Experience with cloud native and hybrid architectures with an emphasis on containerised workloads and Kubernetes. • Some development experience is always a plus - Java, cloud, Golang, python. You do not need to “be a developer” but we need you to understand the implications of security on engineering velocity. • Degree in computer science / information systems or engineering field, or equivalent experience. • Experience with regulations like GDPR (General Data Protection Regulation), PCI-DSS is desirable. • Azure or AWS (Amazon Web Services) cloud security certifications is desirable. • Excellent interpersonal skills and leadership skills. Whats in it for you? At Tesco, we are committed to providing the best for you. As a result, our colleagues enjoy a unique, differentiated, market- competitive reward package, based on the current industry practices, for all the work they put into serving our customers, communities and planet a little better every day. Our Tesco Rewards framework consists of pillars - Fixed Pay, Incentives, and Benefits. Total Rewards offered at Tesco is determined by four principles -simple, fair, competitive, and sustainable. Your fixed pay is the guaranteed pay as per your contract of employment. Colleagues are entitled to 30 days of leave (18 days of Earned Leave, 12 days of Casual/Sick Leave) and 10 national and festival holidays, as per the company’s policy. In addition to Statutory retirement beneets, Tesco enables colleagues to participate in voluntary programmes like NPS and VPF. Tesco promotes programmes that support a culture of health and wellness including insurance for colleagues and their family. Our medical insurance provides coverage for dependents including parents or in-laws. We offer mental health support through self-help tools, community groups, ally networks, face-to-face counselling, and more for both colleagues and dependents. Through our financial literacy partner, we offer one-to-one financial coaching at discounted rates, as well as salary advances on earned wages upon request. Our SAYE programme allows colleagues to transition from being employees to Tesco shareholders through a structured 3-year savings plan. Our green campus promotes physical wellbeing with facilities that include a cricket pitch, football field, badminton and volleyball courts, along with indoor games, encouraging a healthier lifestyle. About Us Tesco in Bengaluru is a multi-disciplinary team serving our customers, communities, and planet a little better every day across markets. Our goal is to create a sustainable competitive advantage for Tesco by standardising processes, delivering cost savings, enabling agility through technological solutions, and empowering our colleagues to do even more for our customers. With cross-functional expertise, a wide network of teams, and strong governance, we reduce complexity, thereby offering high-quality services for our customers. Tesco in Bengaluru, established in 2004 to enable standardisation and build centralised capabilities and competencies, makes the experience better for our millions of customers worldwide and simpler for over 3,30,000 colleagues Tesco Technology Today, our Technology team consists of over 5,000 experts spread across the UK, Poland, Hungary, the Czech Republic, and India. In India, our Technology division includes teams dedicated to Engineering, Product, Programme, Service Desk and Operations, Systems Engineering, Security & Capability, Data Science, and other roles. At Tesco, our retail platform comprises a wide array of capabilities, value propositions, and products, essential for crafting exceptional retail experiences for our customers and colleagues across all channels and markets. This platform encompasses all aspects of our operations – from identifying and authenticating customers, managing products, pricing, promoting, enabling customers to discover products, facilitating payment, and ensuring delivery. By developing a comprehensive Retail Platform, we ensure that as customer touchpoints and devices evolve, we can consistently deliver seamless experiences. This adaptability allows us to respond flexibly without the need to overhaul our technology, thanks to the creation of capabilities we have built. Show more Show less