1458 Owasp Jobs - Page 23

🚀 We're Hiring: Cyber Security Trainer! 🔐 Are you passionate about Cyber Security and love sharing knowledge? We’re looking for a Cyber Security Trainer to conduct engaging seminars and hands-on training sessions for college students and corporate professionals. What You’ll Do: ✅ Conduct training on Cyber Security, Web Application Security, and VAPT ✅ Design hands-on labs and real-world practice sessions ✅ Develop and enhance course materials, assignments, and presentations ✅ Deliver webinars, workshops, and corporate training programs ✅ Assess trainee proficiency and provide constructive feedback ✅ Stay updated on the latest security threats, vulnerabilities, and best practices ✅ Travel to different locations (as needed) for training sessions What We’re Looking For: 🔹 Experience as a Cyber Security Trainer in areas like Network Security, Application Security (Web, Mobile, API), Cloud Security, and Security Operations 🔹 Hands-on expertise in Penetration Testing, OWASP Top 10, and Ethical Hacking 🔹 Strong communication, presentation, and organizational skills 🔹 Passion for teaching and mentoring security professionals 🔹 Relevant Cyber Security Certifications are a plus! Join us in shaping the next generation of cybersecurity experts! 🚀 📩 Interested? Apply now or share with someone who might be a great fit! #CyberSecurity #Hiring #Training #EthicalHacking #PenetrationTesting #OWASP #CloudSecurity #InfoSec Show more Show less

Role: Senior Security Specialist Location : Bangalore Working Model : Hybrid Final Round Interview : F2F Summary of essential job functions The overall responsibility of the team is to provide assurance to the management on the Information Security, Compliance and Risk Management of the organization globally. The candidate would be expected to lead security assessments of Products and Infrastructure globally. Education, Certification and Experience: Qualification Required: Bachelor/Master’s degree in Computer/ Information science, Software Engineering, Cybersecurity, or a related field Certification preferred: OSCP, OSWE, OSEP, ECSA|LPT, CPT, CEH Minimum experience: 08-10 years in Vulnerability Assessment and Penetration Testing- Thin & Thick Client, API , Infrastructure, Cloud, Mobile Competency Requirements: Performs a combination of duties in accordance with departmental guidelines: Hands-on experience in Vulnerability Assessment (VA) and Penetration Testing (PT) for Web, APIs, AI/ML models, Mobile , Network, and Infrastructure. Strong command of OWASP Top 10 with practical knowledge of attack vectors and mitigation strategies. Familiarity with industry standards and frameworks such as OSSTMM, OQASP, CESG, CREST, NIST, ISSAF, and PTES. Expertise in Secure Development Lifecycle (SDLC), including Threat Modeling, Secure Coding Practices, and Security Assessments. Proficient in both Static and Dynamic Application Security Testing (SAST, DAST, IAST), and Software Composition Analysis (SCA). Experience conducting secure code reviews and identifying logic flaws in code bases written in Java, .NET, C/C++, Python, etc. Knowledge of cryptographic protocols, secure communication, data security and key management. Hands-on with commercial and open-source tools: Burp Suite, OWASP ZAP, Acunetix, AppSpider,SQLMap, Nmap, Metasploit, Nessus, OpenVAS, Fortify, Checkmarx, Veracode, SonarQube, NexusIQ and Snyk. Proficient in assessing mobile applications (thick/hybrid clients) using tools like Dex2jar, ADB, Frida. Exposure to AuthN/AuthZ protocols such as OAuth, SAML, OIDC; ability to read, write, and interpret application logic. Familiarity with vulnerability standards: CVSS, CVE, CWE, CAPEC; and patch management lifecycle. Experience automating tasks via shell scripting and Python/Ruby/Php etc. Proficiency in secure code development and reviewing DAST/SAST reports across languages. Understanding security aspects in AWS, Azure, and GCP including IAM, VPC/VNet, S3/Blob storage, API gateway, Load Balancers, WAF, Containers (Docker), and Kubernetes. Experience in infrastructure/network penetration testing and exploitation techniques on Windows/Linux environments. Experience in mentoring, leading teams, and managing security assessments under tight deadlines. Manage third-party security assessments, including vendor risk evaluations, engagement oversight, and ensuring compliance with organizational security standards. Proven ability to provide technical oversight and drive engagement quality across security projects. Exposure to agile/scrum development methodologies and ability to work with cross-functional teams. Familiarity with security standards like PCI DSS, SOC, ISO 27001. Participation in bug bounty program and CTFs is a strong plus. Proactive learning approach, staying updated with evolving cybersecurity trends and technologies. Job Responsibilities: Plan, conduct, and close end-to-end Vulnerability Assessments and Penetration Tests for Web Applications, APIs, Mobile Apps, Thick Clients, Infrastructure, and Cloud environments. Perform both manual and automated security assessments to identify, validate, and prioritize vulnerabilities. Review application code in various programming languages and provide actionable remediation recommendations. Reproduce reported vulnerabilities with proof-of-concept (PoC) and assess associated risks. Evaluate new security tools and products for adoption and integration. Guide development teams on Secure Coding standards and OWASP-aligned practices. Lead and contribute to secure SDLC processes, threat modeling workshops, and risk reviews. Manage and triage security bugs from Bug Bounty programs, working closely with engineering teams to ensure timely resolution. Maintain and improve the security posture of applications across business units, aligning with best practices. Act as a security advisor on project teams, influencing architecture and design decisions. Drive security awareness initiatives and conduct training sessions for developers and QA teams. Update and maintain InfoSec policies and procedures in line with emerging threats, technologies, and compliance requirements; provide support to both internal and external auditors during security assessments and audits. Other Requirements: Strong ethics and understanding of ethics in business and information security. Proficiency in English (both written and oral communication skills). Ability to complete tasks and deliver professionally written reports for clients. Ability to present findings to technical staff and executives. Ability to interact with 247 internal stakeholders to review their requirements. Should be able to think “out of the box” and implement new attack vectors. Self-motivated, curious, knowledgeable pertaining to news and current events Show more Show less

Job Title: Penetration Tester Location: Remote Experience Required: 5 Years Employment Type: Full-Time Job Summary: We are seeking a highly skilled and experienced Senior Penetration Tester with 5 years of hands-on experience in offensive security. The ideal candidate will be responsible for conducting advanced security assessments, simulating real-world cyberattacks, and providing actionable recommendations to enhance the organization’s security posture. This role demands deep technical expertise, strong analytical skills, and the ability to communicate effectively with both technical and non-technical stakeholders. Key Responsibilities: Plan, execute, and document black-box, grey-box, and white-box penetration tests across various environments (web apps, networks, APIs, mobile, cloud, etc.) Conduct Red Team/Blue Team exercises and collaborate with threat hunters and SOC teams. Identify, exploit, and report vulnerabilities in systems, applications, and infrastructure. Develop and maintain custom exploitation tools, scripts, and payloads . Perform social engineering engagements , including phishing simulations and physical assessments (where applicable). Provide detailed, risk-based reporting , including technical findings, proof-of-concept exploits, and remediation guidance. Stay current with emerging threats, vulnerabilities, and tools in the cybersecurity domain. Mentor junior team members and contribute to the development of internal testing methodologies and frameworks. Participate in threat modeling, architecture reviews, and security design discussions . Required Skills and Qualifications: 5 years of professional experience in penetration testing, red teaming, or offensive security . Proficiency in tools such as Burp Suite, Metasploit, Nmap, Wireshark, Cobalt Strike, Nessus, etc. Deep understanding of OWASP Top 10 , MITRE ATT&CK , and NIST security frameworks . Strong knowledge of network protocols, web application architectures, cloud environments (AWS/Azure/GCP), and secure coding practices. Experience with manual testing techniques and not just automated scanners. Strong scripting and automation skills in Python, PowerShell, Bash, or Go . Experience with Active Directory exploitation , privilege escalation, and lateral movement techniques. Demonstrated ability to write clear, concise, and detailed technical reports. Strong verbal and written communication skills. Preferred Certifications (any of the following): Offensive Security Certified Professional (OSCP) Offensive Security Certified Expert (OSCE) Certified Red Team Professional (CRTP) GIAC Penetration Tester (GPEN) Certified Ethical Hacker (CEH) CREST Registered Tester or equivalent Show more Show less

Role In this key position, you will: • Design and develop high-performing Java and running on Linux. Ability to work on COBOL and mainframe (z/OS) technologies is a plus. • Participate in team prioritization discussions with product/business stakeholders. • Automate build, operation, and run aspects of software. • Ensure scalability, security, and reliability of applications on Linux-based and mainframe-based infrastructures. • Translate complex technical solutions into business impacts for non-technical audiences. • Lead mainframe modernization efforts, bridging legacy COBOL, JCL, DB2 systems with Linux and Java applications. • Perform demos/acceptance discussions in interaction with product owners. • Conduct design reviews, code reviews, and uphold coding standards. • Work closely with DevOps to automate deployments, and with BizOps to troubleshoot and resolve application, performance, and reliability issues. • Stay up to date with emerging technologies. All About You The ideal candidate for this position should possess: • 5+ years of software development experience in Java/Linux with strong shell scripting and Linux command line skills. Expereince working on Mainframe technologies is a plus. • 2+ years of experience with file transfer applications like Connect Direct, and file transfer protocols like SFTP, FTPS, etc.. • 2+ years of experience writing, optimizing, and automating tasks using Linux shell scripting. • Hands-on experience with IBM mainframe technologies, including COBOL, JCL, DB2, VSAM, CICS, and z/OS. • Expert in SQL queries and relational databases (DB2, Oracle, PostgreSQL) • Familiar with secure coding standards (e.g., OWASP, CWE, SEI CERT) and vulnerability management. • Awareness of security standards and RFC’s such as X.509 Certificates, SSH Keys, PGP encryption. • Has skills to orchestrate release workflows and pipelines and apply standardized pipelines via APIs to achieve CI and CD objectives using industry standard tools (e.g., Jenkins, XL Release, others). • Understands how to build robust tests to minimize defect leakage by performing regression, performance, deployment verification, and release testing. • Good knowledge of Scaled Agile Framework (SAFe). Show more Show less

We're Hiring! Our Client, one of the leading global financial services firms providing a wide range of investment banking, securities, investment management and wealth management services. The ideal candidate will be familiar with the full software design life cycle. Penetration Tester: Years of Experience : 2 To 9 years Location - Bangalore Joining : Only immediate joiner to Serving Notice Direct Responsibilities To perform Penetration testing (Gray Box and/or Black Box), for Web applications, Thick Client, API, and mobile applications. Understand and deep knowledge of application security engineering principles to follow secure development practices which includes secure build processes, secure code review, security testing. Understanding of the security tools in DevOps Processes Knowledge of one or more scripting languages for automation Collaborate with the developers to help them understand the vulnerabilities reported in application . Technical & Behavioral Competencies: Clear understanding of OWASP Top 10 - application security risks Tools/OS: Burp Suite, OWASP ZAP, Kali Linux Manual Security Testing & Analysis, Security Test Designing Excellent Interpersonal and presentation skills Strong in verbal and written communication Good analytical skills Strong Time Management Must be flexible, independent, self-motivated. Team Player Interested professionals kindly forward your updated CV to below mentioned email id Thanks and Regards, Sarulatha L Senior Executive - Talent Acquisition Teamware Solutions a division of Quantum Leap Consulting Pvt Ltd. Chennai E: sarulatha.l@twsol.com Show more Show less

Themesoft is seeking full-time Java Web Application Developers for one of our clients. Experience: 6-10 years of experience is mandatory. Location: Chennai (Hybrid) Position: Senior Java Developer Type: Full-Time Notice Period: Maximum 45 days of Notice period 🛠 Key Responsibilities: Apply secure coding practices to legacy codebases built with JSP and traditional Java frameworks, with emphasis on mitigating XSS and related vulnerabilities. Upgrade outdated libraries and dependencies (e.g., commons-fileupload, springframework) to address known security issues. Work collaboratively in a Git-based environment , contributing to code reviews and adhering to established workflows.0 ✅ Requirements: 5+ years of hands-on experience in Java web application development Strong proficiency in JSP , Servlets , and legacy Java web frameworks Proven experience managing and upgrading dependencies using Maven or Gradle Experience using Eclipse IDE for Java development Solid understanding of secure coding principles and familiarity with the OWASP Top 10 Comfortable with Git version control, including branching strategies, pull requests, and code reviews Strong communication skills with the ability to work both independently and in distributed teams If you are interested, share updated resume with mythili@themesoft.com #SeniorJavaDeveloper #JavaJobs #ChennaiJobs #HybridJobs #FullTimeJob #JavaDevelopment #SecureCoding #OWASPTop10 #LegacyCode #Maven #Gradle #EclipseIDE #GitWorkflow #JavaCareers #HiringNow #TechJobsIndia #SoftwareEngineering #BackendDeveloper #JavaExperts #ExperiencedProfessionals Show more Show less

The Security Operation Centre (SOC) Information Security Analyst are the first level responsible for ensuring the protection of digital assets from unauthorized access, identify security incidents and report to customers for both online and on-premises. The position monitors and responds to security events from managed customer security systems as part of a team on a rotating 24 x 7 x 365 basis. They are alert and aggressive to filter out suspicious activity and mitigate risks before any incident occur. Your background should include exposure to security technologies including firewalls, IPS/IDS, logging, monitoring and vulnerability management. You should understand network security practices. Excellent customer service while solving problems should be a top priority for you. Requirements Must-haves: 2-3 Year Experience as SOC Analyst – (Experience in SIEM Tool ELK & Wazuh preferable) Process and Procedure adherence General network knowledge and TCP/IP Troubleshooting Ability to trace down an endpoint on the network, based on ticket information Familiarity with system log information and what it means Understanding of common network services (web, mail, DNS, authentication) Knowledge of host-based firewalls, Anti-Malware, HIDS Knowledge of creating and modifying the dashboards. Understanding of common network device functions (firewall, IPS/IDS, NAC) General Desktop OS and Server OS knowledge TCP/IP, Internet Routing, UNIX / LINUX & Windows Deep Knowledge in SIEM, Ticketing tool, EDR, Vulnerability Management, MimeCast, DMARC tool. Excellent written and verbal communication skills. Good to have: · Good to have industry certifications on any SIEM Platform, CEH, C|SA, CompTIA Security+ & Others Main Responsibilities Tier 1 SOC analysts are incident responders, remediating serious attacks escalated from junior analyst, assessing the scope of the attack, and affected systems, and collecting data for further analysis. Work proactively to seek out weaknesses and stealthy attackers, review vulnerability assessments(CVEs) on monitored assets. Focus more on doing deep dives into datasets to understand what's happening during and after attacks. Leading efforts to counter SLA breaches and anticipating the likelihood of future security alerts,incidents. Monitor security events from the various SOC entry channels (SIEM, Tickets, Email and Phone),based on the security event severity and suspicious activities, escalate to managed service support teams, tier 2 information security specialists, and/or customer as appropriate to perform further investigation and resolution. Works as a Team lead for the SOC Analysts helping them to ensure that corporate data and technology platform components are safeguarded from known threats. Analyse the Events & incidents and identify the root cause. Assist in keeping the SIEM platform up to date and contribute to security strategies as an when newthreats emerge. Staying up to date with emerging security threats including applicable regulatory security requirements. Bring enhancements to SOC security process, procedures, and policies. · Document and maintain customer build documents, security procedures and processes. Document incidents to contribute to incident response and disaster recovery plans. Review critical incident reports and scheduled weekly & monthly reports and make sure they are technically and grammatically accurate. Keep updated with new threats, vulnerabilities, create/contribute to use cases, threat hunting etc. Keep updated with the likes of OWASP Top 10 vulnerabilities, Bleeping Computer articles etc., for acquiring the knowledge over current threats in security perspective. Other responsibilities and additional duties as assigned by the security management team or service delivery manager. Skills: Excellent event or log analytical skills Proven experience as IT Security Monitoring or similar role Exceptional organizing and time-management skills Very good communication abilities ELK, Wazuh, Splunk, ArcSight SIEM management skills Reporting Job Types: Full-time, Permanent Pay: Up to ₹70,000.00 per month Benefits: Internet reimbursement Schedule: Day shift Supplemental Pay: Performance bonus Application Question(s): Do you have any experience in SIEM Tools? Experience: minimum: 2 years (Required) Language: English (Required) Location: Kochi, Kerala (Required) Work Location: In person

Company: Ajmera Infotech Private Limited (AIPL) Location: Hyderabad (On-site) Experience: 3 – 5 years Position Type: Full-time, Permanent Shape Mobile Experiences That Save Lives Ajmera Infotech (AIPL) is home to 120+ engineers powering planet-scale systems for global innovators. We’re expanding our mobile team with iOS Developers who will contribute to FDA-compliant, SwiftUI-first apps for a billion-dollar health-tech platform (client name confidential). Your work will run on iPhones and iPads used daily by clinicians and patients worldwide—software that simply cannot fail. What Makes This Role Exciting Greenfield + Legacy modernization – build new SwiftUI features and support migration of existing UIKit code to clean architecture. Deep integration – work with BLE peripherals, secure data sync, offline workflows, Core Bluetooth, HealthKit, and biometrics. Hands-on impact – contribute to architecture decisions, testing strategies, CI/CD pipelines, and performance enhancements. Global collaboration – interact with US & EU engineers for reviews, coding standards, and DevOps practices. Compliance exposure – learn to build in alignment with FDA, HIPAA, and 21 CFR Part 11 regulations. Requirements Key Responsibilities Build and maintain scalable iOS apps using Swift (majority SwiftUI). Assist in migrating UIKit components to SwiftUI using MVVM / Clean Architecture principles. Integrate REST APIs, gRPC, and BLE devices into real-world use cases. Optimize app performance, memory usage, accessibility, and security (OWASP MASVS compliance). Write unit, UI, and integration tests; contribute to CI/CD pipelines (GitHub Actions / Azure DevOps). Participate in code reviews and uphold coding standards. Collaborate with product, design, backend, and QA teams to deliver sprint goals and regulatory artifacts. Contribute to mobile build/release processes and post-release issue monitoring. Must-Have Skills 3–5 years of iOS development experience with 1–2 years of hands-on SwiftUI work. Strong Swift and Combine fundamentals. Experience implementing MVVM, working with Core Bluetooth, URL Session/gRPC, and background processing. Proficiency with XCTest, XCUITest, and code quality tools like SwiftLint or Sonar. Exposure to App Store submission, TestFlight, and crash analytics tools (Crashlytics, Sentry). Solid understanding of Git and Agile-Scrum workflows. Nice-to-Have Experience in regulated domains such as medical, healthcare, or finance. Familiarity with cross-platform tools like Flutter or React Native. Understanding of GraphQL, SPM, or Kotlin Multiplatform (KMM). Exposure to Azure DevOps or GitHub Actions for mobile CI/CD. Benefits Benefits Medical insurance for you and your family. Competitive salary with performance-based increments. Flexible work hours and paid time off. High-end development equipment and device lab access. Sponsored training, certifications, and tech events. Apply Now Send your résumé or GitHub profile to jobs@ajmerainfotech.com with the subject: “iOS Developer II | Hyderabad” Show more Show less

About Marvell Marvell’s semiconductor solutions are the essential building blocks of the data infrastructure that connects our world. Across enterprise, cloud and AI, automotive, and carrier architectures, our innovative technology is enabling new possibilities. At Marvell, you can affect the arc of individual lives, lift the trajectory of entire industries, and fuel the transformative potential of tomorrow. For those looking to make their mark on purposeful and enduring innovation, above and beyond fleeting trends, Marvell is a place to thrive, learn, and lead. Your Team, Your Impact At Marvell, we are looking for a manager for Vulnerability Management, you will be responsible for developing and implementing strategies to enhance and mature the enterprise vulnerability management program. The role ensures the identification, assessment, and remediation of security vulnerabilities across the enterprise. What You Can Expect Vulnerability Management Program Development – design and implement a comprehensive vulnerability management program. Oversee vulnerability scanning tools to identify security vulnerabilities in enterprise systems, networks, and applications. Own and develop policies, procedures, and best practices for vulnerability scanning, assessment, and remediation. Perform risk-based prioritization of identified vulnerabilities. Collaborate with security analysts to conduct detailed assessments of critical vulnerabilities and develop POAM Work with cross-functional teams to develop remediation plans and timelines. Ensure timely patching or mitigation of vulnerabilities. Partner with IT and business teams to establish patching cadence, work with the change manager, and bring an automated patching process Develop and implement prioritized vulnerability remediation plans and work collaboratively with business. Track and report on remediation progress to stakeholders and leadership. Provide support for incident response and new systems onboarding processes in the application/system/infrastructure vulnerability security domain. Stay updated on emerging threats and vulnerabilities (emerging threats, zero days, latest attacks related to exploitation of vuln) through threat intelligence sources. Integrate threat intelligence into the vulnerability management process to address high-risk areas proactively. Build executive and business information security officer dashboards for the organization Define metrics and reporting to track program effectiveness and improvement. Develop and track key performance indicators (KPIs) for the vulnerability management program. Lead and manage vulnerability management projects, such as implementing new tools or processes. Lead a team of security engineers, providing mentorship and performance management in improving and automating processes wherever possible. Ensure compliance with security frameworks (e.g., ISO 27001, NIST CSF, TISAX, NIST 800-171, and SOX). Prepare for and support internal and external audits related to vulnerability management. What We're Looking For 10+ years of experience in Cybersecurity, vulnerability management, and security operations Bachelor’s Degree in Computer Science, Information Systems, Cybersecurity, or a related field Demonstrated background in deploying, owning, and configuring enterprise-level security tools/technology Experience scaling an enterprise vulnerability program across multiple environments, driving owner accountability and prioritization Hands-on experience and knowledge of vulnerability management tools such as Qualys, Rapid7, Tenable, and orchestration via SOAR or other platforms to automate vulnerability management program. In-depth knowledge across core domains – Vulnerability Management, External Attack Surface Management, Container Scanning, and Security Configuration Management Well-versed in penetration testing, vulnerability scanning, and red teaming methodologies and frameworks such as OWASP Top 10 and CWE 25. Demonstrated knowledge of networking and systems, and current vulnerability and threat trends. Strong understanding of network protocols, operating systems, and security technologies. Experience improving vulnerability prioritization models Excellent communication, collaboration, and interpersonal skills Cyber certifications (e.g., CISM, CISSP) or equivalent Additional Compensation And Benefit Elements With competitive compensation and great benefits, you will enjoy our workstyle within an environment of shared collaboration, transparency, and inclusivity. We’re dedicated to giving our people the tools and resources they need to succeed in doing work that matters, and to grow and develop with us. For additional information on what it’s like to work at Marvell, visit our Careers page. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability or protected veteran status. Show more Show less

Noida 2+ Years As per the Company Standards We are looking for a detail-oriented and analytical Software Test Engineer to join our dynamic team. You will be responsible for ensuring our software is robust, reliable, and meets the highest standards before it reaches our users. This role requires a passion for quality, a knack for breaking things, and a commitment to continuous improvement in a fast-paced, agile environment. Job Responsibilities Test Planning & Strategy: Design and develop comprehensive test plans and test cases based on product requirements and technical specifications. Manual & Automated Testing: Execute manual and automated tests across various platforms (web, mobile) to identify, document, and track defects from discovery to resolution using tools like Jira. Automation Development: Develop, maintain, and enhance automated test scripts and frameworks using tools like Selenium, Cypress, or Playwright to improve testing efficiency and coverage. Performance & Load Testing: Plan andexecute non-functional tests to ensure system performance, stability, andscalability under load. Security Testing: Perform baseline securitytesting to identify common vulnerabilities (such as OWASP Top 10) and work withthe development team to ensure remediation. Reporting & Analysis: Create detailed and understandable bug reports and test summary reports to communicate testing progress and product quality to stakeholders. Required Skills 2+ years of hands-on experience in software quality assurance and testing. Strong understanding of STLC, SDLC, and various testing methodologies (e.g., Agile, Scrum). Proven experience in writing clear, concise, and comprehensive test plans and test cases. Hands-on experience with automated testing tools such as Selenium , Cypress , or Playwright . Solid knowledge of at least one programming/scripting language, preferably Python or Java . Knowledge of common security vulnerabilities (e.g., OWASP Top 10) and basic security testing principles. Experience with API testing tools like Postman or Rest-Assured . Familiarity with bug tracking and project management tools like Jira or Azure DevOps . Excellent problem-solving skills and a keen eye for detail. Strong verbal and written communication skills ; able to articulate complex issues to both technical and non-technical team members. Nice-to-have Experience with performance and load testing tools such as JMeter or LoadRunner . Knowledge of CI/CD pipelines and experience integrating automated tests using tools like Jenkins or GitHub Actions . Familiarity with testing on cloud platforms ( AWS , Azure , or GCP ). Exposure to security testing principles and tools. Understanding of database concepts and experience with SQL .

Any certifications CEH(Mandatory), OSCP, CCSP Hands-on knowledge of Security testing methodologies like OWASP Top 10, SANS 25 etc., Ability to perform automated and manual hands-on penetration security testing e.g. DAST, SAST and SCA, identifying security risks within applications, cloud infrastructure, security controls and Network systems. Experience with penetration testing tools (e.g. Burp) Extensive knowledge of attack payloads for discovering security vulnerabilities Plan, execute, and report on all testing activities and outcomes Create findings reports and communicate to stakeholders Must possess at least 5 years of experience in delivering VAPT in Web(Thin and Thick Client), Mobile and APIs Should have good and effective communication skills in English. (Oral and written) The successful candidate must be highly motivated, fast learner, flexible, willing to assume responsibility and deliver quality work on time Constantly identify opportunities for enhancing productivity using automation and process improvements. Exposure to scripting languages(e.g. Shell) Knowledge on DevSecOps Show more Show less

About Apply Digital Apply Digital is a global experience transformation partner. We drive AI-powered change and measurable impact across complex, multi-brand ecosystems. Leveraging expertise that spans across the customer experience lifecycle from strategy, design to engineering and beyond, we enable our clients to modernize their organizations and maximize value for their business and customers. Our 750+ team members have helped transform global companies like Kraft Heinz, NFL, Moderna, Lululemon, Dropbox, Atlassian, A+E Networks, and The Very Group. Apply Digital was founded in 2016 in Vancouver, Canada. In the past nine years, we have grown to ten cities across North America, South America, the UK, Europe, and India. At Apply Digital, we believe in the “ One Team ” approach, where we operate within a ‘pod’ structure. Each pod brings together senior leadership, subject matter experts, and cross-functional skill sets, all working within a common tech and delivery framework. This structure is underpinned by well-oiled scrum and sprint cadences, keeping teams in step to release often and retrospectives to ensure we progress toward the desired outcomes. Wherever we work in the world, we envision Apply Digital as a safe, empowered, respectful and fun community for people, every single day. Together, we work to embody our SHAPE (smart, humble, active, positive, and excellent) values and make Apply Digital a space for our team to connect, grow, and support each other to make a difference. Visit our Careers page to learn how we can unlock your potential. LOCATION: Apply Digital is a hybrid friendly organization with remote options available if needed. The preferred candidate should be based in (or within a location commutable to) the Delhi/NCR region of India , working in hours that have an overlap with the Eastern Standard Timezone (EST). About The Client In your initial role, you will support Kraft Heinz, a global, multi-billion-dollar leader in consumer packaged foods and a valued client of ours for the past three years. Apply Digital has a bold and comprehensive mandate to drive Kraft Heinz’s digital transformation . Through implementable strategies, cutting-edge technology, and data-driven innovation we aim to enhance consumer engagement and maximize business value for Kraft Heinz. Our composable architecture, modern engineering practices, and deep expertise in AI, cloud computing, and customer data solutions have enabled game-changing digital experiences. Our cross-functional team has delivered significant milestones, including the launch of the What's Cooking App, the re-building of 120+ brand sites in over 20 languages, and most recently, the implementation of a robust Customer Data Platform (CDP) designed to drive media effectiveness. Our work has also been recognized internationally and has received multiple awards . While your work will start with supporting Kraft Heinz, you will also have future opportunities to collaborate with the global team on other international brands. THE ROLE: Apply Digital is seeking an Intermediate Front-end Software Engineer . The Intermediate Software Engineer role is an integral member of our engineering team, focused on providing robust technical solutions, strategic problem solving, and taking on increased leadership and mentorship opportunities. The individual in this role navigates complex learning objectives with minimal guidance, critically evaluates project technologies, and takes lead on medium-scale software projects. This role requires excellent communication skills, comprehensive technical documentation, and a strong commitment to professionalism and ethical conduct. The ideal candidate for this role has solid experience with Typescript and NextJs as well as content management systems such as Contentful. Strong English language proficiency and experience working with remote teams across North America and Latin America are required, as this role requires clear communication and coordination across distributed teams, including our clients. WHAT YOU’LL DO: Design and implement high-quality, test-driven frontend code for various client projects using TypeScript, Next.js and React. Optimize applications for Core Web Vitals (LCP, CLS, FID) to ensure high performance and superior user experience. Collaborate with designers and UX teams to implement seamless, accessible, and visually appealing interfaces. Implement components accurately based on highly specified figma designs or wireframes Define and maintain scalable component architecture using Storybook, and Tailwind CSS, or similar libraries. Understand and implement client-side state management solutions, React Query in particular. Work closely with backend teams to optimize REST API integrations, ensuring efficient data fetching and caching strategies. Create and maintain documentation, implement and follow best practices for development workflow. Collaborate effectively with team members to meet project deadlines. Contribute innovative ideas to ensure we deliver the best solutions for our clients. Stay updated on technology trends and continually enhance your skill set. WHAT WE’RE LOOKING FOR: Strong proficiency in English (written and verbal communication) is required. Experience working with remote teams in North America and LATAM, ensuring smooth collaboration across time zones. Solid Experience in TypeScript, with experience in modern Next.js (14+) and React (18+). Solid experience with modern CSS methodologies, specifically Tailwind CSS. Experience with modular front-end architectures, component-driven development, and design systems. Solid understanding of API consumption patterns, including REST, GraphQL and WebSockets. Experience with performance optimization techniques, including code-splitting, lazy loading, image optimization, and CDN strategies. Familiarity with headless CMS platforms, specifically Contentful. Some knowledge of front-end security best practices, including CSP, OWASP Top 10, and secure authentication/authorization mechanisms (OAuth, JWT). Ability to communicate effectively with technical and non-technical stakeholders. You should feel comfortable explaining technical concepts in simple terms. Experience working in fast-paced, Agile environments, balancing priorities across multiple projects. NICE TO HAVES: Experience with headless ecommerce platforms such as Commercetools. Understanding of containerization technologies for development environments. Understanding of Google Cloud Run as a web application run time environment. Back-end engineering experience, notably in NestJs. Experience with GCP and terraform. Experience with Edge computing and serverless deployments (Cloudflare Workers, Vercel). Experience with progressive web applications (PWAs) and service workers. Understanding of internationalization (i18n) and localization strategies. Familiarity with implementing A/B testing and personalization tools (Ninetailed, Segment). Familiarity with a11y and WCAG principles. Experience with CI/CD pipelines for front-end deployments (GitHub Actions preferred). #Promoted LIFE AT APPLY DIGITAL At Apply Digital, people are at the core of everything we do . We value your time, safety, and health, and strive to build a work community that can help you thrive and grow. Here are a few benefits we offer to support you: Location: Apply Digital is a hybrid friendly organization with remote options available if needed. The preferred candidate should be based in (or within a location commutable to) Delhi/NCR, with the ability to overlap with the US/NA times zones when required. Comprehensive Benefits: benefit from private healthcare coverage, contributions to your Provident fund, and a gratuity bonus after five years of service. Vacation policy: work-life balance is key to our team’s success, so we offer flexible personal time offer (PTO); allowing ample time away from work to promote overall well-being. Great projects: broaden your skills on a range of engaging projects with international brands that have a global impact. An inclusive and safe environment: we’re truly committed to building a culture where you are celebrated and everyone feels welcome and safe. Learning opportunities: we offer generous training budgets, including partner tech certifications, custom learning plans, workshops, mentorship, and peer support. Apply Digital is committed to building a culture where differences are celebrated, and everyone feels welcome. That’s why we value equal opportunity and nurture an inclusive workplace where our individual differences are recognized and valued. For more information, visit our website’s Diversity, Equity, and Inclusion (DEI) page. If you have special needs or accommodations at this stage of the recruitment process, please inform us as soon as possible by emailing us at careers@applydigital.com . Show more Show less

Cialfo is a leading platform connecting students, higher education institutions, and counselors through technology-driven solutions. Launched in 2017 with a mission to make education accessible to 100 million students, Cialfo provides a range of mobile and web solutions to students, K-12 institutions, and higher education institutions. We’re one of the fastest-growing tech startups in the region, consistently charting new heights! About This Role We are looking for a Quality Engineer to help our product team improve the quality of the software we develop. You will collaborate with the product team to understand how product features are meant to work and develop tests to validate and invalidate the features in development. You will participate in the product development process by maintaining and running test scenarios according to the feature being developed. If you are passionate about quality, we’d like to meet you. What You Will Be Doing Review and analyze the Cialfo platform and write test cases and test scripts to test the system. Review requirements, specifications, and technical design documents to provide timely and meaningful feedback. Create detailed, comprehensive, and well-structured test plans and test cases. Perform functional and non-functional testing as needed Troubleshoot and perform root cause analysis of the identified bugs/issues with short-term and long-term solutions. Identify, record, thoroughly document, and track bugs. Communicate efficiently with peers, Engineering, Design, and Product Managers regarding requirements and product issues. About You Qualifications 2+ years of professional experience as SQE in a manual capacity and minimum 1 year in automation testing is a mandate. Bachelor’s or Master’s in Computer Science, Software Engineering, or equivalent. Experience 2+ years of professional experience in non-functional areas: performance. Familiarity with tools like JMeter, and OWASP/ZAP will be considered a plus. Knowledge and experience of Test process in Agile. Knowledge and experience in using Test management and defect management tools i.e. TestRail, ALM, HPQC, Zephyr, JIRA with AIO, etc. Knowledge and experience in API testing using Postman. Sound knowledge of Software Development Life Cycle (SDLC) with experience in working with fast-paced production development teams. Ability to comprehend complex system architecture, and create appropriate test solutions. Applying appropriate test measurements and KPIs in the product/project. Skills & Qualities Good planning and organization skills. Excellent oral and written communication skills in English. Show more Show less

About the role As a Senior Cyber Security Partner; you will transform the security maturity of key product areas and teams. You will be the face of security group for them. Everything you do is in the context of the product; roadmap; its risk acceptance level; the technology stack; and its architecture. You build a comprehensive understanding of the threat landscape and its potential risks to the business. Through effective partnership; you engage the leadership to make well-informed decisions about security and privacy. You will be responsible for Following our Business Code of Conduct and always acting with integrity and due diligence and have these specific risk responsibilities: • Provide product and engineering teams with direction and guidance on all security matters. There is a whole security group to back you up; so it is not as scary as it sounds. • Engage engineering leadership on security roadmap and oversee security posture of what they build. • Co-own the security roadmap; discuss; prioritise; and co-develop plans for remediation for the product areas. • Empower security champions to succeed and creating a strong feedback loop for improvements. • Represent security in all product and architecture meet-ups. Be part of critical decisions about security. • Oversee product security activities; from the early development of security requirements; architecture reviews; and threat modelling; to strengthening application security; mitigating supply-chain risks; securing secrets; pipelines; reviewing vulnerabilities; and infrastructure security. • Perform security architecture reviews of third-party services. • Identify acceptable risk levels and assist with action plan; policy; and procedural changes for risk mitigation. • Adopt a risk-based approach and guide management in identifying business risks and potential impact to Tesco. Continuously seek both tactical and strategic solutions to enhance security. • As the security expert for the product area; engage across the security group to strengthen controls across identification; protection; detection; response; and recovery. • Oversee assurance activities like security testing; purple testing; assurance; auditing. • Reduce security fatigue for engineering and provide faster feedback within existing developer workflows; not adding another tool for them to check. • Empower the teams you work with; but also challenge the status-quo. • As a senior member of the team; engage across the security group on new ideas and initiatives. • Contribute to strengthen organisation standards and policies; develop cookbooks; secure patterns; take part in security research and tool evaluations. • You are committed to continuous improvement; seizing opportunities; and inspire change for the team. • Mentor others in the team and take part in enhancing their skills and career development. You will need To excel in this position, we expect you to have the following: • Possess experience across multiple sectors and have undertaken diverse roles in engineering and security. Demonstratable accomplishments of collaborating with leadership and management on security programmes and initiatives. • Good knowledge of various security domains, and solid experience in architecture practices and design patterns – the technology might have changed but most of the security challenges have not. • Experience in designing security and privacy controls with sound understanding of standards and regulation. • Experience in threat modelling, attack trees, vulnerability chaining, applying MITRE ATT&CK framework. • Good understanding of web applications, REST APIs, micro services, eventing, modern application frameworks, and mobile apps. • Good understanding of software architecture, network topologies, SaaS, PaaS, IaaS (infrastructure as a service). • Proficient in applying industry standards such as OWASP ASVS (Application Security Verification Standard), OWASP Top 10, CIS (Centre of Internet Security) controls and benchmarks. • Experience with cloud native and hybrid architectures with an emphasis on containerised workloads and Kubernetes. • Some development experience is always a plus - Java, cloud, Golang, python. You do not need to “be a developer” but we need you to understand the implications of security on engineering velocity. • Degree in computer science / information systems or engineering field, or equivalent experience. • Experience with regulations like GDPR (General Data Protection Regulation), PCI-DSS is desirable. • Azure or AWS (Amazon Web Services) cloud security certifications is desirable. • Excellent interpersonal skills and leadership skills. Whats in it for you? At Tesco, we are committed to providing the best for you. As a result, our colleagues enjoy a unique, differentiated, market- competitive reward package, based on the current industry practices, for all the work they put into serving our customers, communities and planet a little better every day. Our Tesco Rewards framework consists of pillars - Fixed Pay, Incentives, and Benefits. Total Rewards offered at Tesco is determined by four principles -simple, fair, competitive, and sustainable. Your fixed pay is the guaranteed pay as per your contract of employment. Colleagues are entitled to 30 days of leave (18 days of Earned Leave, 12 days of Casual/Sick Leave) and 10 national and festival holidays, as per the company’s policy. In addition to Statutory retirement beneets, Tesco enables colleagues to participate in voluntary programmes like NPS and VPF. Tesco promotes programmes that support a culture of health and wellness including insurance for colleagues and their family. Our medical insurance provides coverage for dependents including parents or in-laws. We offer mental health support through self-help tools, community groups, ally networks, face-to-face counselling, and more for both colleagues and dependents. Through our financial literacy partner, we offer one-to-one financial coaching at discounted rates, as well as salary advances on earned wages upon request. Our SAYE programme allows colleagues to transition from being employees to Tesco shareholders through a structured 3-year savings plan. Our green campus promotes physical wellbeing with facilities that include a cricket pitch, football field, badminton and volleyball courts, along with indoor games, encouraging a healthier lifestyle. About Us Tesco in Bengaluru is a multi-disciplinary team serving our customers, communities, and planet a little better every day across markets. Our goal is to create a sustainable competitive advantage for Tesco by standardising processes, delivering cost savings, enabling agility through technological solutions, and empowering our colleagues to do even more for our customers. With cross-functional expertise, a wide network of teams, and strong governance, we reduce complexity, thereby offering high-quality services for our customers. Tesco in Bengaluru, established in 2004 to enable standardisation and build centralised capabilities and competencies, makes the experience better for our millions of customers worldwide and simpler for over 3,30,000 colleagues Tesco Technology Today, our Technology team consists of over 5,000 experts spread across the UK, Poland, Hungary, the Czech Republic, and India. In India, our Technology division includes teams dedicated to Engineering, Product, Programme, Service Desk and Operations, Systems Engineering, Security & Capability, Data Science, and other roles. At Tesco, our retail platform comprises a wide array of capabilities, value propositions, and products, essential for crafting exceptional retail experiences for our customers and colleagues across all channels and markets. This platform encompasses all aspects of our operations – from identifying and authenticating customers, managing products, pricing, promoting, enabling customers to discover products, facilitating payment, and ensuring delivery. By developing a comprehensive Retail Platform, we ensure that as customer touchpoints and devices evolve, we can consistently deliver seamless experiences. This adaptability allows us to respond flexibly without the need to overhaul our technology, thanks to the creation of capabilities we have built. Show more Show less

About Energy Exemplar In an era where the world is rapidly advancing towards a cleaner future through decarbonization, stakeholders from across the entire energy value chain are having to navigate the complexities of the energy ecosystem. We seek to enable our customers to do so with confidence. Our mission: Empowering Transformative Energy Decisions. Founded in 1999 in Adelaide, Australia, Energy Exemplar’s PLEXOS® modeling and simulation software is trusted by innovative organizations across the globe. On one unified platform, stakeholders from across the entire energy value chain are revolutionizing the energy ecosystem and seamlessly planning for the future of energy with unprecedented clarity, speed, and innovation. Our impact is global and is being recognized across the industry: Finalist for the 2024 Reuters Global Energy Transition Awards in the 'Technologies of Change' category Finalist for the 2024 Go:Tech Awards in the 'Most Innovative Use of Technology’ category 2022 USEA/USAID Corporate Volunteer of the Year 2022 Impact Award Winner for our impact on the energy industry and the current energy transition At Energy Exemplar, we believe in empowering our people by offering flexibility in how, when, and where they work. This flexibility has been a cornerstone of our success, fueling significant growth over the years, with the company expanding at an impressive rate of approximately 30% year over year. We understand that the best results come when our team members can balance their professional and personal lives, so we support various working arrangements that help you thrive. We don’t just celebrate the excellence of our products but champion the quality of our people. They own their outcomes and perform to their best – every day. whether you're working from home, in the office, or on the go. Our flexible work culture fosters innovation, collaboration, and trust, making it easier to stay engaged and connected, no matter where you are. That’s what makes us who we are and a great place to work. Our core values ‘Customer Success’ , ‘One Global Team’ , ‘Integrity and Ownership’ and ‘Innovation Excellence’ reflect the way we work and are always at the forefront of everything we do. About The Position Reporting to the Software Engineering Manager as a member of the Development team in India, the Software Engineer is responsible for delivering quality and performant software and design to handle the vast array of use cases that our customers have today. This role is responsible for Developing Software Solutions by learning information needs, discussing with managers, studying systems flow, data usage, finding problem areas and coming up with solutions & following the software development lifecycle. Work Type: Hybrid (3 days a week in office) Please note we are open to interviewing candidates from either Pune or Bangalore location as we have offices in both locations. Office Address: Energy Exemplar, WeWork, 12th Floor, 12A-106, Salarpuria Magnifica, Old Madras Road, Bengaluru, 560016 Office Address: 4th Floor, WeWork Amanora Crest, Amanora Park Town, Magarpatta, Hadapsar, Pune, Maharashtra 411028 We Are Looking For 9+ years of experience in product development field 2+ years of recent experience in building products on cloud Strong understanding of data structures, algorithms, and designing for performance Strong knowledge in OOPS with .Net, C# or relevant technologies with SQL Server or any RDBMS Hands-on experience in development with either Angular, VueJS or React Experience with Microservices Architecture Hands-on experience in building products for Unix systems in addition to Windows Working knowledge of CI/CD pipelines and AWS/Azure cloud services Knowledge of asynchronous programming and WebAPI development is required Knowledge and awareness of cloud/ application security is a must (OWASP at the minimum) Extensive experience in mentoring junior engineers to success Strong logical, analytics and problem-solving skills Must be able to work effectively across team boundaries Attention to details Strong oral and written communication skills Candidate Requirements & Qualifications Graduate/Master's degree in Computer Science, Engineering, or a related discipline Strong logical, analytics and problem-solving skills Must be able to work effectively across team boundaries Attention to details Ability to work independently Energy Exemplar is an equal opportunities employer and we value your unique identity and perspective. We are fully committed to providing and fostering a workplace that reflects the diversity of society. Bring your authentic self and help us build an inclusive world together! To support you in being the best version of yourself during the application and interview process, please let us know if you have any specific requirements. Show more Show less

About NCR VOYIX NCR VOYIX Corporation (NYSE: VYX) is a leading global provider of digital commerce solutions for the retail, restaurant and banking industries. NCR VOYIX is headquartered in Atlanta, Georgia, with approximately 16,000 employees in 35 countries across the globe. For nearly 140 years, we have been the global leader in consumer transaction technologies, turning everyday consumer interactions into meaningful moments. Today, NCR VOYIX transforms the stores, restaurants and digital banking experiences with cloud-based, platform-led SaaS and services capabilities. Not only are we the leader in the market segments we serve and the technology we deliver, but we create exceptional consumer experiences in partnership with the world’s leading retailers, restaurants and financial institutions. We leverage our expertise, R&D capabilities and unique platform to help navigate, simplify and run our customers’ technology systems. Our customers are at the center of everything we do. Our mission is to enable stores, restaurants and financial institutions to exceed their goals – from customer satisfaction to revenue growth, to operational excellence, to reduced costs and profit growth. Our solutions empower our customers to succeed in today’s competitive landscape. Our unique perspective brings innovative, industry-leading tech to all the moving parts of business across industries. NCR VOYIX has earned the trust of businesses large and small — from the best-known brands around the world to your local favorite around the corner. Responsibilities Job Description Automate all manual tasks by setting up custom scripts/terraforms Experience in configuring customer domains / domain moves, managing SSL/TLS Certificates while ensuring minimal disruption to services. Experience in managing Web Application Firewall (WAF) rules to ensure protection against emerging threats. Should be able to Identify, analyze, and remediate BFA/DDOS attempts to prevent unauthorized access to resources. Maintain and update Key-Value (KV) pair and Worker code to ensure security, compliance, and functionality. Good to have knowledge of OWASP rules and WAF managed ruleset Analyze and respond to security incidents, identifying root causes and implementing measures to prevent future occurrences. Configure and manage log push jobs to ensure timely and accurate logging of security events. Enforce Bring Your Own IP (BYOIP) policies to maintain IP address and ASN integrity. Migrate zones between Cloudflare accounts or environments, ensuring minimal disruption to services and maintaining DNS integrity. Collaborate with cross-functional teams to identify and prioritize security and operations projects. Develop and maintain technical documentation and knowledge base articles to support security and operations tasks Requirements 3+ years of experience in a Cloudflare WAF Engineer role. Experience with Programming languages like Python, Terraform, usage of APIs, to automate manual tasks. Experience of CI/CD, GitHub actions. Operate in a 24x7 rotational shift environment. Excellent problem-solving skills, with the ability to troubleshoot complex security and P1 operations issues. Strong communication skills, with the ability to collaborate with cross-functional teams and communicate technical information to non-technical stakeholders. Experience with KV entries, Worker code, and Cloudflare's API. Experience with Cloudflare's security and operations features, including WAF, DNS, and TLS Experience with cloud security platforms, including AWS, Azure, and Google Cloud Good to have understanding of machine learning and Bot management. Experience with agile development methodologies, including Jira and Service Now Offers of employment are conditional upon passage of screening criteria applicable to the job EEO Statement Integrated into our shared values is NCR Voyix’s commitment to diversity and equal employment opportunity. All qualified applicants will receive consideration for employment without regard to sex, age, race, color, creed, religion, national origin, disability, sexual orientation, gender identity, veteran status, military service, genetic information, or any other characteristic or conduct protected by law. NCR Voyix is committed to being a globally inclusive company where all people are treated fairly, recognized for their individuality, promoted based on performance and encouraged to strive to reach their full potential. We believe in understanding and respecting differences among all people. Every individual at NCR Voyix has an ongoing responsibility to respect and support a globally diverse environment. Statement to Third Party Agencies To ALL recruitment agencies: NCR Voyix only accepts resumes from agencies on the preferred supplier list. Please do not forward resumes to our applicant tracking system, NCR Voyix employees, or any NCR Voyix facility. NCR Voyix is not responsible for any fees or charges associated with unsolicited resumes “When applying for a job, please make sure to only open emails that you will receive during your application process that come from a @ncrvoyix.com email domain.” Show more Show less

Web Security Intern 📍 Location: Remote (100% Virtual) 📅 Duration: 3 Months 💸 Stipend for Top Interns: ₹15,000 🎁 Perks: Certificate | Letter of Recommendation | Full-Time Offer (Based on Performance) About INLIGHN TECH INLIGHN TECH is a dynamic edtech startup that offers practical, hands-on virtual internships to students and recent graduates. Our Web Security Internship program is designed for individuals passionate about protecting websites and web applications from cyber threats through real-time analysis and project work. 🚀 Internship Overview As a Web Security Intern , you will focus on identifying, analyzing, and mitigating vulnerabilities in web applications. You will learn and implement best practices in securing web platforms, perform vulnerability assessments, and understand how to protect against common attacks such as XSS, SQLi, CSRF, and more. 🔧 Key Responsibilities Conduct security assessments of web applications Identify and document vulnerabilities using tools like OWASP ZAP, Burp Suite , or Nikto Analyze HTTP traffic, cookies, headers , and authentication flows Assist in implementing secure coding practices and suggesting remediation Stay updated with the OWASP Top 10 and other industry standards Collaborate with developers to resolve security issues and improve application hardening Support in penetration testing simulations and security audits ✅ Qualifications Pursuing or recently completed a degree in Cybersecurity, Computer Science, or IT Basic knowledge of web technologies (HTML, CSS, JS) and HTTP protocol Familiarity with common web vulnerabilities and ethical hacking tools Interest in bug bounty , secure coding , and web application firewalls (WAF) Problem-solving mindset with attention to detail and a strong curiosity for how web attacks work Understanding of Linux commands and basic scripting is a plus 🎓 What You’ll Gain Hands-on experience in web application security testing and remediation Exposure to real-world bug bounty methodologies and ethical hacking A portfolio of assessments, reports, and security write-ups Internship Certificate upon successful completion Letter of Recommendation for top-performing interns Possibility of a Full-Time Offer based on performance Show more Show less

Job Title: Senior Java Engineer Location: Yerwada, Pune (Hybrid – 3 days/week onsite) Shift: 9 AM – 5 PM IST Notice Period: Immediate to 30 days Salary:- 22 lakh - 25 Lakh + Benefits Role Overview: As a Senior Java Engineer, you'll be part of a high-performance scrum team, building scalable, robust, and modern enterprise-grade web applications. You'll collaborate with teams to solve real-world challenges using the latest technologies. Key Responsibilities: Develop and deploy Java-based backend services and APIs Work with Spring Boot, Microservices, SQL, and AWS Drive scalable architecture and CI/CD pipeline integration Mentor junior engineers and engage in code reviews Engage in client communication and consulting Core Requirements: 7+ years of Java development experience Strong in Java 8/11, Multithreading, Spring Boot, REST APIs Microservices, SQL, Hibernate, AWS Kafka, Jenkins, MongoDB, Oracle/Sybase/DB2 (any two) Solid system design and CI/CD skills Excellent communication & consulting mindset Nice to Have: Experience with: Golang/Rust, AEM, Drools, Algolia/Elasticsearch/Solr, Spark Domain experience in Payments or Wealth Management Knowledge of GRPC, HTTP/2, OAuth, and OWASP security standards Candidate Info to Collect: Total Experience Java, Spring Boot, Microservices, Hibernate, Kafka, REST API experience Cloud experience (AWS preferred) Java version currently using Willingness for hybrid role in Pune (Yes/No) Show more Show less

When you join Verizon You want more out of a career. A place to share your ideas freely even if theyre daring or different. Where the true you can learn, grow, and thrive. At Verizon, we power and empower how people live, work and play by connecting them to what brings them joy. We do what we love driving innovation, creativity, and impact in the world. Our V Team is a community of people who anticipate, lead, and believe that listening is where learning begins. In crisis and in celebration, we come together lifting our communities and building trust in how we show up, everywhere & always. Want in? Join the V Team Life. What Youll Be Doing... You'll be part of the "Verizon Global Infrastructure (VGI), Network & Information Security group working on security and automation tools to protect against cyber threats within the VGS Technology organization. You will work with a team of cybersecurity engineers with network & infrastructure background, threat intelligence analysts and risk management personnel to align common technologies and practices that fortify our applications, systems, IT network and infrastructure. Some Of Your Daily Responsibilities Would Be The Following Leveraging industry proven tools to identify and reduce Cyber Risks. Implementing next generation infrastructure architecture, create advanced policies and controls against future threats. Ensuring effectiveness and coverage of security, policies and controls of VGS Network & Infrastructure, prioritizing risk level. Ensuring Security posture of VGS Network & Infrastructure, e.g., access management, vulnerabilities remediation, etc. Developing awareness, training & compliance programs focused on Network & Infrastructure Cyber Security practices. Coordinating activities like network, penetration testing, incident response, data collection etc by partnering with the CISO teams. Assisting in Crisis Management, Ransomware Recovery and Business Continuity planning. Identifying, investigating and resolving global security breaches / incidents. Developing and maintaining network and infrastructure security reporting dashboards and scorecards used to measure our Cyber Practice. Identifying opportunities and use cases for automation to remediate vulnerabilities, implement controls, orchestrate between tools and automate security practices. What were looking for... You are passionate about network security and automation as a career. You are self-driven and motivated, with good communication and analytical skills. Youre a sought-after team member that thrives in a dynamic work environment. You will be working with multiple partners from the business groups, so networking and managing effective working relationships should be your top most priority. You have an understanding of industry trends in all areas of Information Security. You'll need to have some of the skills listed below: Bachelors degree in Computer Science / Information Technology Engineering with six or more years of work experience. Seven or more years of relevant work experience in Enterprise server/cloud, risk and compliance management. Strong working knowledge of enterprise scale server management. Knowledge of Private/Public Cloud infrastructure. Understanding of network fundamentals, switching, routing protocols, load balancers, web proxies, firewalls and software defined networking solutions. Understanding of security fundamentals Confidentiality, Integrity, Availability, access control, Authentication, Authorization, Auditing secure design concepts like. Experience working in any one of the SIEM / SOAR solutions like Splunk SOAR, Elastic, etc. Experience in managing public cloud infrastructure like AWS, Azure, GCP etc. Experience working in a SOC environment handling processes like Incident Management and Triage, Vulnerability Management, Threat Intelligence, Threat Hunting etc. Knowledge of common software vulnerabilities like OWASP Top 10 / Sans Top 25 and their relevant controls and safeguards for secure software will be an added advantage. Experience working on IT ticketing systems like JIRA, Service Now and ability to partner and collaborate with other teams in the organization. Experience with hosting security awareness campaigns, gamification and bug bounty programs will be an added advantage. Strong analytical problem-solving, communication and interpersonal skills. Passion to stay abreast with emerging technologies, network security trends, tools and techniques. Even better if you have one or more of the following: Industry relevant server certifications like MCSE, RHCE etc. Industry relevant security certifications Security , OSCP, CEH, CISSP, GIAC etc. Cloud relevant certifications CCSP, CCSK. Strong expertise in at least one operating system Window or Linux. Strong Scripting expertise in any one of Python, R, Perl, Javascript, Powershell, bash, VBScript etc. Experience in managing server infrastructure. Where youll be working In this hybrid role, you'll have a defined work location that includes work from home and assigned office days set by your manager. Scheduled Weekly Hours 40 Equal Employment Opportunity Verizon is an equal opportunity employer. We evaluate qualified applicants without regard to race, gender, disability or any other legally protected characteristics. Locations Hyderabad, India Chennai, India Show more Show less

When you join Verizon You want more out of a career. A place to share your ideas freely even if theyre daring or different. Where the true you can learn, grow, and thrive. At Verizon, we power and empower how people live, work and play by connecting them to what brings them joy. We do what we love driving innovation, creativity, and impact in the world. Our V Team is a community of people who anticipate, lead, and believe that listening is where learning begins. In crisis and in celebration, we come together lifting our communities and building trust in how we show up, everywhere & always. Want in? Join the V Team Life. What Youll Be Doing... The Verizon Product Security Team ensures security by design product engineering and architecture for both consumer and business products. As a Principal Security Architect, you will work to conduct security assessments on both Consumer and Business products and solutions. You will help to create, define, and implement security controls and tooling in conjunction with product development teams and product owners. You will manage multiple projects with a degree of impact and complexity that must be carefully controlled to support the internal business unit security requirements. You will also work in conjunction with security stakeholders in other areas of the business and make decisions and help lead initiatives to ensure timely delivery of security solutions that support business objectives. You will also manage work that involves coordination with multiple organizations and is the focal point within the group. Help implement Secure Software Development Lifecycle (SSDLC) practices and use automation where possible Work with the product development teams to perform security design/code reviews and vulnerability assessments. Provide security guidance to Engineering and Product teams. Contribute to security architecture and assist in building and rolling out processes for secure code development and deployment involving truly cutting-edge technology Contribute to security policy, standards, and guidelines related to Information Security Evaluate and operationalize new technologies for securing the organization Create security user stories and security test cases for products that are tailored to the product attributes and technology Support and advise product owner and product development teams by ensuring technical and architectural feasibility, readiness, and compliance. What were looking for You'll Need To Have Bachelors degree or one or more years of work experience. Experience in cybersecurity. Experience with security requirements analyses, building threat models, performing security design reviews, applying zero trust principles. Knowledge of application security vulnerabilities, secure coding, attack surfaces and countermeasures. Knowledge of S-SDLC, best practices for secure coding, understanding of OWASP Top 10, CIS Top 20. Even better if you have one or more of the following: Understanding of Docker, Kubernetes, container security best practices. Experience with Threat Management and Monitoring tools (like CrowdStrike, GuardDuty, Tenable, CloudTrail, CloudWatch) and container security tools. Experience with building security and hardening Cloud Containers, Cloud OS, on-premise/cloud storage, like Cassandra, MongoDB, Data Warehouse and Object-Based storage. Hands-on experience on security testing like SAST, DAST, SCA and Pen testing. Understanding of authentication protocols like OID, OAuth2.0, SAML. Hands-on experience in securing software development projects using iOS/Android platforms. Familiar with Content Streaming Services Security like DRM, CA (Widevine, PlayReady, FairPlay). Experience with application programming (C/C /Java/Kotlin/Swift/JavaScript or any other languages) and the overall software development life cycle. Written and verbal skills for communicating security concepts and solutions. Ability to prioritize between and execute on multiple work streams. Excellent organizational and interpersonal skills. One or more of the following certifications: CISSP, CISM, SANS, CCSK. If Verizon and this role sound like a fit for you, we encourage you to apply even if you dont meet every even better qualification listed above. #TPDNONCDIO Where youll be working In this hybrid role, you'll have a defined work location that includes work from home and assigned office days set by your manager. Scheduled Weekly Hours 40 Diversity and Inclusion Were proud to be an equal opportunity employer. At Verizon, we know that diversity makes us stronger. We are committed to a collaborative, inclusive environment that encourages authenticity and fosters a sense of belonging. We strive for everyone to feel valued, connected, and empowered to reach their potential and contribute their best. Check out our diversity and inclusion page to learn more. Locations - Chennai, India Show more Show less

Experience: 6 years Location: Chennai, India Job Type: Full Time Design overall architecture of the web application (On-Prem as well as Cloud) Experience in code reviews and refactoring Collaborate with the engineering team to design and launch new features Maintain code integrity and organization Understanding and implementation of security and data protection (OWASP and the likes) Knowledge about Design Patterns Exposure to Enterprise Architecture will be a plus Skills Required Front-End: HTML, JavaScript, and CSS Sass (and LESS will be a plus) JavaScript frameworks like AngularJS, React, Ember, Knockout, ThreeJS etc. (Knowledge about ThreeJS is a must) JavaScript based build tools like Grunt, Gulp, and Bower Libraries like jQuery or Backbone.js Front-end (CSS) frameworks Bootstrap (and Foundation will be a plus) AJAX Back-End: API design and development RESTful Services Web fundamentals like HTML, JavaScript, and CSS Server-side languages like Python, Ruby, Java, and .Net (Knowledge about Ruby or Python and Java or .NET should be ok) Database technologies like MySQL, PostgreSQL, and MongoDB Web server technologies like Node.js, J2EE, Apache, Nginx, ISS, etc. Frameworks related to their server-side language preferably Express.js, Ruby on Rails (ROR) Others: Development experience for both mobile and desktop Understanding of server-side languages Jade, EJS, Jinja, etc. Experience with cloud message APIs and usage of push notifications like SNMP with AWS Knowledge of code versioning tools VSTS, Git, BitBucket Knowledge about on-prem tools like SVN will be a plus Experience working in both Linux as well as Windows based environments Working experience in Cloud-based environments and Container based Development (Kubernetes and Docker) Apply Now Show more Show less

Dear Candidate Greetings from TCS !!! TCS has been a great pioneer in feeding the fire of young Techies like you. We are a global leader in the technology arena and there's nothing that can stop us from growing together. Role: Cloud Devops Engineer Location: Chennai Experience Range: 8 to 12 years Job Description: Desired Competencies: Maintains in depth knowledge of the AWS DevOps cloud platforms, provides detailed advice regarding their application, and executes specialized tasks Core experience in AWS CI experience (Git, Jenkins, GitLab), Bash, PowerShell Build automation Container experience in Docker Aws DevOps CKA and CKAD Certifications Knowledge to worked extensively on CI image building with both Linux and Windows containers Should have the best standards knowledge on CI Image building process for both Linux and windows containers Significant experience with SaaS and web-based technologies Skilled with Continuous Integration and Continuous Deployments using AWS Devops Services. Skilled to automate Python, or Bash is an added advantage. Skilled with containerization platforms using Docker & Kubernetes. Familiar with architecture/design patterns and re-usability concepts. Skilled in SOLID design principles and TDD. Familiar with Application Security via OWASP Top 10 and common mitigation strategies. Detailed knowledge of database design and object/relational database technology. Good experience in MS Fabric AWS DevOps Implementation: Lead the design and implementation of CI/CD pipelines using AWS DevOps. Configure and manage build agents, release pipelines, and deployment environments in AWS DevOps. Establish and maintain robust CI processes to automate code builds, testing, and deployment. Integrate automated testing into CI pipelines for comprehensive code validation. Continuous Integration: Infrastructure as Code (IaC) -Terraform Utilize Infrastructure as Code principles to manage and provision infrastructure components on AWS. Implement and maintain IaC templates Monitoring and Optimization: Implement monitoring and logging solutions to track the performance and reliability of CI/CD pipelines. Continuously optimize CI/CD processes for efficiency, speed, and resource utilization. Security and Compliance Implement security best practices within CI/CD pipelines. Ensure compliance with industry standards and regulatory requirements in CI/CD processes. Troubleshooting and Support Provide expert-level support for CI/CD-related issues. Troubleshoot and resolve build and deployment failures promptly Show more Show less

Dear Candidate Greetings from TCS !!! TCS has been a great pioneer in feeding the fire of young Techies like you. We are a global leader in the technology arena and there's nothing that can stop us from growing together. Role: Cloud Devops Engineer (Azure) Location: Chennai Experience Range: 8 to 12 years Job Description: Good experience in Microsoft Fabric Strong understanding of DevOps processes & procedures & Tools Data Lake,Data Analysis ,Data Engineer Power BI Experience with Azure DevOps products (work item, Wiki, git, repos, pipelines, release manager) Experience with application and infrastructure operation monitoring (such as App Dynamic, Splunk, Azure Portal) and change management (such as ServiceNow) Azure Cloud experience deploy and using PaaS resources, such as ASE, SQL MI, Cosmos DB, Storage Account, AKS, ADF, etc. Hands on experience to create build & deployment automation with Application as a Code pipelines using YAML. Hands on experience to create Azure Data Factory pipelines using YAML. Knowledge in Azure infrastructure automation using PowerShell, Runbooks, and Terraform NuGet and NPM Packaging Containers/Docker, Repository manager Good communication skills (written & verbal) and Ability to present. Agile Scrum/Kanban experience Core experience in Azure services CI experience (Git, Jenkins, GitLab), Bash, PowerShell Build automation Container experience in Docker Azure DevOps CKA and CKAD Certifications Azure Developer who has worked extensively on CI image building with both Linux and Windows containers Should have the best standards knowledge on CI Image building process for both Linux and windows containers Significant experience with SaaS and web-based technologies Skilled with Continuous Integration and Continuous Deployments using Azure Devops Services. Skilled with PowerShell to automate Python, or Bash is an added advantage. Skilled with containerization platforms using Docker & Kubernetes Familiar with architecture/design patterns and re-usability concepts. Skilled with object-oriented analysis and design (OOA&D) methodology and micro-services. Skilled in SOLID design principles and TDD. Familiar with Application Security via OWASP Top 10 and common mitigation strategies. Very Familiar with source control systems (git) and Azure DevOps. Detailed knowledge of database design and object/relational database technology. Azure DevOps Implementation: Lead the design and implementation of CI/CD pipelines using Azure DevOps. Configure and manage build agents, release pipelines, and deployment environments in Azure DevOps. Establish and maintain robust CI processes to automate code builds, testing, and deployment. Integrate automated testing into CI pipelines for comprehensive code validation. Continuous Integration: Infrastructure as Code (IaC) Utilize Infrastructure as Code principles to manage and provision infrastructure components on Azure. Implement and maintain IaC templates (e.g., ARM templates) for infrastructure provisioning. Monitoring and Optimization: Implement monitoring and logging solutions to track the performance and reliability of CI/CD pipelines. Continuously optimize CI/CD processes for efficiency, speed, and resource utilization. Security and Compliance Implement security best practices within CI/CD pipelines. Ensure compliance with industry standards and regulatory requirements in CI/CD processes. Troubleshooting and Support Provide expert-level support for CI/CD-related issues. Working with Product teams to manage AZURE systems deployment, and lifecycle maintenance, including requests, determining action plans, Capacity planning, reporting, advising and parties involved. Responsible for triage and resolving service management system incidents and requests. Responsible for application monitoring, data manipulation for widgets and generating reports, problem identification and management. Responsible for system data manipulation- tuning agents and collectors to glean wanted information. Occasionally consult with individuals inside and outside of the team and provide general customer support Azure infrastructure mgmt. Create and manage check-in policies, and installation, configuration, troubleshooting and maintenance. Producing scripts for automation and report generation using Terraform, Tera grunt, Cloud formation templates, Ansible, GIT, PowerShell, Bash, Shell, python scripting, Linux and Windows operating system and scripting, azure Visual Studio Team Services. Maintain the applications within EKS, AKS, Dockers, Hub, and Docker Registry. Manage Networking protocols, network security in the cloud. Manage Cloudflare products as well as other equivalent tools. Monitoring Infrastructure. Virtual machines, Virtual Networks, autoscaling, storage, Key vault, Network Security Group, Load Balancer, Traffic Manager, Route Tables, storage accts, EFS, FSX, NetApp NAS, Recovery Services Vaults, Key Vault, Azure Backup, lambda, server less architecture components. Required Skills Azure Certified Solutions Architect or Sys Ops Administrator and Equivalent Azure certified. Show more Show less

Job Qualifications Education: B.S. in Computer Science or Computer Information Systems, or equivalent experience. Experience: Minimum 3 years developing N-tiered systems in a .NET/SQL environment with C#. Solid understanding of object oriented programming and design patterns Experience working with .NET Collections and LINQ, and being able to determine appropriate data structure choices based on feature requirements. Knowledge of web development standards and best practices including JavaScript, HTML, jQuery, CSS, ASP.NET MVC, Razor Exposure to any of the javascript framework (Angular, reactjs etc.) Development experience with SQL Server: writing queries and stored procedures Experience writing data access code using ADO.NET. Some familiarity with how to write performant queries. Familiar with design patterns and good understanding of OOD/OOP practices Experience writing unit and integration tests Strong communication skills - verbal and written - and ability to work collaboratively as a team Passionate about software development Preferred Qualifications: Experience using an ORM framework such as Entity Framework, NHibernate, etc. Experience developing software for a commercial product Understanding of Web application security, OWASP Experience in SQL Server database tuning and performance optimization. Experience creating data models to support requirements. Other Knowledge, Skills, Abilities or Certifications: (First list requirements, followed by preferences.) Applicants may be required to appear onsite at a Wolters Kluwer office as part of the recruitment process. Show more Show less

Location: Bangalore, India Experience: 3-6 years About Us At Nurix AI, we envision a world powered by super-intelligent AI agents that transform how businesses engage with customers. Our cutting-edge AI agents do more than just solve problems, they create opportunities. From suggesting next purchases to boosting revenue while maintaining customer satisfaction, to analyzing vast datasets for actionable insights, our technologies shape your business and product strategies. By resolving queries with precision and delivering highly personalized interactions, we redefine the customer experience and drive measurable impact. Nurix.ai is at the forefront of AI innovation, developing cutting-edge AI and LLM solutions to enhance productivity and automation. Backed by $27.5M in seed funding, we are building next-gen AI-driven applications that redefine human-machine collaboration. We are looking for a Technical Lead to spearhead our AI engineering efforts and drive product innovation. We are pioneering the AI revolution as India’s first scaled AI services company. We deliver cutting-edge AI and LLM solutions tailored for the dynamic needs of the modern world. Backed by robust funding we are a vibrant, young team set on redefining technological boundaries. Join us in shaping the future. Join us in building the future, where every interaction is smarter, faster and more impactful. The Opportunity This is more than just a security role; it's a chance to build an information security function at Nurix AI, a rapidly scaling AI startup. With our exponential growth and our use of sophisticated AI, LLMs, and multi-cloud infrastructure (AWS, GCP, Azure), we need a seasoned expert to establish and champion a world-class security posture. Our customers are entrusting us with their data in an era of heightened security concerns, and your role will be pivotal in maintaining and strengthening that trust. You will be instrumental in fortifying our defenses at Nurix AI, proactively addressing the unique security challenges of AI and LLMs, and ensuring our innovative solutions are secure by design. What You'll Do (Key Responsibilities) Roles & Responsibilities (What you’ll be doing): Execute penetration tests on web apps, APIs, and mobile applications, then deliver detailed vulnerability assessments and clear remediation advice. Perform both manual and automated secure code reviews—primarily in Java, Python, and JavaScript. Build Python-based security automation tools to broaden test coverage, cut manual work, and speed up assessments. Partner with engineering teams to resolve security issues quickly within rapid release cycles. Develop and maintain threat models, applying proven techniques to surface and address design-level risks early. Champion a security-first culture by coaching developers on secure coding, common weaknesses, and attack vectors, while clearly presenting findings to all stakeholders. What You Bring To The Table 2-5 years of hands-on experience in application security, penetration testing, or a closely related field. Deep expertise with testing tools such as Burp Suite, OWASP ZAP, Semgrep, MobSF, Jadx-GUI, and other mobile security frameworks. Proven ability to embed security across the SDLC, leveraging modern DevSecOps pipelines and tooling. Strong command of secure-coding fundamentals, the OWASP Top 10, CWE catalog, and common exploit techniques. Solid scripting and automation skills—Python preferred. Excellent communication and stakeholder-management capabilities. A passion for continual learning and staying ahead of emerging threats. Bonus Skills Master’s degree in Cybersecurity or a related field. Industry-recognized security certifications such as CISSP, CISM, CCSP, CEH, or CompTIA Security+, or specific cloud security certifications (AWS, GCP, Azure). Experience in a rapidly scaling technology startup. Strong working knowledge of global and Indian data privacy frameworks (e.g., GDPR, HIPAA, DPDP Act ). Experience building a security function from the ground up. Bonus points for credentials like OSCP, OSWE, CRTP, or a noteworthy bug-bounty / CTF track record. What We Offer Opportunity to work on cutting-edge generative AI projects with leading clients. A dynamic and inclusive work environment that promotes professional growth and development. Competitive salary and benefits package, including opportunities for continuous learning and skill enhancement. If you are passionate about leveraging generative AI to drive business transformation and have the expertise to lead complex projects, we invite you to apply and join our innovative team. Show more Show less