3229 Owasp Jobs - Page 21

As a DevOps Architect, you will manage the software development process and create an automated delivery pipeline (CI/CD) to enhance infrastructure and application release efficiency. You are responsible for evaluating customer automation needs, supporting DevSecOps transformations, and designing and implementing high-quality DevOps architectures. Our ideal candidate has professional experience automating complex DevSecOps Pipeline deployments using modern CI/CD tools, along with a strong background in managing public cloud infrastructure through Infrastructure As Code (AWS, Azure, and GCP). To be a successful DevOps Architect, you should demonstrate a leadership mindset, possess solid operational experience, and possess effective problem-solving skills. The candidate should have excellent communication skills, be innovative, and stay current with industry trends and best practices in DevSecOps, AIOps, and FinOps. In this position, you will handle all the solution and technical aspects (DevOps) during the pre-sales process. Your responsibilities include identifying and addressing issues affecting customer satisfaction, actively collaborating with customers to enhance operational excellence and cost optimization, and implementing DevSecOps best practices to deliver business value. Building and maintaining relationships with key individuals within customer accounts and serving as a trusted advisor are crucial skills for driving the organic growth of customer accounts. Missions and main activities The main missions are : Automate build, deployment, and other aspects of the software development life cycle. Evaluate, Design, Implement, and streamline best practices architecture for Cloud and DevOps Solutions Implement microservice / container-based architectures. Conduct technical workshops with the customers and find automated solutions to problems that disrupt the availability, performance, and stability of customer systems. Work with the customer development, QA, security, and operations teams to understand requirements for functionality, performance, and security of applications. Explore and maintain an understanding of the internal architecture and client requirements of our applications. Manage the processes of deployments using a blue-green deployment pattern whenever possible. Implement the observability tools for infrastructure and applications. Ensure proper failover and backup architectures are implemented. Audit the customer environment, perform Gap Analysis, and propose remediation plans to address the gaps using Automation tools. Suggest FinOps practices for resource and cost optimization. Investigate and develop skills in new technologies (Data and AI) and collaborate across the company. Experience Total minimum professional working experience of 10 years in IT domain . Minimum 8 years of experience in managing operations of the virtualized platform. Minimum of 5 years of Public Cloud (AWS/Azure/GCP) deployment and management experience 10 years of application integration and deployment experience with a minimum of 5 years of good hands-on experience with cloud services related to computing, network, storage, content delivery, security, deployment, and implementing Cloud and DevOps best practices. Extensive knowledge of various Cloud services at the SDK Level Experience hosting an application on the Public Cloud using Cloud services with IAAS offerings. Expertise in Infrastructure capacity sizing and costing of Cloud services to drive optimized solution architecture, leading to optimal infrastructure investment vs performance and scale. Experience with software and product development lifecycle (incl. coding, coding standards and reviews, source control, testing, debugging, build, deployment, and operations) Good experience in automating manual activities using a scripting language. Expert-level experience in writing infrastructure as code templates Experience in Cloud Native DevSecOps CI/CD components Hands-on experience using version control systems, build, and deployment tools. Good knowledge of Microservices Design and Architecture Provide hands-on technical support for business applications and processes. Balance of strategic and tactical skills and the ability to work on cross-functional teams. Ability to review deployment and delivery pipelines i.e., implement initiatives to minimize chances of failure, identify bottlenecks, and troubleshoot issues. Excellent time management and organizational skills Deep knowledge and experience in complex and large-scale projects Deep understanding of Application, Infrastructure, and security architecture and non-functional aspects like Performance, Scalability, Reliability, Availability, etc Technical skills: Extensive hands-on experience using AWS/Azure/GCP Cloud services: Networking, Windows/Linux virtual machines, Container, Storage, LB, Auto Scaling, Serverless Architecture, Managed DB services, DW, Data Factory, and Analytics Services . Must have expert-level hands-on experience in writing Infrastructure As Code templates using Terraform, CloudFormation/Azure Resource Manager templates/ GCP deployment manager . Must possess excellent knowledge of Configuration Management tools ( Ansible, Chef, Puppet ). Must have strong expertise in operating Linux/Unix environments and scripting languages like Python, Perl, Bash, and PowerShell . Expert in architecting and maintaining containerization and virtualization platforms like Docker, Kubernetes, AWS EKS, Azure AKS, GCP GKE, or OpenShift Experience with Version control systems like GitHub , AWS Code Commit, and Azure Repos Experience with CI/CD tools like Jenkins, GitLab, Bamboo, Circle CI, GitHub Actions, and Argo CD Experience with Cloud Native CI/CD tools: AWS Code Build/Pipeline/Deploy and Azure DevOps Experience with monitoring and observability tools like AppDynamics, Dynatrace, DataDog, Prometheus, Grafana, and NewRelic Familiar with Quality and Security Management tools like SonarQube, Snyk, Aqua Security, Fortify, CheckMarx, Selenium, JUnit, Qualys, Tenable and OWASP ZAP Strong understanding of one or more development platforms DotNet technologies, (C#), Java / JavaScript Familiarity with REST API/ Webservices/ Postman Familiarity with Data Ingestion, Analytics, and AI technologies Knowledge of integration techniques (System & network configuration) Knowledge of Databases ( Mysql, MS SQL, MongoDB ) would be a plus. Consulting & Pre-Sales Assist the sales, and pre-sales team in prospecting with relevant technical pitches and market Orange business-specific data. Support and organize technical responses to RFP / RFI’s Assist sales teams in responses to RFPs and technical requirements documents. Propose the Level Of Effort based on the Sales team-provided Scope Of Work for the implementation. Conduct detailed technical workshops with customers to define the “to-be” architecture and plan the migration roadmap together. Strong executive speaking and presentation skills - Formal presentations, whiteboarding, large and small group presentations. Soft skills: Demonstrate strong analytical and technical problem-solving skills by leveraging the latest trends in technologies. Handle ambiguity and be able to move forward with imperfect information and get things done in a rapidly changing environment. Must be comfortable working in an environment where ideas are challenged. Should possess good product instinct and excellent project management skills to push projects over the finish line with sound planning and persistent execution. Excellent communication, presentation, and conflict resolution skills Astute in aligning effort & resources to achieve desired results. Education and certifications: Bachelor’s degree, Software Engineering, or equivalent work experience Professional Cloud Certifications ( AWS/Azure/GCP) AWS Certified DevOps Engineer Professional preferred Azure DevOps Engineer ­­­­­­­­Certification preferred. Docket/Kubernetes certification preferred.

About The Team/Role At WEX, we simplify the business of running a business. Our WEX Health & Benefits solutions reduce complexity and help manage costs of benefits administration for our clients and partners. We are looking for passionate technologists, collaborators, and problem solvers to join our Health & Benefits Technology team as we build the next generation of employer benefits solutions and services. As a Software Engineering Manager on the WEX Health & Benefits Technology team, you will lead a team that partners closely with Product Managers and customers to learn about the challenges employers face while navigating the competitive employee benefits landscape. You will become a domain expert, designing solutions that solve problems in ways our customers love and work for our business. You will lead teams who build the highest quality software in the latest technologies and test driven development practices. How you’ll make an impact Lead, mentor, and manage your team through the successful delivery of valuable customer software. Stay current with emerging technologies and industry trends to drive innovation and strengthen TDD and BDD processes. Collaborate closely with Product Management by providing technical guidance on software design. Guide your team on best practices, coding standards, and design principles. Conduct performance reviews, set goals, and support professional development for team members. Measure, inspect, and drive decisions using data. Design, test, code, and instrument new solutions. Support live applications, promote proactive monitoring, rapid incident response and troubleshooting, and continuous improvement. Analyze existing systems and processes to identify bottlenecks and opportunities for improvements. Understand how your domain fits into and contributes to the overall company. Influence priority, expectations, and timelines within your domain. Set short-term (~monthly) goals for your team to deliver on priorities. Focus on instrumentation and team efficiency and performance measurables. Contribute to long term vision and the strategy to achieve the vision for the technology organization. Interact and communicate effectively with peer groups, non-technical organizations, and middle management. Drive collaboration across technology teams to foster innovation and follow guidelines around re-usability of frameworks and governance of architecture patterns. Experience you’ll bring Bachelor's degree in Computer Science, Software Engineering, or related field; OR demonstrable equivalent experience. At least 7 years of experience in software engineering. At least 5 years of management or supervisory experience. Excellent leadership ability to motivate teams and drive results. Strategic thinking that aligns with business objectives and drives innovation. Strong problem-solving skills, excellent communication and collaboration skills. Passionate about keeping up with modern technologies and design. Technology Must-Haves C#, Python (if applicable) Docker Modern RDBMS (i.e. MS SQL, Postgres, MySQL) ASP.NET RESTful API design Kafka / event-driven design Modern Web UI Frameworks and Libraries (i.e. Angular, React) Kubernetes NoSQL databases Designing and developing Cloud-Native applications and services Strong understanding of software security principles and OWASP guidelines Technology Nice-To-Haves or Dedicate to Learning Quickly Helm/ArgoCD Terraform GitHub Actions GraphQL Azure

Introduction The IBM Cloud Data Services teams are responsible for developing and operating the Software as a Service (SaaS) offerings that provide Data Services in IBM Cloud. As a developer on the App Team, you'll work across multiple customer-facing touchpoints for IBM Cloud Databases — including the React UI , Ruby on Rails API , CLI , and Terraform plugins. You are expected to build and evolve our JavaScript front end and Ruby backend , while also contributing to our Golang-based tooling where needed. This is a hands-on engineering role that requires you to write production-grade code in JavaScript (React) primarily and Ruby , with opportunities to grow into Golang if you’re not already familiar. Our mission is to provide a consistent and intuitive experience across all the ways our customers interact with their databases. You will collaborate with a diverse range of stakeholders including developers, designers, product managers, and customer support to deliver high-quality solutions. Your Role And Responsibilities Design, build, and maintain features in our React-based UI for database management. Write and maintain Golang API, CLI and Terraform providers that power the frontend and integrate with underlying data services ensuring a consistent user experience across all interfaces. Write automated tests (unit, integration, and end-to-end) to ensure quality and reliability. Participate in code reviews, architecture discussions, and technical planning. Work with design, product, and support teams to ship features that address real customer needs. Help identify and resolve performance issues, bugs, and production incidents. Rotate through on-call responsibilities to gain real-world exposure to how customers interact with our platform. Preferred Education Master's Degree Technical Skills Required technical and professional expertise Passion for writing excellent, well-tested, and beautiful code. 3+ years of experience in backend development with Golang, specifically in building CLIs, SDKs, and microservices. 3+ years of experience in Terraform, specifically in building Terraform Providers. Terraform certifications are a plus. Strong experience with OpenAPI standards, including API design, documentation, and versioning. Knowledge of CI/CD pipelines, cloud deployment practices, and Kubernetes environments. Knowledge of OWASP best practices and vulnerability management. Prior experience in a similar role within a development organization preferably cloud based. Experience with Python is preferred Soft Skills Strong problem-solving skills. Strong communication skills to interact with various stakeholders. Ability to work collaboratively with a small cross-functional team of engineers, PMs, designers, and researchers. Empathy for user challenges and focus on building user-centric solutions. Ability to scope solutions collaboratively and work comfortably with ambiguity. Ability to mentor team members and foster a culture of continuous improvement. Enjoy high-visibility work and presenting to stakeholders. Comfortable working in an agile, fast paced environment. Passion for following the latest developments in the open-source community and front-end technologies.

Summary As a RELEASE ENGINEER III, you will report to the Sr. MANAGER / DIRECTOR. 6+ years’ experience working with CI/CD tools such as TFS, Azure DevOps (ADO), Jenkins including creating/troubleshooting new build/release pipelines. Should be flexible to work in SHIFTS. Primary Responsibilities Understand Customer requirements and analyze the gaps between existing architecture and customer requirements. Prototype the proposed solutions, document & report to leadership & engineering teams for giving clarity on the proposal. Demonstrate thought leadership in DevOps across multiple channels for various products & be a trusted advisor. Provide Governance & oversight to guide implementation towards solution delivery. Guide & mentor the team to successfully deliver the projects. Develop and execute automated builds & releases, benchmark the industry standards & processes to ensure efficient and quality delivery and deployments. Contribute to and review deployment plans; schedule the installation of new modules, upgrades, and fixes to the production environment. Lead analytical & design activities with approved/validated technologies in par with the organization standards and vested approaches and methods. Align IT security and IT operations teams to ensure that all processes, including DevOps processes, can operate safely and securely. Required Knowledge/Skills/Abilities 6+ years’ experience working with CI/CD tools such as TFS, Azure DevOps (ADO), Jenkins including creating/troubleshooting new build/release pipelines. 4+ years’ experience working with Git Based source control repositories such as GitHub, Azure DevOps, BitBucket, etc. 4+ years’ experience in writing/maintaining bash/powershell scripts and Ansible. 2+ years’ experience working with cloud service providers. 2+ years of experience in creating multiple DevSecOps pipelines using SCA, SAST & DAST tools. OWASP top 10 knowledge. Detailed understanding of SCA, SAST & DAST (Knowledge on the listed tools will be an added advantage: SonarQube, Fortify on Demand, NetSparker, J-Frog X-Ray, Ansible, Terraform etc). Excellent troubleshooting skills and ability to learn new technologies and adapt to them. Excellent communication & collaboration skills. SME in build & release, automations, CAAS & various other technical capabilities.

Job Title: Back-end Developer Location: Amritapuri, Kollam (Kerala) Job Type: Full Time, Permanent Compensation: 3 LPA to 6 LPA Experience Required: 2 - 5 yrs Job Summary: Were looking for experienced Java Developers who can join our engineering team and contribute from day one. As a Java Developer, you will work on the design, development, and optimization of backend systems that power our security products. You will collaborate with cross-functional teams to deliver scalable, secure, and high-performance services. Backend: Java, Spring Boot, Spring Security, REST APIs Databases: PostgreSQL, MySQL, Redis DevOps: Git, Jenkins, Docker, ELK Cloud: AWS (preferred), Azure, GCP Testing: JUnit, Mockito, Postman Key Responsibilities: Write clean, optimized, and production-grade code in Java and Spring Boot. Build and maintain RESTful APIs and microservices. Implement configuration management, secure communication, and service integration. Collaborate with DevOps to deploy and monitor services in production. Work closely with product managers and frontend developers to implement and improve features. Write unit and integration tests and participate in code reviews. Follow secure coding practices and ensure adherence to cybersecurity standards. Troubleshoot and resolve complex technical issues in production and development environments. Contribute to technical design discussions, architectural decisions, and scalability planning. Qualifications & Skills: 2+ years of hands-on experience in Java and Spring Boot. Strong experience with REST API development and microservice architecture. Solid understanding of OOP, multithreading, and performance optimization. Good working knowledge of configuration management, environment profiles, and dependency injection. Experience with unit testing frameworks. Ability to write modular, maintainable, and secure code. Familiarity with version control (Git), build tools (Maven/Gradle), and CI/CD pipelines. Problem-solving mindset with the ability to take ownership of features and bugs. Excellent communication and collaboration skills. Bonus Points: Experience in building or working on security or monitoring products. Familiarity with Spring Security, OAuth 2.0, JWT, or other auth frameworks. Exposure to Docker/Kubernetes, Jenkins, and containerized deployments. Knowledge of logging and observability tools. Awareness of OWASP Top 10 and common backend vulnerabilities. Hands-on experience with cloud services (AWS/GCP/Azure). What we expect: A developer who can code from day one minimal hand-holding. High attention to detail and a bias for clean, maintainable code. Commitment to learning and staying updated on best practices and trends. Long-term collaboration mindset were building foundational systems, not one-off projects. About Company Innspark is the fastest-growing Deep-tech Solutions company that provides next-generation products and services in Cybersecurity and Telematics. The Cybersecurity segment provides out-of-the-box solutions to detect and respond to sophisticated cyber incidents, threats, and attacks. The solutions are powered by advanced Threat Intelligence, Machine Learning, and Artificial Intelligence that provides deep visibility of the enterprises security. We have developed and implemented solutions for a wide range of customers with highly complex environments including Government Organizations, Banks & Financial institutes, PSU, Healthcare Providers, Private Enterprises. Website : https://innspark.in/

Experience Required :5+ years Specialization: Scalable UI Architecture, Performance Engineering, Cross-Platform Front-End Development We are seeking an experienced Senior Front-End Engineer with expertise in React.js, Next.js, and modern front-end ecosystems to design and implement scalable, secure, and high-performing UI architectures for our digital products. The ideal candidate is passionate about performance engineering, accessibility, and maintainable code, and is capable of guiding architecture decisions and mentoring cross-functional teams. You will work closely with designers, backend engineers, and product managers to create seamless and intuitive user experiences across platforms and browsers, contributing to both technical excellence and business impact. Key Responsibilities: Architect and build modular, high-performance UIs using React.js (Hooks, Context API, Suspense) and Next.js (App Router, SSR, SSG). Lead front-end application architecture with micro-frontend patterns, Web Components, and Module Federation. Implement scalable state management using tools like Redux Toolkit, Zustand, or Recoil. Integrate RESTful and GraphQL APIs using Axios, Fetch, Apollo Client, or URQL. Ensure optimal build and bundling using tools like Webpack, Vite, or Rollup. Optimize application performance using code splitting, lazy loading, tree shaking, WebP, asset optimization, and HTTP/2. Maintain security best practices: mitigate OWASP Top 10 issues (XSS, CSRF), enforce CSP, use secure cookies, validate input, and implement secure authentication flows (OAuth2, JWT, Firebase Auth). Deliver pixel-perfect, accessible, and responsive UI using WCAG 2.1 guidelines, semantic HTML, ARIA, Tailwind UI, Material UI, or ShadCn. Conduct performance audits using Lighthouse, React Profiler, and browser DevTools. Own the visual and functional QA process: build tests using Jest, React Testing Library, Cypress, Playwright, and Storybook + Chromatic for visual regression. Collaborate with DevOps to maintain CI/CD pipelines with GitHub Actions, GitLab CI, or CircleCI. Participate in and lead design reviews, documentation efforts, and sprint planning in Agile teams. Utilize AI-powered development tools like GitHub Copilot, Cursor, Cline, or custom LLM-based agents to improve development velocity and test quality. Preferred Skills Bachelor’s/Master’s in Computer Science, Information Technology, or equivalent. 5–12 years of hands-on experience in front-end development, building production-grade React applications with Next.js. Proficient in JavaScript (ES6+), TypeScript, HTML5, CSS3/SCSS. Strong architectural understanding of component design, modularization, micro frontends, and code reuse strategies. Experience with state management tools like Redux Toolkit, Zustand, or Recoil. In-depth understanding of accessibility, cross-browser compatibility, and responsive design. Proficient in Git workflows, npm/yarn/pnpm, and modern IDEs like VSCode. Solid testing practices using unit, integration, and visual regression testing tools. Experience working in monorepos, Module Federation, or multi-team frontend architectures. Familiarity with server-side rendering, static site generation, and edge rendering with Next.js. Experience with containerized environments (Docker) for front-end dev environments. Exposure to RAG, Langchain, or other LLM-based integrations in front-end workflows. Skilled in cross-functional collaboration tools: Figma, Zeplin, Adobe XD, Jira, Confluence. Strong advocacy for performance, UX, accessibility, and clean code practices. Professional Attributes: A passion for clean code and scalable architecture. Strong communication and mentorship skills, with experience onboarding and upskilling developers. Ability to lead through influence and evangelize best practices in front-end engineering. Proactive in problem-solving, with a mindset of ownership and continuous improvement. Work Timings - 3pm -12 am ( including 1 hr break) Job Types: Full-time, Permanent Schedule: Monday to Friday Work Location: In person

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. Penetration Testing - Manager Job Listing Detail At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. The opportunity We’re looking for Security Consultant / Senior Security Consultant with expertise in penetration testing. This is a fantastic opportunity to be part of a leading firm whilst being instrumental in the growth of a service offering. Your key responsibilities Perform penetration testing which includes internet, intranet, web application, wireless, social engineering, physical penetration testing. Execute penetration testing projects using the established methodology, tools and rules of engagements. Execute red team assessments to highlight gaps impacting organizations security postures. Identify and exploit security vulnerabilities in a wide array of systems in a variety of situations. Perform in-depth analysis of penetration testing results and create report that describes findings, exploitation procedures, risks and recommendations. Convey complex technical security concepts to technical and non-technical audiences including executives. Strong knowledge of OWASP Top 10 web and the ability to effectively communicate methodologies and techniques with development teams Understanding and experience with Active Directory attacks. Understanding of TCP/IP network protocols. Develop automated solutions that mitigate risks throughout the organization. Ability to automate DAST/SAST solutions and reporting Support SDLC and agile environments with application security testing and source code reviews. Provide technical leadership and advise to junior team members on attack and penetration test engagements. Prior consulting experience Ready to travel to MENA region Manage multiple engagements, ensuring timely delivery, quality assurance, and adherence to industry best practices. Stay updated with emerging cyber threats, vulnerabilities, and offensive security techniques, and incorporate these insights into client engagements Help develop/respond to go to market, RFP/RFI responses Practise building, team management Skills and attributes for success Understanding of web-based application vulnerabilities (OWASP Top 10). Good understanding of enterprise security controls in Active Directory / Windows environments. Understanding of TCP/IP network protocols. Understanding of network security and popular attacks vectors. Ability to communicate detailed technical information to a non-technical audience clearly Experience with Operation Technology / Internet of Things, Cloud technologies (AWS, Azure, GCP), Active Directory and 802.1x penetration testing. Strong understanding of security principles, policies, and industry best practices. Demonstrable flair for technical writing, including engagement reports, presentations and operating procedures. To qualify for the role, you must have BE/ B.Tech/ MCA or equivalent Minimum of 9 years of work experience in penetration testing which may include at least three of the following: internet, intranet, web application penetration tests, wireless, social engineering, physical and Red Team assessments. One of the following certifications: OSCP, OSCE, OSEP, OSWE, CREST, CRTE, eCPTX, or eWPTX Knowledge of Windows, Linux, UNIX, any other major operating systems. 4-9 years of work experience in similar projects Strong Excel and PowerPoint skills. Ideally, you’ll also have Project management skills Certifications: CISSP, GPEN, GWAPT. What we look for Who can perform penetration testing which includes internet, intranet, wireless, web application, social engineering and physical penetration testing and provide analysis for the testing results. What working at EY offers At EY, we’re dedicated to helping our clients, from startups to Fortune 500 companies — and the work we do with them is as varied as they are. You get to work with inspiring and meaningful projects. Our focus is education and coaching alongside practical experience to ensure your personal development. We value our employees, and you will be able to control your own development with an individual progression plan. You will quickly grow into a responsible role with challenging and stimulating assignments. Moreover, you will be part of an interdisciplinary environment that emphasizes high quality and knowledge exchange. Plus, we offer: Support, coaching and feedback from some of the most engaging colleagues around Opportunities to develop new skills and progress your career The freedom and flexibility to handle your role in a way that’s right for you EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. The candidate would be expected to work in diverse risk consulting engagements and are willing to travel to Middle East countries for project execution atleast 60% of their time. The candidate are expected to have experience / knowledge with respect to the following: Experience with infrastructure penetration testing and vulnerability assessments Good knowledge of OWASP and Secure SDLC standards Should have performed web/mobile/API penetration testing. Good knowledge of encryption technologies & MiTM attacks Experience in performing security code reviews and log analysis. Knowledge of Linux administration, TCP/IP, DNS, Network protocols and OSI model Good understanding of MITRE ATT&CK framework and how to leverage it. Good understanding of AD administration, different authentication mechanisms, trust boundaries etc. Experience in performing security configuration reviews for OS, Databases, Network & Security devices, applications etc. Should have good understanding of the cloud services (AWS, Azure and GCP), its architecture, potential attack vectors and mitigation plans Should have good understanding of the Container services, Kubernetes auditing and LLM security Experience in performing architecture design review for network and applications Experience in performing CS audits/maturity assessments against relevant standards like SAMA CSF, NCA, NIST, NESA, Qatar Cybersecurity Framework etc. Support in conducting technical reviews as part of IT/CS audits Should hold atleast 1 of the certifications or its equivalent : OSCP, GPEN, OSWE, OSWP, CRTP, LPT, ECSA, ISO27001, CEH Hands on experience will security testing tools/frameworks like Burp Suite, Nessus, Qualys etc. Hands on experience with programming using Python/Perl/PowerShell/C# Hands on experience with setting-up phishing and performing social engineering assessments Experience with AV/NAC evasion, obfuscation, bypass windows ASR/device guard, network security controls, emails gateway filtering etc. Experience with Active directory assessments Experience with different stages of cyber kill chain Review operational logs and event console activity to determine cause of security-related events or to identify potential security related events Analysis of the patches released by the vendors Good in report writing and convey the observations to the top management in layman’s language emphasizing on the business risks. Experience with mentoring junior resources or managing stakeholders/client Should be open-minded and ready to take up additional challenges or tasks outside your core domain expertise Skills Network Vulnerability Scanning and Penetration Testing, Web Application Penetration Testing, Mobile Application Penetration Testing, Web service/API Security Assessment, Secure Code review, AD Security Assessments, Social Engineering Assessments, Configuration Audit (Automated and Manual), Wireless Penetration Testing, Threat Modelling Qualification required-MCA/BTech /BSc ( Comp Science/Electronics and communication, or equivalent) Qualification preferred- Minimum 4+ years of IT/cyber risk consulting & penetration testing experience EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.

Site Name: Bengaluru Luxor North Tower Posted Date: Jul 14 2025 Support the Supplier Cyber Risk and Assurance processes for all business units and support functions across GSK, to ensure cyber security risks that may be introduced by third-parties are understood, managed or mitigated Key Responsibilities Conduct comprehensive supplier cybersecurity assessments and generate detailed reports, ensuring alignment with up-to-date departmental procedures and industry best practices. Continuously develop and enhance the third-party risk management process framework for security risk, incorporating the latest standards, procedures, emerging technologies, and AI-driven insights. Review and analyse supplier security practices through questionnaires, audits, scans and assessments to ensure compliance with company cyber security standards. Coordinate and respond to security incidents involving suppliers, including investigation, mitigation, and reporting. Examine supplier contracts to ensure they include necessary security clauses and negotiate terms to address identified risks. Provide clear and effective support to internal third-party relationship owners and external third-party representatives, facilitating accurate responses to the security risk assessment questionnaire. Collaborate closely with Legal, Procurement teams to ensure the inclusion of robust security and privacy clauses in third-party contracts, in line with current regulatory and industry requirements. Accurately interpret third-party responses to assessment questionnaires, using AI and automation tools to translate them into concise and actionable risk exposure reports for internal stakeholders. Work with internal third-party relationship owners and external third-party representatives to recommend and implement effective cyber security controls to mitigate risks to GSK. Ensure robust tracking and remediation of third-party security and privacy risk exposures identified through assessment processes Deliver ongoing training and awareness programs related to the supplier cyber risk and assurance process, keeping pace with the latest industry trends and threats. Aggregate and distribute periodic program metrics and dashboards, leveraging advanced analytics and reporting tools. Provide expert consultancy and subject matter expertise (SME) support in conducting security posture assessments, as part of continuous monitoring or post-breach scenarios, ensuring that suppliers maintain robust and up-to-date security controls with the assistance of AI and automation technologies. Ability to Perform detailed assessments of AI-enabled tools to identify potential risks related to compliance, security, bias, and ethical considerations. Ability to evaluate the service specific AI risks, brainstorming of the changing landscape of the AI like Gen AI & Agentic AI to provide assessment questionnaires inputs. Develop and implement strategies to mitigate identified risks in AI tools. Evaluate tools for vulnerabilities, including data privacy, algorithmic transparency, and unintended consequences. General Experience and knowledge across different frameworks and standards such as ISO 27001, NIST, CIS etc. Demonstrated experience and understanding of cyber security principles, IT security controls, and related technologies and products Security Certification: Preferred Security Certifications: CISSP, CISM, CISA, CTPRA, CTPRP, CRISC, ISO27001: 2022 LA & LI, ISO42001 AI. Understanding of relevant regulations and compliance standards GDPR, HIPAA, PCI-DSS etc Practical experience with third-party risk management tools such as Archer, OneTrust, Certa, CyberGRX, UpGuard, and ServiceNow is highly preferred. Sound knowledge in Power BI, Tableau, Excel advanced features. Prior experience in conducting cyber-Security risk assessments and 3rd party security and data privacy assessments. Ensuring 3rd parties adhere to data protection laws and best practices for safeguarding sensitive information. Strong analytical skills to identify, evaluate, and prioritize potential cyber risks from suppliers. Understanding of cybersecurity principles, tools, and technologies used to protect against threats. Proficiency in documenting cyber security findings, creating reports, and presenting recommendations to management. Preparedness to coordinate and respond to cyber security incidents involving suppliers. Expertise in reviewing and negotiating supplier contracts to ensure they include necessary security clauses. Stakeholder/ internal business management experience Strong verbal/written communication in English, with the ability to effectively interact with professionals at all levels of responsibility and authority Ability to prioritize, delegate, and foster the development of high-performance teams to lead/support an environment driven by customer service and teamwork Extensive experience in designing and developing security policies, processes, standards, and contracts. Strong understanding of inherent and residual risks, as well as expertise in risk assessment methodologies. Work with virtual teams located in different countries around the world, aligning and adapting different work, culture and communication styles. Exposure to any GRC technologies to conduct cyber risk management Strong understanding of AI systems, machine learning, and data analytics. Knowledge of relevant regulations, standards, and ethical frameworks related to AI. Good theoretical knowledge of Application programming and security, Machine Learning OWASP, Big Data, AI Production Environment like Kubernetes. Knowledge of DevSecOps will be a plus. Technical/Functional (Line) Expertise Experience in evaluating third parties for the presence of fundamental information security controls. Experience conducting risk assessments and applying concepts of inherent and residual risk in order to draw appropriate conclusions and articulate the same to non-technical audiences. Ability to effectively negotiate appropriate remediation of security gaps with third party representatives to ensure protection of GSK information. Leadership Influencing action across various business lines and geographies to achieve program objectives. Ability to effectively manage conflicting priorities in alignment with overall business and departmental strategies. Developing strong relationships with leaders of complementary programs (e.g. Procurement, Legal, Ethics & Compliance) to ensure harmonization. Decision-making and Autonomy Operates autonomously in the execution of the third-party security risk program framework. Serves as central point-of-contact for evaluating security risks associated with all third-party engagements. Recommends and agrees with Line Manager the need for shifts in program strategy. Interaction Excellent project management skills to effectively balance unexpected and conflicting priorities as they arise Experience operating effectively across matrixed organizations Intercultural sensitivity Innovation Understand innovations and evolving best practices amongst industry practitioners of third-party security risk management to continually mature GSK’s program. Ability to apply innovative approaches to balancing business constraints with program goals to identify win-win solutions. Complexity Global SME role, but with coordination to the global third-party program. Operate across geographies and across business lines. Collaborate effectively with relevant third parties and managed service provider. Skills Identity Access Management (IAM), Risk Assessments, Risk Management, Risk Management Framework, Security Architecture Design, Security Compliance, Security Policies, Security Risk, Vulnerability Management Why GSK? Uniting science, technology and talent to get ahead of disease together. GSK is a global biopharma company with a special purpose – to unite science, technology and talent to get ahead of disease together – so we can positively impact the health of billions of people and deliver stronger, more sustainable shareholder returns – as an organisation where people can thrive. We prevent and treat disease with vaccines, specialty and general medicines. We focus on the science of the immune system and the use of new platform and data technologies, investing in four core therapeutic areas (infectious diseases, HIV, respiratory/ immunology and oncology). Our success absolutely depends on our people. While getting ahead of disease together is about our ambition for patients and shareholders, it’s also about making GSK a place where people can thrive. We want GSK to be a place where people feel inspired, encouraged and challenged to be the best they can be. A place where they can be themselves – feeling welcome, valued, and included. Where they can keep growing and look after their wellbeing. So, if you share our ambition, join us at this exciting moment in our journey to get Ahead Together. Important notice to Employment businesses/ Agencies GSK does not accept referrals from employment businesses and/or employment agencies in respect of the vacancies posted on this site. All employment businesses/agencies are required to contact GSK's commercial and general procurement/human resources department to obtain prior written authorization before referring any candidates to GSK. The obtaining of prior written authorization is a condition precedent to any agreement (verbal or written) between the employment business/ agency and GSK. In the absence of such written authorization being obtained any actions undertaken by the employment business/agency shall be deemed to have been performed without the consent or contractual agreement of GSK. GSK shall therefore not be liable for any fees arising from such actions or any fees arising from any referrals by employment businesses/agencies in respect of the vacancies posted on this site. It has come to our attention that the names of GlaxoSmithKline or GSK or our group companies are being used in connection with bogus job advertisements or through unsolicited emails asking candidates to make some payments for recruitment opportunities and interview. Please be advised that such advertisements and emails are not connected with the GlaxoSmithKline group in any way. GlaxoSmithKline does not charge any fee whatsoever for recruitment process. Please do not make payments to any individuals / entities in connection with recruitment with any GlaxoSmithKline (or GSK) group company at any worldwide location. Even if they claim that the money is refundable. If you come across unsolicited email from email addresses not ending in gsk.com or job advertisements which state that you should contact an email address that does not end in “gsk.com”, you should disregard the same and inform us by emailing askus@gsk.com, so that we can confirm to you if the job is genuine.

Greetings from Excellis IT Pvt. Ltd. !!!!!! We are hiring for Mern Stack profile. Experience : 3 -4 years Location- Kolkata (On-site ) Note : Local candidates are preferred. Outstation candidates please do not apply. About the Role We are seeking a skilled MERN Stack Developer with 3–4 years of hands-on experience to join our engineering team. In this role, you will be responsible for developing and maintaining scalable web applications using MongoDB, Express.js, React.js, and Node.js. You will collaborate closely with product managers, UX/UI designers, and other developers to deliver high-quality solutions that meet business requirements. Key Responsibilities * Full-Stack Development: Design, develop, and maintain web applications using the MERN stack. * API Design & Integration: Build and consume RESTful APIs with Node.js and Express.js; integrate third-party services as required. * Frontend Engineering: Implement responsive UI components in React.js, ensuring optimal performance, accessibility, and cross-browser compatibility. * Database Management: Model, query, and optimize MongoDB schemas; ensure data integrity, indexing, and efficient query performance. * Code Quality & Testing: Write clean, modular, and reusable code; develop unit tests (e.g., Jest, Mocha) and end-to-end tests; participate in code reviews. * Collaboration & Documentation: Work closely with cross-functional teams; document architecture decisions, API contracts, and setup processes. * Deployment & Scaling: Assist with CI/CD pipelines, containerization (Docker), and cloud deployments (AWS, Azure, or similar). Monitor application performance and recommend improvements. * Troubleshooting & Support: Diagnose and resolve production issues in a timely manner; participate in on-call rotations if required. Required Qualifications * Experience: 3–4 years of professional work experience specifically in MERN stack development. Technical Skills: * MongoDB: Proficient in schema design, aggregation pipelines, indexing, and performance tuning. * Express.js & Node.js: Strong understanding of server-side JavaScript, middleware, security best practices, and RESTful API architectures. * React.js: Hands-on experience with component lifecycle, hooks (useState, useEffect, etc.), state management (Context API, Redux, or similar), and routing (React Router). * JavaScript/TypeScript: Advanced knowledge of ES6+ features; TypeScript familiarity is a plus. * HTML/CSS: Expertise in semantic HTML5, CSS3, Flexbox/Grid, and preprocessors (SASS/LESS) or CSS-in-JS libraries (Styled Components, Emotion). * Version Control: Proficient with Git, branching strategies, and pull-request workflows. * Testing: Familiarity with unit testing frameworks (Jest, Mocha) and frontend testing tools (React Testing Library, Enzyme). Soft Skills: * Strong problem-solving abilities and debugging skills. * Excellent written and verbal communication; able to articulate technical concepts clearly. * Ability to work independently and collaboratively in an agile/scrum environment. Preferred Qualifications: * Experience with cloud platforms such as AWS (EC2, S3, Lambda), Azure, or Google Cloud. * Familiarity with containerization technologies (Docker, Kubernetes). * Knowledge of continuous integration and continuous deployment (CI/CD) tools (Jenkins, GitLab CI/CD, CircleCI). * Understanding of web security principles (OWASP Top 10, JWT, OAuth2). * Exposure to GraphQL, Next.js, or other modern frameworks. * Prior experience with microservices or serverless architectures. Interested candidates can drop their cv at hr@excellisit.com or can contact on the given no.below: Contact no.- 9330164835 ( call or whatsapp in between 11 to 9pm ) Job Types: Full-time, Permanent Pay: ₹25,000.00 - ₹40,000.00 per month Benefits: Provident Fund Work Location: In person

Fictiv Exists to Enable Hardware Innovators to Build Better Products, Faster Fictiv, coined the “AWS of manufacturing,” is a leading technology company transforming the $350 billion manufacturing industry. Our cutting-edge cloud platform uses AI and machine learning algorithms to help companies build hardware at the speed of software. Come join our growing team! What’s in it for you? Opportunity To Unlock Your Creativity Think of all the times you were held back from trying new ideas because you were boxed in by bureaucratic legacy processes or old school tactics. Having a growth mindset is deeply ingrained into our company culture since day 1 so Fictiv is an environment where you have the creative liberty and support of the team to try big bold ideas to achieve our sales and customer goals. Opportunity To Grow Your Career At Fictiv, you'll be surrounded by supportive teammates who will push you to be your best through their curiosity and passion. Impact In This Role As a Full-Stack Technical Architect, you will leverage your JavaScript and Node.js expertise to play a pivotal role in shaping the technical direction of our systems and infrastructure. Your leadership will help guide architectural decisions, promote best practices, and ensure technical excellence across both front-end and back-end development. Inspiring Customers- Our customers innovate in fields ranging from autonomous vehicles to breakthrough healthcare solutions. Their vision drives us to develop faster, build higher-quality products, and revolutionize the manufacturing process. Transform an Industry- We are committed to reshaping the future of manufacturing. As part of a mission-driven team, you’ll help bring about real change in this industry through your technical expertise. You will report to the Director of Engineering. What You’ll Be Doing Define and execute a long-term technical architecture roadmap that encompasses both front-end and back-end technologies. Collaborate with cross-functional teams (engineering, product, design) to ensure seamless integration of front-end and back-end components. Identify architectural bottlenecks and design innovative full-stack solutions, including GraphQL and React implementations, to enable scalability and future growth. Establish and enforce technical guidelines to enhance security, performance, and scalability across the full stack. Mentor and guide engineers across teams on modern design patterns, test practices, and coding standards for both front-end and back-end systems, with a focus on GraphQL, REST APIs and React. Propose optimal architectural solutions that align with business objectives and meet cost, quality, and schedule constraints. Hands-on development, debugging, and review of critical projects, particularly those involving GraphQL/REST APIs, React and Node JS. Technically Driving multiple projects Desired Traits 15 to 20 years of experience designing, building, and maintaining large-scale web applications and services, with expertise across the full technology stack. Expertise in TypeScript/JavaScript and Node.js with proficiency in multiple programming languages preferred In-depth knowledge of front-end frameworks (e.g., React, Angular) and back-end technologies ( Node.js and Python). Strong experience in REST APIs and GraphQL, domain and schema modeling, object-oriented design principles, and full-stack architecture. Expertise in building event-driven architectures and services in the cloud (AWS preferred). Skilled in designing secure, scalable, and extensible APIs, including complex GraphQL schemas, and front-end interfaces. Proficiency with relational databases with PostgreSQL expertise preferred, focusing on schema and index design and query optimisation Strong understanding of security best practices, including OWASP Top 10 risks. Proven leadership experience, mentoring software engineers, and managing complex development projects across the full stack. AWS certification. Perks And Benefits Competitive medical and term insurance benefit Health and Wellness program benefit Personal Accident policy benefit Paid leaves And much, much more! Interested in learning more? We look forward to hearing from you soon. About Fictiv Our Digital Manufacturing Ecosystem is transforming how the next rockets, self-driving cars, and life-saving robots are designed, developed and delivered to customers around the world. This transformation is made possible through our technology-backed platform, our global network of manufacturing partners, and our people with deep expertise in hardware and software development. We’re actively seeking potential teammates who can bring diverse perspectives and experience to our culture and company. We believe inclusion is the best way to create a strong, empathetic team. Our belief is that the best team is born from an environment that emphasizes respect, honesty, collaboration, and growth. We encourage applications from members of underrepresented groups, including but not limited to women, members of the LGBTQ community, people of color, people with disabilities, and veterans.

Essential Services : Role & Location fungibility At ICICI Bank, we believe in serving our customers beyond our role definition, product boundaries, and domain limitations through our philosophy of customer 360-degree. In essence, this captures our belief in serving the entire banking needs of our customers as One Bank, One Team . To achieve this, employees at ICICI Bank are expected to be role and location-fungible with the understanding that Banking is an essential service . The role descriptions give you an overview of the responsibilities, it is only directional and guiding in nature. About the Role At ICICI Bank, Information Security Group believes in providing services to its customers in the safest and most secure manner keeping in mind that data protection for its customers is as important as providing quality banking services across the spectrum. Our support application team performs application vulnerability assessments and document vulnerabilities which were found and provides recommendations for remediation according to BFSI guidelines and industry best practices. As an Application Security Manager, you will provide guidance to the application team on application security best practices, support remediation effort and track open issues and follow up to ensure remediation. You will work along with cross functional business teams to get closure of identified gaps and utilize escalation matrix effectively wherever necessary. You will conduct application security assessment results review and mitigation approval. You will keep abreast of new technologies to ensure that the organization remains at the forefront of security. Key Responsibilities: Support and Testing: Vulnerability Assessments & Penetration Testing (Automated + Manual) on business critical assets with security tools like BurpSuite, Nessus, Nmap, Accunetix, Metasploit Netsparker, Qualys etc. Analysis: Perform in-depth analysis of VAPT results, Review assessment reports to provide risk mitigation & recommendations on that basis. Collaboration: Collaborate with the application team and provide them guidance on application security best practices, support remediation effort and track open issues and follow up to ensure remediation. Qualifications & Skills Educational Qualification: Engineering Graduate in CS, IT, EC or InfoSec, CyberSec or MCA equivalent with relevant experience. Certifications: OSCP Compliance: Knowledge of cyber security trends & hacking techniques, MITRE ATT&CK framework with hacker mindset. Network Security: Knowledge of Network Security technology in areas of Firewall, IPS, VPN, Gateway security solutions (proxy, web filtering) Key Technologies: Familiarity with OWASP, SANS vulnerabilities along with its validations in source code and other security frameworks & Compliance, Knowledge of Networking concepts & Good understanding of latest Network /security technologies such as Cloud security and recent trends. About the Business Group ICICI Bank’s Information Security Group believes in providing services to its customers in the safest and secured manner, keeping in mind that data protection for its customers is as important as providing quality banking services across the spectrum. The CIA triad of Confidentiality, Integrity, and Availability is built on the vision of creating a comprehensive information security framework. The Bank also lays emphasis on customer elements like protection from phishing, adaptive authentication, awareness initiatives, and provide easy to use protection and risk configuration ability in the hands of customers. With this core responsibly, ICICI administer and promotes on going campaigns to create awareness among customers on security aspects while banking through digital channels.

Summary Position Summary Application Architect (.Net and Azure) - Manager The Application Architect is involved in many aspects of a customer engagement; from the collaboration with other team members and customers to determine the best solution for a particular engagement to the design, development and delivery of software products in Azure Cloud Platform. Architect owns every technical aspect of the project(s) and acts as the liaison between the customer and the development team in leading the projects, managing releases, requirements and product backlogs from the technical standpoint. Work you’ll do A unique opportunity to be a passionate, innovative, results-oriented technology leader with heart-deep commitment to success to be a part of our Solutions Delivery team. This role requires web application architecture design leadership for various lines of business and enterprise applications. Responsible for web application architecture, service architecture, and technical design for high performance and scalability in a distributed, multi-tier and cross-platform mobile environment. Regularly supervises the day-to-day activities of a group of employees. Responsible for providing individual contributions, providing design and architecture to the team, assigning work, meeting completion dates, interpreting and ensuring application of policies and procedures. May also be responsible for performing the work being supervised from the technical standpoint. The key responsibilities, academic and skill set requirements and experience are as follows: Responsibilities : Providing technical and architectural leadership for Microsoft .NET web applications by leveraging Azure Cloud services Create Architecture and Design documentation for the applications and present them to the review board Collaborating frequently with clients to provide cloud solutions and assistance; and working with these customers to understand their requirements for cloud implementations that add the most value to their business. Create functional design specifications, Azure reference architectures, design documents and assist with other project deliverables as needed. Design state-of-the-art technical solutions on Azure that address customers' requirements for scalability, reliability, security, and performance and leverage existing investments in Azure platforms. Designing, developing, implementing, and releasing high quality custom software solutions using Scrum. Creating project and application architecture deliverables that are consistent with architecture principles, standards, methodologies, and best practices. Leading technical design sessions with the development teams, including the creation of class models, sequence diagrams, component models, etc., and detailed design specifications to ensuring that architecture standards are followed. Applying the very best technical agile patterns and practices when building custom software solutions including applying right cloud design patterns and cloud native application principals Working under some supervision from a Solution Architect, but will be expected to work independently on complex, non-routine tasks and projects. You may interact with end users and other technical personnel to identify and correct issues. Maintain continuous, open, consistent professional communication with customers, peers and team members. Openly listen to others and confirm understanding to ensure everyone is on the same page. Reviewing and approving 3rd party and integration solution architecture based on established enterprise application strategy. Communicating implications of architectural decisions, issues and plans to business and IT Leadership. Defining and validating non-functional (technical) requirements, and establishing traceability between requirements and application architecture/design. Providing support / guidance to the development teams during the analysis, development, and testing processes. Providing input to the development of project initiation documents including objectives, scope, approach, estimates, and deliverables, when needed. Working closely with Performance Engineering and our Web/Infrastructure Technology teams on defining the deployment architecture. Participating, and technically leading when needed, production troubleshooting and 'War Room' Activities. Learn, learn, and learn by staying up-to-date on all technical developments related to Azure and other public cloud platforms. This role is expected to generally work in India business hours with occasional off-hours status meetings with the on-shore team Participating and leading production troubleshooting and 'War Room' Activities when needed from technology front. Seeking and capitalizing on the opportunities to improve productivity, improving time-to-market, improving solutions quality, and improving cost effectiveness. Skill sets : (Must have) Education qualification: BE /B Tech / MCA / MSc / M. Tech. 10+ years of IT experience in application development and maintenance activities with Microsoft technology stack 2+ years of experience as an architect Experience in architecting complex Enterprise grade solutions in cloud environments. Experience in developing of IT architecture plans and software development methodologies. Experience in handling architectural needs of a system like conceptual architecture diagrams, design proposals, arriving at non-functional requirements, capacity planning, landscape planning, estimations, cross platform compatibilities, authentication & authorization mechanisms, project release & business continuity plans, reviews and technology governance. Strong knowledge and understanding of .NET Framework & SharePoint development techniques Microsoft SQL Server and other most common backend Microsoft technologies. Well versed with all SQL concepts. Expertise on Object Oriented Analysis & Design. Industry Trends: Stay current with industry trends and emerging technologies and incorporate relevant advancements into the team's work. (e.g. Gen AI) Design, Implement and deployment experience in 4 or more of the following: Azure PaaS technologies such as Azure Web App Azure API App Azure Functions Azure Data Lake Azure SQL, Azure Cosmos DB, Azure Storage, Azure Service Bus, Azure Service Fabric, Azure Cognitive Services (ML, AI, RPA, Bots, OCR & NLP) Azure App Service Environment, Azure Redis Cache, Azure Key Vault, Azure Visual Studio Team Services, Azure AD / MFA etc. Well versed in designing and building Azure solutions that include high availability, multi-region and multi-set architectures using virtual networks, availability sets and affinity groups. Insights and Diagnostics using Azure Log Analytics for both on-prem and Azure cloud environments Must know how to build secure application with good understanding of web application security standards like OWASP etc. Excellent verbal, presentation and written communications skills. Strong team skills including the ability to lead and be a team player Skillset (Preferred): Client facing and exposure to onshore offshore delivery model Experience in working in a global environment involving multiple development sites on various time zones. Strong knowledge of web-based technologies; HTTP, AJAX, HTML5, React, JavaScript/jQuery and CSS3 Agile development environment especially SCRUM using ADO. Capable of building sustainable relationships with colleagues and key individuals. Creativity and ability to think outside-the-box while defining sound and practical solutions. Desire to take the initiative, moving projects/ideas forward with clarity. Adept negotiation skills in high-pressure situations. Leadership skills to indirectly lead cross-functional teams towards common solutions. Certifications in Scrum, TOGAF (or any other architecture related) Howyou’ll grow AtDeloitte,we’veinvestedagreatdealtocreatearichenvironmentinwhichourprofessionalscangrow.Wewant all our people to develop in their own way, playing to their own strengths as they hone their leadership skills. And, as a part of our efforts, we provide our professionals with a variety of learning and networking opportunities— including exposure to leaders, sponsors, coaches, and challenging assignments—to help accelerate their careers along the way. No two people learn in exactly the same way. So, we provide a range of resources including live classrooms, team-based learning, and eLearning. DU: The Leadership Center in India, our state-of-the-art, world- class learning Center in the Hyderabad offices is an extension of the Deloitte University (DU) in Westlake, Texas, and represents a tangible symbol of our commitment to our people’s growth and development. Explore DU: The Leadership Center in India Benefits AtDeloitte,weknowthatgreatpeoplemakeagreatorganization.Wevalueourpeopleandofferemployeesa broad range of benefits. Learn more about what working at Deloitte can mean for you. Deloitte’s culture Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help themtobehealthy,centered, confident,andaware.Weofferwell-beingprogramsandarecontinuouslylooking for new ways to maintain a culture that is inclusive, invites authenticity, leverages our diversity, and where our people excel and lead healthy, happy lives. Learn more about Life at Deloitte. Corporate citizenship Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationships with ourclients,ourpeopleand ourcommunities.Webelievethatbusinesshas thepowertoinspire andtransform.Wefocusoneducation,giving,skill-basedvolunteerism,andleadershiptohelpdrivepositivesocial impact in our communities. Learn more about Deloitte’s impact on the world. Our purpose Deloitte’s purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities. Our people and culture Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our clients' most complex challenges. This makes Deloitte one of the most rewarding places to work. Professional development At Deloitte, professionals have the opportunity to work with some of the best and discover what works best for them. Here, we prioritize professional growth, offering diverse learning and networking opportunities to help accelerate careers and enhance leadership skills. Our state-of-the-art DU: The Leadership Center in India, located in Hyderabad, represents a tangible symbol of our commitment to the holistic growth and development of our people. Explore DU: The Leadership Center in India . Benefits To Help You Thrive At Deloitte, we know that great people make a great organization. Our comprehensive rewards program helps us deliver a distinctly Deloitte experience that helps that empowers our professionals to thrive mentally, physically, and financially—and live their purpose. To support our professionals and their loved ones, we offer a broad range of benefits. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you. Recruiting tips From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters. Requisition code: 302359

Role Open Positions Mandatory Skillset Experience Work Location NP Budget Technical Architect 1 Enterprise Solution Architecture, Design patterns, Enterprise Application Integration (EAI), Cloud, Data, Java, Springboot, Python 12+ Years TVM/Kochi/Remote Immediate only 30-38 LPA Job Purpose Senior architect with expertise in enterprise architecture patterns, microservices, cloud, data, and a polyglot approach towards different technologies. Job Description ▪ Experience in architecting for technical scale and scope of high volume, scalable enterprise software solutions including logical and physical landscape requirements with specific attention to design, development, and deployment strategies ▪ Strong object-oriented concepts and experience in object-oriented modelling with preferred expertise in using tools like Enterprise Architect or similar. Experience in working with TOGAF standards is preferred. ▪ Knowledge working with different technologies with a polyglot approach. Capability to adapt, learn and work with multiple technology platforms. ▪ Knowledge in Enterprise Application Integration (EAI) strategies and Enterprise Integration Patterns (EIP). ▪ Knowledge and expertise in Data management, ingestion, migration and retention strategies. ▪ In depth knowledge and experience in large scale database management, data modelling and database design in RDBMS and NoSQL. ▪ Knowledge in Application Security including Information security principles & realization, OWASP & PCI DSS Compliance (Security Design & Technology Skills). ▪ Experience in architecting, developing, and deploying cloud based (One or more among AWS, Azure, Google Cloud) enterprise solutions. ▪ Experience in designing and developing micro-services-based applications. ▪ Experience in working with mobile technologies – native, hybrid and cross platform solutions. ▪ Experience in evaluating, recommending and implementing DevOps tools for enterprise projects. ▪ Experience in implementing various application deployment models and monitoring the server infrastructure using industry standard tools. Experience in docker based deployment models. ▪ Capability to evaluate tools, technologies, and processes, including assessing their strategic benefit in the solution. ▪ Willingness to work hands-on with engineers to review, troubleshoot design and coding problems quickly and efficiently. ▪ Expertise in following technologies – Java, Springboot, Python, React, REST, Microservices, Transaction management frameworks ▪ Experience in designing and developing solutions with TDD (Test Driven Development). ▪ Experience in mentoring and providing technology trainings. ▪ Nice to Have: Experience working with financial services specifically payments domain. ▪ Nice to Have: Experience in working with 3rd party data integration systems like BizTalk, MuleSoft etc. ▪ Nice to Have: Experience in BI, Data Analytics, Machine learning, Predictive Analysis, Artificial Intelligence, BDD etc. Duties and Responsibilities ▪ Design software architecture for scalability, reliability, and performance ▪ Architect and develop highly reliable, fault-tolerant distributed applications with focus on performance, security and scale ▪ Adapt, learn, and work with multiple technology platforms ▪ Perform large scale database management, data modelling and database design in RDBMS and NoSQL. ▪ Evaluate tools, technologies, and processes, including assessing their strategic benefit in the solution ▪ Work hands-on with engineers to review, troubleshoot coding problems quickly and efficiently. ▪ Architect, develop and deploy cloud based (One or more among AWS, Azure, Google Cloud) enterprise solutions. ▪ Design and develop micro-services-based applications. ▪ Design and develop solutions with TDD (Test Driven Development). ▪ Ability to undertake Technology consulting and tools evaluation decisions. ▪ Undertake mentoring and providing technology trainings. ▪ To adhere to ISMS policies and procedures

Role: Cyber Risk Management Lead Experience: 5 to 10 Years Office location-Sector-125, Noida Required Qualification: Bachelor of Engineering - Bachelor of Technology (B.E./B.Tech.) Additional Information There are 2-3 rounds in the interview process. This is 5 days’ work from office role (No Hybrid/ Remote options available) Final round will be F2F (Mandatory) About role: We are seeking a Cyber Risk Management Lead to identify and remediate or mitigate risks . Candidate should have effective task management skills and the ability to communicate effectively. The individual must be able to rapidly respond to security incidents and should have at least 5 years of relevant experience in Cyber security Risk management. Candidates Should have deeper understanding with some hands-on experience on enterprise IT infra components such as O365 suite, advanced firewalls, IPS/IDS/HIPS, routers/switches, VPN, proxy, AV/EDR, DNS, DHCP, multi factor authentication, virtualization, Email systems/security, Web Proxy, WAF, DLP etc. along with cloud environments like AWS (Must) , Azure etc. Job Description Understanding applicable regulations, guidelines, and industry best practices to manage risk and ensure compliance Developing, maintaining, or auditing security documentation such as policies, standards, and procedures Monitoring security internal control effectiveness for EDR, Email Security, Server security, Cloud security etc Conducting internal security assessments to ensure continued compliance Explaining roles in managing risk to cross team functions and getting buy-in to improve the organizational risk posture Managing SOC 2 Type 2 assessment and provide adequate support for collecting relevant evidence for all relevant controls Should be able to review RFPs (request for proposal) and provide responses for Cyber security related items Manage Risk Governance Implement/govern AWS Cloud and Office 365 Security Manage and support internal and external audits Follow up till closure on audit findings if any Manage dashboards and reports to keep track of priority events for IT and IS Create MOM for Board Meetings Vendor Evaluation for cyber security controls Firewall rules review for On-premises and AWS firewall Security Awareness: Create materials PPT/e-mailers and provide training as needed Incident management and Business continuity CISO dashboard and success reports Meet with business team to understand their business requirements from cyber security perspective Has basic knowledge of audit requirements (SOC2, HIPPA, ISO27001, etc.) Understanding of respective industry best practices (e.g., NIST, ISO, OWASP, ITIL) At least one security certification is strongly preferred, such as Certified Information Security Management (CISM), Certified Risk Information Security Control (CRISC), or Certified Information Systems Security Professional (CISSP) Prior experience of management of technology infrastructure is preferred Skills: security awareness training,enterprise it infrastructure,it infrastructure security,dns,cloud security,aws,email security,cyber risk management,compliance,security documentation,routers/switches,cybersecurity risk management,incident management,dhcp,security assessments,risk assessment,advanced firewalls,multi-factor authentication,incident response,vpn,cloud security (aws, azure),azure,web proxy,risk governance,cyber security,soc assesment,effective communication,audit management,av/edr,waf,vendor evaluation,communication skills,task management,o365,proxy,compliance management,risk management,virtualization,firewall management,dlp,o365 suite,cyber risk management lead,ips/ids/hips

General information Country India State Telangana City Hyderabad Job ID 45302 Department Development Description & Requirements EDUCATION & EXPERIENCE: Bachelor’s degree in Computer Science, Engineering, or a related field (Master’s degree preferred). 6-9 years of professional experience in software development, with a focus on designing and building scalable, maintainable software solutions. REQUIRED SKILLS: Expertise in object-oriented programming languages such as Java, C#, or similar, with a strong understanding of design patterns and principles. Deep familiarity with software development best practices, version control systems (e.g., Git), and continuous integration/continuous delivery (CI/CD) workflows. Nice to have springboot, microservices etc.. Proven experience deploying and managing infrastructure on cloud platforms such as AWS, Azure, or Google Cloud, including knowledge of containerization technologies like Docker and orchestration tools like Kubernetes. Extensive experience in building, consuming, and optimizing RESTful APIs, with proficiency in tools like Swagger, Postman, or similar. Strong knowledge of SQL databases and querying languages Demonstrated experience in building and maintaining robust CI/CD pipelines using tools such as Jenkins or GitLab CI. Exceptional troubleshooting and problem-solving skills, with the ability to analyze and resolve complex software and infrastructure issues effectively. Proven ability to lead and work collaboratively within a team, with excellent communication skills to engage with both technical and non-technical stakeholders. Excellent written and verbal communication skills, with a focus on documenting technical designs, code, and system processes clearly and concisely. Comfortable and experienced in agile development environments, demonstrating adaptability to evolving requirements and timelines while maintaining high productivity and focus on deliverables. Familiarity with security best practices in software development, such as OWASP guidelines, secure coding principles, and implementing authentication/authorization frameworks (e.g., OAuth, SAML, JWT). PREFERRED SKILLS: Experience with microservices architecture, message brokers (e.g., RabbitMQ, Kafka), and event-driven design. Experience with RPA tools or frameworks (e.g., UiPath, Automation Anywhere, Blue Prism) is a plus. Experience with Generative AI technologies, including working with frameworks like TensorFlow, PyTorch, or Hugging Face, and integrating AI/ML models into software applications. Experience with performance optimization and scalability, including profiling tools and techniques for both code and infrastructure. Hands-on experience with data analytics or logging tools like ELK Stack (Elasticsearch, Logstash, Kibana) or Splunk for monitoring and troubleshooting application performance. About Infor Infor is a global leader in business cloud software products for companies in industry specific markets. Infor builds complete industry suites in the cloud and efficiently deploys technology that puts the user experience first, leverages data science, and integrates easily into existing systems. Over 60,000 organizations worldwide rely on Infor to help overcome market disruptions and achieve business-wide digital transformation. For more information visit www.infor.com Our Values At Infor, we strive for an environment that is founded on a business philosophy called Principle Based Management™ (PBM™) and eight Guiding Principles: integrity, stewardship & compliance, transformation, principled entrepreneurship, knowledge, humility, respect, self-actualization. Increasing diversity is important to reflect our markets, customers, partners, and communities we serve in now and in the future. We have a relentless commitment to a culture based on PBM. Informed by the principles that allow a free and open society to flourish, PBM™ prepares individuals to innovate, improve, and transform while fostering a healthy, growing organization that creates long-term value for its clients and supporters and fulfillment for its employees. Infor is an Equal Opportunity Employer. We are committed to creating a diverse and inclusive work environment. Infor does not discriminate against candidates or employees because of their sex, race, gender identity, disability, age, sexual orientation, religion, national origin, veteran status, or any other protected status under the law. If you require accommodation or assistance at any time during the application or selection processes, please submit a request by following the directions located in the FAQ section at the bottom of the infor.com/about/careers webpage.

You are a Senior Node.js Developer with 5 to 10 years of backend development experience, sought after to join a prominent banking client in Pune. Your role involves leveraging your expertise in Node.js, TypeScript, and backend architecture to develop and maintain scalable backend services. You will be responsible for building secure and high-performance RESTful and GraphQL APIs while collaborating with cross-functional teams including frontend, QA, and DevOps. Your key responsibilities will include conducting code reviews, mentoring junior developers, and ensuring the enforcement of best practices. Additionally, you will manage Git workflows, optimize MongoDB and relational database schemas, and participate in Agile/Scrum ceremonies while maintaining CI/CD pipelines. To excel in this role, you must possess a minimum of 5-10 years of backend development experience with Node.js and demonstrate a strong command over TypeScript and JavaScript (ES6+). Proficiency in RESTful API development, GraphQL, and database systems like MongoDB, PostgreSQL, or MySQL is essential. Knowledge of security practices such as OAuth2, JWT, and OWASP is also required. It would be advantageous if you have hands-on experience with Docker, Kubernetes, microservices, and exposure to messaging systems like Kafka or RabbitMQ. Previous involvement in the banking or financial domain is a plus. In addition to technical skills, you are expected to exhibit excellent analytical and debugging abilities, clear verbal and written communication, and the capacity to take ownership and lead technical initiatives. If you meet these qualifications and are ready to contribute to a dynamic team, please share your updated profiles with samatha@livecjobs.com.,

We are seeking a highly skilled and experienced Senior Software Engineer to join our dynamic engineering team. The ideal candidate will have a strong technical background in software development, demonstrate leadership in engineering practices, and contribute to designing, developing, and deploying scalable and high-performance applications. Responsibilities You will work closely with cross-functional teams, including product managers, designers, QA, and DevOps, to build solutions that directly impact our business and Responsibilities : Lead the design, development, testing, and deployment of high-quality software solutions. Collaborate with product and design teams to define and refine requirements. Architect scalable, maintainable, and secure backend and/or frontend systems. Write clean, efficient, and reusable code following best practices and coding standards. Conduct code reviews, provide constructive feedback, and mentor junior engineers. Optimize application performance, scalability, and reliability. Troubleshoot, debug, and fix production issues with a sense of urgency. Continuously research and evaluate new technologies and tools for adoption. Ensure adherence to software development methodologies like Agile/Scrum. Contribute to technical documentation and knowledge-sharing Skills : Depending On Stack (customize As Needed), E.g. Backend (e.g., Java / Python / Node.js) : Proficiency in one or more backend programming languages such as Java, Python, Go, or Node.js. Strong experience with RESTful APIs, microservices architecture, and API gateways. Deep understanding of database systems relational (PostgreSQL, MySQL) and/or NoSQL (MongoDB, Cassandra). Hands-on experience with containerization (Docker), orchestration (Kubernetes), and CI/CD : Bachelors or Masters degree in Computer Science, Engineering, or a related field. 5+ years of professional experience in software development. Proven ability to build complex and high-performance systems. Strong problem-solving skills and attention to detail. Excellent communication, teamwork, and leadership Qualifications : Experience working in agile, fast-paced product development environments. Contributions to open-source projects or technical blogs. Certifications in cloud technologies Exposure to secure coding practices and compliance standards (e.g., OWASP, GDPR, SOC2) (ref:hirist.tech)

Job Title : SOC Information Security. Location : Noida. Experience : 4-6 Years. Job Type : Full-Time. Job Overview We are seeking a detail-oriented and technically proficient IT Security & Compliance Analyst with strong experience in Vulnerability Assessment & Penetration Testing (VAPT), security audits, and IT controls. The ideal candidate will be responsible for evaluating IT systems, identifying gaps in compliance, performing security assessments, and ensuring alignment with regulatory and organizational security frameworks such as ISO 27001 and SEBI guidelines. Key Responsibilities Evaluate the adequacy and effectiveness of IT controls related to : Compliance & regulatory requirements. Change management processes. Information security policies. System backup and recovery. Business continuity and disaster recovery (BCP/DR). Monitor and assess control deficiencies, and provide recommendations to improve existing policies, documentation, and review processes. Work closely with external auditors to ensure alignment on in-scope systems and controls, and coordinate testing activities as required. Execute and manage multiple tasks efficiently, adhering to project timelines and allocated budgets. Conduct regular security audits and compliance assessments using frameworks such as : ISO 27001 :2013, SEBI cybersecurity guidelines, OWASP Top 10, WASC TCv2, SANS Top 25, CWE 25. Perform manual security assessments using tools like : Burp Suite, Qualys, Netsparker, Nessus, NTO Spider or other industry-standard VAPT tools. Provide insights on security system optimization and tuning based on alerts and real-time observations. Strong involvement in security incident response, malware handling, and vulnerability management. Work with SIEM tools for log correlation and threat detection. Required Skills & Experience Hands-on experience in VAPT (focus on manual testing). Deep understanding of information security principles. Knowledge of data loss prevention (DLP), encryption, patch management, PGP, and anti-virus systems. Proficiency in SIEM platforms and correlating security logs. Strong documentation and communication skills. Familiarity with security audit lifecycle and reporting. Preferred Certifications (Optional) CEH, CISA, ISO 27001 Lead Auditor, or related certifications. (ref:hirist.tech)

We are searching for an experienced VAPT professional to join our cybersecurity team. You should possess a solid background in recognizing, evaluating, and mitigating security vulnerabilities in network and application environments through thorough penetration testing and vulnerability assessments. ProTechmanize Solutions, an Information Technology product and services company, founded by professionals with over 20 years of collective experience in Cyber Security, Information Technology, IT Security & Software Development, is where you will be working. The ProTechmanize team is dedicated to offering the right solutions and services to customers through customized programs. Your responsibilities will include conducting regular vulnerability assessments of network infrastructure, applications, and systems, performing detailed penetration tests to simulate cyberattacks and identify vulnerabilities, preparing comprehensive reports of findings with recommended remediation actions, collaborating with IT and development teams to address vulnerabilities, utilizing security tools like Nessus, Metasploit, and Burp Suite, providing expert advice on security posture improvement, and staying updated on security trends and technologies. To be a suitable candidate, you must have a Bachelor's degree in Computer Science, Information Security, or a related field, along with 1.5+ to 4 years of hands-on experience in vulnerability assessment and penetration testing. Proficiency in domains such as Application security OWASP, API security testing, Network security & Mobile app security, exposure to Secure Code Review using Checkmarx or HP Fortify, and a strong understanding of common attack vectors, vulnerability exploitation techniques, and security testing methodologies are essential. In addition to technical skills, soft skills such as excellent analytical and problem-solving abilities, strong verbal and written communication skills, and the capacity to work collaboratively with cross-functional teams in a fast-paced environment are vital for this role. Please note that only candidates with the required experience should apply for this position, as it necessitates hands-on experience in VAPT.,

As a Head of Web Application and API Protection at HSBC, you will be responsible for defining and maintaining the global strategy for Web Application Security & Protection (WASP). You will work closely with engineers, platform owners, architects, and Control Owners to ensure business success, meet regulatory expectations, and respond to evolving threat landscapes. Your role will involve owning the investment roadmap for WASP, prioritizing a common backlog to reduce risks and meet strategic needs. You will be accountable for delivering innovative and frictionless technologies and services to navigate cyber risks effectively. Collaboration with internal and external partners to develop technical solutions that meet business needs will be a key aspect of your responsibilities. Additionally, you will define, operate, and mature business services supporting the adoption and tuning of protections. Oversight of WASP end-to-end and ensuring regulatory compliance and risk management outcomes are maintained will be crucial. You will also lead and manage a team of skilled professionals, fostering a culture of empowerment, experimentation, learning, and partnership. To succeed in this role, you should have hands-on experience in designing and implementing web application protection strategies, a robust understanding of industry cybersecurity frameworks, and expertise in web application and API security. Strong analytical skills, experience in technology leadership roles, and knowledge of risk and control management frameworks are essential for this position. Joining HSBC as the Head of Web Application and API Protection will provide you with the opportunity to make a significant impact in maintaining a secure technology and data infrastructure. If you are looking to further develop your career in cybersecurity and technology leadership, HSBC is the place for you. For more information and to explore career opportunities at HSBC, visit www.hsbc.com/careers. Please note that personal data held by the Bank relating to employment applications will be used in accordance with our Privacy Statement, available on our website.,

Company Description McFadyen Digital is the leading advisor and implementer of eCommerce Marketplace solutions. During 15 years of implementing marketplaces, we’ve built dozens of platforms that cumulatively generate billions of dollars of gross merchandise value (GMV). We’re honored to have supported 10% of the Fortune 500 with their digital marketplace initiatives. Over 250 global brands like ABB, AB InBev, ACCO, Albertsons, American Red Cross, American Eagle Outfitters, US Army, US Agriculture Dept, (and many more) have entrusted their digital transformations to McFadyen. We operate global offices across the US, Brazil, and India. McFadyen Digital has been a trusted employer for 35 years and believes that people are the most important part of our company. We’re proud of our Great Place to Work certification. Learn more about us at our website: www.mcfadyen.com Job Description We are seeking an experienced and dynamic Senior Test Architect who can lead and drive innovation and transformation in QA domain. This person is expected to work hand in hand with the CoE Lead and drive Quality Assurance (QA) transformation initiatives and drive excellence in testing strategies and solutions. The ideal candidate will bring expertise in QA transformation, automation, performance testing, security testing, API testing, mobile application testing, and a deep understanding of modern QA tools, technologies, and AI-driven testing tools (GenAI) . Key Responsibilities Test Architect Leadership Lead, Design and Implement a comprehensive QA transformation roadmap to align testing processes with organizational goals. Drive innovation by introducing industry best practices, frameworks, and emerging QA technologies, including AI-driven testing solutions. Bring in efficiencies in QA processes and implement initiatives to reduce overall QA effort on projects Define and evangelize quality metrics, ensuring consistent measurement and continuous improvement across all QA efforts. Excellent customer management and people management skills Automation & Tooling Architect and implement scalable test automation frameworks for functional, performance, and regression testing. Lead the adoption of modern QA tools for CI/CD pipelines, API testing, mobile testing, security testing, and GenAI-based testing tools. Collaborate with development and DevOps teams to ensure seamless integration of QA tools, AI-driven solutions, and automation pipelines. AI-Driven Testing Leverage GenAI-based tools to optimize test case generation, data creation, and defect prediction. Drive innovation by introducing AI/ML-powered frameworks for smarter and faster test execution. Identify and implement tools that utilize natural language processing (NLP) for test scripting and result interpretation. Performance & Security Testing Define and execute comprehensive performance testing strategies to ensure system reliability and scalability under various conditions. Lead security testing initiatives, including vulnerability assessments and penetration testing, to ensure robust security practices. API & Mobile Application Testing Build and enhance testing strategies for API testing using modern tools like Postman, Swagger, and RestAssured. Design mobile application testing frameworks, ensuring optimal quality for both iOS and Android platforms. Team Collaboration & Mentorship Partner with cross-functional teams to define quality standards and ensure their adoption across the projects. Mentor QA team by providing technical guidance, training, and leadership. Foster a culture of quality-first development through collaboration, knowledge-sharing, and continuous feedback. QA Metrics & Reporting Define and track key performance indicators (KPIs) for testing effectiveness and efficiency. Regularly communicate test results, risks, and recommendations to stakeholders. Qualifications Experience & Expertise 12+ years of QA experience, with at least 5 years in QA leadership role. Proven expertise in QA transformation initiatives and building high-performing QA teams. Hands-on experience with: Automation Tools: Selenium, Appium, Cypress, Playwright, etc. Performance Testing Tools: JMeter, LoadRunner, Gatling, etc. Security Testing: OWASP, Burp Suite, ZAP, etc. API Testing Tools: Postman, Swagger, RestAssured, etc. Mobile Testing: Appium, Espresso, XCTest, etc. AI/GenAI Tools: Experience with Testsigma, Functionize, Testim.io, or similar AI-driven testing tools. Strong knowledge of CI/CD processes and tools (Jenkins, GitLab, etc.). Familiarity with cloud-based testing environments and tools (e.g., AWS, Azure, BrowserStack). Soft Skills Exceptional problem-solving and critical-thinking abilities. Strong communication and stakeholder management skills. Ability to work collaboratively in cross-functional teams and mentor QA team members. Education Bachelor’s/master’s degree in computer science, Information Technology, or related field. Preferred Qualifications Certification in QA domains (e.g., ISTQB Advanced Test Manager, Certified Agile Tester). Experience with Agile/Scrum development methodologies. Hands-on experience with AI/ML-driven QA tools and techniques, including natural language-based test generation and defect analysis. Additional Information What we can offer you A career with thought leaders who literally wrote the book on Marketplace Best Practices. A career in the fast-paced world of retail eCommerce, digital marketplaces and platform businesses. A career with first movers who are deploying new business models and strategies worldwide. A career in a flat management structure without a rigid hierarchy and bureaucracy. A career in a culture that rewards creativity and innovation, risk-taking and teamwork. Core Values: Client Focus, Owning the Outcome, Adaptable, Caring Keywords: Senior Test Architect, QA leadership, QA transformation, test automation, Selenium, Appium, Cypress, Playwright, performance testing, JMeter, LoadRunner, Gatling, security testing, OWASP, Burp Suite, ZAP, API testing, Postman, RestAssured, Swagger, mobile testing, Espresso, XCTest, AI-driven testing, GenAI testing tools, Testsigma, Functionize, Testim.io, CI/CD, Jenkins, GitLab, cloud testing, AWS, Azure, BrowserStack, QA strategy, NLP-based test generation, defect prediction, ISTQB Advanced Test Manager, Certified Agile Tester, Agile, Scrum, QA metrics, quality assurance. eCommerce & Marketplace Platforms: Adobe Commerce (Magento), Salesforce Commerce Cloud (SFCC), SAP Hybris, Mirakl, ChannelAdvisor, IBM WebSphere Commerce, BigCommerce, Shopify Plus, commercetools, Oracle Commerce, Elastic Path, Spryker Technology & Tools: CRM (Salesforce), SaaS Sales, PIM (Product Information Management), CPQ (Configure Price Quote), CMS (Content Management Systems), OMS (Order Management Systems), ERP (Enterprise Resource Planning), BI Tools (Business Intelligence) McFadyen’s goal is to ensure that our clients are able to maximize the return on their technology investment by providing better service to their clients, partners and internal teams. At McFadyen we truly believe our employees are our most valuable asset. Across our locations in the US, Brazil, and India, we offer a world class work culture that enables top notch delivery for some of the world’s most influential companies. McFadyen Digital is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, age, religion, sex, sexual orientation, gender identity / expression, national origin, disability, protected veteran status, or any other characteristic protected under federal, state, or local law, where applicable.

As a Cyber Security Specialist with 5+ years of experience, your role will involve testing and operating security controls for various applications to ensure compliance with cybersecurity standards. You will collaborate with software architects to create secure software designs by conducting threat modeling. Your responsibilities will include contributing to all levels of the architecture, performing application design reviews focusing on cybersecurity compliance, and ensuring project compliance with secure design and coding standards. You will need to have a strong attention to detail, analytical mind, outstanding problem-solving skills, and great awareness of cybersecurity trends and exploitation techniques. Familiarity with security frameworks such as IEC 62443 and NIST SSDF is essential. Additionally, you will be responsible for developing an understanding of new tools and best practices, contributing to all stages of the Secure Development Lifecycle, and conducting VAPT (Vulnerability Assessment and Penetration Testing) on target applications to identify vulnerabilities and define mitigation strategies. If you are an interested candidate with expertise in Cyber Security, VAPT, Penetration Testing, application security, OWASP, and Threat modeling, and have an immediate to 15 days notice period, we invite you to share your resume at roshan.rn@utthunga.com. The location for this position is Bangalore.,

As a Security Analyst at Dedalus, a prominent healthcare technology company, you will have the opportunity to contribute to the team in Chennai, India, and play a crucial role in enhancing healthcare services for a healthier planet. Your primary responsibility will involve Security Vulnerability Analysis and Penetration Testing, where you will assess, exploit, and report security vulnerabilities in software applications and infrastructure, providing recommendations for appropriate solutions. Working alongside a highly skilled team, your work will have a significant impact on the healthcare sector. Your duties will include: - Conducting Security Vulnerability Analysis, Threat Modelling, and Risk Assessment - Performing static code reviews using automated SAST tools and analyzing false positives - Executing dynamic testing (DAST) with tools like Burp-suite, Invicti, or Nessus - Conducting manual Penetration Testing and utilizing Ethical Hacking techniques to identify vulnerabilities - Compiling assessment and validation reports on identified vulnerabilities, risks, impact, recommended solutions, and Proof of Concepts (POCs) - Explaining threats and presenting assessment reports to the Developer and Architect community To excel in this role, you must meet the following essential requirements: - Minimum of four years of experience in security vulnerability analysis and Penetration Testing (VAPT) on cloud services, web products, or enterprise applications - Proficiency in using Appsec tools, including industry-standard tools like Burp-suite, Invicti, Fortify, and open-source tools such as Kali, Nmap, Wireshark, Metasploit, ZAP, and Echo Mirage - Technical knowledge of Software Development Life Cycle (SDLC) and implementation essentials for various application types (Desktop, Web, API, Mobile, and Cloud) - Ability to review Java or .NET code with a focus on security vulnerabilities and familiarity with OWASP, GDPR, and ISO Security standards - Certification in VAPT or Ethical Hacking in Mobile, Web, or Cloud security is mandatory - Exposure to DevAppSec automation and scripting is preferred - Knowledge of AI tools and securing Docker containers like Kubernetes is advantageous - Understanding of real-world threats and data protection regulations is desirable Join Dedalus and be part of a diverse and inclusive workplace where innovation and collaboration drive better healthcare outcomes for millions of patients worldwide. Dedalus is dedicated to fostering a work environment that encourages learning, innovation, and meaningful contributions to healthcare. If you are passionate about making a difference in the healthcare sector, join us on this journey to transform and improve healthcare options globally. Application Closing Date: 18th August 2025 Dedalus is committed to promoting diversity and inclusion in the workplace, ensuring respect, inclusion, and success for all employees and communities. Our dedication to diversity and inclusion is reflected in our work culture, emphasizing the importance of an inclusive and diverse workforce to drive innovation and create better healthcare solutions globally.,

The role is based in Bengaluru, Kolkata and is a part of Grant Thornton, a global organization with 62,000 people across 135 countries. Grant Thornton LLP is the U.S. member firm of Grant Thornton International Ltd. with revenues exceeding $1.87 billion. Grant Thornton operates 58 offices in the U.S., with 623 partners and over 10,000 employees in the United States and in Bangalore and Kolkata, India. GT INDUS, the in-house offshore center for GT US, based in Bangalore, consists of over 2000 professionals in Tax, Audit, Advisory, Client Services, and Enabling functions. The culture at GT INDUS is focused on empowered people, bold leadership, and distinctive client service. It offers a transparent, competitive, and excellence-driven environment with opportunities for significant contributions and growth. The professionals at GT INDUS are actively involved in community service initiatives. The Cyber Risk Advisory practice at Grant Thornton provides risk management consulting and advisory services to clients. This role involves engagement planning, directing, and completion of Security Framework assessment, GRC Management, Third Party Risk Assessment, and Information Security architectural design. The responsibilities include working on audit engagements from beginning to end, developing and supervising other engagement staff, and assisting in client management and practice development activities. The ideal candidate should have a working knowledge of cybersecurity industry best practices, project management experience, and the ability to communicate security technology issues effectively to clients at all levels. Desired skills for this position include supporting engagement management, fieldwork documentation, training team members, attending professional development sessions, and staying updated on cybersecurity trends and risks. The candidate should hold a Bachelor's and/or Masters degree in Information Technology, Computer Science, or a related field. Preferred certifications include Certified Ethical Hacker (CeH v9 & above), CISSP, OSCP. Grant Thornton INDUS offers various benefits to full-time employees including insurance benefits, wellness programs, parental support, mobility benefits, retirement benefits, and a hybrid work model. Grant Thornton INDUS comprises GT U.S. Shared Services Center India Pvt Ltd and Grant Thornton U.S. Knowledge and Capability Center India Pvt Ltd, supporting the operations of Grant Thornton LLP. Established in 2012, Grant Thornton INDUS employs professionals across disciplines to seamlessly support U.S. engagement teams, increase access to talent, and improve operational efficiencies. The culture at Grant Thornton INDUS is driven by empowered people, bold leadership, and distinctive client service, emphasizing transparency, competitiveness, and excellence.,