1458 Owasp Jobs - Page 24

Information Security Lead at Nurix AI Location: Bangalore, India Experience: 6-10 years About Us At Nurix AI, we envision a world powered by super-intelligent AI agents that transform how businesses engage with customers. Our cutting-edge AI agents do more than just solve problems, they create opportunities. From suggesting next purchases to boosting revenue while maintaining customer satisfaction, to analyzing vast datasets for actionable insights, our technologies shape your business and product strategies. By resolving queries with precision and delivering highly personalized interactions, we redefine the customer experience and drive measurable impact. Nurix.ai is at the forefront of AI innovation, developing cutting-edge AI and LLM solutions to enhance productivity and automation. Backed by $27.5M in seed funding, we are building next-gen AI-driven applications that redefine human-machine collaboration. We are looking for a Technical Lead to spearhead our AI engineering efforts and drive product innovation. We are pioneering the AI revolution as India’s first scaled AI services company. We deliver cutting-edge AI and LLM solutions tailored for the dynamic needs of the modern world. Backed by robust funding we are a vibrant, young team set on redefining technological boundaries. Join us in shaping the future. Join us in building the future, where every interaction is smarter, faster and more impactful. The Opportunity This role involves building and leading the information security function at Nurix AI. The company is experiencing rapid growth and requires a seasoned expert to establish a world-class security posture. The role focuses on addressing the unique security challenges of AI, LLMs, and multi-cloud infrastructure, ensuring innovative solutions are secure by design. Key Responsibilities Security Strategy & Architecture: Design and implement a comprehensive information security strategy, with a focus on AI/ML workloads, LLMs, conversational AI, and multi-cloud infrastructure (AWS, GCP, Azure). Threat Management & Incident Response: Establish threat detection, vulnerability management, and incident response capabilities. AI & LLM Security: Implement security best practices for the AI/ML development lifecycle, including data security, model integrity, and adversarial attack mitigation for LLMs. Cloud Security Governance: Develop and enforce security controls across multi-cloud environments. DevSecOps Leadership: Embed security best practices throughout the SDLC and CI/CD pipelines. Policy, Compliance & Risk Management: Develop and enforce security policies aligned with international standards and data protection laws. Conduct risk assessments on internal systems, vendors, and AI solutions. Security Operations & Tooling: Oversee the use of security tools (SIEM, EDR, vulnerability scanners). Security Awareness & Culture: Drive a culture of security awareness. Customer Trust & Advocacy: Serve as a security subject matter expert. Vendor Management: (Requires significant experience) Understanding of Global Compliances. Required Qualifications Bachelor’s degree in Computer Science, Cybersecurity, or related field. 6-10 years of experience in Information Security, with a focus on cloud environments and complex software systems. Deep expertise in AI/ML security, including risks associated with LLMs, data pipelines, and conversational AI. Proven experience in designing and managing security in multi-cloud environments (AWS, GCP, Azure). Hands-on experience with security tools (SIEM, EDR, vulnerability scanning). Understanding of securing APIs, containers, microservices, and CI/CD pipelines. Knowledge of security frameworks and standards (OWASP, MITRE ATT&CK, ISO 27001, SOC 2). Experience in developing security policies, conducting risk assessments, and managing incident response. Excellent communication, leadership, and project management skills. Preferred Skills (Bonus Points) Master’s degree in Cybersecurity or related field. Security certifications (CISSP, CISM, CCSP, CEH, CompTIA Security+, cloud security certifications). Experience in a rapidly scaling technology startup. Strong knowledge of global and Indian data privacy frameworks (GDPR, HIPAA, DPDP Act). Experience building a security function from the ground up. What We Offer The opportunity to work in a fast-paced, innovative company that is changing the way industries operate. A dynamic work environment with ample opportunities for professional growth and advancement. Attractive salary, equity options, and benefits package. A chance to be at the forefront of the AI and technology revolution with a team of passionate, like-minded professionals. Show more Show less

Job Description Role: IAM and Cloud Security Delivery Manager Location: Offshore Job Summary –  10+ years of IT experience with 6+ yrs of relevant experience in managing IAM and Cloud Security delivery(s), People Care, Customer & Stakeholders relationship, project transition for global IAM and Cloud Security service delivery. Years of experience needed –  10+ years of experience Technical Skills  Previous work experience managing IAM and Cloud Security delivery engagements –  Designs, develops and implements new cloud security technologies to support business and technology solutions  Create, maintain and deliver to project schedules and budgets  Identify, manage and maintain KPI and other metrics for core processes.  Review and assess the current supported tools, apps and processes to determine gaps for meeting the needs of the stakeholders  Design and Implement changes to existing security tools, applications and processes based on changes in scope or needs.  Work directly with internal infrastructure teams to align and execute infrastructure changes to support the tools, apps and processes.  In depth understanding of PAM use cases, features, processes, components, services and dependencies  Previous experience leading PAM product consulting, architecture and design, deployment and integration activities  Previous experience preparing implementation plans with detailed activities and dependencies  Good knowledge and experience working with Active Directory, LDAP, Databases, SQL and Scripting for PAM integrations  Audit principles and associated compensating controls  Cloud Security  Vulnerability Management  E-Mail security  Manage & maintain steady state global delivery operations (Green)  Manage Operational/delivery issues & escalations  Ensure continuous communication & coordination with client in the event of issue/ escalation  Ensure SLA/SLO attainment & process compliance along with high customer satisfaction  Act as first point of escalation for the day-to-day functioning of delivery operations team  Handling escalations- identifying the gap, preparing action plans, and driving towards resolution  Identify opportunities for SIP’s/CIP’s and drive those towards achieving the desire goal  Define & maintain governance model, best practices & operating procedures  Driving & ensuring seamless transition of new service/ customer to operations team (if any)  Drive/Manage Crisis situation  Actively participate in Service Operations Meetings, Service Quality Review governance  Facilitates Business Continuity for the account during regional/ location outages.  Data Protection and Security  Threat Intelligence & Forensics  Authentication & Password Management  Cloud Security  Identity & Access Management  Governance, Risk and Compliance  Audit principles and associated compensating controls  Basic Knowledge on security models such as ISO/IEC 27001 , PCI DSS and Cobit 5, OWASP & NIST, ITIL.  Experience on Cyber Security tools & technologies.  Good Understanding of IT security policy, procedure, design, and implementation.  Acts as a trusted advisor to the clients  Interlock with Management to define operations strategy and action plan based on Customer feedback & CSAT result  Analyzing customer requirements, identify business opportunity, provide guidance and support  Monitor delivery health and process adherences, identifying improvement areas and implementing adequate measures to maximize customer satisfaction level  Ensure continuous communication & coordination with client  Ensure positive client satisfaction and client relationship is maintained for service delivery  Support Delivery Manager to determine, monitor, and review project financials include operational costs, budgets, staffing requirements, resources, and risk etc.  Work towards improving efficiency, utilization, compliance, and accuracy  Assist Delivery Manager to achieve target Residual/ Efficiency by planning resources allocation, tracking accurate labor utilization and maintaining low operating costs  Deliver in transition project & program in line with the recognized best practice methodology (managing risk, governance, quality assurance, issue resolution, reporting)  Conduct due diligence activities to comprehend business activities of the client and document these in the form of a due diligence report along with recommendations and next steps  Act as the primary point of contact for all transition activities  Liaise with business lines and functions on training, recruitment, and system requirements for transition deliverables  Responsible for monitoring & execution of transition deliverables as per agreement transition plan  Manage day-to-day transition project communication with stakeholders, project delivery team, account team & Client stakeholders.  Review the outcomes of the transition projects to capture learnings & disseminate across organization Education Qualification Bachelor’s degree preferably in Computer Science or Information Systems and /or equivalent formal training or work experience. Certifications Needed Certificates in relevant fields are added advantage. About Mphasis Mphasis applies next-generation technology to help enterprises transform businesses globally. Customer centricity is foundational to Mphasis and is reflected in the Mphasis’ Front2Back™ Transformation approach. Front2Back™ uses the exponential power of cloud and cognitive to provide hyper-personalized (C=X2C2TM=1) digital experience to clients and their end customers. Mphasis’ Service Transformation approach helps ‘shrink the core’ through the application of digital technologies across legacy environments within an enterprise, enabling businesses to stay ahead in a changing world. Mphasis’ core reference architectures and tools, speed and innovation with domain expertise and specialization are key to building strong relationships with marquee clients. Show more Show less

7 - 12 Years 1 Opening Bangalore Role description UST Tittle: Lead I - Cloud Infrastructure Services Who we are: At UST, we help the world’s best organizations grow and succeed through transformation. Bringing together the right talent, tools, and ideas, we work with our client to co-create lasting change. Together, with over 26,000 employees in 25 countries, we build for boundless impact—touching billions of lives in the process. Visit us at . You Are: Digital Security Lead The Opportunity : Oversee the analysis and resolution of security vulnerabilities for Waters digital properties including brand websites, microsites and 3rd party hosted sites. Monitor Black Kite security score to prioritize and facilitate vulnerability fixes. Maintain a Digital Properties database containing pertinent data related to purpose and ownership of all Waters digital properties. Prepare and present reports to leadership on the Waters digital property security posture and current state of remediations. Develop and sustain effective relationships and partnerships with key stakeholders, providing insights, thought leadership and guidance on the security landscape and opportunities to improve Waters security posture. What you need: 5+ years in a program lead role working with Information Security on analyzing and facilitating the remediation of security vulnerabilities Familiarity with application and infrastructure security best practices Familiarity with OWASP Top 10 application security vulnerabilities Good communication, analytical, problem-solving, and presentation skills as well as a learning attitude Strong organizational and time management skills; able to effectively prioritize and manage shifting priorities and assignments Bonus points if: Strong verbal, presentation and written communication skills Excellent problem-solving skills, with a demonstrated ability to identify issues and solve them quickly. Strong analytical, leadership, problem solving, organization and planning skills What we believe : We’re proud to embrace the same values that have shaped UST since the beginning. Since day one, we’ve been building enduring relationships and a culture of integrity. And today, it's those same values that are inspiring us to encourage innovation from everyone, to champion diversity and inclusion and to place people at the center of everything we do. Humility: We will listen, learn, be empathetic and help selflessly in our interactions with everyone. Humanity: Through business, we will better the lives of those less fortunate than ourselves. Integrity: We honor our commitments and act with responsibility in all our relationships. Equal Employment Opportunity Statement UST is an Equal Opportunity Employer. We believe that no one should be discriminated against because of their differences, such as age, disability, ethnicity, gender, gender identity and expression, religion or sexual orientation. All employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status or any other basis as protected by federal, state, or local law. UST reserves the right to periodically redefine your roles and responsibilities based on the requirements of the organization and/or your performance. To support and promote the values of UST. Comply with all Company policies and procedures Skills Problem Solving,Owasp,Communication About UST UST is a global digital transformation solutions provider. For more than 20 years, UST has worked side by side with the world’s best companies to make a real impact through transformation. Powered by technology, inspired by people and led by purpose, UST partners with their clients from design to operation. With deep domain expertise and a future-proof philosophy, UST embeds innovation and agility into their clients’ organizations. With over 30,000 employees in 30 countries, UST builds for boundless impact—touching billions of lives in the process.

Hello Visionary ! We empower our people to stay resilient and relevant in a constantly changing world. We’re looking for people who are always searching for creative ways to grow and learn. People who want to make a real impact, now and in the future. We are looking for a highly skilled and motivated Product & Solution Security Professional to join our team. The ideal candidate will be responsible for defining secure design principles and supporting cross-functional teams to ensure secure architecture, implementation, and testing of products and solutions. Key Responsibilities: Integration with SDLC: Collaborate with software development teams to integrate security practices throughout the Software Development Life Cycle (SDLC). Ensure security requirements are included in the design, development, testing, and deployment stages of software projects. Perform security code reviews and analyze vulnerabilities during different SDLC phases. 2. Security Activities: Develop and implement security protocols, guidelines, and best practices for software development. Conduct threat modelling and risk assessments to identify potential security issues early in the development process. Provide guidance on secure coding practices and remediation of identified vulnerabilities. Stakeholder Interaction: Work closely with key stakeholders, including product managers, project managers, and business analysts, to support and promote security activities within products. Communicate security risks, issues, and mitigation strategies effectively to both technical and non-technical stakeholders. Foster a security-aware culture within the development teams and across the organization . 4. Security Tools and Technologies: Implement and manage security tools such as static and dynamic analysis tools and vulnerability scanners. Stay updated with the latest security tools, trends, and best practices to enhance product’s security posture. 5. Training and Awareness: Conduct security training and awareness programs for development teams. Promote continuous improvement and knowledge sharing related to application security . Skills and Qualifications: 1. Technical Skills: In-depth knowledge of application security, secure coding practices, and common vulnerabilities (e.g., OWASP Top Ten). Experience with security tools and technologies such as static analysis tools (SAST), dynamic analysis tools (DAST), and vulnerability scanners. Proficiency in programming languages such as Java, C#, Python. Understanding of DevSecOps practices and integration of security into CI/CD pipelines. Promote continuous improvement and knowledge sharing related to application security. 2. Soft Skills: Strong communication and interpersonal skills. Ability to explain complex security concepts to non-technical stakeholders. Strong analytical and problem-solving skills. Collaborative mindset and ability to work effectively with cross-functional teams. 3. Certification Preferred: CEH, Certified Secure Software Lifecycle Professional (CSSLP) or equivalent. Experience: Proven experience working with software development teams and integrating security practices into the SDLC. Experience interacting with key stakeholders and supporting security activities within software products. Having An engineering degree B.E/B.Tech/MCA/M.Tech/M.Sc with good academic record. 7 - 10 years of experience in cybersecurity, with a focus on application security. Make your mark in our exciting world at Siemens . This role, based in Bangalore , is an individual contributor position. You may be required to visit other locations within India and internationally. In return, you'll have the opportunity to work with teams shaping the future. At Siemens, we are a collection of over 312,000 minds building the future, one day at a time, worldwide. We are dedicated to equality and welcome applications that reflect the diversity of the communities we serve. All employment decisions at Siemens are based on qualifications, merit, and business need. Bring your curiosity and imagination, and help us shape tomorrow We’ll support you with: Hybrid working opportunities. Diverse and inclusive culture. Variety of learning & development opportunities. Attractive compensation package. Find out more about Siemens careers at: www.siemens.com/careers

Overview Enable Technologies is hiring a Senior QA Automation Engineer to perform automation testing on React front-ends and Python back-ends to ensure high-quality software solutions. Company details Enable Technologies Inc is a FinTech startup focused on financial equality by simplifying access to financial services. Learn more at https://enable-technologies.com/ Requirements 6–8 years of experience as a QA Engineer Expertise in automation testing tools (Selenium, PyTest) Experience with React front-end and Python back-end testing Hands-on experience with security penetration testing tools (e.g., OWASP ZAP, Burp Suite) Familiarity with Agile/Scrum methodologies Ability to document and troubleshoot errors Bachelor’s degree in Computer Science or related field Responsibilities Develop and execute automation scripts using tools like Selenium, WebDriverIO, Protractor, and PyTest Perform unit, integration, and E2E testing Create comprehensive test plans and test cases Track and document bugs, performing regression testing as needed Apply testing processes to meet client needs Stay updated with new testing tools and strategies Job Details Mode: Remote Interview process Screening R1 - Cultural fit Technical R1 - Live coding Technical R2 Final Round with Founder Important Note ClanX is a recruitment partner, helping Enable Technologies Inc hire a Senior QA Automation Engineer.

Job Description: About the Company: At AT&T, we’re connecting the world through the latest tech, top-of-the-line communications and the best in entertainment. Our groundbreaking digital solutions provide intuitive and integrated experiences for millions of customers across online, retail and care channels. Join our mission to deliver compelling communication and entertainment experiences to customers around the world as we continue to evolve as a technology-powered, human-centered organization. As part of our team, you’ll transform the way we deliver a seamless customer experience with digital at the center of all you do. In our world, digital is much larger than just an eCommerce channel, we are transforming all channels to digitally perform as one team to create a better customer experience. As we move into 2024, the digital transformation will revolutionize the digital space and you can build a career that will propel your future. About the Job: This position is a Senior Specialist Cyber Security for performing Application Security Testing in Cyber Security Organization. This profile will be passionate in preventing risk by identifying vulnerabilities in the applications of the enterprise by configuring scan settings for effective vulnerability enumeration, Identify and document findings, approve false positives and define/document approved mitigations used by AppSec Testers. Experience Level: 8+ years Location: Hyderabad or Bengaluru Roles and Responsibilities: Perform SAST/SCA/DAST scans using industry vulnerability scanner SAST/SCA – Veracode, using supplied compiled binary, configure scan platform to correct scan for both static code CWE’s as well as SCA derived CVEs. Work will include coordination with app owner to ensure all branches of code are included in compiled binary file. DAST – Work begins with crawling the target application to identify existing directory and file structure. Once identified, execute DAST scan using HCL product to identify dynamic issue only visible during code execution. During testing process, tester MUST ensure application is not degraded and/or taken out of service due to scanning activities Tester must ensure results from scanner are present in VM reporting platforms and visible to approved app users Perform manual validation and false-positive analysis on the automated scan results. Provide remediation support will analyze the top-rated vulnerabilities along with provide support to application teams on remediation strategies from identified risks. Execute scan retest by performing revalidation tests of previously identified critical and high severity vulnerabilities as requested by the client application teams. Primary / Mandatory skills: Overall – 8+ years of IT experience 7+ years of application security Experience 5+ years of Application Security testing Experience Bachelor's degree required. Deep familiarity with the OWASP Top 10 and other security concerns for web applications Deep Understanding of OWASP Application Security Verification Standards (ASVS) Deep understanding of SAST, DAST, SCA Scanning practices Experience in scanning leveraging Veracode, Appscan.or other enterprise tools. Understand how to interpret and assess CVEs (Common Vulnerability and Exposures) and CWEs (Common Weakness Enumeration) as found by scanning tools Understanding of SAST, DAST tools and dependency scanning tools Experience working/integrating with secret management systems Advanced knowledge of front-end and back-end web application development in at least one technology stack (.NET, Java, PHP, Ruby/Rails, Angular, Node.js, etc.) Track record of staying current with trends, techniques, tools, and processes that drive improvement of security posture of applications Strong documentation skills Excellent verbal and written communication skills, with proven technical writing abilities (English language proficiency required) Team-oriented thinking with demonstrated ability to produce high-quality work as part of a fast-paced, dynamic team Proven ability to communicate, collaborate, and present effectively with teams and individuals in different disciplines or areas Technical Skills: SAST, DAST, SCA Additional information (if any): Flexible to provide coverage in US morning hours upon need. Certification: CSSLP or equivalent #Cybersecurity Weekly Hours: 40 Time Type: Regular Location: IND:KA:Banglaore / Intl Tech Park, Whitefield Rd - Storage: Innovator Building, Itpb, Whitefield Rd It is the policy of AT&T to provide equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, AT&T will provide reasonable accommodations for qualified individuals with disabilities. AT&T is a fair chance employer and does not initiate a background check until an offer is made. Job ID R-69182 Date posted 06/06/2025 Benefits Your needs? Met. Your wants? Considered. Take a look at our comprehensive benefits. Paid Time Off Tuition Assistance Insurance Options Discounts Training & Development

Job Description We are seeking a highly skilled and motivated Technical Security Professional specializing in Vulnerability Assessment and Penetration Testing (VAPT), Source Code Review, API Security, and Web Application Security. As a member of our team, you will be responsible for ensuring the security and integrity of our systems, applications, and networks. Responsibilities  Conduct comprehensive Vulnerability Assessments and Penetration Tests (VAPT) on various systems, networks, and applications to identify security weaknesses and potential vulnerabilities.  Perform thorough Source Code Reviews to identify security flaws, coding errors, and vulnerabilities in web applications and software products.  Assess and enhance API security by evaluating API designs, configurations, and implementations for potential security risks and vulnerabilities.  Evaluate and enhance the security posture of web applications by conducting thorough security assessments and implementing appropriate security controls.  Develop and implement security testing methodologies, tools, and procedures to improve the efficiency and effectiveness of security testing activities.  Provide technical expertise and guidance to development teams, system administrators, and other stakeholders on security best practices and mitigation strategies.  Collaborate with cross-functional teams to remediate identified security vulnerabilities and implement security controls to mitigate risks.  Stay updated on the latest security trends, vulnerabilities, and best practices to continuously improve the security posture of our systems and applications. Requirements:  Bachelor's degree in Computer Science, Information Security, or a related field. (Master degree preferred)  5 to 7 years of experience in conducting Vulnerability Assessments and Penetration Tests (VAPT) on enterprise systems, networks, and applications.  4 to 7 years of experience in performing Source Code Reviews for web applications and software products.  Proficiency in using industry-standard security testing tools such as Nessus, Metasploit, Burp Suite, etc.  Strong understanding of web application security principles, common vulnerabilities (e.g., OWASP Top 10), and mitigation techniques.  Experience in assessing and enhancing API security, including authentication, authorization, encryption, and access control mechanisms.  Knowledge of secure coding practices and common programming languages (e.g., Java, Python, C/C++, etc.).  Knowledge of cloud security and DevSecOps processes.  Excellent analytical and problem-solving skills with the ability to identify and mitigate complex security risks and vulnerabilities.  Strong communication and interpersonal skills with the ability to effectively collaborate with cross-functional teams and stakeholders.  Relevant security certifications such as CISSP, CEH, OSCP, etc., are preferred.

About Us: Paytm is India's leading mobile payments and financial services distribution company. Pioneer of the mobile QR payments revolution in India, Paytm builds technologies that help small businesses with payments and commerce. Paytm’s mission is to serve half a billion Indians and bring them to the mainstream economy with the help of technology. About Team : The Internal Audit team at Paytm comprises seasoned professionals with diverse skill sets and experience across different verticals like process audits, technology audits and forensics. The team focuses on implementing the approved audit plan, ensuring delivery of qualitative audits and conducting internal / special reviews while leveraging technology & data analytics and gauging key risks across business processes. About the role: We are seeking an experienced and detail-oriented Information Security and Cloud Security Auditor to join our team. The ideal candidate will have 3-7 years of expertise in data security and privacy control implementation, internal auditing, third-party risk management, cybersecurity governance, and cloud security (banking sector preferred). This role will be responsible for conducting comprehensive IT and cloud security audits, ensuring compliance with regulatory requirements, and enhancing our information security policies and procedures. Key Responsibilities:  Conduct IT and cloud security audits across various domains, including IT General Controls, Information Security Controls, Cloud Security, Network Security, Vulnerability Management, and Vendor Risk Assessments.  Assess compliance with relevant laws, regulations, and organizational policies, providing expertise in regulatory requirements specific to both on-premises and cloud environments.  Develop and enhance information security and cloud security policies and procedures in alignment with industry best practices.  Maintain thorough documentation of audit findings, risk assessments, and security measures for internal and external reporting.  Validate ITGC, cloud security, and application-specific controls, and manage audit documentation including risk assessments, working papers, audit program checklists, and evidence gathering.  Follow up on and ensure closure of non-compliance issues identified during audits.  Manage and oversee third-party risk assessments and audits, ensuring robust security controls are in place for both traditional and cloud-based service providers.  Lead and participate in the development, migration, and implementation of security controls and policies for network and cloud security solutions.  Conduct risk-based security assessments on internal, vendor, and third-party hosted environments, focusing on both traditional IT and cloud infrastructure.  Participate in product and vendor selection processes, contributing to the implementation and integration of new technologies, with a strong emphasis on cloud security solutions. Experience/ Skills Required:  Minimum 5 years of experience in information security and auditing, with a strong background in cloud security, and the banking and IT industries.  Proven experience in performing IT and cloud security audits, validating ITGC and cloud application controls, and maintaining audit documentation.  Hands-on experience with vulnerability management, risk management, physical security, identity & access management, encryption, secure development, incident management, security infrastructure, and security policy for both on-premises and cloud environments.  Expertise in third-party risk management, regulatory compliance, and managing IT audit findings in both traditional and cloud-based contexts.  Strong analytical and problem-solving skills.  Excellent communication and documentation skills.  Ability to manage multiple projects and meet deadlines.  Strong understanding of IT, cloud security, and cybersecurity frameworks and standards.  Proficiency in using various security assessment tools and technologies, particularly those related to cloud environments.  Strong analytical and problem-solving skills.  Excellent communication and documentation skills.  Ability to manage multiple projects and meet deadlines.  Strong understanding of IT, cloud security, and cybersecurity frameworks and standards.  Proficiency in using various security assessment tools and technologies, particularly those related to cloud environments. Qualifications & Certification:  Bachelor's / Master’s degree in Information Technology, Cyber Security, or a related field.  ISO 27001/CNSS/CCNA/CISA/CISM/CISSP Preferred  Detailed knowledge of security tools, PCI-DSS, general ITGC controls, compliance testing, cloud risk assessment, GRC, OWASP, MITRE ATT&CK, change management, and policies and procedures.  Proficiency in various security and cloud technologies including AWS, Azure, Google Cloud Platform, Palo Alto, Fortinet & Checkpoint Firewalls, SOAR (Cortex), Force scout Why join us 1. A collaborative output driven program that brings cohesiveness across businesses through technology 2. Improve the average revenue per use by increasing the cross-sell opportunities 3. A solid 360 feedback from your peer teams on your support of their goals 4. Respect, that is earned, not demanded from your peers and manager Compensation: If you are the right fit, we believe in creating wealth for you With enviable 500 mn+ registered users, 21 mn+ merchants and depth of data in our ecosystem, we are in a unique position to democratize credit for deserving consumers & merchants – and we are committed to it. India’s largest digital lending story is brewing here. It’s your opportunity to be a part of the story!

Role Description Role Proficiency: Act under guidance of DevOps; leading more than 1 Agile team. Outcomes Interprets the DevOps Tool/feature/component design to develop/support the same in accordance with specifications Adapts existing DevOps solutions and creates relevant DevOps solutions for new contexts Codes debugs tests and documents and communicates DevOps development stages/status of DevOps develop/support issues Selects appropriate technical options for development such as reusing improving or reconfiguration of existing components Optimises efficiency cost and quality of DevOps process tools and technology development Validates results with user representatives; integrates and commissions the overall solution Helps Engineers troubleshoot issues that are novel/complex and are not covered by SOPs Design install and troubleshoot CI/CD pipelines and software Able to automate infrastructure provisioning on cloud/in-premises with the guidance of architects Provides guidance to DevOps Engineers so that they can support existing components Good understanding of Agile methodologies and is able to work with diverse teams Knowledge of more than 1 DevOps toolstack (AWS Azure GCP opensource) Measures Of Outcomes Quality of Deliverables Error rate/completion rate at various stages of SDLC/PDLC # of components/reused # of domain/technology certification/ product certification obtained SLA/KPI for onboarding projects or applications Stakeholder Management Percentage achievement of specification/completeness/on-time delivery Outputs Expected Automated components : Deliver components that automates parts to install components/configure of software/tools in on premises and on cloud Deliver components that automates parts of the build/deploy for applications Configured Components Configure tools and automation framework into the overall DevOps design Scripts Develop/Support scripts (like Powershell/Shell/Python scripts) that automate installation/configuration/build/deployment tasks Training/SOPs Create Training plans/SOPs to help DevOps Engineers with DevOps activities and to in onboarding users Measure Process Efficiency/Effectiveness Deployment frequency innovation and technology changes. Operations Change lead time/volume Failed deployments Defect volume and escape rate Meantime to detection and recovery Skill Examples Experience in design installation and configuration to to troubleshoot CI/CD pipelines and software using Jenkins/Bamboo/Ansible/Puppet /Chef/PowerShell /Docker/Kubernetes Experience in Integrating with code quality/test analysis tools like Sonarqube/Cobertura/Clover Experience in Integrating build/deploy pipelines with test automation tools like Selenium/Junit/NUnit Experience in Scripting skills (Python Linux/Shell Perl Groovy PowerShell) Experience in Infrastructure automation skill (ansible/puppet/Chef/Poweshell) Experience in repository Management/Migration Automation – GIT BitBucket GitHub Clearcase Experience in build automation scripts – Maven Ant Experience in Artefact repository management – Nexus/Artifactory Experience in Dashboard Management & Automation- ELK/Splunk Experience in configuration of cloud infrastructure (AWS Azure Google) Experience in Migration of applications from on-premises to cloud infrastructures Experience in Working on Azure DevOps ARM (Azure Resource Manager) & DSC (Desired State Configuration) & Strong debugging skill in C# C Sharp and Dotnet Setting and Managing Jira projects and Git/Bitbucket repositories Skilled in containerization tools like Docker & Kubernetes Knowledge Examples Knowledge of Installation/Config/Build/Deploy processes and tools Knowledge of IAAS - Cloud providers (AWS Azure Google etc.) and their tool sets Knowledge of the application development lifecycle Knowledge of Quality Assurance processes Knowledge of Quality Automation processes and tools Knowledge of multiple tool stacks not just one Knowledge of Build and release Branching/Merging Knowledge about containerization Knowledge of Agile methodologies Knowledge of software security compliance (GDPR/OWASP) and tools (Blackduck/ veracode/ checkmarxs) Additional Comments Key Responsibilities: Implement and manage continuous delivery systems and methodologies on Azure. Design, build, and maintain the CI/CD infrastructure and tools to deliver high-quality software in the most efficient manner. Provide support for .NET applications, including both .NET Core and .NET Framework. Administer Azure DevOps environments for automated build, test, and deployment processes. Work closely with development teams to integrate their projects into the production Azure cloud environment and ensure their ongoing support. Monitor, troubleshoot, and resolve issues in development, test, and production environments. Implement automation tools and frameworks (CI/CD pipelines). Collaborate with software architects and developers on software deployment strategies. Document processes, systems, environments, and their configurations. Qualifications: 6+ years of experience in DevOps Strong experience with Azure and Azure DevOps. Proficiency in CI/CD tools and practices. Experience in supporting .NET and .NET Core applications. Familiarity with Jenkins and other automation servers. Proficient in scripting languages such as PowerShell, Bash, etc. Strong understanding of cloud technologies and services. Excellent problem-solving and teamwork abilities. Desired Skills: Certifications in Azure or related technologies. Familiarity with infrastructure as code (IaC) using tools such as Terraform Knowledge of Agile methodologies and practices. Skills Devops,Azure,CI/CD Show more Show less

Job Description Current Employees apply HERE Current Contingent Workers apply HERE Secondary Language(s) Job Description Manager, Cybersecurity Engineering Cloud and App Security The Opportunity Based in Hyderabad, join a global healthcare biopharma company and be part of a 130- year legacy of success backed by ethical integrity, forward momentum, and an inspiring mission to achieve new milestones in global healthcare. Be part of an organisation driven by digital technology and data-backed approaches that support a diversified portfolio of prescription medicines, vaccines, and animal health products. Drive innovation and execution excellence. Be a part of a team with passion for using data, analytics, and insights to drive decision-making, and which creates custom software, allowing us to tackle some of the world's greatest health threats. Our Technology Centers focus on creating a space where teams can come together to deliver business solutions that save and improve lives. An integral part of our company’s IT operating model, Tech Centers are globally distributed locations where each IT division has employees to enable our digital transformation journey and drive business outcomes. These locations, in addition to the other sites, are essential to supporting our business and strategy. A focused group of leaders in each Tech Center helps to ensure we can manage and improve each location, from investing in growth, success, and well-being of our people, to making sure colleagues from each IT division feel a sense of belonging to managing critical emergencies. And together, we must leverage the strength of our team to collaborate globally to optimize connections and share best practices across the Tech Centers. Role Overview As a Cybersecurity Engineer, you will be responsible for designing, implementing, and maintaining security measures to protect the organization's computer systems, networks, and data from cyber threats. This role will involve a combination of technologies, processes, and practices designed to safeguard data, applications, and networks from threats like malware, phishing, and data breaches. You will be tasked with identifying vulnerabilities, supporting the response to incidents, and ensuring that security protocols and controls are adhered to. Your role is vital in safeguarding critical assets and ensuring compliance with legal and regulatory standards. What Will You Do In This Role Contribute to the development of enhanced cloud and application security control integrations and architectural best practices. Contribute to the development and implementation of product security policies and standards to ensure that application, cloud services and infrastructure meet organizational security requirements. Help maintain and monitor security tools and dashboards, ensuring that applications deployed in our environments adhere to organizational security standards and compliance requirements. Identify and prioritize adoption of our security tools within other teams ensuring the inputs and outputs are fully integrated enabling a complete security function. Follow standard approaches and established design patterns to create new designs for systems or system components. Identify and resolve minor design issues. Assist in implementing and maintaining specific security controls as required by organisational policy and local risk assessments and contribute to identifying risks that arise from potential technical solution architectures. Monitor and log the actual service provided, compared to that required by service level agreements. Undertake low-complexity routine vulnerability assessments using automated and semi-automated tools and contribute to evaluating and documenting the scope of results. Design, implement, test, document, and support integration of security tools and technologies in pipelines, Also, assist the product teams in related activities. Assist in maintaining security infrastructure and performing system updates. Investigate minor security breaches in accordance with established procedures. Assist users in defining their access rights and privileges and perform non-standard operational security tasks. Resolve security events and operational security issues. Work closely with cross-functional Infrastructure teams on Automation and Orchestration. Create and document detailed designs for simple software applications or components. Apply agreed modelling techniques, standards, patterns, and tools. Work within a matrix organizational structure, reporting to both the functional manager and the project manager. What Should You Have Bachelors’ degree in Information Technology, Computer Science or any Technology stream. Working experience in cloud environments AWS must have and good to have Azure, or GCP. Understanding of OWASP Top 10 security risks and mitigation strategies, relevant NIST standards, and Zero Trust principles. Familiarity with programming/scripting languages like Python, Bash, Terraform, Ansible, JSON, PowerShell, or JavaScript for automating tasks. Familiarity with software development/delivery lifecycle and related technologies 3+ years of hands-on experience working with network protocols, firewalls, intrusion detection systems, encryption technologies, and endpoint security solutions. Proficiency in security tools in the areas of cloud, application, endpoint, network or identity, vulnerability scanners, and malware analysis platforms.. Knowledge of authentication methods, identity management, and security access protocols (e.g., SSO, MFA, LDAP). Ideally AWS certified. Good interpersonal and communication skills (verbal and written). Relevant certifications (e.g., CISSP, CISM, CEH, CompTIA Security+) are often required or highly desirable. Proven record of delivering high-quality results. Product and customer-centric approach. Innovative thinking, experimental mindset. Our technology teams operate as business partners, proposing ideas and innovative solutions that enable new organizational capabilities. We collaborate internationally to deliver services and solutions that help everyone be more productive and enable innovation. Who We Are We are known as Merck & Co., Inc., Rahway, New Jersey, USA in the United States and Canada and MSD everywhere else. For more than a century, we have been inventing for life, bringing forward medicines and vaccines for many of the world's most challenging diseases. Today, our company continues to be at the forefront of research to deliver innovative health solutions and advance the prevention and treatment of diseases that threaten people and animals around the world. What We Look For Imagine getting up in the morning for a job as important as helping to save and improve lives around the world. Here, you have that opportunity. You can put your empathy, creativity, digital mastery, or scientific genius to work in collaboration with a diverse group of colleagues who pursue and bring hope to countless people who are battling some of the most challenging diseases of our time. Our team is constantly evolving, so if you are among the intellectually curious, join us—and start making your impact today. #HYDIT2025 Search Firm Representatives Please Read Carefully Merck & Co., Inc., Rahway, NJ, USA, also known as Merck Sharp & Dohme LLC, Rahway, NJ, USA, does not accept unsolicited assistance from search firms for employment opportunities. All CVs / resumes submitted by search firms to any employee at our company without a valid written search agreement in place for this position will be deemed the sole property of our company. No fee will be paid in the event a candidate is hired by our company as a result of an agency referral where no pre-existing agreement is in place. Where agency agreements are in place, introductions are position specific. Please, no phone calls or emails. Employee Status Regular Relocation VISA Sponsorship Travel Requirements Flexible Work Arrangements Hybrid Shift Valid Driving License Hazardous Material(s) Required Skills Design Applications, Information Security, Security Operations, SLA Management, Software Development, Software Development Life Cycle (SDLC), System Designs, Technical Advice, Vulnerability Scanning Preferred Skills Job Posting End Date 06/15/2025 A job posting is effective until 11 59 59PM on the day BEFORE the listed job posting end date. Please ensure you apply to a job posting no later than the day BEFORE the job posting end date. Requisition ID R335939 Show more Show less

Job Description As a Cybersecurity Engineer, you will be responsible for designing, implementing, and maintaining security measures to protect the organization's computer systems, networks, and data from cyber threats. This role will involve a combination of technologies, processes, and practices designed to safeguard data, applications, and networks from threats like malware, phishing, and data breaches. Current Employees apply HERE Current Contingent Workers apply HERE Secondary Language(s) Job Description Senior Manager, Cybersecurity Engineering Cloud and App Security The Opportunity Based in Hyderabad, join a global healthcare biopharma company and be part of a 130- year legacy of success backed by ethical integrity, forward momentum, and an inspiring mission to achieve new milestones in global healthcare. Be part of an organisation driven by digital technology and data-backed approaches that support a diversified portfolio of prescription medicines, vaccines, and animal health products. Drive innovation and execution excellence. Be a part of a team with passion for using data, analytics, and insights to drive decision-making, and which creates custom software, allowing us to tackle some of the world's greatest health threats. Our Technology Centers focus on creating a space where teams can come together to deliver business solutions that save and improve lives. An integral part of our company’s IT operating model, Tech Centers are globally distributed locations where each IT division has employees to enable our digital transformation journey and drive business outcomes. These locations, in addition to the other sites, are essential to supporting our business and strategy. A focused group of leaders in each Tech Center helps to ensure we can manage and improve each location, from investing in growth, success, and well-being of our people, to making sure colleagues from each IT division feel a sense of belonging to managing critical emergencies. And together, we must leverage the strength of our team to collaborate globally to optimize connections and share best practices across the Tech Centers. Role Overview As a Cybersecurity Engineer, you will be responsible for designing, implementing, and maintaining security measures to protect the organization's computer systems, networks, and data from cyber threats. This role will involve a combination of technologies, processes, and practices designed to safeguard data, applications, and networks from threats like malware, phishing, and data breaches. You will be tasked with identifying vulnerabilities, supporting the response to incidents, and ensuring that security protocols and controls are adhered to. Your role is vital in safeguarding critical assets and ensuring compliance with legal and regulatory standards. What Will You Do In This Role Lead the development of enhanced cloud and application security control integrations and architectural best practices. Lead the development and implementation of product security policies and standards to ensure that application, cloud services and infrastructure meet organizational security requirements. Lead the maintenance and monitoring security tools and dashboards, ensuring that applications deployed in our environments adhere to organizational security standards and compliance requirements. Lead adoption of our security tools within other teams ensuring the inputs and outputs are fully integrated enabling a complete security function. Design, implement, test, document, and support integration of security tools and technologies in pipelines, Also, assist the product teams in related activities. Work closely with cross-functional Infrastructure teams on Automation and Orchestration. Create and document detailed designs for simple software applications or components. Apply agreed modelling techniques, standards, patterns, and tools. Work within a matrix organizational structure, reporting to both the functional manager and the project manager. What Should You Have Bachelors’ degree in Information Technology, Computer Science or any Technology stream. Working experience in cloud environments AWS must have and good to have Azure, or GCP. Understanding of OWASP Top 10 security risks and mitigation strategies, relevant NIST standards, and Zero Trust principles. Familiarity with programming/scripting languages like Python, Bash, Terraform, Ansible, JSON, PowerShell, or JavaScript for automating tasks. Familiarity with software development/delivery lifecycle and related technologies 7+ years of hands-on experience working with network protocols, firewalls, intrusion detection systems, encryption technologies, and endpoint security solutions. Proficiency in security tools in the areas of cloud, application, endpoint, network or identity, vulnerability scanners, and malware analysis platforms. Knowledge of authentication methods, identity management, and security access protocols (e.g., SSO, MFA, LDAP). Ideally AWS certified. Good interpersonal and communication skills (verbal and written). Relevant certifications (e.g., CISSP, CISM, CEH, CompTIA Security+) are often required or highly desirable. Proven record of delivering high-quality results. Product and customer-centric approach. Innovative thinking, experimental mindset. Our technology teams operate as business partners, proposing ideas and innovative solutions that enable new organizational capabilities. We collaborate internationally to deliver services and solutions that help everyone be more productive and enable innovation. Who We Are We are known as Merck & Co., Inc., Rahway, New Jersey, USA in the United States and Canada and MSD everywhere else. For more than a century, we have been inventing for life, bringing forward medicines and vaccines for many of the world's most challenging diseases. Today, our company continues to be at the forefront of research to deliver innovative health solutions and advance the prevention and treatment of diseases that threaten people and animals around the world. What We Look For Imagine getting up in the morning for a job as important as helping to save and improve lives around the world. Here, you have that opportunity. You can put your empathy, creativity, digital mastery, or scientific genius to work in collaboration with a diverse group of colleagues who pursue and bring hope to countless people who are battling some of the most challenging diseases of our time. Our team is constantly evolving, so if you are among the intellectually curious, join us—and start making your impact today. #HYDIT2025 Search Firm Representatives Please Read Carefully Merck & Co., Inc., Rahway, NJ, USA, also known as Merck Sharp & Dohme LLC, Rahway, NJ, USA, does not accept unsolicited assistance from search firms for employment opportunities. All CVs / resumes submitted by search firms to any employee at our company without a valid written search agreement in place for this position will be deemed the sole property of our company. No fee will be paid in the event a candidate is hired by our company as a result of an agency referral where no pre-existing agreement is in place. Where agency agreements are in place, introductions are position specific. Please, no phone calls or emails. Employee Status Regular Relocation VISA Sponsorship Travel Requirements Flexible Work Arrangements Hybrid Shift Valid Driving License Hazardous Material(s) Required Skills Design Applications, Information Security, Security Operations, SLA Management, Software Development, Software Development Life Cycle (SDLC), System Designs, Technical Advice, Vulnerability Scanning Preferred Skills Job Posting End Date 06/20/2025 A job posting is effective until 11 59 59PM on the day BEFORE the listed job posting end date. Please ensure you apply to a job posting no later than the day BEFORE the job posting end date. Requisition ID R335936 Show more Show less

Come work at a place where innovation and teamwork come together to support the most exciting missions in the world! We are looking for a highly skilled and motivated Lead Security Engineer to join our Vulnerability Detection Signature Research team. In this role, you will take charge of researching, developing, and delivering vulnerability detection signatures for our scanning products. You will oversee and resolve vulnerability scanning and detection issues that impact our customers, leading the sustenance research team to ensure expert handling of customer concerns and managing escalations. Collaboration with cross-functional teams will be key to resolving complex challenges. This position demands a strong technical foundation in vulnerability management, scanning tools, and security best practices, along with proven leadership experience in managing teams and addressing customer-facing escalations. Responsibilities Lead the development, implementation, and continuous improvement of vulnerability detections and scanning processes for customers Lead and manage customer calls and meetings, ensuring that all issues are clearly understood and effectively addressed. Investigate, analyze, and troubleshoot vulnerability detection issues reported by customers, then modify the code to resolve these problems. Build automation for day-to-day tasks. As a Lead Security Signature Engineer, you will also dedicate time to staying up-to-date with the latest vulnerabilities, attacks, and countermeasures Coordinate team tasks, assign priorities, and ensure timely resolution of customer issues. Externalize research by writing blog posts, presenting at security conferences, etc. As a Lead Security Signature Engineer, you would also work alongside information security engineers to execute internal projects. Qualifications 7+ years of industry experience in network and systems security Proven experience in leading and mentoring teams in a technical environment Demonstrated experience with vulnerability scanning tools and vulnerability management processes In-depth knowledge of protocols such as TCP/IP, HTTP, FTP, SSH and SSL Strong understanding of common security vulnerabilities (e.g., OWASP Top 10, CVEs, etc.) and their remediation Experience with scripting languages, including Python and Bash Experience with network analysis tools, analysis of packet captures. Proficient with regular expressions. Ability to shift priorities as needed and demanded by the customer requirements System administrator experience on Windows or Unix platforms Strong understanding of VPN, Firewalls, Intrusion detection systems (IDS) Proven ability to manage customer escalations and deliver effective solutions under pressure Excellent written and verbal communication skills Additional Plus Competencies Understanding of Lua (preferred), Java. Knowledge of Virtualization software (VMWare, Virtual PC/Virtual Box, XEN, etc) Experience in cloud security (AWS, Azure, GCP) and containerized environments (Docker, Kubernetes). Able to handle projects independently Experience in developing security-related tools/programs. OSCP, CISSP or SANS GIAC certifications Show more Show less

What You’ll Do This security analyst will be part of a team tasked with identifying, tracking and verifying the remediation of vulnerabilities in internal and external applications and systems. This role involves performing deep-dive analysis of vulnerabilities, operating vulnerability scanning tools, and building relationships with other groups within the IT organization. You will work closely with IT infrastructure, product teams, supply chain, and Cyber Security operations to reduce Eaton's attack surface. Stay up to date with the evolving technological and threat landscape and its potential impact on modern and legacy technologies, applications, and business processes. Monitor for vulnerabilities within applications, endpoints, databases, networking, and mobile and cloud services. Conduct continuous discovery, vulnerability assessment and remediation status of enterprise-wide assets. Advise employees responsible for remediation on the best reduction and remediation practices. Review and analyze vulnerability data to identify trends and patterns. Regularly report on the state of vulnerabilities, including their criticality, exploit probability, business impact, and remediation strategies. Serve as a point of contact for new and existing vulnerability-related issues. Collaborate with business teams and cyber security stakeholders to ensure appropriate governance structures are in place and that risks are documented. Provide vulnerability education and guidance to stakeholders, developers, IT and business leaders as needed. Maintain documentation related to vulnerability policies and procedures. Assist maintaining records for Eaton assets, their vulnerability state, remediation recommendations, overall security posture and potential threat to the business. Identify areas of opportunity for improvement and automation within team processes. Perform other duties as assigned, including on-call rotations. Qualifications Bachelor’s degree in a technical discipline Overall 5-8 years of experience 3+ years of experience in security operations or vulnerability management. Skills Ability to analyze and understand vulnerabilities and exploits Proficiency with commercial and open source vulnerability management solutions. Understanding of TTPs, MITRE ATT&CK framework, CVSS, OSINT, and deception techniques. Understanding of operating systems, applications, infrastructure, and cloud computing services. Understanding of OWASP, CVSS, MITRE ATT&CK framework. Capacity to comprehend technical infrastructure, managed services, and third-party dependencies. Preferably some experience with vulnerability management across AWS, Azure, or Google cloud Platform. Experience in Python or Powershell, with an emphasis on scripting, automation, and integrations. Experience in threat hunting or red teaming exercises is a plus. Strong communication skills: Ability to communicate effectively across all levels of the organization. Project management skills: Strong project management, multitasking, and organizational skills ]]> Show more Show less

Hiring Manager: Abhishar Balodhi Recruiter: Archana SM Location: Gurugram Carrer Level: E Why BT We’ve always been an organisation with a purpose; to use the power of communication to make a better world. You can trace this back to our beginning as pioneers of the world’s firs telecommunications company. At our heart we’re a technology company with research and innovation in our bones and a desire to be personal, simple, and brilliant for our customers - those are the values we live by whilst also creating an inclusive working environment where people from all backgrounds can succeed.Our pursuit of progress over the past 180 years has established BT as a strong, successful brand, with huge scale capable of achieving great things. From supporting emergency services, hospitals, banks and keeping economies around the world online, safe and secure, to delivering large scale technology infrastructure like the creation of BT Sport. Today in this fast-changing, always on, digital world our purpose remains true. Yet the market conditions, regulations and competition we face are tougher than ever before. So, if you have the drive, optimism and resilience to help propel us forward we’ll offer unrivalled personal development, a wealth of opportunities to learn, experience new things and pursue new careers. If that’s you and what you’re looking for, we’d love you to be part of our future. Why this job matters As an experienced Information Security Services provider, we will help lead a highly motivated team laser-focused on analysing, designing, developing and delivering solutions built to stop adversaries and strengthen your operations Our Competent individuals and Skilled leadership will provide you incident response, risk reviews and vulnerability assessments, identifying threats, all of which ladder up to driving secure solutions. What I’ll Be Doing – Your Accountabilities Accountable for delivering vulnerability assessments and penetration tests. Responsible for increasing individual technical skill whilst also delivering BAU. Accountable for increasing capability of the penetration testing team through web application, network & mobile skill acquisition. Accountable for support leadership in setting strategy for the team moving forward. Responsible for contributing to the positive research and technical capability of BT security. To support and maintain the BT Business Support – Protect BT ISO27001 certificate for Offensive Security team The Skills You Need Pentest Skills – Web application pen test (OWASP, NIST framework), Network pen test (Linux, windows), API & Mobile pen test. Networking Skills – TCP/IP packet level understanding, Routing, Switching, firewall understanding. Linux Skills – Linux directory structure & basic command line knowledge from pentest/vulnerability assessment standpoint. Vulnerability management- This requires understanding of vulnerability assessment framework (CVE/CVSS) and Security assessment tools (such as Nmap, Metasploit, Burp Suite, SQL map, Nessus) Regulatory Understanding- PCI DSS guidelines, GDPR. Leadership Accountabilities Accountabilities of the job: Solution focused achiever: We need this person to focus on delivering exceptional penetration testing services Customer champion: we are transforming how we communicate with our customers and need responsible person with a customer-focused attitude. Change agent: We need a tester who sees our processes and immediately thinks of better ways to do what we are doing and then leads that change. Experience You Would Be Expected To Have Mandatory 2-4 Years experience in the field on pen testing. Mandatory Bachelor’s degree or higher preferred. CEH, OSCP, CREST, LPT certifications are highly preferred. Ability to understand packet level TCP/IP knowledge. Good scripting knowledge (e.g. Python) will be highly preferred. Capable of working successfully with end customers PREFERRED. BT is part of BT Group, along with EE, Openreach, and Plusnet. Millions of people rely on us every day to help them live their lives, power their businesses, and keep their public services running. We connect friends to family, clients to colleagues, people to possibilities. We keep the wheels of business spinning, and the emergency services responding. We value diversity and celebrate difference. ‘We embed diversity and inclusion into everything that we do. It’s fundamental to our purpose: we connect for good.’ We all stick to the same values: Personal, Simple, and Brilliant. From day one, you’ll get stuck in to tough challenges, pitch in with ideas, make things happen. But you won’t be alone: we’ll be there with help and support, learning and development. This is your chance to make a real difference to the world: to be part of the digital transformation of countless lives and businesses. Grab it. Show more Show less

Requisition ID: [[6895]] Location: [[Thane, Mumbai]] Business Unit/Group Function: [[GF-IT]] If the chemistry is right, we can make a difference at LANXESS: speed up sports, make beverages last longer, add more color to leisure time and much more. As a leading specialty chemicals group, we develop and produce chemical intermediates, additives, specialty chemicals and high-tech plastics. With more than 13,000 employees. Be part of it! Job Highlights Automated Testing: Develop, execute, and maintain automated test cases using tools like Selenium or Cypress to ensure robust test coverage. Load & Performance Testing: Conduct performance and load testing with tools such as JMeter, identifying and resolving performance bottlenecks. E2E Testing: Plan and execute end-to-end testing of system functionality, usability, responsiveness, and cross-browser compatibility for critical scenarios. Defect Reporting: Document and report test results and defects in a detailed and precise manner, linking them to corresponding test scenarios. Requirements What We Offer You Specific Education : Bachelor of Engineering Work Experience : 3 - 5 years Special Skills : Strong knowledge of Python or TypeScript for test automation and backend testing. Hands-on experience with Selenium, Cypress, and load testing tools like JMeter. Familiarity with scripting for automated testing and integration into CI/CD pipelines. Knowledge of OWASP standards. ISTQB Foundation Level (FL) certification is an added advantage. Compensation: We offer competitive compensation packages, inclusive of a global bonus program and an individual performance bonus program. Comprehensive Benefits: We provide a variety of benefits to support your financial security, health and wellbeing including retirement plans, health programs, life insurance and medical care. Work-Life & Flexibility: We support you in maintaining a balance between working hours and personal life. With our global “Xwork” program, we offer flexible working arrangements in all countries in which we operate. Training & Development: We are committed to your professional and personal development and encourage you in the ongoing pursuit of education, training and knowledge through both formal and informal learning. Diversity: For us, talent matters, we welcome everyone who commits to our values. We strongly believe that including diverse perspectives makes us more innovative and enhances our competitiveness. Therefore, we embrace the uniqueness of every single individual and are truly committed to supporting our people in developing their individual potential. Your Contact Person For Questions Is Your Recruiting Team Papia Das Show more Show less

Looking out for Immediate Joiners only !!! Job Title: Associate Consultant / Consultant Skills: IT Audit(ITGC/ITAC) Location: Delhi/NCR Skills Required: Risk Based IT Internal Audit for Financial Services Entities IT SOX 404 Controls Testing, Quality Assurance Internal Financial Controls related to IT General Controls as part of Financial Statements Audits IT Risk & Control Self-Assessment Business Systems Controls / IT Application Controls Auditing Emerging Technologies such as Cloud Security, Intelligent Automation, RPA, IoT etc. Responsibilities: Collaborate with other members of the engagement team to plan the engagement and develop relevant workpapers/deliverables. Perform fieldwork and share the daily progress of fieldwork, informing supervisors of engagement status. Perform testing of IT Application Controls, IPE, and Interface Controls through code reviews, IT General Controls review covering areas such as Change Management, Access Management, Backup Management, Incident and Problem Management, SDLC, Data Migration, Batch Job scheduling/monitoring and Business Continuity and Disaster Recovery Perform Risk Assessment, identification, and Evaluation of Controls, prepare process flow diagrams and document the same in Risk & Control Matrix. Perform business process walkthrough and controls testing for IT Audits. Performing planning and executing audits, including: Information Security reviews Information Technology Infrastructure reviews Application reviews Use knowledge of the current IT environment and industry IT trends to identify the engagement and client service issues and communicate this information to the project manager. Maintain relationships with client management and the project Manager to manage expectations of service, including work products, timing, and deliverables. Demonstrate a thorough understanding of complex information systems and apply it to client situations. Use extensive knowledge of the client's business/industry to identify technological developments and evaluate impacts on the work to be performed Risk Based IT Internal Audit for Financial Services Entities IT SOX 404 Controls Testing, Quality Assurance Internal Financial Controls related to IT General Controls as part of Financial Statements Audits IT Risk & Control Self-Assessment Business Systems Controls / IT Application Controls Auditing Emerging Technologies such as Cloud Security, Intelligent Automation, RPA, IoT etc. Coordinate effectively and efficiently with the Engagement manager and the client management keeping both constantly updated regarding project’s progress. Monitoring and Tracking for Budget and Time Estimates on engagements. Conducting IT audits, IT Internal Audit, Robotics Process Automation (RPA) Audits Conducting SOX audits, Third Party Security audits Conducting controls assessment in manual/ automated environment Information Security Assessments Conducting OS/DB/Network reviews Prepare/Review of Policies, Procedures, SOPs The Candidate: A Bachelor's degree in engineering and approximately 3 -6 years of related work experience; or a master’s or MBA degree in business, computer science, information systems, engineering Experience in performing IT audits of banking/financial sector applications Good to have knowledge of other IT regulations, standards and benchmarks used by the IT industry (e.g., NIST, PCI-DSS, ITIL, OWASP, SOX, COBIT, SSAE18/ISAE 3402 etc.) Technical Knowledge of IT Audit Tools Experience in carrying out OS/DB/Network reviews Exposure to Risk Management and Governance Frameworks/ Systems will be an added advantage Exposure to ERP systems will be added advantage Experience in performing technical code reviews (understanding code logic based on business requirement) Strong project management, communication (written and verbal) and presentation skills A team player Strong self-directed work habits, exhibiting initiative, drive, creativity, maturity, self-assurance, and professionalism Preferred Certifications – CISA/CISSP//CISM Exposure to automation Data Analytics tools such as QlikView/Qlik sense, ACL, Power BI will be an advantage Proficiency with Microsoft Word, Excel, Visio, and other MS Office tools Show more Show less

Amazing oppurtunity for candidates who can join our team by July End !!! Job Title: IT Audit & AI Assurance Associate Consultant / Consultant / Assistant Manager Experience: 2 to 7 Years Industry Type: Consulting / Audit / Risk Advisory Functional Area: IT Audit, Risk & Compliance Employment Type: Full Time, Permanent Role Category: IT Security / Audit / Risk Job Description: We are hiring professionals with a strong background in IT Audit and a keen interest or experience in AI Controls, AI Assurance, AI Risk, or AI Audits . This role is ideal for individuals looking to work at the intersection of technology, risk, and innovation . Key Responsibilities: Conduct IT audits including ITGC, SOX 404, SOC 1 & SOC 2 , and application controls. Evaluate IT and AI governance frameworks, controls, and risk management practices. Support AI assurance engagements, including audits of AI models, data governance, and algorithmic accountability. Review compliance with standards such as NIST, PCI-DSS, ITIL, OWASP, SOX, COBIT, SSAE18/ISAE 3402 . Use IT audit tools and methodologies to perform risk-based assessments. Collaborate with cross-functional teams to assess AI and IT risks. Prepare audit reports and present findings to stakeholders. Stay updated on emerging AI regulations and IT audit trends. Desired Candidate Profile: 2–6 years of experience in IT Audit / Risk Advisory / Compliance . Strong understanding of IT governance frameworks and audit methodologies. Exposure to AI risk, AI governance, or AI assurance is a strong plus. Familiarity with ERP systems (SAP, Oracle) is an advantage. Knowledge of security controls across applications, OS, and databases. Excellent communication, presentation, and project management skills. Certifications like CISA, CRISC, CISSP, ISO 27001 LA are preferred. AI-related certifications (e.g., Responsible AI, AI Ethics) are a plus. Key Skills: IT Audit, AI Assurance, AI Risk, ITGC, SOX, SOC 1, SOC 2, COBIT, NIST, PCI-DSS, SSAE18, ISAE 3402, ERP, Risk Management, Governance, ITIL, OWASP, Audit Tools, AI Controls Show more Show less

Amazing Oppurtunity for candidates wo can join us by July end !! About the Vacancy: IT Advisory Risk Consulting IT Audit & Assurance KPMGs IT Advisory Risk Consulting team is looking for Managers to join their IT Audit & Assurance team. Team provides Independent assurance on controls in place across clients IT environment and ways to mitigate Technology risks. Following are some of our key solution offerings Skill set for IT Audit - IT Audit with knowledge of IT governance practices Good to have knowledge of other IT regulations, standards and benchmarks used by the IT industry (e.g. NIST, PCI-DSS, ITIL, OWASP, SOX, COBIT, SSAE18/ISAE 3402 etc.) Technical Knowledge of IT Audit Tools with excellent knowledge of IT Audit process and methodology Prior IT Audit experience in areas of ITGC, SOX 404, SOC-1 and SOC-2 Audits and Application Controls Exposure to Risk Management and Governance Frameworks/ Systems will be an added advantage Exposure to ERP systems will be added advantage Strong project management, communication (written and verbal) and presentation skills Knowledge of security measures and auditing practices within various applications, operating systems, and databases Position: Associate Consultants/ Consultants/ Assistant Managers Responsibilities Additional Responsibilities for Assistant Managers: Supervise associates and interns on engagements Serve as a liaison between financial services clients and upper management Qualifications Bachelor's degree in an appropriate field from an accredited college/university Project or team lead experience, specifically within a consulting firm is preferred Excellent written and verbal communication, facilitation, and presentation skills with the ability to gain the confidence and respect of senior level executives Strong analytical and problem solving skills Ability to work well in teams Ability to work under pressure stringent deadlines and tough client conditions which may demand extended working hours Willingness to travel within India or abroad for continuous long periods of time Demonstrate integrity, values, principles, and work ethic and lead by example Show more Show less

• Develop, maintain, and execute automated tests for UI • Design test plans and test cases based on functional and non-functional UI requirements • UI automation frameworks • Performance & load testing of APIs using tools like JMeter or Gatling Required Candidate profile • Integrate automated tests into CI/CD pipelines • Identify, report & track UI bugs and defects using issue tracking systems • Understanding of web development concepts • Scripting language

Start your journey with BCD: Grow, connect, collaborate and celebrate with our global team Java Quarkus AWS Systems Engineer Remote Full-time, India The Systems Developer Analyst II position will be responsible for the development, maintenance, and support of all development applications. This individual must maintain effective customer (Internal) relationships as well as effective communication and coordination with various other technology groups (at both Divisional and Corporate levels). The Systems Developer Analyst II is expected to be able to analyze, design, code, test, and implement large projects and troubleshoot any Client/Server-based production system. As a Java Quarkus AWS Systems Engineer, you will Design, code test, and implement application systems to meet management objectives Create and maintain complex application reporting system utilizing specified reporting tool Read technical systems design and requirements document and convert design to code Maintain web and client-based systems and initiate actions necessary for improvement Perform and participate in the technical reviews of developed components Communicate with the director of software development, product manager, and customers about change requests and understand their needs About You Prior application development experience A few years of complete SDLC experience Experience using Programming languages: Java, Typescript Experience using Frameworks and Tools: Quarkus, Angular, Kubernetes, Docker, Kafka, Mutiny, Gi Experience using Architectures: REST api (open API/swagger), Microservices, event-driven architecture (EDA) Experience in Security: web applications hardening best practices, including OWASP guidelines and PCI-DSS Experience working with MongoDB About Us We’re a market leader in travel management: We help people and companies travel smart and achieve more, and our clients include some of the world’s best-known and most innovative business and consumer brands. We operate in more than 100 countries, and the majority of our 10,000+ people work virtually (because a 10-second commute usually makes awesome sense). We’re committed to sustainability and to driving success for our customers, our business and ourselves. Learn more about BCD Travel. Your life at BCD Working at BCD means connecting, collaborating and celebrating. You’ll be part of a virtual, dynamic and flexible work environment that fosters a good work-life balance so you can focus on what makes you happy. But don’t just take our word for it! Hear why people join BCD and more about the great perks of Life at BCD. You’ll be offered Flexible working hours and work-from-home or remote opportunities Opportunities to grow your skillset and career Generous vacation days so you can rest and recharge A compensation package that feels fair to you, including mental, physical, and financial wellbeing tools Travel industry professional perks and discounts An inclusive work environment where diversity is celebrated Ready to join the journey? Apply now! We’re dedicated to building a diverse, inclusive and authentic workplace. If you’re excited about a role, but your experience doesn’t align perfectly, we still encourage you to apply. We are committed to providing reasonable and necessary accommodations to ensure all employees can perform their roles effectively. For accommodation requests or further information, contact our Talent Acquisition department at careers@bcdtravel.com. Show more Show less

Responsibilities: Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. Deliver impactful and timely business value incrementally through designing, building and testing solutions by applying technical expertise to challenging design, implementation and delivery problems. Contribute across the full-stack of systems, front-end, back-end. Implementation of secure solutions through designing and implementing with a security first focus and utilizing data protection patterns. Design and build for scalability, performance and maintainability. Make recommendations for improvements to the technology from the assigned information technology platform. Work cross-functionally with other team members: other engineers, testers, product owners, designers, technical and business operations, customer support. Mentor junior engineers, new team members. Requirements Minimum Qualifications Prefer a bachelors degree or higher, in Software Engineering or Computer Science strongly preferred or a related discipline. 7 - 9 years of Software Engineering experience. Strong written and verbal communications and teamwork skills. Preferred Qualifications Strong object-oriented skills (preferably in .net/C#). Strong database modeling and design skills, both SQL and non-SQL databases. Strong skills in developing for cloud native solutions (preferably AWS experience and AWS certifications a plus). Strong trouble-shooting skills. Proficient in API design and development and implementing RESTful APIs. Demonstrated understanding of designing and implementing secure solutions with accessibility and security first focus (prefer a strong understanding of OWASP security principles). Demonstrated ability of keeping current with trends in information technology best practices and standards and how to apply this understanding to work projects and processes. Demonstrated knowledge of common architectural and design patterns. Demonstrated focus on quality deliverables with strong emphasis on peer review, implementing automated testing platforms for unit tests, integration tests and acceptance tests. Strong appetite for continuous improvement throughout the SDLC with a habit of asking "why". Locations : Chennai, Tamil Nadu, India Show more Show less

When you join Verizon You want more out of a career. A place to share your ideas freely even if theyre daring or different. Where the true you can learn, grow, and thrive. At Verizon, we power and empower how people live, work, and play by connecting them to what brings them joy. We do what we love driving innovation, creativity, and impact in the world. Our V Team is a community of people who anticipate, lead, and believe that listening is where learning begins. In crisis and in celebration, we come together lifting our communities and building trust in how we show up, everywhere & always. Want in? Join the #VTeamLife. What Youll Be Doing... The work you'll be doing is to support mission and business-critical applications within Verizon. You will be enhancing the customer experience and building a world-class solution. Under the mentorship of a technical lead who would be supporting you on delivery, you will also work as a team member on various projects and mentor junior resources. You will help develop, implement, and maintain this important application. Designing, developing, and maintaining applications and databases by evaluating client needs, analyzing requirements, and developing software systems. Testing and coordinating all user interface changes of Responsive Web Design. Executing full software development life cycle (SDLC) concept, design, build, deploy, test, release, and support. Ensuring application development sprint cycle is on track and adjusting the plan to meet release timelines. Acting independently, at the same time displaying excellent collaboration within and between various teams. Understanding the domain knowledge and adapting to an agile environment. Building reusable code and libraries for future use in front-end and back-end technologies. Mentoring junior developers in the team and leading them to deliver on projects. Where you'll be working... In this hybrid role, you'll have a defined work location that includes work from home and assigned office days set by your manager. What Were Looking For... You are curious about new technologies and the possibilities they create. You enjoy the challenge of supporting applications while exploring ways to improve upon the technology. You are driven and motivated, with good communication and analytical skills. Youre a sought-after team member that thrives in a dynamic work environment. You have a thirst for working on cutting-edge technology with the drive to change the status quo. You'll Need To Have Bachelor's degree or four or more years of work experience. Four or more years of relevant work experience. Four or more years of Experience in Full Stack Developer (Java, Spring Boot, Microservices, React.js, Redux). Experience in designing and implementing Microservices and IaaS infrastructure based on AWS Code Deploy, Docker Swarm, Kubernetes, etc. Experience in SCM Tools like GIT. Three or more years of Experience in HTML, CSS, JavaScript. Experience in implementing Object-Oriented Web Programming and exposure to TypeScript, JavaScript, including DOM manipulation and the object models. Experience in creating configuration, build, and test scripts for Continuous Integration environments. Four or more years of experience on Frontend/Web technologies and backend services. Knowledge of SDLC and Agile Development. Knowledge of cloud-native application development. Effective code review, quality, and performance tuning experience. Even better if you have one or more of the following: Experience with a high-performance, high-availability environment. Strong analytical and debugging skills. Good communication and presentation skills. Relevant certifications. Experience with UI framework. Experience with OWASP rules and mitigation of security vulnerabilities using security tools like Fortify, SonarQube, Blackduck, etc. Experience with Unit testing frameworks like JUnit, Mockito. Experience with monitoring tools like New Relic. Ability to understand Agile and DevOps tools and technologies. Strong problem-solving and debugging skills. If Verizon and this role sound like a fit for you, we encourage you to apply even if you dont meet every even better qualification listed above. Where youll be working In this hybrid role, you'll have a defined work location that includes work from home and assigned office days set by your manager. Scheduled Weekly Hours 40 Equal Employment Opportunity Verizon is an equal opportunity employer. We evaluate qualified applicants without regard to race, gender, disability, or any other legally protected characteristics. Locations Chennai, India Hyderabad, India Show more Show less

We are looking for a Senior Java Engineer for our client in Pune Job Summary: As a Senior Java Engineer, you will work with lead-level and fellow senior-level engineers to architect and implement solutions that enable customers to get the most out of what the client can offer. In this role, you will develop performant and robust Java applications while supplying the continued evaluation and advancement of web technologies in the organization. Responsibilities: Work on a high-velocity scrum team Work with clients to come up with solutions to real-world problems Architect and implement scalable end-to-end Web applications Help team lead facilitate development processes Provide estimates and milestones for features/stories Work with your mentor to learn and grow and mentor less experienced engineers Contribute to the growth of InRhythm via interviewing and architecting What you bring to the table (Core Requirements): 5+ years of Java development within an enterprise-level domain Java 8 (11 preferred) features like lambda expressions, Stream API, CompletableFuture, etc. Skilled with low-latency, high volume application development Team will need expertise in CI/CD, and shift left testing Nice to have Golang and/or Rust Experienced with asynchronous programming, multithreading, implementing APIs, and Microservices, including Spring Boot Proficiency with SQL Experience with data sourcing, data modeling and data enrichment Experience with Systems Design & CI/CD pipelines Cloud computing, preferably AWS Solid verbal and written communication and consultant/client-facing skills are a must. As a true consultant, you are a self-starter who takes initiative. Solid experience with at least two (preferably more) of the following: Kafka (Core Concepts, Replication & Reliability, Kafka Internals, Infrastructure & Control, Data Retention and Durability) MongoDB Sonar Jenkins Oracle DB, Sybase IQ, DB2 Drools or any rules engine experience CMS tools like Adobe AEM Search tools like Algolia, ElasticSearch or Solr Spark What makes you stand out from the pack: Payments or Asset/Wealth Management experience Mature server development and knowledge of frameworks, preferably Spring Enterprise experience working and building enterprise products, long term tenure at enterprise-level organizations, experience working with a remote team, and being an avid practitioner in their craft You have pushed code into production and have deployed multiple products to market, but are missing the visibility of a small team within a large enterprise technology environment. You enjoy coaching junior engineers, but want to remain hands-on with code. Open to work hybrid - 3 days per week from office Good to have: Network Stack - GRPC, HTTP/2 etc Security Stack (OWASP, Oauth, encryption) Good Communication Agile Additional details: Shift Timing : 9-5 general shift Interview Rounds Virtual (4 Rounds): 2 Internal + 2 Client. Mode of Work: Hybrid - 3 days a week Office Location : Yerwada, Pune NP: Immediate to 30 days Show more Show less

Company Description Strategy (Nasdaq: MSTR) is at the forefront of transforming organizations into intelligent enterprises through data-driven innovation. We don't just follow trends, we set them and drive change. As a market leader in enterprise analytics and mobility software, we've pioneered the BI and analytics space, empowering people to make better decisions and revolutionizing how businesses operate. But that's not all. Strategy is also leading a groundbreaking shift in how companies approach their treasury reserve strategy, boldly adopting Bitcoin as a key asset. This visionary move is reshaping the financial landscape and solidifying our position as a forward-thinking, innovative force in the market. Four years after adopting the Bitcoin Standard, Strategy's stock has outperformed every company in S&P 500. Our people are the core of our success. At Strategy, you'll join a team of smart, creative minds working on dynamic projects with cutting-edge technologies. We thrive on curiosity, innovation, and a relentless pursuit of excellence. Our corporate values—bold, agile, engaged, impactful, and united—are the foundation of our culture. As we lead the charge into the new era of AI and financial innovation, we foster an environment where every employee's contributions are recognized and valued. Join us and be part of an organization that lives and breathes innovation every day. At Strategy, you're not just another employee; you're a crucial part of a mission to push the boundaries of analytics and redefine financial investment. Job Description Join Strategy’s IT Security group as an Application Security Engineer and play a crucial role in safeguarding Strategy’s software applications while using modern security and AI tooling. In this position, you will be responsible for integrating security practices throughout the software development lifecycle, ensuring that our software products are resilient against vulnerabilities. Secure SDLC Integration: Work closely with development teams to integrate security into the SDLC, including threat modeling, secure code reviews, and security testing. Vulnerability Management: Identify, triage, and remediate security vulnerabilities through static and dynamic application security testing (SAST/DAST) and software composition analysis (SCA) tools. Security Assessments & Penetration Testing: Conduct manual and automated penetration testing of web, mobile, and cloud applications to detect security flaws. Secure Code Review: Analyze source code and provide security recommendations to developers to ensure adherence to secure coding best practices. Threat Modeling & Risk Analysis: Perform threat modeling to anticipate potential attack vectors and improve security architecture. DevSecOps Enablement: Support and enhance DevSecOps initiatives by integrating security automation within CI/CD pipelines. Incident Response & Remediation: Assist in investigating security incidents related to applications and work with engineering teams to remediate threats. Security Awareness & Training: Educate and mentor developers on OWASP Top 10, SANS 25, and other security best practices. Application Security Engineer Pune, India Full-time in person from Strategy Office a minimum of 4 days per week Qualifications Bachelor’s degree in Computer Science, Engineering, or related field Minimum 2 years of software development or software security experience in an agile environment Hands-on experience with SAST, DAST, IAST, and SCA tools (e.g., Checkmarx, Fortify, Veracode, SonarQube, Burp Suite, ZAP). Fluent in one or more programming languages, such as Python, Java, JavaScript Strong knowledge of secure coding principles and application security frameworks Familiarity with security tools (e.g., static and dynamic analysis tools, vulnerability scanners) Understanding of security standards and regulations (e.g., OWASP, NIST) Hands-on experience with Generative AI and/or ML in creating innovative applications that enhance productivity and efficiency, coupled with a strong eagerness to learn Experience with cloud security best practices in AWS, Azure, or GCP. Strong work ethic with a commitment to meeting business needs and effectively collaborating with global colleagues Effective interpersonal skills; ability to collaborate successfully with both technical and non-technical stakeholders Ability to articulate complex technical concepts with clarity, supported by effective written and verbal communication skills Additional Information Additional Information The recruitment process includes online assessments as a first step (English, logic, design, technical) - we send them via e-mail, please check also your SPAM folder Show more Show less

SAP SuccessFactors is the leading provider of cloud-based HR business (HCM) solutions. As a part of SAP Learning Engineering, we'develop and own highly scalable multi-tenant cloud-based Learning Management System built on Java/JEE stack We are looking for a Development Expert / Principal Engineer who brings in immense value to the team in form of new age development practices, design, architecture and be part of exciting journey of transforming our products into world class cloud native enterprise software. What you'll Do Understand current and target technical strategy, product roadmaps and deliver solutions that are in-line with them Collaborate with Senior and Success Factors Central Architects to architect and design solutions that meet functional and non-functional requirements (with emphasis on security, scalability, and maintainability) Foster an environment of innovation, learning and development amongst team members. Drive innovation and continuous improvement mindset in the people, and showcase innovation in deliverables Coach team members to become proficient in development & quality processes, and technologies used in the team, thereby increasing expertise and productivity Continuously improve designs and implementations along with contributing significantly to the technical road map Trouble shoot critical production issue What You Bring o About 12-15 years work experience in building highly scalable enterprise cloud products o bachelors in computer science engineering or Technology (BE/BTech) or allied branches o Fundamentally strong in Computer science concepts - Data structures, Algorithms, Distributed computing o Must have experience in design and development of highly scalable cloud native applications using Java/JEE, Spring o Expertise in latest architectures/design concepts like Domain Driven Design, Microservices (monolith to microservices), Event Driven programming (Kafka), CQRS among others. o Strong in any RDBMS, including SQL performance tuning o Working knowledge any of the public cloud (preferably Azure) o Knowledge of containers and CI/CD o Knowledge of various security standards like OWASP, OAuth, JWT etc o Agile software development, including code refactoring, modularization, testability (including non-functional requirements) is must o Must possess service-ownership mindset o Be a fantastic team player who can collaborate and work seamlessly with other colleagues within the organization. Must mentor and lead junior colleagues