About Energy Exemplar In an era where the world is rapidly advancing towards a cleaner future through decarbonization, stakeholders from across the entire energy value chain are having to navigate the complexities of the energy ecosystem. We seek to enable our customers to do so with confidence. Our mission: Empowering Transformative Energy Decisions. Founded in 1999 in Adelaide, Australia, Energy Exemplar’s PLEXOS® modeling and simulation software is trusted by innovative organizations across the globe. On one unified platform, stakeholders from across the entire energy value chain are revolutionizing the energy ecosystem and seamlessly planning for the future of energy with unprecedented clarity, speed, and innovation. Our impact is global and is being recognized across the industry: Finalist for the 2024 Reuters Global Energy Transition Awards in the 'Technologies of Change' category Finalist for the 2024 Go:Tech Awards in the 'Most Innovative Use of Technology’ category 2022 USEA/USAID Corporate Volunteer of the Year 2022 Impact Award Winner for our impact on the energy industry and the current energy transition At Energy Exemplar, we believe in empowering our people by offering flexibility in how, when, and where they work. This flexibility has been a cornerstone of our success, fueling significant growth over the years, with the company expanding at an impressive rate of approximately 30% year over year. We understand that the best results come when our team members can balance their professional and personal lives, so we support various working arrangements that help you thrive. We don’t just celebrate the excellence of our products but champion the quality of our people. They own their outcomes and perform to their best – every day. whether you're working from home, in the office, or on the go. Our flexible work culture fosters innovation, collaboration, and trust, making it easier to stay engaged and connected, no matter where you are. That’s what makes us who we are and a great place to work. Our core values ‘Customer Success’ , ‘One Global Team’ , ‘Integrity and Ownership’ and ‘Innovation Excellence’ reflect the way we work and are always at the forefront of everything we do. About The Position Reporting to the Software Engineering Manager as a member of the Development team in India, the Software Engineer is responsible for delivering quality and performant software and design to handle the vast array of use cases that our customers have today. This role is responsible for Developing Software Solutions by learning information needs, discussing with managers, studying systems flow, data usage, finding problem areas and coming up with solutions & following the software development lifecycle. Work Type: Hybrid (3 days a week in office) Please note we are open to interviewing candidates from either Pune or Bangalore location as we have offices in both locations. Office Address: Energy Exemplar, WeWork, 12th Floor, 12A-106, Salarpuria Magnifica, Old Madras Road, Bengaluru, 560016 Office Address: 4th Floor, WeWork Amanora Crest, Amanora Park Town, Magarpatta, Hadapsar, Pune, Maharashtra 411028 We Are Looking For 9+ years of experience in product development field 2+ years of recent experience in building products on cloud Strong understanding of data structures, algorithms, and designing for performance Strong knowledge in OOPS with .Net, C# or relevant technologies with SQL Server or any RDBMS Hands-on experience in development with either Angular, VueJS or React Experience with Microservices Architecture Hands-on experience in building products for Unix systems in addition to Windows Working knowledge of CI/CD pipelines and AWS/Azure cloud services Knowledge of asynchronous programming and WebAPI development is required Knowledge and awareness of cloud/ application security is a must (OWASP at the minimum) Extensive experience in mentoring junior engineers to success Strong logical, analytics and problem-solving skills Must be able to work effectively across team boundaries Attention to details Strong oral and written communication skills Candidate Requirements & Qualifications Graduate/Master's degree in Computer Science, Engineering, or a related discipline Strong logical, analytics and problem-solving skills Must be able to work effectively across team boundaries Attention to details Ability to work independently Energy Exemplar is an equal opportunities employer and we value your unique identity and perspective. We are fully committed to providing and fostering a workplace that reflects the diversity of society. Bring your authentic self and help us build an inclusive world together! To support you in being the best version of yourself during the application and interview process, please let us know if you have any specific requirements. Show more Show less

About NCR VOYIX NCR VOYIX Corporation (NYSE: VYX) is a leading global provider of digital commerce solutions for the retail, restaurant and banking industries. NCR VOYIX is headquartered in Atlanta, Georgia, with approximately 16,000 employees in 35 countries across the globe. For nearly 140 years, we have been the global leader in consumer transaction technologies, turning everyday consumer interactions into meaningful moments. Today, NCR VOYIX transforms the stores, restaurants and digital banking experiences with cloud-based, platform-led SaaS and services capabilities. Not only are we the leader in the market segments we serve and the technology we deliver, but we create exceptional consumer experiences in partnership with the world’s leading retailers, restaurants and financial institutions. We leverage our expertise, R&D capabilities and unique platform to help navigate, simplify and run our customers’ technology systems. Our customers are at the center of everything we do. Our mission is to enable stores, restaurants and financial institutions to exceed their goals – from customer satisfaction to revenue growth, to operational excellence, to reduced costs and profit growth. Our solutions empower our customers to succeed in today’s competitive landscape. Our unique perspective brings innovative, industry-leading tech to all the moving parts of business across industries. NCR VOYIX has earned the trust of businesses large and small — from the best-known brands around the world to your local favorite around the corner. Responsibilities Job Description Automate all manual tasks by setting up custom scripts/terraforms Experience in configuring customer domains / domain moves, managing SSL/TLS Certificates while ensuring minimal disruption to services. Experience in managing Web Application Firewall (WAF) rules to ensure protection against emerging threats. Should be able to Identify, analyze, and remediate BFA/DDOS attempts to prevent unauthorized access to resources. Maintain and update Key-Value (KV) pair and Worker code to ensure security, compliance, and functionality. Good to have knowledge of OWASP rules and WAF managed ruleset Analyze and respond to security incidents, identifying root causes and implementing measures to prevent future occurrences. Configure and manage log push jobs to ensure timely and accurate logging of security events. Enforce Bring Your Own IP (BYOIP) policies to maintain IP address and ASN integrity. Migrate zones between Cloudflare accounts or environments, ensuring minimal disruption to services and maintaining DNS integrity. Collaborate with cross-functional teams to identify and prioritize security and operations projects. Develop and maintain technical documentation and knowledge base articles to support security and operations tasks Requirements 3+ years of experience in a Cloudflare WAF Engineer role. Experience with Programming languages like Python, Terraform, usage of APIs, to automate manual tasks. Experience of CI/CD, GitHub actions. Operate in a 24x7 rotational shift environment. Excellent problem-solving skills, with the ability to troubleshoot complex security and P1 operations issues. Strong communication skills, with the ability to collaborate with cross-functional teams and communicate technical information to non-technical stakeholders. Experience with KV entries, Worker code, and Cloudflare's API. Experience with Cloudflare's security and operations features, including WAF, DNS, and TLS Experience with cloud security platforms, including AWS, Azure, and Google Cloud Good to have understanding of machine learning and Bot management. Experience with agile development methodologies, including Jira and Service Now Offers of employment are conditional upon passage of screening criteria applicable to the job EEO Statement Integrated into our shared values is NCR Voyix’s commitment to diversity and equal employment opportunity. All qualified applicants will receive consideration for employment without regard to sex, age, race, color, creed, religion, national origin, disability, sexual orientation, gender identity, veteran status, military service, genetic information, or any other characteristic or conduct protected by law. NCR Voyix is committed to being a globally inclusive company where all people are treated fairly, recognized for their individuality, promoted based on performance and encouraged to strive to reach their full potential. We believe in understanding and respecting differences among all people. Every individual at NCR Voyix has an ongoing responsibility to respect and support a globally diverse environment. Statement to Third Party Agencies To ALL recruitment agencies: NCR Voyix only accepts resumes from agencies on the preferred supplier list. Please do not forward resumes to our applicant tracking system, NCR Voyix employees, or any NCR Voyix facility. NCR Voyix is not responsible for any fees or charges associated with unsolicited resumes “When applying for a job, please make sure to only open emails that you will receive during your application process that come from a @ncrvoyix.com email domain.” Show more Show less

Web Security Intern 📍 Location: Remote (100% Virtual) 📅 Duration: 3 Months 💸 Stipend for Top Interns: ₹15,000 🎁 Perks: Certificate | Letter of Recommendation | Full-Time Offer (Based on Performance) About INLIGHN TECH INLIGHN TECH is a dynamic edtech startup that offers practical, hands-on virtual internships to students and recent graduates. Our Web Security Internship program is designed for individuals passionate about protecting websites and web applications from cyber threats through real-time analysis and project work. 🚀 Internship Overview As a Web Security Intern , you will focus on identifying, analyzing, and mitigating vulnerabilities in web applications. You will learn and implement best practices in securing web platforms, perform vulnerability assessments, and understand how to protect against common attacks such as XSS, SQLi, CSRF, and more. 🔧 Key Responsibilities Conduct security assessments of web applications Identify and document vulnerabilities using tools like OWASP ZAP, Burp Suite , or Nikto Analyze HTTP traffic, cookies, headers , and authentication flows Assist in implementing secure coding practices and suggesting remediation Stay updated with the OWASP Top 10 and other industry standards Collaborate with developers to resolve security issues and improve application hardening Support in penetration testing simulations and security audits ✅ Qualifications Pursuing or recently completed a degree in Cybersecurity, Computer Science, or IT Basic knowledge of web technologies (HTML, CSS, JS) and HTTP protocol Familiarity with common web vulnerabilities and ethical hacking tools Interest in bug bounty , secure coding , and web application firewalls (WAF) Problem-solving mindset with attention to detail and a strong curiosity for how web attacks work Understanding of Linux commands and basic scripting is a plus 🎓 What You’ll Gain Hands-on experience in web application security testing and remediation Exposure to real-world bug bounty methodologies and ethical hacking A portfolio of assessments, reports, and security write-ups Internship Certificate upon successful completion Letter of Recommendation for top-performing interns Possibility of a Full-Time Offer based on performance Show more Show less

Job Title: Senior Java Engineer Location: Yerwada, Pune (Hybrid – 3 days/week onsite) Shift: 9 AM – 5 PM IST Notice Period: Immediate to 30 days Salary:- 22 lakh - 25 Lakh + Benefits Role Overview: As a Senior Java Engineer, you'll be part of a high-performance scrum team, building scalable, robust, and modern enterprise-grade web applications. You'll collaborate with teams to solve real-world challenges using the latest technologies. Key Responsibilities: Develop and deploy Java-based backend services and APIs Work with Spring Boot, Microservices, SQL, and AWS Drive scalable architecture and CI/CD pipeline integration Mentor junior engineers and engage in code reviews Engage in client communication and consulting Core Requirements: 7+ years of Java development experience Strong in Java 8/11, Multithreading, Spring Boot, REST APIs Microservices, SQL, Hibernate, AWS Kafka, Jenkins, MongoDB, Oracle/Sybase/DB2 (any two) Solid system design and CI/CD skills Excellent communication & consulting mindset Nice to Have: Experience with: Golang/Rust, AEM, Drools, Algolia/Elasticsearch/Solr, Spark Domain experience in Payments or Wealth Management Knowledge of GRPC, HTTP/2, OAuth, and OWASP security standards Candidate Info to Collect: Total Experience Java, Spring Boot, Microservices, Hibernate, Kafka, REST API experience Cloud experience (AWS preferred) Java version currently using Willingness for hybrid role in Pune (Yes/No) Show more Show less

When you join Verizon You want more out of a career. A place to share your ideas freely even if theyre daring or different. Where the true you can learn, grow, and thrive. At Verizon, we power and empower how people live, work and play by connecting them to what brings them joy. We do what we love driving innovation, creativity, and impact in the world. Our V Team is a community of people who anticipate, lead, and believe that listening is where learning begins. In crisis and in celebration, we come together lifting our communities and building trust in how we show up, everywhere & always. Want in? Join the V Team Life. What Youll Be Doing... You'll be part of the "Verizon Global Infrastructure (VGI), Network & Information Security group working on security and automation tools to protect against cyber threats within the VGS Technology organization. You will work with a team of cybersecurity engineers with network & infrastructure background, threat intelligence analysts and risk management personnel to align common technologies and practices that fortify our applications, systems, IT network and infrastructure. Some Of Your Daily Responsibilities Would Be The Following Leveraging industry proven tools to identify and reduce Cyber Risks. Implementing next generation infrastructure architecture, create advanced policies and controls against future threats. Ensuring effectiveness and coverage of security, policies and controls of VGS Network & Infrastructure, prioritizing risk level. Ensuring Security posture of VGS Network & Infrastructure, e.g., access management, vulnerabilities remediation, etc. Developing awareness, training & compliance programs focused on Network & Infrastructure Cyber Security practices. Coordinating activities like network, penetration testing, incident response, data collection etc by partnering with the CISO teams. Assisting in Crisis Management, Ransomware Recovery and Business Continuity planning. Identifying, investigating and resolving global security breaches / incidents. Developing and maintaining network and infrastructure security reporting dashboards and scorecards used to measure our Cyber Practice. Identifying opportunities and use cases for automation to remediate vulnerabilities, implement controls, orchestrate between tools and automate security practices. What were looking for... You are passionate about network security and automation as a career. You are self-driven and motivated, with good communication and analytical skills. Youre a sought-after team member that thrives in a dynamic work environment. You will be working with multiple partners from the business groups, so networking and managing effective working relationships should be your top most priority. You have an understanding of industry trends in all areas of Information Security. You'll need to have some of the skills listed below: Bachelors degree in Computer Science / Information Technology Engineering with six or more years of work experience. Seven or more years of relevant work experience in Enterprise server/cloud, risk and compliance management. Strong working knowledge of enterprise scale server management. Knowledge of Private/Public Cloud infrastructure. Understanding of network fundamentals, switching, routing protocols, load balancers, web proxies, firewalls and software defined networking solutions. Understanding of security fundamentals Confidentiality, Integrity, Availability, access control, Authentication, Authorization, Auditing secure design concepts like. Experience working in any one of the SIEM / SOAR solutions like Splunk SOAR, Elastic, etc. Experience in managing public cloud infrastructure like AWS, Azure, GCP etc. Experience working in a SOC environment handling processes like Incident Management and Triage, Vulnerability Management, Threat Intelligence, Threat Hunting etc. Knowledge of common software vulnerabilities like OWASP Top 10 / Sans Top 25 and their relevant controls and safeguards for secure software will be an added advantage. Experience working on IT ticketing systems like JIRA, Service Now and ability to partner and collaborate with other teams in the organization. Experience with hosting security awareness campaigns, gamification and bug bounty programs will be an added advantage. Strong analytical problem-solving, communication and interpersonal skills. Passion to stay abreast with emerging technologies, network security trends, tools and techniques. Even better if you have one or more of the following: Industry relevant server certifications like MCSE, RHCE etc. Industry relevant security certifications Security , OSCP, CEH, CISSP, GIAC etc. Cloud relevant certifications CCSP, CCSK. Strong expertise in at least one operating system Window or Linux. Strong Scripting expertise in any one of Python, R, Perl, Javascript, Powershell, bash, VBScript etc. Experience in managing server infrastructure. Where youll be working In this hybrid role, you'll have a defined work location that includes work from home and assigned office days set by your manager. Scheduled Weekly Hours 40 Equal Employment Opportunity Verizon is an equal opportunity employer. We evaluate qualified applicants without regard to race, gender, disability or any other legally protected characteristics. Locations Hyderabad, India Chennai, India Show more Show less

When you join Verizon You want more out of a career. A place to share your ideas freely even if theyre daring or different. Where the true you can learn, grow, and thrive. At Verizon, we power and empower how people live, work and play by connecting them to what brings them joy. We do what we love driving innovation, creativity, and impact in the world. Our V Team is a community of people who anticipate, lead, and believe that listening is where learning begins. In crisis and in celebration, we come together lifting our communities and building trust in how we show up, everywhere & always. Want in? Join the V Team Life. What Youll Be Doing... The Verizon Product Security Team ensures security by design product engineering and architecture for both consumer and business products. As a Principal Security Architect, you will work to conduct security assessments on both Consumer and Business products and solutions. You will help to create, define, and implement security controls and tooling in conjunction with product development teams and product owners. You will manage multiple projects with a degree of impact and complexity that must be carefully controlled to support the internal business unit security requirements. You will also work in conjunction with security stakeholders in other areas of the business and make decisions and help lead initiatives to ensure timely delivery of security solutions that support business objectives. You will also manage work that involves coordination with multiple organizations and is the focal point within the group. Help implement Secure Software Development Lifecycle (SSDLC) practices and use automation where possible Work with the product development teams to perform security design/code reviews and vulnerability assessments. Provide security guidance to Engineering and Product teams. Contribute to security architecture and assist in building and rolling out processes for secure code development and deployment involving truly cutting-edge technology Contribute to security policy, standards, and guidelines related to Information Security Evaluate and operationalize new technologies for securing the organization Create security user stories and security test cases for products that are tailored to the product attributes and technology Support and advise product owner and product development teams by ensuring technical and architectural feasibility, readiness, and compliance. What were looking for You'll Need To Have Bachelors degree or one or more years of work experience. Experience in cybersecurity. Experience with security requirements analyses, building threat models, performing security design reviews, applying zero trust principles. Knowledge of application security vulnerabilities, secure coding, attack surfaces and countermeasures. Knowledge of S-SDLC, best practices for secure coding, understanding of OWASP Top 10, CIS Top 20. Even better if you have one or more of the following: Understanding of Docker, Kubernetes, container security best practices. Experience with Threat Management and Monitoring tools (like CrowdStrike, GuardDuty, Tenable, CloudTrail, CloudWatch) and container security tools. Experience with building security and hardening Cloud Containers, Cloud OS, on-premise/cloud storage, like Cassandra, MongoDB, Data Warehouse and Object-Based storage. Hands-on experience on security testing like SAST, DAST, SCA and Pen testing. Understanding of authentication protocols like OID, OAuth2.0, SAML. Hands-on experience in securing software development projects using iOS/Android platforms. Familiar with Content Streaming Services Security like DRM, CA (Widevine, PlayReady, FairPlay). Experience with application programming (C/C /Java/Kotlin/Swift/JavaScript or any other languages) and the overall software development life cycle. Written and verbal skills for communicating security concepts and solutions. Ability to prioritize between and execute on multiple work streams. Excellent organizational and interpersonal skills. One or more of the following certifications: CISSP, CISM, SANS, CCSK. If Verizon and this role sound like a fit for you, we encourage you to apply even if you dont meet every even better qualification listed above. #TPDNONCDIO Where youll be working In this hybrid role, you'll have a defined work location that includes work from home and assigned office days set by your manager. Scheduled Weekly Hours 40 Diversity and Inclusion Were proud to be an equal opportunity employer. At Verizon, we know that diversity makes us stronger. We are committed to a collaborative, inclusive environment that encourages authenticity and fosters a sense of belonging. We strive for everyone to feel valued, connected, and empowered to reach their potential and contribute their best. Check out our diversity and inclusion page to learn more. Locations - Chennai, India Show more Show less

Experience: 6 years Location: Chennai, India Job Type: Full Time Design overall architecture of the web application (On-Prem as well as Cloud) Experience in code reviews and refactoring Collaborate with the engineering team to design and launch new features Maintain code integrity and organization Understanding and implementation of security and data protection (OWASP and the likes) Knowledge about Design Patterns Exposure to Enterprise Architecture will be a plus Skills Required Front-End: HTML, JavaScript, and CSS Sass (and LESS will be a plus) JavaScript frameworks like AngularJS, React, Ember, Knockout, ThreeJS etc. (Knowledge about ThreeJS is a must) JavaScript based build tools like Grunt, Gulp, and Bower Libraries like jQuery or Backbone.js Front-end (CSS) frameworks Bootstrap (and Foundation will be a plus) AJAX Back-End: API design and development RESTful Services Web fundamentals like HTML, JavaScript, and CSS Server-side languages like Python, Ruby, Java, and .Net (Knowledge about Ruby or Python and Java or .NET should be ok) Database technologies like MySQL, PostgreSQL, and MongoDB Web server technologies like Node.js, J2EE, Apache, Nginx, ISS, etc. Frameworks related to their server-side language preferably Express.js, Ruby on Rails (ROR) Others: Development experience for both mobile and desktop Understanding of server-side languages Jade, EJS, Jinja, etc. Experience with cloud message APIs and usage of push notifications like SNMP with AWS Knowledge of code versioning tools VSTS, Git, BitBucket Knowledge about on-prem tools like SVN will be a plus Experience working in both Linux as well as Windows based environments Working experience in Cloud-based environments and Container based Development (Kubernetes and Docker) Apply Now Show more Show less

Dear Candidate Greetings from TCS !!! TCS has been a great pioneer in feeding the fire of young Techies like you. We are a global leader in the technology arena and there's nothing that can stop us from growing together. Role: Cloud Devops Engineer Location: Chennai Experience Range: 8 to 12 years Job Description: Desired Competencies: Maintains in depth knowledge of the AWS DevOps cloud platforms, provides detailed advice regarding their application, and executes specialized tasks Core experience in AWS CI experience (Git, Jenkins, GitLab), Bash, PowerShell Build automation Container experience in Docker Aws DevOps CKA and CKAD Certifications Knowledge to worked extensively on CI image building with both Linux and Windows containers Should have the best standards knowledge on CI Image building process for both Linux and windows containers Significant experience with SaaS and web-based technologies Skilled with Continuous Integration and Continuous Deployments using AWS Devops Services. Skilled to automate Python, or Bash is an added advantage. Skilled with containerization platforms using Docker & Kubernetes. Familiar with architecture/design patterns and re-usability concepts. Skilled in SOLID design principles and TDD. Familiar with Application Security via OWASP Top 10 and common mitigation strategies. Detailed knowledge of database design and object/relational database technology. Good experience in MS Fabric AWS DevOps Implementation: Lead the design and implementation of CI/CD pipelines using AWS DevOps. Configure and manage build agents, release pipelines, and deployment environments in AWS DevOps. Establish and maintain robust CI processes to automate code builds, testing, and deployment. Integrate automated testing into CI pipelines for comprehensive code validation. Continuous Integration: Infrastructure as Code (IaC) -Terraform Utilize Infrastructure as Code principles to manage and provision infrastructure components on AWS. Implement and maintain IaC templates Monitoring and Optimization: Implement monitoring and logging solutions to track the performance and reliability of CI/CD pipelines. Continuously optimize CI/CD processes for efficiency, speed, and resource utilization. Security and Compliance Implement security best practices within CI/CD pipelines. Ensure compliance with industry standards and regulatory requirements in CI/CD processes. Troubleshooting and Support Provide expert-level support for CI/CD-related issues. Troubleshoot and resolve build and deployment failures promptly Show more Show less

Dear Candidate Greetings from TCS !!! TCS has been a great pioneer in feeding the fire of young Techies like you. We are a global leader in the technology arena and there's nothing that can stop us from growing together. Role: Cloud Devops Engineer (Azure) Location: Chennai Experience Range: 8 to 12 years Job Description: Good experience in Microsoft Fabric Strong understanding of DevOps processes & procedures & Tools Data Lake,Data Analysis ,Data Engineer Power BI Experience with Azure DevOps products (work item, Wiki, git, repos, pipelines, release manager) Experience with application and infrastructure operation monitoring (such as App Dynamic, Splunk, Azure Portal) and change management (such as ServiceNow) Azure Cloud experience deploy and using PaaS resources, such as ASE, SQL MI, Cosmos DB, Storage Account, AKS, ADF, etc. Hands on experience to create build & deployment automation with Application as a Code pipelines using YAML. Hands on experience to create Azure Data Factory pipelines using YAML. Knowledge in Azure infrastructure automation using PowerShell, Runbooks, and Terraform NuGet and NPM Packaging Containers/Docker, Repository manager Good communication skills (written & verbal) and Ability to present. Agile Scrum/Kanban experience Core experience in Azure services CI experience (Git, Jenkins, GitLab), Bash, PowerShell Build automation Container experience in Docker Azure DevOps CKA and CKAD Certifications Azure Developer who has worked extensively on CI image building with both Linux and Windows containers Should have the best standards knowledge on CI Image building process for both Linux and windows containers Significant experience with SaaS and web-based technologies Skilled with Continuous Integration and Continuous Deployments using Azure Devops Services. Skilled with PowerShell to automate Python, or Bash is an added advantage. Skilled with containerization platforms using Docker & Kubernetes Familiar with architecture/design patterns and re-usability concepts. Skilled with object-oriented analysis and design (OOA&D) methodology and micro-services. Skilled in SOLID design principles and TDD. Familiar with Application Security via OWASP Top 10 and common mitigation strategies. Very Familiar with source control systems (git) and Azure DevOps. Detailed knowledge of database design and object/relational database technology. Azure DevOps Implementation: Lead the design and implementation of CI/CD pipelines using Azure DevOps. Configure and manage build agents, release pipelines, and deployment environments in Azure DevOps. Establish and maintain robust CI processes to automate code builds, testing, and deployment. Integrate automated testing into CI pipelines for comprehensive code validation. Continuous Integration: Infrastructure as Code (IaC) Utilize Infrastructure as Code principles to manage and provision infrastructure components on Azure. Implement and maintain IaC templates (e.g., ARM templates) for infrastructure provisioning. Monitoring and Optimization: Implement monitoring and logging solutions to track the performance and reliability of CI/CD pipelines. Continuously optimize CI/CD processes for efficiency, speed, and resource utilization. Security and Compliance Implement security best practices within CI/CD pipelines. Ensure compliance with industry standards and regulatory requirements in CI/CD processes. Troubleshooting and Support Provide expert-level support for CI/CD-related issues. Working with Product teams to manage AZURE systems deployment, and lifecycle maintenance, including requests, determining action plans, Capacity planning, reporting, advising and parties involved. Responsible for triage and resolving service management system incidents and requests. Responsible for application monitoring, data manipulation for widgets and generating reports, problem identification and management. Responsible for system data manipulation- tuning agents and collectors to glean wanted information. Occasionally consult with individuals inside and outside of the team and provide general customer support Azure infrastructure mgmt. Create and manage check-in policies, and installation, configuration, troubleshooting and maintenance. Producing scripts for automation and report generation using Terraform, Tera grunt, Cloud formation templates, Ansible, GIT, PowerShell, Bash, Shell, python scripting, Linux and Windows operating system and scripting, azure Visual Studio Team Services. Maintain the applications within EKS, AKS, Dockers, Hub, and Docker Registry. Manage Networking protocols, network security in the cloud. Manage Cloudflare products as well as other equivalent tools. Monitoring Infrastructure. Virtual machines, Virtual Networks, autoscaling, storage, Key vault, Network Security Group, Load Balancer, Traffic Manager, Route Tables, storage accts, EFS, FSX, NetApp NAS, Recovery Services Vaults, Key Vault, Azure Backup, lambda, server less architecture components. Required Skills Azure Certified Solutions Architect or Sys Ops Administrator and Equivalent Azure certified. Show more Show less

Job Qualifications Education: B.S. in Computer Science or Computer Information Systems, or equivalent experience. Experience: Minimum 3 years developing N-tiered systems in a .NET/SQL environment with C#. Solid understanding of object oriented programming and design patterns Experience working with .NET Collections and LINQ, and being able to determine appropriate data structure choices based on feature requirements. Knowledge of web development standards and best practices including JavaScript, HTML, jQuery, CSS, ASP.NET MVC, Razor Exposure to any of the javascript framework (Angular, reactjs etc.) Development experience with SQL Server: writing queries and stored procedures Experience writing data access code using ADO.NET. Some familiarity with how to write performant queries. Familiar with design patterns and good understanding of OOD/OOP practices Experience writing unit and integration tests Strong communication skills - verbal and written - and ability to work collaboratively as a team Passionate about software development Preferred Qualifications: Experience using an ORM framework such as Entity Framework, NHibernate, etc. Experience developing software for a commercial product Understanding of Web application security, OWASP Experience in SQL Server database tuning and performance optimization. Experience creating data models to support requirements. Other Knowledge, Skills, Abilities or Certifications: (First list requirements, followed by preferences.) Applicants may be required to appear onsite at a Wolters Kluwer office as part of the recruitment process. Show more Show less

Location: Bangalore, India Experience: 3-6 years About Us At Nurix AI, we envision a world powered by super-intelligent AI agents that transform how businesses engage with customers. Our cutting-edge AI agents do more than just solve problems, they create opportunities. From suggesting next purchases to boosting revenue while maintaining customer satisfaction, to analyzing vast datasets for actionable insights, our technologies shape your business and product strategies. By resolving queries with precision and delivering highly personalized interactions, we redefine the customer experience and drive measurable impact. Nurix.ai is at the forefront of AI innovation, developing cutting-edge AI and LLM solutions to enhance productivity and automation. Backed by $27.5M in seed funding, we are building next-gen AI-driven applications that redefine human-machine collaboration. We are looking for a Technical Lead to spearhead our AI engineering efforts and drive product innovation. We are pioneering the AI revolution as India’s first scaled AI services company. We deliver cutting-edge AI and LLM solutions tailored for the dynamic needs of the modern world. Backed by robust funding we are a vibrant, young team set on redefining technological boundaries. Join us in shaping the future. Join us in building the future, where every interaction is smarter, faster and more impactful. The Opportunity This is more than just a security role; it's a chance to build an information security function at Nurix AI, a rapidly scaling AI startup. With our exponential growth and our use of sophisticated AI, LLMs, and multi-cloud infrastructure (AWS, GCP, Azure), we need a seasoned expert to establish and champion a world-class security posture. Our customers are entrusting us with their data in an era of heightened security concerns, and your role will be pivotal in maintaining and strengthening that trust. You will be instrumental in fortifying our defenses at Nurix AI, proactively addressing the unique security challenges of AI and LLMs, and ensuring our innovative solutions are secure by design. What You'll Do (Key Responsibilities) Roles & Responsibilities (What you’ll be doing): Execute penetration tests on web apps, APIs, and mobile applications, then deliver detailed vulnerability assessments and clear remediation advice. Perform both manual and automated secure code reviews—primarily in Java, Python, and JavaScript. Build Python-based security automation tools to broaden test coverage, cut manual work, and speed up assessments. Partner with engineering teams to resolve security issues quickly within rapid release cycles. Develop and maintain threat models, applying proven techniques to surface and address design-level risks early. Champion a security-first culture by coaching developers on secure coding, common weaknesses, and attack vectors, while clearly presenting findings to all stakeholders. What You Bring To The Table 2-5 years of hands-on experience in application security, penetration testing, or a closely related field. Deep expertise with testing tools such as Burp Suite, OWASP ZAP, Semgrep, MobSF, Jadx-GUI, and other mobile security frameworks. Proven ability to embed security across the SDLC, leveraging modern DevSecOps pipelines and tooling. Strong command of secure-coding fundamentals, the OWASP Top 10, CWE catalog, and common exploit techniques. Solid scripting and automation skills—Python preferred. Excellent communication and stakeholder-management capabilities. A passion for continual learning and staying ahead of emerging threats. Bonus Skills Master’s degree in Cybersecurity or a related field. Industry-recognized security certifications such as CISSP, CISM, CCSP, CEH, or CompTIA Security+, or specific cloud security certifications (AWS, GCP, Azure). Experience in a rapidly scaling technology startup. Strong working knowledge of global and Indian data privacy frameworks (e.g., GDPR, HIPAA, DPDP Act ). Experience building a security function from the ground up. Bonus points for credentials like OSCP, OSWE, CRTP, or a noteworthy bug-bounty / CTF track record. What We Offer Opportunity to work on cutting-edge generative AI projects with leading clients. A dynamic and inclusive work environment that promotes professional growth and development. Competitive salary and benefits package, including opportunities for continuous learning and skill enhancement. If you are passionate about leveraging generative AI to drive business transformation and have the expertise to lead complex projects, we invite you to apply and join our innovative team. Show more Show less

Information Security Lead at Nurix AI Location: Bangalore, India Experience: 6-10 years About Us At Nurix AI, we envision a world powered by super-intelligent AI agents that transform how businesses engage with customers. Our cutting-edge AI agents do more than just solve problems, they create opportunities. From suggesting next purchases to boosting revenue while maintaining customer satisfaction, to analyzing vast datasets for actionable insights, our technologies shape your business and product strategies. By resolving queries with precision and delivering highly personalized interactions, we redefine the customer experience and drive measurable impact. Nurix.ai is at the forefront of AI innovation, developing cutting-edge AI and LLM solutions to enhance productivity and automation. Backed by $27.5M in seed funding, we are building next-gen AI-driven applications that redefine human-machine collaboration. We are looking for a Technical Lead to spearhead our AI engineering efforts and drive product innovation. We are pioneering the AI revolution as India’s first scaled AI services company. We deliver cutting-edge AI and LLM solutions tailored for the dynamic needs of the modern world. Backed by robust funding we are a vibrant, young team set on redefining technological boundaries. Join us in shaping the future. Join us in building the future, where every interaction is smarter, faster and more impactful. The Opportunity This role involves building and leading the information security function at Nurix AI. The company is experiencing rapid growth and requires a seasoned expert to establish a world-class security posture. The role focuses on addressing the unique security challenges of AI, LLMs, and multi-cloud infrastructure, ensuring innovative solutions are secure by design. Key Responsibilities Security Strategy & Architecture: Design and implement a comprehensive information security strategy, with a focus on AI/ML workloads, LLMs, conversational AI, and multi-cloud infrastructure (AWS, GCP, Azure). Threat Management & Incident Response: Establish threat detection, vulnerability management, and incident response capabilities. AI & LLM Security: Implement security best practices for the AI/ML development lifecycle, including data security, model integrity, and adversarial attack mitigation for LLMs. Cloud Security Governance: Develop and enforce security controls across multi-cloud environments. DevSecOps Leadership: Embed security best practices throughout the SDLC and CI/CD pipelines. Policy, Compliance & Risk Management: Develop and enforce security policies aligned with international standards and data protection laws. Conduct risk assessments on internal systems, vendors, and AI solutions. Security Operations & Tooling: Oversee the use of security tools (SIEM, EDR, vulnerability scanners). Security Awareness & Culture: Drive a culture of security awareness. Customer Trust & Advocacy: Serve as a security subject matter expert. Vendor Management: (Requires significant experience) Understanding of Global Compliances. Required Qualifications Bachelor’s degree in Computer Science, Cybersecurity, or related field. 6-10 years of experience in Information Security, with a focus on cloud environments and complex software systems. Deep expertise in AI/ML security, including risks associated with LLMs, data pipelines, and conversational AI. Proven experience in designing and managing security in multi-cloud environments (AWS, GCP, Azure). Hands-on experience with security tools (SIEM, EDR, vulnerability scanning). Understanding of securing APIs, containers, microservices, and CI/CD pipelines. Knowledge of security frameworks and standards (OWASP, MITRE ATT&CK, ISO 27001, SOC 2). Experience in developing security policies, conducting risk assessments, and managing incident response. Excellent communication, leadership, and project management skills. Preferred Skills (Bonus Points) Master’s degree in Cybersecurity or related field. Security certifications (CISSP, CISM, CCSP, CEH, CompTIA Security+, cloud security certifications). Experience in a rapidly scaling technology startup. Strong knowledge of global and Indian data privacy frameworks (GDPR, HIPAA, DPDP Act). Experience building a security function from the ground up. What We Offer The opportunity to work in a fast-paced, innovative company that is changing the way industries operate. A dynamic work environment with ample opportunities for professional growth and advancement. Attractive salary, equity options, and benefits package. A chance to be at the forefront of the AI and technology revolution with a team of passionate, like-minded professionals. Show more Show less

Job Description Role: IAM and Cloud Security Delivery Manager Location: Offshore Job Summary –  10+ years of IT experience with 6+ yrs of relevant experience in managing IAM and Cloud Security delivery(s), People Care, Customer & Stakeholders relationship, project transition for global IAM and Cloud Security service delivery. Years of experience needed –  10+ years of experience Technical Skills  Previous work experience managing IAM and Cloud Security delivery engagements –  Designs, develops and implements new cloud security technologies to support business and technology solutions  Create, maintain and deliver to project schedules and budgets  Identify, manage and maintain KPI and other metrics for core processes.  Review and assess the current supported tools, apps and processes to determine gaps for meeting the needs of the stakeholders  Design and Implement changes to existing security tools, applications and processes based on changes in scope or needs.  Work directly with internal infrastructure teams to align and execute infrastructure changes to support the tools, apps and processes.  In depth understanding of PAM use cases, features, processes, components, services and dependencies  Previous experience leading PAM product consulting, architecture and design, deployment and integration activities  Previous experience preparing implementation plans with detailed activities and dependencies  Good knowledge and experience working with Active Directory, LDAP, Databases, SQL and Scripting for PAM integrations  Audit principles and associated compensating controls  Cloud Security  Vulnerability Management  E-Mail security  Manage & maintain steady state global delivery operations (Green)  Manage Operational/delivery issues & escalations  Ensure continuous communication & coordination with client in the event of issue/ escalation  Ensure SLA/SLO attainment & process compliance along with high customer satisfaction  Act as first point of escalation for the day-to-day functioning of delivery operations team  Handling escalations- identifying the gap, preparing action plans, and driving towards resolution  Identify opportunities for SIP’s/CIP’s and drive those towards achieving the desire goal  Define & maintain governance model, best practices & operating procedures  Driving & ensuring seamless transition of new service/ customer to operations team (if any)  Drive/Manage Crisis situation  Actively participate in Service Operations Meetings, Service Quality Review governance  Facilitates Business Continuity for the account during regional/ location outages.  Data Protection and Security  Threat Intelligence & Forensics  Authentication & Password Management  Cloud Security  Identity & Access Management  Governance, Risk and Compliance  Audit principles and associated compensating controls  Basic Knowledge on security models such as ISO/IEC 27001 , PCI DSS and Cobit 5, OWASP & NIST, ITIL.  Experience on Cyber Security tools & technologies.  Good Understanding of IT security policy, procedure, design, and implementation.  Acts as a trusted advisor to the clients  Interlock with Management to define operations strategy and action plan based on Customer feedback & CSAT result  Analyzing customer requirements, identify business opportunity, provide guidance and support  Monitor delivery health and process adherences, identifying improvement areas and implementing adequate measures to maximize customer satisfaction level  Ensure continuous communication & coordination with client  Ensure positive client satisfaction and client relationship is maintained for service delivery  Support Delivery Manager to determine, monitor, and review project financials include operational costs, budgets, staffing requirements, resources, and risk etc.  Work towards improving efficiency, utilization, compliance, and accuracy  Assist Delivery Manager to achieve target Residual/ Efficiency by planning resources allocation, tracking accurate labor utilization and maintaining low operating costs  Deliver in transition project & program in line with the recognized best practice methodology (managing risk, governance, quality assurance, issue resolution, reporting)  Conduct due diligence activities to comprehend business activities of the client and document these in the form of a due diligence report along with recommendations and next steps  Act as the primary point of contact for all transition activities  Liaise with business lines and functions on training, recruitment, and system requirements for transition deliverables  Responsible for monitoring & execution of transition deliverables as per agreement transition plan  Manage day-to-day transition project communication with stakeholders, project delivery team, account team & Client stakeholders.  Review the outcomes of the transition projects to capture learnings & disseminate across organization Education Qualification Bachelor’s degree preferably in Computer Science or Information Systems and /or equivalent formal training or work experience. Certifications Needed Certificates in relevant fields are added advantage. About Mphasis Mphasis applies next-generation technology to help enterprises transform businesses globally. Customer centricity is foundational to Mphasis and is reflected in the Mphasis’ Front2Back™ Transformation approach. Front2Back™ uses the exponential power of cloud and cognitive to provide hyper-personalized (C=X2C2TM=1) digital experience to clients and their end customers. Mphasis’ Service Transformation approach helps ‘shrink the core’ through the application of digital technologies across legacy environments within an enterprise, enabling businesses to stay ahead in a changing world. Mphasis’ core reference architectures and tools, speed and innovation with domain expertise and specialization are key to building strong relationships with marquee clients. Show more Show less

7 - 12 Years 1 Opening Bangalore Role description UST Tittle: Lead I - Cloud Infrastructure Services Who we are: At UST, we help the world’s best organizations grow and succeed through transformation. Bringing together the right talent, tools, and ideas, we work with our client to co-create lasting change. Together, with over 26,000 employees in 25 countries, we build for boundless impact—touching billions of lives in the process. Visit us at . You Are: Digital Security Lead The Opportunity : Oversee the analysis and resolution of security vulnerabilities for Waters digital properties including brand websites, microsites and 3rd party hosted sites. Monitor Black Kite security score to prioritize and facilitate vulnerability fixes. Maintain a Digital Properties database containing pertinent data related to purpose and ownership of all Waters digital properties. Prepare and present reports to leadership on the Waters digital property security posture and current state of remediations. Develop and sustain effective relationships and partnerships with key stakeholders, providing insights, thought leadership and guidance on the security landscape and opportunities to improve Waters security posture. What you need: 5+ years in a program lead role working with Information Security on analyzing and facilitating the remediation of security vulnerabilities Familiarity with application and infrastructure security best practices Familiarity with OWASP Top 10 application security vulnerabilities Good communication, analytical, problem-solving, and presentation skills as well as a learning attitude Strong organizational and time management skills; able to effectively prioritize and manage shifting priorities and assignments Bonus points if: Strong verbal, presentation and written communication skills Excellent problem-solving skills, with a demonstrated ability to identify issues and solve them quickly. Strong analytical, leadership, problem solving, organization and planning skills What we believe : We’re proud to embrace the same values that have shaped UST since the beginning. Since day one, we’ve been building enduring relationships and a culture of integrity. And today, it's those same values that are inspiring us to encourage innovation from everyone, to champion diversity and inclusion and to place people at the center of everything we do. Humility: We will listen, learn, be empathetic and help selflessly in our interactions with everyone. Humanity: Through business, we will better the lives of those less fortunate than ourselves. Integrity: We honor our commitments and act with responsibility in all our relationships. Equal Employment Opportunity Statement UST is an Equal Opportunity Employer. We believe that no one should be discriminated against because of their differences, such as age, disability, ethnicity, gender, gender identity and expression, religion or sexual orientation. All employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status or any other basis as protected by federal, state, or local law. UST reserves the right to periodically redefine your roles and responsibilities based on the requirements of the organization and/or your performance. To support and promote the values of UST. Comply with all Company policies and procedures Skills Problem Solving,Owasp,Communication About UST UST is a global digital transformation solutions provider. For more than 20 years, UST has worked side by side with the world’s best companies to make a real impact through transformation. Powered by technology, inspired by people and led by purpose, UST partners with their clients from design to operation. With deep domain expertise and a future-proof philosophy, UST embeds innovation and agility into their clients’ organizations. With over 30,000 employees in 30 countries, UST builds for boundless impact—touching billions of lives in the process.

Hello Visionary ! We empower our people to stay resilient and relevant in a constantly changing world. We’re looking for people who are always searching for creative ways to grow and learn. People who want to make a real impact, now and in the future. We are looking for a highly skilled and motivated Product & Solution Security Professional to join our team. The ideal candidate will be responsible for defining secure design principles and supporting cross-functional teams to ensure secure architecture, implementation, and testing of products and solutions. Key Responsibilities: Integration with SDLC: Collaborate with software development teams to integrate security practices throughout the Software Development Life Cycle (SDLC). Ensure security requirements are included in the design, development, testing, and deployment stages of software projects. Perform security code reviews and analyze vulnerabilities during different SDLC phases. 2. Security Activities: Develop and implement security protocols, guidelines, and best practices for software development. Conduct threat modelling and risk assessments to identify potential security issues early in the development process. Provide guidance on secure coding practices and remediation of identified vulnerabilities. Stakeholder Interaction: Work closely with key stakeholders, including product managers, project managers, and business analysts, to support and promote security activities within products. Communicate security risks, issues, and mitigation strategies effectively to both technical and non-technical stakeholders. Foster a security-aware culture within the development teams and across the organization . 4. Security Tools and Technologies: Implement and manage security tools such as static and dynamic analysis tools and vulnerability scanners. Stay updated with the latest security tools, trends, and best practices to enhance product’s security posture. 5. Training and Awareness: Conduct security training and awareness programs for development teams. Promote continuous improvement and knowledge sharing related to application security . Skills and Qualifications: 1. Technical Skills: In-depth knowledge of application security, secure coding practices, and common vulnerabilities (e.g., OWASP Top Ten). Experience with security tools and technologies such as static analysis tools (SAST), dynamic analysis tools (DAST), and vulnerability scanners. Proficiency in programming languages such as Java, C#, Python. Understanding of DevSecOps practices and integration of security into CI/CD pipelines. Promote continuous improvement and knowledge sharing related to application security. 2. Soft Skills: Strong communication and interpersonal skills. Ability to explain complex security concepts to non-technical stakeholders. Strong analytical and problem-solving skills. Collaborative mindset and ability to work effectively with cross-functional teams. 3. Certification Preferred: CEH, Certified Secure Software Lifecycle Professional (CSSLP) or equivalent. Experience: Proven experience working with software development teams and integrating security practices into the SDLC. Experience interacting with key stakeholders and supporting security activities within software products. Having An engineering degree B.E/B.Tech/MCA/M.Tech/M.Sc with good academic record. 7 - 10 years of experience in cybersecurity, with a focus on application security. Make your mark in our exciting world at Siemens . This role, based in Bangalore , is an individual contributor position. You may be required to visit other locations within India and internationally. In return, you'll have the opportunity to work with teams shaping the future. At Siemens, we are a collection of over 312,000 minds building the future, one day at a time, worldwide. We are dedicated to equality and welcome applications that reflect the diversity of the communities we serve. All employment decisions at Siemens are based on qualifications, merit, and business need. Bring your curiosity and imagination, and help us shape tomorrow We’ll support you with: Hybrid working opportunities. Diverse and inclusive culture. Variety of learning & development opportunities. Attractive compensation package. Find out more about Siemens careers at: www.siemens.com/careers

Overview Enable Technologies is hiring a Senior QA Automation Engineer to perform automation testing on React front-ends and Python back-ends to ensure high-quality software solutions. Company details Enable Technologies Inc is a FinTech startup focused on financial equality by simplifying access to financial services. Learn more at https://enable-technologies.com/ Requirements 6–8 years of experience as a QA Engineer Expertise in automation testing tools (Selenium, PyTest) Experience with React front-end and Python back-end testing Hands-on experience with security penetration testing tools (e.g., OWASP ZAP, Burp Suite) Familiarity with Agile/Scrum methodologies Ability to document and troubleshoot errors Bachelor’s degree in Computer Science or related field Responsibilities Develop and execute automation scripts using tools like Selenium, WebDriverIO, Protractor, and PyTest Perform unit, integration, and E2E testing Create comprehensive test plans and test cases Track and document bugs, performing regression testing as needed Apply testing processes to meet client needs Stay updated with new testing tools and strategies Job Details Mode: Remote Interview process Screening R1 - Cultural fit Technical R1 - Live coding Technical R2 Final Round with Founder Important Note ClanX is a recruitment partner, helping Enable Technologies Inc hire a Senior QA Automation Engineer.

Job Description: About the Company: At AT&T, we’re connecting the world through the latest tech, top-of-the-line communications and the best in entertainment. Our groundbreaking digital solutions provide intuitive and integrated experiences for millions of customers across online, retail and care channels. Join our mission to deliver compelling communication and entertainment experiences to customers around the world as we continue to evolve as a technology-powered, human-centered organization. As part of our team, you’ll transform the way we deliver a seamless customer experience with digital at the center of all you do. In our world, digital is much larger than just an eCommerce channel, we are transforming all channels to digitally perform as one team to create a better customer experience. As we move into 2024, the digital transformation will revolutionize the digital space and you can build a career that will propel your future. About the Job: This position is a Senior Specialist Cyber Security for performing Application Security Testing in Cyber Security Organization. This profile will be passionate in preventing risk by identifying vulnerabilities in the applications of the enterprise by configuring scan settings for effective vulnerability enumeration, Identify and document findings, approve false positives and define/document approved mitigations used by AppSec Testers. Experience Level: 8+ years Location: Hyderabad or Bengaluru Roles and Responsibilities: Perform SAST/SCA/DAST scans using industry vulnerability scanner SAST/SCA – Veracode, using supplied compiled binary, configure scan platform to correct scan for both static code CWE’s as well as SCA derived CVEs. Work will include coordination with app owner to ensure all branches of code are included in compiled binary file. DAST – Work begins with crawling the target application to identify existing directory and file structure. Once identified, execute DAST scan using HCL product to identify dynamic issue only visible during code execution. During testing process, tester MUST ensure application is not degraded and/or taken out of service due to scanning activities Tester must ensure results from scanner are present in VM reporting platforms and visible to approved app users Perform manual validation and false-positive analysis on the automated scan results. Provide remediation support will analyze the top-rated vulnerabilities along with provide support to application teams on remediation strategies from identified risks. Execute scan retest by performing revalidation tests of previously identified critical and high severity vulnerabilities as requested by the client application teams. Primary / Mandatory skills: Overall – 8+ years of IT experience 7+ years of application security Experience 5+ years of Application Security testing Experience Bachelor's degree required. Deep familiarity with the OWASP Top 10 and other security concerns for web applications Deep Understanding of OWASP Application Security Verification Standards (ASVS) Deep understanding of SAST, DAST, SCA Scanning practices Experience in scanning leveraging Veracode, Appscan.or other enterprise tools. Understand how to interpret and assess CVEs (Common Vulnerability and Exposures) and CWEs (Common Weakness Enumeration) as found by scanning tools Understanding of SAST, DAST tools and dependency scanning tools Experience working/integrating with secret management systems Advanced knowledge of front-end and back-end web application development in at least one technology stack (.NET, Java, PHP, Ruby/Rails, Angular, Node.js, etc.) Track record of staying current with trends, techniques, tools, and processes that drive improvement of security posture of applications Strong documentation skills Excellent verbal and written communication skills, with proven technical writing abilities (English language proficiency required) Team-oriented thinking with demonstrated ability to produce high-quality work as part of a fast-paced, dynamic team Proven ability to communicate, collaborate, and present effectively with teams and individuals in different disciplines or areas Technical Skills: SAST, DAST, SCA Additional information (if any): Flexible to provide coverage in US morning hours upon need. Certification: CSSLP or equivalent #Cybersecurity Weekly Hours: 40 Time Type: Regular Location: IND:KA:Banglaore / Intl Tech Park, Whitefield Rd - Storage: Innovator Building, Itpb, Whitefield Rd It is the policy of AT&T to provide equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, AT&T will provide reasonable accommodations for qualified individuals with disabilities. AT&T is a fair chance employer and does not initiate a background check until an offer is made. Job ID R-69182 Date posted 06/06/2025 Benefits Your needs? Met. Your wants? Considered. Take a look at our comprehensive benefits. Paid Time Off Tuition Assistance Insurance Options Discounts Training & Development

Job Description We are seeking a highly skilled and motivated Technical Security Professional specializing in Vulnerability Assessment and Penetration Testing (VAPT), Source Code Review, API Security, and Web Application Security. As a member of our team, you will be responsible for ensuring the security and integrity of our systems, applications, and networks. Responsibilities  Conduct comprehensive Vulnerability Assessments and Penetration Tests (VAPT) on various systems, networks, and applications to identify security weaknesses and potential vulnerabilities.  Perform thorough Source Code Reviews to identify security flaws, coding errors, and vulnerabilities in web applications and software products.  Assess and enhance API security by evaluating API designs, configurations, and implementations for potential security risks and vulnerabilities.  Evaluate and enhance the security posture of web applications by conducting thorough security assessments and implementing appropriate security controls.  Develop and implement security testing methodologies, tools, and procedures to improve the efficiency and effectiveness of security testing activities.  Provide technical expertise and guidance to development teams, system administrators, and other stakeholders on security best practices and mitigation strategies.  Collaborate with cross-functional teams to remediate identified security vulnerabilities and implement security controls to mitigate risks.  Stay updated on the latest security trends, vulnerabilities, and best practices to continuously improve the security posture of our systems and applications. Requirements:  Bachelor's degree in Computer Science, Information Security, or a related field. (Master degree preferred)  5 to 7 years of experience in conducting Vulnerability Assessments and Penetration Tests (VAPT) on enterprise systems, networks, and applications.  4 to 7 years of experience in performing Source Code Reviews for web applications and software products.  Proficiency in using industry-standard security testing tools such as Nessus, Metasploit, Burp Suite, etc.  Strong understanding of web application security principles, common vulnerabilities (e.g., OWASP Top 10), and mitigation techniques.  Experience in assessing and enhancing API security, including authentication, authorization, encryption, and access control mechanisms.  Knowledge of secure coding practices and common programming languages (e.g., Java, Python, C/C++, etc.).  Knowledge of cloud security and DevSecOps processes.  Excellent analytical and problem-solving skills with the ability to identify and mitigate complex security risks and vulnerabilities.  Strong communication and interpersonal skills with the ability to effectively collaborate with cross-functional teams and stakeholders.  Relevant security certifications such as CISSP, CEH, OSCP, etc., are preferred.

About Us: Paytm is India's leading mobile payments and financial services distribution company. Pioneer of the mobile QR payments revolution in India, Paytm builds technologies that help small businesses with payments and commerce. Paytm’s mission is to serve half a billion Indians and bring them to the mainstream economy with the help of technology. About Team : The Internal Audit team at Paytm comprises seasoned professionals with diverse skill sets and experience across different verticals like process audits, technology audits and forensics. The team focuses on implementing the approved audit plan, ensuring delivery of qualitative audits and conducting internal / special reviews while leveraging technology & data analytics and gauging key risks across business processes. About the role: We are seeking an experienced and detail-oriented Information Security and Cloud Security Auditor to join our team. The ideal candidate will have 3-7 years of expertise in data security and privacy control implementation, internal auditing, third-party risk management, cybersecurity governance, and cloud security (banking sector preferred). This role will be responsible for conducting comprehensive IT and cloud security audits, ensuring compliance with regulatory requirements, and enhancing our information security policies and procedures. Key Responsibilities:  Conduct IT and cloud security audits across various domains, including IT General Controls, Information Security Controls, Cloud Security, Network Security, Vulnerability Management, and Vendor Risk Assessments.  Assess compliance with relevant laws, regulations, and organizational policies, providing expertise in regulatory requirements specific to both on-premises and cloud environments.  Develop and enhance information security and cloud security policies and procedures in alignment with industry best practices.  Maintain thorough documentation of audit findings, risk assessments, and security measures for internal and external reporting.  Validate ITGC, cloud security, and application-specific controls, and manage audit documentation including risk assessments, working papers, audit program checklists, and evidence gathering.  Follow up on and ensure closure of non-compliance issues identified during audits.  Manage and oversee third-party risk assessments and audits, ensuring robust security controls are in place for both traditional and cloud-based service providers.  Lead and participate in the development, migration, and implementation of security controls and policies for network and cloud security solutions.  Conduct risk-based security assessments on internal, vendor, and third-party hosted environments, focusing on both traditional IT and cloud infrastructure.  Participate in product and vendor selection processes, contributing to the implementation and integration of new technologies, with a strong emphasis on cloud security solutions. Experience/ Skills Required:  Minimum 5 years of experience in information security and auditing, with a strong background in cloud security, and the banking and IT industries.  Proven experience in performing IT and cloud security audits, validating ITGC and cloud application controls, and maintaining audit documentation.  Hands-on experience with vulnerability management, risk management, physical security, identity & access management, encryption, secure development, incident management, security infrastructure, and security policy for both on-premises and cloud environments.  Expertise in third-party risk management, regulatory compliance, and managing IT audit findings in both traditional and cloud-based contexts.  Strong analytical and problem-solving skills.  Excellent communication and documentation skills.  Ability to manage multiple projects and meet deadlines.  Strong understanding of IT, cloud security, and cybersecurity frameworks and standards.  Proficiency in using various security assessment tools and technologies, particularly those related to cloud environments.  Strong analytical and problem-solving skills.  Excellent communication and documentation skills.  Ability to manage multiple projects and meet deadlines.  Strong understanding of IT, cloud security, and cybersecurity frameworks and standards.  Proficiency in using various security assessment tools and technologies, particularly those related to cloud environments. Qualifications & Certification:  Bachelor's / Master’s degree in Information Technology, Cyber Security, or a related field.  ISO 27001/CNSS/CCNA/CISA/CISM/CISSP Preferred  Detailed knowledge of security tools, PCI-DSS, general ITGC controls, compliance testing, cloud risk assessment, GRC, OWASP, MITRE ATT&CK, change management, and policies and procedures.  Proficiency in various security and cloud technologies including AWS, Azure, Google Cloud Platform, Palo Alto, Fortinet & Checkpoint Firewalls, SOAR (Cortex), Force scout Why join us 1. A collaborative output driven program that brings cohesiveness across businesses through technology 2. Improve the average revenue per use by increasing the cross-sell opportunities 3. A solid 360 feedback from your peer teams on your support of their goals 4. Respect, that is earned, not demanded from your peers and manager Compensation: If you are the right fit, we believe in creating wealth for you With enviable 500 mn+ registered users, 21 mn+ merchants and depth of data in our ecosystem, we are in a unique position to democratize credit for deserving consumers & merchants – and we are committed to it. India’s largest digital lending story is brewing here. It’s your opportunity to be a part of the story!

Role Description Role Proficiency: Act under guidance of DevOps; leading more than 1 Agile team. Outcomes Interprets the DevOps Tool/feature/component design to develop/support the same in accordance with specifications Adapts existing DevOps solutions and creates relevant DevOps solutions for new contexts Codes debugs tests and documents and communicates DevOps development stages/status of DevOps develop/support issues Selects appropriate technical options for development such as reusing improving or reconfiguration of existing components Optimises efficiency cost and quality of DevOps process tools and technology development Validates results with user representatives; integrates and commissions the overall solution Helps Engineers troubleshoot issues that are novel/complex and are not covered by SOPs Design install and troubleshoot CI/CD pipelines and software Able to automate infrastructure provisioning on cloud/in-premises with the guidance of architects Provides guidance to DevOps Engineers so that they can support existing components Good understanding of Agile methodologies and is able to work with diverse teams Knowledge of more than 1 DevOps toolstack (AWS Azure GCP opensource) Measures Of Outcomes Quality of Deliverables Error rate/completion rate at various stages of SDLC/PDLC # of components/reused # of domain/technology certification/ product certification obtained SLA/KPI for onboarding projects or applications Stakeholder Management Percentage achievement of specification/completeness/on-time delivery Outputs Expected Automated components : Deliver components that automates parts to install components/configure of software/tools in on premises and on cloud Deliver components that automates parts of the build/deploy for applications Configured Components Configure tools and automation framework into the overall DevOps design Scripts Develop/Support scripts (like Powershell/Shell/Python scripts) that automate installation/configuration/build/deployment tasks Training/SOPs Create Training plans/SOPs to help DevOps Engineers with DevOps activities and to in onboarding users Measure Process Efficiency/Effectiveness Deployment frequency innovation and technology changes. Operations Change lead time/volume Failed deployments Defect volume and escape rate Meantime to detection and recovery Skill Examples Experience in design installation and configuration to to troubleshoot CI/CD pipelines and software using Jenkins/Bamboo/Ansible/Puppet /Chef/PowerShell /Docker/Kubernetes Experience in Integrating with code quality/test analysis tools like Sonarqube/Cobertura/Clover Experience in Integrating build/deploy pipelines with test automation tools like Selenium/Junit/NUnit Experience in Scripting skills (Python Linux/Shell Perl Groovy PowerShell) Experience in Infrastructure automation skill (ansible/puppet/Chef/Poweshell) Experience in repository Management/Migration Automation – GIT BitBucket GitHub Clearcase Experience in build automation scripts – Maven Ant Experience in Artefact repository management – Nexus/Artifactory Experience in Dashboard Management & Automation- ELK/Splunk Experience in configuration of cloud infrastructure (AWS Azure Google) Experience in Migration of applications from on-premises to cloud infrastructures Experience in Working on Azure DevOps ARM (Azure Resource Manager) & DSC (Desired State Configuration) & Strong debugging skill in C# C Sharp and Dotnet Setting and Managing Jira projects and Git/Bitbucket repositories Skilled in containerization tools like Docker & Kubernetes Knowledge Examples Knowledge of Installation/Config/Build/Deploy processes and tools Knowledge of IAAS - Cloud providers (AWS Azure Google etc.) and their tool sets Knowledge of the application development lifecycle Knowledge of Quality Assurance processes Knowledge of Quality Automation processes and tools Knowledge of multiple tool stacks not just one Knowledge of Build and release Branching/Merging Knowledge about containerization Knowledge of Agile methodologies Knowledge of software security compliance (GDPR/OWASP) and tools (Blackduck/ veracode/ checkmarxs) Additional Comments Key Responsibilities: Implement and manage continuous delivery systems and methodologies on Azure. Design, build, and maintain the CI/CD infrastructure and tools to deliver high-quality software in the most efficient manner. Provide support for .NET applications, including both .NET Core and .NET Framework. Administer Azure DevOps environments for automated build, test, and deployment processes. Work closely with development teams to integrate their projects into the production Azure cloud environment and ensure their ongoing support. Monitor, troubleshoot, and resolve issues in development, test, and production environments. Implement automation tools and frameworks (CI/CD pipelines). Collaborate with software architects and developers on software deployment strategies. Document processes, systems, environments, and their configurations. Qualifications: 6+ years of experience in DevOps Strong experience with Azure and Azure DevOps. Proficiency in CI/CD tools and practices. Experience in supporting .NET and .NET Core applications. Familiarity with Jenkins and other automation servers. Proficient in scripting languages such as PowerShell, Bash, etc. Strong understanding of cloud technologies and services. Excellent problem-solving and teamwork abilities. Desired Skills: Certifications in Azure or related technologies. Familiarity with infrastructure as code (IaC) using tools such as Terraform Knowledge of Agile methodologies and practices. Skills Devops,Azure,CI/CD Show more Show less

Job Description Current Employees apply HERE Current Contingent Workers apply HERE Secondary Language(s) Job Description Manager, Cybersecurity Engineering Cloud and App Security The Opportunity Based in Hyderabad, join a global healthcare biopharma company and be part of a 130- year legacy of success backed by ethical integrity, forward momentum, and an inspiring mission to achieve new milestones in global healthcare. Be part of an organisation driven by digital technology and data-backed approaches that support a diversified portfolio of prescription medicines, vaccines, and animal health products. Drive innovation and execution excellence. Be a part of a team with passion for using data, analytics, and insights to drive decision-making, and which creates custom software, allowing us to tackle some of the world's greatest health threats. Our Technology Centers focus on creating a space where teams can come together to deliver business solutions that save and improve lives. An integral part of our company’s IT operating model, Tech Centers are globally distributed locations where each IT division has employees to enable our digital transformation journey and drive business outcomes. These locations, in addition to the other sites, are essential to supporting our business and strategy. A focused group of leaders in each Tech Center helps to ensure we can manage and improve each location, from investing in growth, success, and well-being of our people, to making sure colleagues from each IT division feel a sense of belonging to managing critical emergencies. And together, we must leverage the strength of our team to collaborate globally to optimize connections and share best practices across the Tech Centers. Role Overview As a Cybersecurity Engineer, you will be responsible for designing, implementing, and maintaining security measures to protect the organization's computer systems, networks, and data from cyber threats. This role will involve a combination of technologies, processes, and practices designed to safeguard data, applications, and networks from threats like malware, phishing, and data breaches. You will be tasked with identifying vulnerabilities, supporting the response to incidents, and ensuring that security protocols and controls are adhered to. Your role is vital in safeguarding critical assets and ensuring compliance with legal and regulatory standards. What Will You Do In This Role Contribute to the development of enhanced cloud and application security control integrations and architectural best practices. Contribute to the development and implementation of product security policies and standards to ensure that application, cloud services and infrastructure meet organizational security requirements. Help maintain and monitor security tools and dashboards, ensuring that applications deployed in our environments adhere to organizational security standards and compliance requirements. Identify and prioritize adoption of our security tools within other teams ensuring the inputs and outputs are fully integrated enabling a complete security function. Follow standard approaches and established design patterns to create new designs for systems or system components. Identify and resolve minor design issues. Assist in implementing and maintaining specific security controls as required by organisational policy and local risk assessments and contribute to identifying risks that arise from potential technical solution architectures. Monitor and log the actual service provided, compared to that required by service level agreements. Undertake low-complexity routine vulnerability assessments using automated and semi-automated tools and contribute to evaluating and documenting the scope of results. Design, implement, test, document, and support integration of security tools and technologies in pipelines, Also, assist the product teams in related activities. Assist in maintaining security infrastructure and performing system updates. Investigate minor security breaches in accordance with established procedures. Assist users in defining their access rights and privileges and perform non-standard operational security tasks. Resolve security events and operational security issues. Work closely with cross-functional Infrastructure teams on Automation and Orchestration. Create and document detailed designs for simple software applications or components. Apply agreed modelling techniques, standards, patterns, and tools. Work within a matrix organizational structure, reporting to both the functional manager and the project manager. What Should You Have Bachelors’ degree in Information Technology, Computer Science or any Technology stream. Working experience in cloud environments AWS must have and good to have Azure, or GCP. Understanding of OWASP Top 10 security risks and mitigation strategies, relevant NIST standards, and Zero Trust principles. Familiarity with programming/scripting languages like Python, Bash, Terraform, Ansible, JSON, PowerShell, or JavaScript for automating tasks. Familiarity with software development/delivery lifecycle and related technologies 3+ years of hands-on experience working with network protocols, firewalls, intrusion detection systems, encryption technologies, and endpoint security solutions. Proficiency in security tools in the areas of cloud, application, endpoint, network or identity, vulnerability scanners, and malware analysis platforms.. Knowledge of authentication methods, identity management, and security access protocols (e.g., SSO, MFA, LDAP). Ideally AWS certified. Good interpersonal and communication skills (verbal and written). Relevant certifications (e.g., CISSP, CISM, CEH, CompTIA Security+) are often required or highly desirable. Proven record of delivering high-quality results. Product and customer-centric approach. Innovative thinking, experimental mindset. Our technology teams operate as business partners, proposing ideas and innovative solutions that enable new organizational capabilities. We collaborate internationally to deliver services and solutions that help everyone be more productive and enable innovation. Who We Are We are known as Merck & Co., Inc., Rahway, New Jersey, USA in the United States and Canada and MSD everywhere else. For more than a century, we have been inventing for life, bringing forward medicines and vaccines for many of the world's most challenging diseases. Today, our company continues to be at the forefront of research to deliver innovative health solutions and advance the prevention and treatment of diseases that threaten people and animals around the world. What We Look For Imagine getting up in the morning for a job as important as helping to save and improve lives around the world. Here, you have that opportunity. You can put your empathy, creativity, digital mastery, or scientific genius to work in collaboration with a diverse group of colleagues who pursue and bring hope to countless people who are battling some of the most challenging diseases of our time. Our team is constantly evolving, so if you are among the intellectually curious, join us—and start making your impact today. #HYDIT2025 Search Firm Representatives Please Read Carefully Merck & Co., Inc., Rahway, NJ, USA, also known as Merck Sharp & Dohme LLC, Rahway, NJ, USA, does not accept unsolicited assistance from search firms for employment opportunities. All CVs / resumes submitted by search firms to any employee at our company without a valid written search agreement in place for this position will be deemed the sole property of our company. No fee will be paid in the event a candidate is hired by our company as a result of an agency referral where no pre-existing agreement is in place. Where agency agreements are in place, introductions are position specific. Please, no phone calls or emails. Employee Status Regular Relocation VISA Sponsorship Travel Requirements Flexible Work Arrangements Hybrid Shift Valid Driving License Hazardous Material(s) Required Skills Design Applications, Information Security, Security Operations, SLA Management, Software Development, Software Development Life Cycle (SDLC), System Designs, Technical Advice, Vulnerability Scanning Preferred Skills Job Posting End Date 06/15/2025 A job posting is effective until 11 59 59PM on the day BEFORE the listed job posting end date. Please ensure you apply to a job posting no later than the day BEFORE the job posting end date. Requisition ID R335939 Show more Show less

Job Description As a Cybersecurity Engineer, you will be responsible for designing, implementing, and maintaining security measures to protect the organization's computer systems, networks, and data from cyber threats. This role will involve a combination of technologies, processes, and practices designed to safeguard data, applications, and networks from threats like malware, phishing, and data breaches. Current Employees apply HERE Current Contingent Workers apply HERE Secondary Language(s) Job Description Senior Manager, Cybersecurity Engineering Cloud and App Security The Opportunity Based in Hyderabad, join a global healthcare biopharma company and be part of a 130- year legacy of success backed by ethical integrity, forward momentum, and an inspiring mission to achieve new milestones in global healthcare. Be part of an organisation driven by digital technology and data-backed approaches that support a diversified portfolio of prescription medicines, vaccines, and animal health products. Drive innovation and execution excellence. Be a part of a team with passion for using data, analytics, and insights to drive decision-making, and which creates custom software, allowing us to tackle some of the world's greatest health threats. Our Technology Centers focus on creating a space where teams can come together to deliver business solutions that save and improve lives. An integral part of our company’s IT operating model, Tech Centers are globally distributed locations where each IT division has employees to enable our digital transformation journey and drive business outcomes. These locations, in addition to the other sites, are essential to supporting our business and strategy. A focused group of leaders in each Tech Center helps to ensure we can manage and improve each location, from investing in growth, success, and well-being of our people, to making sure colleagues from each IT division feel a sense of belonging to managing critical emergencies. And together, we must leverage the strength of our team to collaborate globally to optimize connections and share best practices across the Tech Centers. Role Overview As a Cybersecurity Engineer, you will be responsible for designing, implementing, and maintaining security measures to protect the organization's computer systems, networks, and data from cyber threats. This role will involve a combination of technologies, processes, and practices designed to safeguard data, applications, and networks from threats like malware, phishing, and data breaches. You will be tasked with identifying vulnerabilities, supporting the response to incidents, and ensuring that security protocols and controls are adhered to. Your role is vital in safeguarding critical assets and ensuring compliance with legal and regulatory standards. What Will You Do In This Role Lead the development of enhanced cloud and application security control integrations and architectural best practices. Lead the development and implementation of product security policies and standards to ensure that application, cloud services and infrastructure meet organizational security requirements. Lead the maintenance and monitoring security tools and dashboards, ensuring that applications deployed in our environments adhere to organizational security standards and compliance requirements. Lead adoption of our security tools within other teams ensuring the inputs and outputs are fully integrated enabling a complete security function. Design, implement, test, document, and support integration of security tools and technologies in pipelines, Also, assist the product teams in related activities. Work closely with cross-functional Infrastructure teams on Automation and Orchestration. Create and document detailed designs for simple software applications or components. Apply agreed modelling techniques, standards, patterns, and tools. Work within a matrix organizational structure, reporting to both the functional manager and the project manager. What Should You Have Bachelors’ degree in Information Technology, Computer Science or any Technology stream. Working experience in cloud environments AWS must have and good to have Azure, or GCP. Understanding of OWASP Top 10 security risks and mitigation strategies, relevant NIST standards, and Zero Trust principles. Familiarity with programming/scripting languages like Python, Bash, Terraform, Ansible, JSON, PowerShell, or JavaScript for automating tasks. Familiarity with software development/delivery lifecycle and related technologies 7+ years of hands-on experience working with network protocols, firewalls, intrusion detection systems, encryption technologies, and endpoint security solutions. Proficiency in security tools in the areas of cloud, application, endpoint, network or identity, vulnerability scanners, and malware analysis platforms. Knowledge of authentication methods, identity management, and security access protocols (e.g., SSO, MFA, LDAP). Ideally AWS certified. Good interpersonal and communication skills (verbal and written). Relevant certifications (e.g., CISSP, CISM, CEH, CompTIA Security+) are often required or highly desirable. Proven record of delivering high-quality results. Product and customer-centric approach. Innovative thinking, experimental mindset. Our technology teams operate as business partners, proposing ideas and innovative solutions that enable new organizational capabilities. We collaborate internationally to deliver services and solutions that help everyone be more productive and enable innovation. Who We Are We are known as Merck & Co., Inc., Rahway, New Jersey, USA in the United States and Canada and MSD everywhere else. For more than a century, we have been inventing for life, bringing forward medicines and vaccines for many of the world's most challenging diseases. Today, our company continues to be at the forefront of research to deliver innovative health solutions and advance the prevention and treatment of diseases that threaten people and animals around the world. What We Look For Imagine getting up in the morning for a job as important as helping to save and improve lives around the world. Here, you have that opportunity. You can put your empathy, creativity, digital mastery, or scientific genius to work in collaboration with a diverse group of colleagues who pursue and bring hope to countless people who are battling some of the most challenging diseases of our time. Our team is constantly evolving, so if you are among the intellectually curious, join us—and start making your impact today. #HYDIT2025 Search Firm Representatives Please Read Carefully Merck & Co., Inc., Rahway, NJ, USA, also known as Merck Sharp & Dohme LLC, Rahway, NJ, USA, does not accept unsolicited assistance from search firms for employment opportunities. All CVs / resumes submitted by search firms to any employee at our company without a valid written search agreement in place for this position will be deemed the sole property of our company. No fee will be paid in the event a candidate is hired by our company as a result of an agency referral where no pre-existing agreement is in place. Where agency agreements are in place, introductions are position specific. Please, no phone calls or emails. Employee Status Regular Relocation VISA Sponsorship Travel Requirements Flexible Work Arrangements Hybrid Shift Valid Driving License Hazardous Material(s) Required Skills Design Applications, Information Security, Security Operations, SLA Management, Software Development, Software Development Life Cycle (SDLC), System Designs, Technical Advice, Vulnerability Scanning Preferred Skills Job Posting End Date 06/20/2025 A job posting is effective until 11 59 59PM on the day BEFORE the listed job posting end date. Please ensure you apply to a job posting no later than the day BEFORE the job posting end date. Requisition ID R335936 Show more Show less

Come work at a place where innovation and teamwork come together to support the most exciting missions in the world! We are looking for a highly skilled and motivated Lead Security Engineer to join our Vulnerability Detection Signature Research team. In this role, you will take charge of researching, developing, and delivering vulnerability detection signatures for our scanning products. You will oversee and resolve vulnerability scanning and detection issues that impact our customers, leading the sustenance research team to ensure expert handling of customer concerns and managing escalations. Collaboration with cross-functional teams will be key to resolving complex challenges. This position demands a strong technical foundation in vulnerability management, scanning tools, and security best practices, along with proven leadership experience in managing teams and addressing customer-facing escalations. Responsibilities Lead the development, implementation, and continuous improvement of vulnerability detections and scanning processes for customers Lead and manage customer calls and meetings, ensuring that all issues are clearly understood and effectively addressed. Investigate, analyze, and troubleshoot vulnerability detection issues reported by customers, then modify the code to resolve these problems. Build automation for day-to-day tasks. As a Lead Security Signature Engineer, you will also dedicate time to staying up-to-date with the latest vulnerabilities, attacks, and countermeasures Coordinate team tasks, assign priorities, and ensure timely resolution of customer issues. Externalize research by writing blog posts, presenting at security conferences, etc. As a Lead Security Signature Engineer, you would also work alongside information security engineers to execute internal projects. Qualifications 7+ years of industry experience in network and systems security Proven experience in leading and mentoring teams in a technical environment Demonstrated experience with vulnerability scanning tools and vulnerability management processes In-depth knowledge of protocols such as TCP/IP, HTTP, FTP, SSH and SSL Strong understanding of common security vulnerabilities (e.g., OWASP Top 10, CVEs, etc.) and their remediation Experience with scripting languages, including Python and Bash Experience with network analysis tools, analysis of packet captures. Proficient with regular expressions. Ability to shift priorities as needed and demanded by the customer requirements System administrator experience on Windows or Unix platforms Strong understanding of VPN, Firewalls, Intrusion detection systems (IDS) Proven ability to manage customer escalations and deliver effective solutions under pressure Excellent written and verbal communication skills Additional Plus Competencies Understanding of Lua (preferred), Java. Knowledge of Virtualization software (VMWare, Virtual PC/Virtual Box, XEN, etc) Experience in cloud security (AWS, Azure, GCP) and containerized environments (Docker, Kubernetes). Able to handle projects independently Experience in developing security-related tools/programs. OSCP, CISSP or SANS GIAC certifications Show more Show less

What You’ll Do This security analyst will be part of a team tasked with identifying, tracking and verifying the remediation of vulnerabilities in internal and external applications and systems. This role involves performing deep-dive analysis of vulnerabilities, operating vulnerability scanning tools, and building relationships with other groups within the IT organization. You will work closely with IT infrastructure, product teams, supply chain, and Cyber Security operations to reduce Eaton's attack surface. Stay up to date with the evolving technological and threat landscape and its potential impact on modern and legacy technologies, applications, and business processes. Monitor for vulnerabilities within applications, endpoints, databases, networking, and mobile and cloud services. Conduct continuous discovery, vulnerability assessment and remediation status of enterprise-wide assets. Advise employees responsible for remediation on the best reduction and remediation practices. Review and analyze vulnerability data to identify trends and patterns. Regularly report on the state of vulnerabilities, including their criticality, exploit probability, business impact, and remediation strategies. Serve as a point of contact for new and existing vulnerability-related issues. Collaborate with business teams and cyber security stakeholders to ensure appropriate governance structures are in place and that risks are documented. Provide vulnerability education and guidance to stakeholders, developers, IT and business leaders as needed. Maintain documentation related to vulnerability policies and procedures. Assist maintaining records for Eaton assets, their vulnerability state, remediation recommendations, overall security posture and potential threat to the business. Identify areas of opportunity for improvement and automation within team processes. Perform other duties as assigned, including on-call rotations. Qualifications Bachelor’s degree in a technical discipline Overall 5-8 years of experience 3+ years of experience in security operations or vulnerability management. Skills Ability to analyze and understand vulnerabilities and exploits Proficiency with commercial and open source vulnerability management solutions. Understanding of TTPs, MITRE ATT&CK framework, CVSS, OSINT, and deception techniques. Understanding of operating systems, applications, infrastructure, and cloud computing services. Understanding of OWASP, CVSS, MITRE ATT&CK framework. Capacity to comprehend technical infrastructure, managed services, and third-party dependencies. Preferably some experience with vulnerability management across AWS, Azure, or Google cloud Platform. Experience in Python or Powershell, with an emphasis on scripting, automation, and integrations. Experience in threat hunting or red teaming exercises is a plus. Strong communication skills: Ability to communicate effectively across all levels of the organization. Project management skills: Strong project management, multitasking, and organizational skills ]]> Show more Show less

Hiring Manager: Abhishar Balodhi Recruiter: Archana SM Location: Gurugram Carrer Level: E Why BT We’ve always been an organisation with a purpose; to use the power of communication to make a better world. You can trace this back to our beginning as pioneers of the world’s firs telecommunications company. At our heart we’re a technology company with research and innovation in our bones and a desire to be personal, simple, and brilliant for our customers - those are the values we live by whilst also creating an inclusive working environment where people from all backgrounds can succeed.Our pursuit of progress over the past 180 years has established BT as a strong, successful brand, with huge scale capable of achieving great things. From supporting emergency services, hospitals, banks and keeping economies around the world online, safe and secure, to delivering large scale technology infrastructure like the creation of BT Sport. Today in this fast-changing, always on, digital world our purpose remains true. Yet the market conditions, regulations and competition we face are tougher than ever before. So, if you have the drive, optimism and resilience to help propel us forward we’ll offer unrivalled personal development, a wealth of opportunities to learn, experience new things and pursue new careers. If that’s you and what you’re looking for, we’d love you to be part of our future. Why this job matters As an experienced Information Security Services provider, we will help lead a highly motivated team laser-focused on analysing, designing, developing and delivering solutions built to stop adversaries and strengthen your operations Our Competent individuals and Skilled leadership will provide you incident response, risk reviews and vulnerability assessments, identifying threats, all of which ladder up to driving secure solutions. What I’ll Be Doing – Your Accountabilities Accountable for delivering vulnerability assessments and penetration tests. Responsible for increasing individual technical skill whilst also delivering BAU. Accountable for increasing capability of the penetration testing team through web application, network & mobile skill acquisition. Accountable for support leadership in setting strategy for the team moving forward. Responsible for contributing to the positive research and technical capability of BT security. To support and maintain the BT Business Support – Protect BT ISO27001 certificate for Offensive Security team The Skills You Need Pentest Skills – Web application pen test (OWASP, NIST framework), Network pen test (Linux, windows), API & Mobile pen test. Networking Skills – TCP/IP packet level understanding, Routing, Switching, firewall understanding. Linux Skills – Linux directory structure & basic command line knowledge from pentest/vulnerability assessment standpoint. Vulnerability management- This requires understanding of vulnerability assessment framework (CVE/CVSS) and Security assessment tools (such as Nmap, Metasploit, Burp Suite, SQL map, Nessus) Regulatory Understanding- PCI DSS guidelines, GDPR. Leadership Accountabilities Accountabilities of the job: Solution focused achiever: We need this person to focus on delivering exceptional penetration testing services Customer champion: we are transforming how we communicate with our customers and need responsible person with a customer-focused attitude. Change agent: We need a tester who sees our processes and immediately thinks of better ways to do what we are doing and then leads that change. Experience You Would Be Expected To Have Mandatory 2-4 Years experience in the field on pen testing. Mandatory Bachelor’s degree or higher preferred. CEH, OSCP, CREST, LPT certifications are highly preferred. Ability to understand packet level TCP/IP knowledge. Good scripting knowledge (e.g. Python) will be highly preferred. Capable of working successfully with end customers PREFERRED. BT is part of BT Group, along with EE, Openreach, and Plusnet. Millions of people rely on us every day to help them live their lives, power their businesses, and keep their public services running. We connect friends to family, clients to colleagues, people to possibilities. We keep the wheels of business spinning, and the emergency services responding. We value diversity and celebrate difference. ‘We embed diversity and inclusion into everything that we do. It’s fundamental to our purpose: we connect for good.’ We all stick to the same values: Personal, Simple, and Brilliant. From day one, you’ll get stuck in to tough challenges, pitch in with ideas, make things happen. But you won’t be alone: we’ll be there with help and support, learning and development. This is your chance to make a real difference to the world: to be part of the digital transformation of countless lives and businesses. Grab it. Show more Show less