Job Description Associate Specialist, Cybersecurity Operations The Opportunity Based in Hyderabad, join a global healthcare biopharma company and be part of a 130- year legacy of success backed by ethical integrity, forward momentum, and an inspiring mission to achieve new milestones in global healthcare. Be part of an organisation driven by digital technology and data-backed approaches that support a diversified portfolio of prescription medicines, vaccines, and animal health products. Drive innovation and execution excellence. Be a part of a team with passion for using data, analytics, and insights to drive decision-making, and which creates custom software, allowing us to tackle some of the world's greatest health threats. Our Technology Centers focus on creating a space where teams can come together to deliver business solutions that save and improve lives. An integral part of our company’s IT operating model, Tech Centers are globally distributed locations where each IT division has employees to enable our digital transformation journey and drive business outcomes. These locations, in addition to the other sites, are essential to supporting our business and strategy. A focused group of leaders in each Tech Center helps to ensure we can manage and improve each location, from investing in growth, success, and well-being of our people, to making sure colleagues from each IT division feel a sense of belonging to managing critical emergencies. And together, we must leverage the strength of our team to collaborate globally to optimize connections and share best practices across the Tech Centers. Role Overview As a Cybersecurity Engineer, you will be responsible for designing, implementing, and maintaining security measures to protect the organization's computer systems, networks, and data from cyber threats. This role will involve a combination of technologies, processes, and practices designed to safeguard data, applications, and networks from threats like malware, phishing, and data breaches. You will be tasked with identifying vulnerabilities, supporting the response to incidents, and ensuring that security protocols and controls are adhered to. Your role is vital in safeguarding critical assets and ensuring compliance with legal and regulatory standards. What Will You Do In This Role Collaborate with product teams to enforce application security best practices, conduct reviews, perform scans and assist in threat modeling to identify and mitigate security risks throughout the development lifecycle. Contribute with penetration testing efforts to evaluate the security posture of applications and containers, providing detailed reports on findings and working with development teams to remediate identified issues. Collaborate to the oversight of security-related bugs and vulnerabilities using tracking systems. Help prioritize security issues based on risk and impact and ensuring that reported issues are triaged and addressed in a timely manner. Contribute to the creation and delivery of training materials for the workforce to raise awareness and increase adoption of application security best practices, cloud security best practices, including secure usage of cloud applications and availability of compensating controls. Help maintain and monitor security tools and dashboards, ensuring that applications deployed in our environments adhere to organizational security standards and compliance requirements. Follow standard approaches and established design patterns to create new designs for systems or system components. Identify and resolve minor design issues. Monitor and log the actual service provided, compared to that required by service level agreements. Assist in maintaining security infrastructure and performing system updates. Investigate minor security breaches in accordance with established procedures. Assist users in defining their access rights and privileges and perform non-standard operational security tasks. Resolve security events and operational security issues. Work closely with cross-functional Infrastructure teams on Automation and Orchestration. Create and document detailed designs for simple software applications or components. Apply agreed modelling techniques, standards, patterns, and tools. Work within a matrix organizational structure, reporting to both the functional manager and the project manager. What Should You Have Bachelors’ degree in Information Technology, Computer Science or any Technology stream. 3+ years of hands-on experience working with proficiency in security tools in the areas of cloud, application, endpoint, network or identity, vulnerability scanners, and malware analysis platforms. Understanding of OWASP Top 10 security risks and mitigation strategies, relevant NIST standards, and Zero Trust principles. Good to have experience in cloud environments AWS, Azure, or GCP. Familiarity with software development/delivery lifecycle and related technologies Familiarity with programming/scripting languages like Python, Bash, Terraform, Ansible, JSON, PowerShell, or JavaScript for automating tasks. Knowledge of authentication methods, identity management, and security access protocols (e.g., SSO, MFA, LDAP). Ideally AWS certified. Good interpersonal and communication skills (verbal and written). Relevant certifications (e.g., CISSP, CISM, CEH, CompTIA Security+) are often required or highly desirable. Proven record of delivering high-quality results. Product and customer-centric approach. Innovative thinking, experimental mindset. Our technology teams operate as business partners, proposing ideas and innovative solutions that enable new organizational capabilities. We collaborate internationally to deliver services and solutions that help everyone be more productive and enable innovation. Who We Are We are known as Merck & Co., Inc., Rahway, New Jersey, USA in the United States and Canada and MSD everywhere else. For more than a century, we have been inventing for life, bringing forward medicines and vaccines for many of the world's most challenging diseases. Today, our company continues to be at the forefront of research to deliver innovative health solutions and advance the prevention and treatment of diseases that threaten people and animals around the world. What We Look For Imagine getting up in the morning for a job as important as helping to save and improve lives around the world. Here, you have that opportunity. You can put your empathy, creativity, digital mastery, or scientific genius to work in collaboration with a diverse group of colleagues who pursue and bring hope to countless people who are battling some of the most challenging diseases of our time. Our team is constantly evolving, so if you are among the intellectually curious, join us—and start making your impact today. #HYDIT2025 Current Employees apply HERE Current Contingent Workers apply HERE Search Firm Representatives Please Read Carefully Merck & Co., Inc., Rahway, NJ, USA, also known as Merck Sharp & Dohme LLC, Rahway, NJ, USA, does not accept unsolicited assistance from search firms for employment opportunities. All CVs / resumes submitted by search firms to any employee at our company without a valid written search agreement in place for this position will be deemed the sole property of our company. No fee will be paid in the event a candidate is hired by our company as a result of an agency referral where no pre-existing agreement is in place. Where agency agreements are in place, introductions are position specific. Please, no phone calls or emails. Employee Status Regular Relocation VISA Sponsorship Travel Requirements Flexible Work Arrangements Hybrid Shift Valid Driving License Hazardous Material(s) Job Posting End Date 04/28/2025 A job posting is effective until 11 59 59PM on the day BEFORE the listed job posting end date. Please ensure you apply to a job posting no later than the day BEFORE the job posting end date. Requisition ID R341160 Show more Show less

About Energy Exemplar In an era where the world is rapidly advancing towards a cleaner future through decarbonization, stakeholders from across the entire energy value chain are having to navigate the complexities of the energy ecosystem. We seek to enable our customers to do so with confidence. Our mission: Empowering Transformative Energy Decisions. Founded in 1999 in Adelaide, Australia, Energy Exemplar’s PLEXOS® modeling and simulation software is trusted by innovative organizations across the globe. On one unified platform, stakeholders from across the entire energy value chain are revolutionizing the energy ecosystem and seamlessly planning for the future of energy with unprecedented clarity, speed, and innovation. Our impact is global and is being recognized across the industry: Finalist for the 2024 Reuters Global Energy Transition Awards in the 'Technologies of Change' category Finalist for the 2024 Go:Tech Awards in the 'Most Innovative Use of Technology’ category 2022 USEA/USAID Corporate Volunteer of the Year 2022 Impact Award Winner for our impact on the energy industry and the current energy transition At Energy Exemplar, we believe in empowering our people by offering flexibility in how, when, and where they work. This flexibility has been a cornerstone of our success, fueling significant growth over the years, with the company expanding at an impressive rate of approximately 30% year over year. We understand that the best results come when our team members can balance their professional and personal lives, so we support various working arrangements that help you thrive. We don’t just celebrate the excellence of our products but champion the quality of our people. They own their outcomes and perform to their best – every day. whether you're working from home, in the office, or on the go. Our flexible work culture fosters innovation, collaboration, and trust, making it easier to stay engaged and connected, no matter where you are. That’s what makes us who we are and a great place to work. Our core values ‘Customer Success’ , ‘One Global Team’ , ‘Integrity and Ownership’ and ‘Innovation Excellence’ reflect the way we work and are always at the forefront of everything we do. BE / B.Tech /M.Tech in Computer Science or a related field Experience building large scalable systems Recent experience in building products on cloud is a plus Knowledge of asynchronous programming and WebAPI development is required Knowledge and awareness of cloud/ application security is must (OWASP at the minimum) Strong knowledge in OOPS with C#, .Net(or Java) with SQL Server or any RDBMS Strong experience in architecting and building multi-threaded, distributed systems. Strong knowledge of data structures, algorithms, and designing for performance. Ability to achieve stretch goals in a highly innovative and fast paced environment. Extensive experience of mentoring junior engineers to success. Experience with Microservices Architecture is a plus Working knowledge of CI/CD pipelines and AWS/Azure cloud services is plus Hands on experience of building products for unix systems in addition to windows is a plus Excellent Communication Energy Exemplar is an equal opportunities employer and we value your unique identity and perspective. We are fully committed to providing and fostering a workplace that reflects the diversity of society. Bring your authentic self and help us build an inclusive world together! To support you in being the best version of yourself during the application and interview process, please let us know if you have any specific requirements. Show more Show less

Following are the details: ANZEN Technologies Private Limited stands as an unparalleled powerhouse, empowering organizations across industries with our visionary services, cutting-edge solutions, and ground-breaking services in the realm of Cyber Security, IT Governance, Risk Management, and Compliance. As your trusted partner, we offer a comprehensive suite of End-to-End security services and consultancy, tailored to safeguard critical infrastructure installations, elevate the standards of BFSI, eCommerce, IT/ITES, Pharmaceuticals, and an array of other sectors. Job Summary: We are seeking a skilled and passionate Red Team Security Consultant to join our cybersecurity team. The ideal candidate will specialize in simulating adversarial tactics, techniques, and procedures (TTPs) to identify vulnerabilities and improve the organization's security posture. This role involves performing advanced penetration tests, simulating real-world attacks, and working with teams to implement effective remediation strategies. Key Responsibilities: Plan, execute, and document Red Team exercises mimicking advanced threat actors for medium to large enterprises. Conduct network penetration testing (VAPT), system vulnerability assessments, and security configuration reviews. Perform manual security assessments for web applications, APIs, and client-server applications. Simulate sophisticated attack chains including lateral movement, privilege escalation, and data exfiltration. Develop and execute custom attack payloads using tools and scripts. Assess physical security controls and implement social engineering assessments when required. Create and maintain custom tools/scripts in languages like Python, Bash, or PowerShell. Utilize and adapt adversary emulation frameworks such as MITRE ATT&CK, Cobalt Strike, and Metasploit. Collaborate with Blue Teams to improve detection and response mechanisms through Purple Team engagements. Execute full-scope Red Team engagements, including phishing, social engineering, and network penetration. Simulate advanced hacking techniques and replicate adversary tactics to uncover security weaknesses. Develop, extend, or modify exploits, shellcode, or tools to simulate sophisticated attacks. Perform reverse engineering of malware (advantageous but not mandatory). Write clear and actionable reports outlining vulnerabilities, exploitation techniques, and remediation strategies. Stay updated on the latest cyber threats, attack methods, and emerging technologies. Qualification: BE/B. Tech/ MCA/ M. Sc. (IT/Computers) Skills : Excellent communication and collaboration skills. Red Teaming, VAPT, Application Security (Web/Mobile/API), Red Teaming and Application Security domains. Proficient in Application Security concepts, including OWASP Top 10 and OSSTMM. Experience with vulnerability scanning tools such as Burp Suite Pro, Nessus, OWASP ZAP, Kali Linux, Cobalt Strike, Caldera etc. Basic ability to write automation scripts (Bash or Python). Understanding of threat modelling and secure coding practices. Strong understanding of TTPs, threat modelling, and secure coding practices. Hands-on experience in Active Directory exploitation, phishing campaigns, and endpoint bypass techniques. Preferred Certificates : OSCP, CRTP, eWPTX, Security+, CREST, CRTO Job Location : Mumbai/Navi Mumbai Job Mode : Work from Office Need an immediate Joiner who may join by 15th June, 2025

Job Summary: We are looking for a Product Security Architect/Engineer with 5-7 years of experience to lead the development and implementation of security architecture across our product suite. You will work closely with engineering, development, and operations teams to ensure that our products are designed with security in mind, meet industry standards, and address potential vulnerabilities. Key Responsibilities: Architectural Design: Develop and document comprehensive security architecture for new and existing products. Ensure alignment with industry best practices and compliance requirements. Threat Modeling: Perform threat modeling and risk assessments to identify potential security threats and vulnerabilities. Develop mitigation strategies and security controls. Security Integration: Collaborate with development teams to integrate security into the software development lifecycle (SDLC). Advise on secure coding practices and review security aspects of design and implementation. Security Policies: Create and maintain security policies, standards, and guidelines to ensure consistent security practices across products and teams. Vulnerability Management: Conduct regular security assessments, including code reviews and vulnerability scans. Coordinate with the security engineering team to address and immediately identify vulnerabilities. Incident Response: Support incident response efforts by providing expertise in analyzing security incidents, determining impact, and recommending remediation actions. Collaboration: Work closely with cross-functional teams including product management, engineering, and operations to ensure security requirements are met and risks are managed. Documentation: Develop and maintain detailed documentation of security architecture, threat models, and security controls. Produce reports for internal and external stakeholders as needed. Technical Skills: Proficiency in security testing tools (e.g., Burp Suite, OWASP ZAP). Knowledge of common security frameworks and standards. Experience with secure coding practices and code review. Soft Skills: Strong analytical and problem-solving abilities. Excellent communication and collaboration skills. Ability to work independently and manage multiple tasks simultaneously. Show more Show less

Role: Cyber Risk Management Lead Experience: 5 to 10 Years Office location-Sector-125, Noida Required Qualification: Bachelor of Engineering - Bachelor of Technology (B.E./B.Tech.) Additional Information There are 2-3 rounds in the interview process. This is 5 days’ work from office role (No Hybrid/ Remote options available) Final round will be F2F (Mandatory) About role: We are seeking a Cyber Risk Management Lead to identify and remediate or mitigate risks . Candidate should have effective task management skills and the ability to communicate effectively. The individual must be able to rapidly respond to security incidents and should have at least 5 years of relevant experience in Cyber security Risk management. Candidates Should have deeper understanding with some hands-on experience on enterprise IT infra components such as O365 suite, advanced firewalls, IPS/IDS/HIPS, routers/switches, VPN, proxy, AV/EDR, DNS, DHCP, multi factor authentication, virtualization, Email systems/security, Web Proxy, WAF, DLP etc. along with cloud environments like AWS (Must) , Azure etc. Job Description Understanding applicable regulations, guidelines, and industry best practices to manage risk and ensure compliance Developing, maintaining, or auditing security documentation such as policies, standards, and procedures Monitoring security internal control effectiveness for EDR, Email Security, Server security, Cloud security etc Conducting internal security assessments to ensure continued compliance Explaining roles in managing risk to cross team functions and getting buy-in to improve the organizational risk posture Managing SOC 2 Type 2 assessment and provide adequate support for collecting relevant evidence for all relevant controls Should be able to review RFPs (request for proposal) and provide responses for Cyber security related items Manage Risk Governance Implement/govern AWS Cloud and Office 365 Security Manage and support internal and external audits Follow up till closure on audit findings if any Manage dashboards and reports to keep track of priority events for IT and IS Create MOM for Board Meetings Vendor Evaluation for cyber security controls Firewall rules review for On-premises and AWS firewall Security Awareness: Create materials PPT/e-mailers and provide training as needed Incident management and Business continuity CISO dashboard and success reports Meet with business team to understand their business requirements from cyber security perspective Has basic knowledge of audit requirements (SOC2, HIPPA, ISO27001, etc.) Understanding of respective industry best practices (e.g., NIST, ISO, OWASP, ITIL) At least one security certification is strongly preferred, such as Certified Information Security Management (CISM), Certified Risk Information Security Control (CRISC), or Certified Information Systems Security Professional (CISSP) Prior experience of management of technology infrastructure is preferred Skills: internal security assessments,communication skills,compliance,security awareness training,cloud security,cyber risk management,security auditing,security awareness,security documentation,switches,cloud environments,dhcp,o365 suite,azure,it infrastructure management,ips/ids/hips,soc 2 type 2 assessment,enterprise it infrastructure,vendor evaluation,firewall management,o365,advanced firewalls,nist, iso, owasp, itil best practices,vpn,cybersecurity risk management,security document auditing,risk management,compliance management,multi-factor authentication,incident response,risk assessment,security assessments,routers/switches,security incident response,cyber risk management lead,ciso dashboard management,soc assesment,incident management,aws,effective communication,dns,aws security,risk governance,business continuity,task management,cyber security,audit management,firewall rules review,waf,dlp,regulatory compliance (soc2, hipaa, iso27001),email systems/security,auditing,cyber security risk management,it infrastructure security,office 365 security,web proxy,aws cloud security,proxy,email security,virtualization,communication,routers,av/edr Show more Show less

Role: Senior Java Engineer Location: Pune, India (Hybrid - 3 days a week in office) Experience: 8 - 12 Years Shift Timing: 9 AM - 5 PM general shift. Interview Rounds: Virtual (4 Rounds): 2 Internal + 2 Client. Mode of Work: Hybrid - 3 days a week in office. Office Location: Yerwada, Pune. Job Positions: 2. About Us We’re proud to be one of New York City’s fastest-growing product engineering consulting firms, dedicated to driving innovation and scalable growth for our clients. With eight consecutive years on the Inc. 5000 list of America’s Fastest-Growing Companies, we’ve earned a place in the elite Inc. 5000 Hall of Fame — an honor reserved for the top 1% of high-growth companies nationwide . What We Do We specialize in rapidly bringing our clients' most critical and strategic products to market — with high velocity, exceptional quality, and 10x impact. By embedding modern tools, proven methodologies, and forward-thinking leadership, we help build innovative, high-performing teams that thrive in today’s fast-paced digital landscape. This is a unique opportunity to join a dynamic and evolving team. Our client roster includes industry leaders such as Goldman Sachs, Fidelity, Morgan Stanley, and Mastercard. From greenfield innovations to tier-one product builds, our teams lead the delivery of mission-critical projects across product strategy, design, cloud-native applications, and both mobile and web development. The work we do shapes industries — and transforms the way people live, work, and think. About the Role: Senior Java Engineer As a Senior Java Engineer, you will collaborate with lead-level and fellow senior-level engineers to architect and implement solutions that maximize client offerings. In this role, you will develop performant and robust Java applications while continuously evaluating and advancing web technologies within the organization. Responsibilities:- Work on a high-velocity scrum team. Collaborate with clients to devise solutions for real-world problems. Architect and implement scalable end-to-end Web applications. Support the team lead in facilitating development processes. Provide estimates and milestones for features/stories. Work with your mentor for personal learning and growth, and mentor less experienced engineers. Contribute to the growth of it through interviewing and architectural contributions. Qualifications (Core Requirements) 5+ years of Java development within an enterprise-level domain. Proficiency with Java 8 (Java 11 preferred) features such as lambda expressions, Stream API, Completable Future, etc. Skilled in low-latency, high-volume application development. Expertise in CI/CD and shift-left testing. Nice to have: Golang and/or Rust. Experienced with asynchronous programming, multithreading, implementing APIs, and Microservices, including Spring Boot. Proficiency with SQL. Experience with data sourcing, data modeling, and data enrichment. Experience with Systems Design & CI/CD pipelines. Cloud computing, preferably AWS. Solid verbal and written communication and consultant/client-facing skills are a must. As a true consultant, you are a self-starter who takes initiative. Solid experience with at least two (preferably more) of the following: Kafka (Core Concepts, Replication & Reliability, Kafka Internals, Infrastructure & Control, Data Retention and Durability). MongoDB. Sonar. Jenkins. Oracle DB, Sybase IQ, DB2. Drools or any rules engine experience. CMS tools like Adobe AEM. Search tools like Algolia, ElasticSearch, or Solr. Spark. What Makes You Stand Out From The Pack Payments or Asset/Wealth Management experience. Mature server development and knowledge of frameworks, preferably Spring. Enterprise experience working and building enterprise products, long-term tenure at enterprise-level organizations, experience working with a remote team, and being an avid practitioner in their craft. You have pushed code into production and have deployed multiple products to market, but are seeking the visibility of a small team within a large enterprise technology environment. You enjoy coaching junior engineers, but want to remain hands-on with code. Open to hybrid work - 3 days per week from the office. Must-Haves Mandatory: Core Java, SOLID Principles, Multithreading, Design patterns. Spring, Spring Boot, Rest API, Microservices. Kafka, Messaging/streaming stack. JUnit. Code Optimization, Performance Design, Architecture concepts. Database and SQL. CI/CD - Understanding of Deployment, Infrastructure, Cloud. No gaps in organization. No job hoppers (candidate must have good stability). Joining time/notice period: Immediate to 30 days. Nice To Haves Good to have: Network Stack - gRPC, HTTP/2 etc. Security Stack (OWASP, OAuth, encryption). Good Communication. Agile. Skills: spring, spring boot, rest api, microservices.,messaging/streaming stack,junit,sonar,core java, solid principles, multithreading, design patterns,multithreading,db2,elasticsearch,design patterns,data enrichment,spring,kafka,systems design,java 8/11,high-volume application development,drools,solr,java,oracle db,data modeling,solid principles,code optimization,low-latency application development,sybase iq,java 8 / java 11,rest api,adobe aem,golang,database,java 11,performance design,spark,ci/cd,database and sql,microservices,cloud computing,jenkins,architecture concepts,search tools,kafka, messaging/streaming stack.,cloud computing (aws),sql,core java,asynchronous programming,cms tools,java 8,spring boot,data sourcing,messaging/streaming,mongodb,aws,rust,algolia Show more Show less

Job description Job Overview We are seeking a Senior Python Developer with extensive Django experience for a full-time role in Calicut. The ideal candidate should have a proven track record of building scalable web applications and RESTful APIs using Django and Django REST Framework. Core Responsibilities ● Design and develop complex web applications using the Django framework ● Architect scalable backend solutions and database structures ● Lead technical decisions and implement best practices ● Implement security measures and data protection protocols ● Mentor junior developers and conduct code reviews ● Collaborate with cross-functional teams for system integration Technical Requirements ● 5+ years of professional experience with Python and Django ● Expert knowledge of Django REST Framework ● Strong proficiency with PostgreSQL/MySQL and database optimization ● Experience with asynchronous programming (Celery/asyncio) ● Expertise in caching mechanisms (Redis/Memcached) ● Proficiency in writing unit tests and integration tests ● Experience with containerization (Docker) and orchestration ● Knowledge of message brokers (RabbitMQ/Redis) ● Strong understanding of CI/CD pipelines Required Skills ● Expert-level Python programming skills ● Advanced knowledge of Django ORM and query optimization ● Experience with microservices architecture ● Proficiency in API design and documentation ● Knowledge of AWS/GCP cloud services ● Understanding of security best practices and OWASP ● Experience with monitoring and logging solutions ● Strong debugging and problem-solving abilities ● Expertise in version control with Git ● Knowledge of Elasticsearch or similar search engines ● Experience with high-traffic production environment Candidates from Kochi, Bangalore, or nearby cities who are open to relocating to Calicut are welcome to apply. Job Type: Full-time Pay: ₹400,000.00 - ₹1,000,000.00 per year Schedule: Day shift Ability to commute/relocate: Calicut, Kerala: Reliably commute or planning to relocate before starting work (Preferred) Education: Bachelor's (Preferred) Experience: Python: 5 years (Required) Work Location: In person

Themesoft is seeking full-time Java Web Application Developers for one of our clients. The candidate will have deep experience working with legacy Java-based web technologies and a strong understanding of secure coding practices. Experience: 6-10 years of experience is mandatory. Location: Chennai Position: Senior Java Developer Type: Full-Time 🛠 Key Responsibilities: Apply secure coding practices to legacy codebases built with JSP and traditional Java frameworks, with emphasis on mitigating XSS and related vulnerabilities. Upgrade outdated libraries and dependencies (e.g., commons-fileupload, springframework) to address known security issues. Work collaboratively in a Git-based environment , contributing to code reviews and adhering to established workflows. ✅ Requirements: 5+ years of hands-on experience in Java web application development Strong proficiency in JSP , Servlets , and legacy Java web frameworks Proven experience managing and upgrading dependencies using Maven or Gradle Experience using Eclipse IDE for Java development Solid understanding of secure coding principles and familiarity with the OWASP Top 10 Comfortable with Git version control, including branching strategies, pull requests, and code reviews Strong communication skills with the ability to work both independently and in distributed teams Interested? If interested and have 5+ years of experience then please send your updated resume to mythili@themesoft.com Show more Show less

Who You Are You are a highly experienced and visionary securityprofessional with deep expertise in application security, architecture, and secure software development. You’re not only a strategist and a technical authority, but also someone who remains hands-onwhen it matters. You thrive on solving large-scale security problems, designing resilient security architectures, and enabling engineering teams to ship secure products without friction. You lead with influence, partner with engineering and product leaders, and drive scalable security solutions across an enterprise. You also play a pivotal role in client's Application Security Research &Engineering (ASRE) program—guiding the development of internal tooling, automation, and innovative approaches to secure software at scale. What You’ll Do Design and own secureapplication architectures across client's productlandscape, including SaaS platforms, mobile apps, APIs, and cloud-native services. Define and evolve application security strategy , driving initiatives that align with client's product roadmapand risk posture. Lead architecture reviews,threat modeling sessions, and risk assessments for high- impact products and features, including those involving AI/ML pipelines . Engineer and advocate scalablesecurity solutions , from reusable libraries and security design patterns to tooling integrations within the SDLC. Build and maintainrelationships with engineering leaders, product managers,and infrastructure teams to champion security-by-design principles. Partner with ASRE to defineand drive automation projects, internal tool development, and scalable controls for vulnerability discovery and remediation. Serve as the securitytechnical authority during escalations, post-incident reviews, customer audits, and design sprints. Provide technical leadership to the broaderAppSec team, mentoringSenior and Lead engineers and participating in hiring and capability building. Evaluate and introduce new technologies, standards, or frameworks to improve application security and developer experience. What You Bring 10+ years of experience in information security,with a strong focus on application security, architecture design , and secure development practices. Deep understanding of secure softwaredevelopment lifecycles (SDLC),secure design principles, and modern threat landscapes (including AI/MLrisks, supply chain,cloud- native, and microservices). Proven ability to architectsecure solutions across multi-tenant SaaS platforms, microservices, and API-driven ecosystems. Expertise in performing and leading threat modeling , code reviews , and architecture risk assessments . Strong coding and scripting skills (e.g., Python,Java, JavaScript, TypeScript, etc. ); ability to prototype tools or support ASRE initiatives directly. Hands-on experience with security tools and platforms (e.g., SAST, DAST, IAST, SCA, container scanning, IaC analysis). Familiarity with cloud security and native controls(AWS/GCP/Azure), DevSecOps pipelines, and IaC tools like Terraform. Excellent communication skillswith a proven ability to influence both technical and executive stakeholders. Strong grasp of regulatory frameworks and standards such as ISO 27001, SOC 2, PCI, OWASP, NIST 800-53/218, and AI RMF. Bonus If You Have Experience building securityframeworks or referencearchitectures adopted across multiple product teams. Research contributions to ASRE-style initiatives, open-source tooling, or internal platform development. Knowledge of emergingAI security threats(adversarial ML, model poisoning, privacy leakage, etc.). Certifications such as AWS CertifiedSolutions Architect—Associate/Professional, CSSLP, OSWE, GCPN, CISSP, SABSA, or SANS/GIAC Architect-level certification. Why You’llLove This Role You’ll define and influence the security architecture of platforms used by thousandsof customers worldwide. You’ll work on high-impact initiatives with the authority to shape how security is done— not just today, but for the long term. You’ll help grow and mentor a world-class AppSec team while staying close to the technology you love. You’ll drive an engineering-led securityculture alongside leadership that supports security investment, research, and innovation. Show more Show less

Role Summary You will be responsible for identifying and mitigating web application vulnerabilities, collaborating with development teams, and integrating security best practices across front-end and back-end stacks. Key Responsibilities Bachelor’s in Computer Science, Engineering, or related field. Perform security assessments: static/dynamic analysis , code reviews , vulnerability scans . Secure apps built with JavaScript , .NET (C#) , and Java . Enforce OWASP Top 10 protections and secure coding standards. Automate security tasks using Python . Ensure secure deployments in Docker / Kubernetes environments. Integrate security into CI/CD pipelines . Act as the security point-of-contact within product teams. Required Skills Strong knowledge of Web App Security , OWASP , and secure SDLC. Hands-on with JavaScript , C#/.NET , and Java codebases. Familiar with Burp Suite , Nessus , or AppScan . Experience with Python scripting , Docker , and Kubernetes . Basic understanding of DevOps and CI/CD tools . Preferred Security certifications (e.g., CISSP , OSWE , GWAPT ). Knowledge of security frameworks: NIST , ISO 27001 . Show more Show less

We need a resource with L2 (4-6 years) / L3 (6-8years) capability for Cyber Security Engineering team. Network Security fundamentals and deep dive of routing areas are mandatory to execute the project. Detailed Job Specifics - Security Expertise: 4–8 years of experience in designing, planning, and implementing enterprise security solutions Proficient in cloud platforms: Azure, AWS, and GCP Skilled in network security tools: routing, switching, NGFW, WAF, ALB , etc. Experienced in native cloud security features and tools across all major platforms Strong knowledge in designing and deploying security architecture aligned with risks across prevent, detect, respond, and predict domains Broad understanding of IT infrastructure, applications, databases, and networking Familiar with security frameworks and best practices: ISO 27001, PCI-DSS, OWASP, SANS , etc. Well-versed in security technologies: NGFW, WAF, IDAM, DLP, VPN, MDM, 2FA, PIM, NAC, sandboxing, FIM , etc. Sound knowledge of emerging security technologies: machine learning, analytics, blockchain , etc. Strong analytical thinking and excellent communication skills Deliverables: Support planning, strategy, and implementation of new solutions with cross-functional teams Contribute to evaluation, design, and architecture of innovative security solutions Lead execution of evaluations and related tasks end-to-end Continuously enhance existing controls or propose alternatives for better security and efficiency Ensure project execution within defined timelines and scope Manage complete project lifecycle : initiation, planning, execution, monitoring, and closure Coordinate with implementation teams for smooth rollout of solutions and controls Transition projects to operations with proper documentation and handover Provide post-implementation support and handle escalations effectively Show more Show less

TDD + Node.JS JD – Job Title: Senior Node.js Developer (8+ Years) – TDD, TypeScript, GraphQL Experience Required: 8+ Years About the Role: We are looking for a highly experienced Senior Node.js Developer with a strong foundation in Test-Driven Development (TDD) , TypeScript , RESTful & GraphQL APIs , and expertise in backend technologies including MongoDB and SQL databases. The ideal candidate will be responsible for designing scalable backend services and leading development efforts using modern software engineering practices. Key Responsibilities: Design and develop scalable backend services using Node.js and TypeScript. Lead and enforce TDD principles: write unit, integration, and end-to-end tests from the start. Architect and implement RESTful and GraphQL APIs with a focus on performance and security. Collaborate with frontend developers, DevOps, and QA to deliver full-stack solutions. Perform code reviews and mentor junior developers in clean code and best practices. Handle version control workflows using Git (branching, merging, pull requests). Optimize database queries and schemas in MongoDB and relational databases like PostgreSQL/MySQL. Maintain CI/CD pipelines and participate in Agile/Scrum ceremonies. Required Skills: 8+ years of backend development experience with Node.js . Strong command of TypeScript and JavaScript (ES6+) . Proficient in TDD using frameworks such as Jest , Mocha , or Chai . Hands-on experience with RESTful API design and GraphQL schema development. Good understanding of Git workflows and CI/CD tools like Jenkins, GitHub Actions. Experience with MongoDB , PostgreSQL , or MySQL . Familiarity with security best practices (OAuth2, JWT, OWASP). Nice to Have: Experience with containerization tools (Docker, Kubernetes). Exposure to event-driven architecture and message queues (Kafka, RabbitMQ). Financial domain experience or understanding of regulated enterprise environments. Soft Skills: Strong problem-solving and analytical skills. Clear communication and documentation abilities. Comfortable in fast-paced, collaborative environments. Proven ability to lead initiatives and drive engineering excellence. Job Types: Full-time, Permanent Pay: ₹500,000.00 - ₹2,000,000.00 per year Benefits: Health insurance Provident Fund Schedule: Monday to Friday Rotational shift Education: Bachelor's (Preferred) Experience: Node.js: 8 years (Preferred) TDD, TypeScript, GraphQL: 5 years (Preferred) Location: Pune, Maharashtra (Preferred) Work Location: In person

Skills: SIEM Tools, Intrusion Detection Systems, Incident Response, Threat Intelligence Platforms, Endpoint Detection and Response, Network Traffic Analysis, Log Analysis, Vulnerability Assessment Tools, Qualifications BE/ B.Tech/ M.Tech/ MCA with 60%+ throughout the academics. Security certifications like CEH or equivalent preferred. Experience And Skillset Minimum 2 +years hands-on experience with one or more SIEM tools (Log Logic, LogRhythm, Splunk, QRadar, ArcSight etc.). In-depth understanding of security threats (preferably OWASP Top 10 vulnerabilities), threat attack methods and the current threat environment. Proficient in Incident Management and Response. Basic knowledge of Windows and Unix environments. Knowledge of OSI Model, TCP/IP Protocols, network security. Knowledge about other security tools like Packet Analyzers, HIPS/NIPS, Network Monitoring tools, Cloud Security, AV, EDR, WAF etc. Responsibilities Responsible for working in a 24x7 Security Operation center (SOC) environment. Carry out investigation and correlation and work with the stakeholders towards mitigation and closure of security incidents. Monitor various dash boards from different security solutions on shift basis. Work with the engineering team for Sensor and SIEM rules fine-tuning. Prepare various management reports from SIEM and other security solutions. Provide analysis and trending of security log data from a large number of heterogeneous security devices. Provide threat and vulnerability analysis as well as security advisory services. Analyze and respond to previously undisclosed software and hardware vulnerabilities. Investigate, document, and report on information security issues and emerging trends. Seamlessly integrate with the team work culture, ensure proper information flow across shifts, prepare/take part in shift handovers. Communicate effectively by contributing significantly to the development and delivery of a variety of written and visual documents for diverse audiences. Location Navi Mumbai (On-Site) Show more Show less

Skills: SIEM Tools, Intrusion Detection Systems, Incident Response, Threat Intelligence Platforms, Endpoint Detection and Response, Network Traffic Analysis, Log Analysis, Vulnerability Assessment Tools, Qualifications BE/ B.Tech/ M.Tech/ MCA with 60%+ throughout the academics. Security certifications like CEH or equivalent preferred. Experience And Skillset Minimum 2 +years hands-on experience with one or more SIEM tools (Log Logic, LogRhythm, Splunk, QRadar, ArcSight etc.). In-depth understanding of security threats (preferably OWASP Top 10 vulnerabilities), threat attack methods and the current threat environment. Proficient in Incident Management and Response. Basic knowledge of Windows and Unix environments. Knowledge of OSI Model, TCP/IP Protocols, network security. Knowledge about other security tools like Packet Analyzers, HIPS/NIPS, Network Monitoring tools, Cloud Security, AV, EDR, WAF etc. Responsibilities Responsible for working in a 24x7 Security Operation center (SOC) environment. Carry out investigation and correlation and work with the stakeholders towards mitigation and closure of security incidents. Monitor various dash boards from different security solutions on shift basis. Work with the engineering team for Sensor and SIEM rules fine-tuning. Prepare various management reports from SIEM and other security solutions. Provide analysis and trending of security log data from a large number of heterogeneous security devices. Provide threat and vulnerability analysis as well as security advisory services. Analyze and respond to previously undisclosed software and hardware vulnerabilities. Investigate, document, and report on information security issues and emerging trends. Seamlessly integrate with the team work culture, ensure proper information flow across shifts, prepare/take part in shift handovers. Communicate effectively by contributing significantly to the development and delivery of a variety of written and visual documents for diverse audiences. Location Navi Mumbai (On-Site) Show more Show less

Company: Ajmera Infotech Private Limited (AIPL) Location: Ahmedabad (On-site) Experience: 5 – 8 years Position Type: Full-time, Permanent Shape Mobile Experiences That Save Lives AIPL’s 120-engineer team powers planet-scale systems for global innovators. We are assembling a specialised iOS squad to build FDA-compliant, SwiftUI-first apps for a billion-dollar health-tech platform (client name confidential). Your code will run on iPhones and iPads used daily by clinicians and patients worldwide—software that simply cannot fail. What Makes This Role Exciting Greenfield + Legacy modernisation – craft new modules in SwiftUI while refactoring existing UIKit code into clean architecture. Deep integration – BLE peripherals, secure real-time data sync, offline workflows, Core Bluetooth, HealthKit, biometrics. Engineering ownership – influence architecture, CI/CD, security, and performance from day one. Global collaboration – pair with US & EU experts on coding standards, code reviews, and mobile DevOps. Compliance challenge – learn FDA, HIPAA, and 21 CFR Part 11 practices—career-accelerating knowledge. Requirements Key Responsibilities Design, build, and maintain high-performance iOS apps in Swift (80 %+ SwiftUI). Lead migration from UIKit to SwiftUI and implement MVVM / Clean Architecture patterns. Integrate REST/gRPC services, WebSockets, and Bluetooth Low Energy devices. Optimise for battery, memory, accessibility, and security (OWASP MASVS). Write unit, UI, and integration tests; champion TDD and CI/CD (GitHub Actions / Azure DevOps). Perform code reviews, mentor mid-level engineers, and uphold style guidelines. Collaborate with design, backend, and QA to deliver sprint goals and compliance artifacts. Contribute to mobile release pipeline, App Store deliverables, and post-release monitoring. Must-Have Skills 5-8 years iOS development; 3+ years in Swift with strong SwiftUI component knowledge. Production experience with SwiftUI and Combine. Hands-on with MVVM, Core Data, Core Bluetooth, URLSession / gRPC, Background Tasks. Proficient in unit/UI testing (XCTest, XCUITest) and static analysis (SwiftLint, Sonar). Familiar with App Store submission, TestFlight, phased release, and crash analytics (Firebase Crashlytics, Sentry). Solid Git, code review, and Agile-Scrum practice. Nice-to-Have Exposure to medical, fintech, or other regulated domains. Experience with Flutter or React Native. Benefits Medical Insurance Competitive Salary Show more Show less

Kovai.co is a catalyst, sparking a revolution in the world of enterprise software and B2B SaaS, we are a technology powerhouse delivering best-in-class enterprise software and game-changing SaaS solutions across industries. At Kovai.co , we're rewriting the B2B landscape by empowering over 2,500 businesses worldwide with our award-winning SaaS solutions. Our Products Biztalk360 Turbo360 Document360 “UK headquarters. Indian innovation. Global impact.” Our journey has been nothing short of remarkable, having witnessed exponential growth and profitability right from our inception. We are on track towards $30 million in annual revenue – and we're just getting started. Kovai.co is fueled by a tribe of thoughtful helpers, obsessed with empowering customers, uplifting colleagues, and igniting our own journeys. Redefining tech is our game. Are you in? Join Kovai.co – where passion meets purpose. What's the job: lead SDET What You’ll Do On The Job Advanced Test Automation (C# Focus): Architect and maintain enterprise-grade test automation frameworks using Selenium WebDriver (C#/.NET Core), Playwright, or Cypress, adhering to the Page Object Model (POM) design pattern. Develop reusable libraries for cross-browser testing (Chrome, Firefox, Safari) and parallel execution via Selenium Grid. Performance Testing: Design and execute performance testing strategies to assess system scalability, stability, and responsiveness. Utilize tools such as JMeter, LoadRunner, and Gatling to simulate user load and measure application performance. Analyze performance test results, identify bottlenecks, and provide optimization recommendations. Functional Testing of Enterprise Products with Customer Focus: Conduct thorough functional testing of enterprise-level products to ensure they meet customer requirements and expectations. Ensure zero defect leakage by rigorously validating new features and updates before release, with a focus on high-quality customer-centric solutions. Security Testing: Conduct vulnerability scans and penetration tests using Burp Suite or OWASP ZAP. Validate compliance with GDPR, SOC2 standards during test cycles. In-Sprint Automation: Automate test scenarios within sprint development cycles. Shift-left security and performance testing into CI/CD pipelines (Jenkins, GitHub Actions). Tooling & Framework Ownership: Architect tools for test data generation, environment provisioning, and parallel execution. Mentor teams on automation best practices. Design and implement scalable Selenium automation frameworks, leveraging Page Object Model (POM), Factory Pattern, Singleton Pattern, Fluent Interface, and other design patterns to enhance maintainability and reusability. Who'll Be a Good Fit Must have: Bachelor’s or master’s degree in computer science, Engineering, or a related field. 8+ years of experience in software testing, automation, and quality assurance. Strong programming experience with data structures and algorithms, enabling efficient code design and problem-solving. Expertise in C# and Selenium WebDriver (XPath/CSS locators, Page Object Model). Hands-on experience with Burp Suite, OWASP Top 10, and secure coding practices. Strong proficiency in REST/GraphQL API testing using Postman, RestSharp. Hands-on experience with performance testing tools (e.g., JMeter, LoadRunner, Gatling) and ability to analyze system performance. Familiarity with CI/CD pipelines, version control (Git), and DevOps tools (Jenkins, GitHub Actions, Azure DevOps, AWS CodePipeline, etc.). Strong understanding of Agile methodologies (Scrum/Kanban) and shift-left testing practices. Excellent problem-solving, debugging, and analytical skills. Strong communication and collaboration skills to work effectively with cross-functional teams. Good To Have Open-Source Contributions & GitHub Presence - Any active GitHub repositories or pen-source projects. Contribute to open-source testing tools and frameworks to enhance the broader QA community. Exposure to AI-Driven Testing Innovation & knowledge in tools like TensorFlow, Hugging Face, ChatGPT, GitHub Copilot for test script generation. Equal Opportunities Kovai.co is committed to building a workforce that reflects the richness of our society. We believe in fostering a culture of belonging and respect for all. Kovai.co stands firmly against discrimination, ensuring equal opportunity for everyone to build a successful career. Submit Your Application You have successfully applied You have errors in applying Apply With Resume * First Name* Middle Name Last Name* Email* Mobile Phone Social Network and Web Links Provide us with links to see some of your work (Git/ Dribble/ Behance/ Pinterest/ Blog/ Medium) Show more Show less

About Netskope Since 2012, we have built the market-leading cloud security company and an award-winning culture powered by hundreds of employees spread across offices in Santa Clara, St. Louis, Bangalore, London, Paris, Melbourne, Taipei, and Tokyo. Our core values are openness, honesty, and transparency, and we purposely developed our open desk layouts and large meeting spaces to support and promote partnerships, collaboration, and teamwork. From catered lunches and office celebrations to employee recognition events and social professional groups such as the Awesome Women of Netskope (AWON), we strive to keep work fun, supportive and interactive. Visit us at Netskope Careers. Please follow us on LinkedIn and Twitter @Netskope . About the position Netskope is looking for an analyst on the Threat and Vulnerability Management team. This position will focus on the identification and proactive mitigation of Netskope s attack surface, threat landscape, security gaps , and cyber threats which could impact the business. In addition, this role will be responsible for performing the vulnerability management function such as finding, reporting, and supporting business units in their vulnerability remediation efforts. Roles & Responsibilities Continuous development and execution of the enterprise Threat and Vulnerability Management strategic plan to identify and reduce vulnerable attack surfaces Perform complex analysis to understand emerging threats, and continuously demonstrates awareness of current threat posture Reviews emerging and existing threat methodologies and exploit code / proof of concept code to develop mitigations, prioritize risks and navigating sources for identification of vulnerable assets. Execute on core team functions such as scanning, reporting, custom checks, asset tagging, as well as incorporating threat intelligence into vulnerability checks Automate security tasks using scripting languages such as python. Maintain and contribute to the threat models understanding emerging/existing threats and countermeasures to them. Partners with internal teams to lead, develop, test, and continuously validate detection signatures for various attacks Provide internal teams with hardening guidance and develop tooling for auditing Support teams by being a Remediation Champion giving them guidance on various strategies to remediate a vulnerability and supporting them in their testing and validation efforts. Provides expertise in incident response activities. Teach and understand CVSS, CVE, and additional vulnerability ratings and methodologies Qualifications/Requirements Experience 2 to 5 Yrs in Security Should possess relevant university degree and/or professional qualifications/certification (e.g. CEH, OSCP) Must have knowledge with tools Tenable, Qualys, NMAP, SCAPY, and other tools. Must have the ability to understand hardening guidelines for new technologies and applications being adopted by Netskope. Understanding of containerization and containerized applications, their security weaknesses and how to secure them Must have an understanding of patch automation, security orchestration, and management tooling for on premise, private cloud, and cloud infrastructure. Knowledge of OWASP Web and Mobile Top 10 vulnerabilities and identifying them. Knowledge of TCP/IP and other application and network level protocols. Knowledge of Cloud Applications like AWS, Azure and other SAAS Applications. Excellent written and verbal communication skills. Self-motivated, curious, knowledgeable pertaining to news and current events. Ability to be effective in a remote global work environment. #LI-RS1

Certbar Security is looking for Junior Security Analyst to join our dynamic team and embark on a rewarding career journey. Defining, planning, implementing, maintaining, and upgrading security measures, policies, and controls Assisting with the creation of updates and training programs to secure the network and train the employees Keeping the security systems up to date Monitoring security access and maintaining the relevant data Conducting vulnerability testing and risk analyses to assess security and performing internal and external security audits Analyzing security breaches to identify the cause and to update incidence responses and disaster recovery plans

locationsBangalore, Indiaposted onPosted 14 Days Ago job requisition id30672 FICO (NYSEFICO) is a leading global analytics software company, helping businesses in 100+ countries make better decisions. Join our world-class team today and fulfill your career potential! The Opportunity We are seeking a skilled and proactive Cybersecurity Engineer/Analyst to join our Product Security Testing Team. This team helps ensure that our products and clients are protected and maintain trust in our security processes. We protect the FICO brand and our products by engaging with development teams at every step of the product development lifecycle. We assess and influence product design, analyze applications for flaws that may lead to security issues, and provide security testing to help ensure our products are secure. We seek candidates who are focused on delivery, prioritize data-driven decisions over opinions, are continuous learners, passionate about information security and love their work. This role focuses on validating secure coding practices, conduct and coordinate security testing/pen testing .- Sr Manager, Cyber Security What You'll Contribute Collaborate with engineers, consultants and leadership to identify security risks and recommend mitigations within the Secure Development Lifecycle (SDLC). Perform activities such as secure code reviews, security testing and vulnerability triage across various applications. Regularly interact with internal and external customers on security-related projects and operational tasks. Develop understanding of business functionality and apply testing methodology as appropriate to technologies and risks. Analyse test results, draw conclusions from results, and develop targeted exploit examples. Clearly and professionally document root cause and risk analysis of findings. Consult with operations and software development teams to help ensure potential weaknesses are tracked and addressed. Collaborate with other teams to improve the overall security posture of applications/infrastructure. Stay current on security best practices, vulnerabilities, and attacker tactics, techniques, and procedures. Develop and test effective functional security testing strategies for new/emerging product security requirements. Suggest improvements to existing processes/tooling; ideate and implement automation where possible. What We're Seeking Bachelor's degree in computer science, Cybersecurity, or a related field. Relevant cyber security certifications (e.g., CEH, CCSP, CISSP, OSCP etc) are highly desirable. Proven experience of at least 3 years in a similar role within Cybersecurity. Strong understanding of AWS infrastructure and cloud security principles. In-depth knowledge of cybersecurity principles, methodologies, frameworks and best practices. (OSI, NIST, OWASP, SANS, PCI etc) Knowledge of secure coding principles and experience with code review processes and tools. Experience with Pen testing, infrastructure as a code scan reviews and dynamic application security testing (DAST) methodologies and tools. Knowledge and experience in CI/CD, shift left security. Strong analytical and problem-solving skills with a keen attention to detail. Strong written and oral communication skills with the ability to convey complex security concepts to non-technical stakeholders. Strong organizational and interpersonal skills. Our Offer to You An inclusive culture strongly reflecting our core valuesAct Like an Owner, Delight Our Customers and Earn the Respect of Others. The opportunity to make an impact and develop professionally by leveraging your unique strengths and participating in valuable learning experiences. Highly competitive compensation, benefits and rewards programs that encourage you to bring your best every day and be recognized for doing so. An engaging, people-first work environment offering work/life balance, employee resource groups, and social events to promote interaction and camaraderie. Why Make a Move to FICO At FICO, you can develop your career with a leading organization in one of the fastest-growing fields in technology today Big Data analytics. Youll play a part in our commitment to help businesses use data to improve every choice they make, using advances in artificial intelligence, machine learning, optimization, and much more. FICO makes a real difference in the way businesses operate worldwide Credit Scoring FICO Scores are used by 90 of the top 100 US lenders. Fraud Detection and Security 4 billion payment cards globally are protected by FICO fraud systems. Lending 3/4 of US mortgages are approved using the FICO Score. Global trends toward digital transformation have created tremendous demand for FICOs solutions, placing us among the worlds top 100 software companies by revenue. We help many of the worlds largest banks, insurers, retailers, telecommunications providers and other firms reach a new level of success. Our success is dependent on really talented people just like you who thrive on the collaboration and innovation thats nurtured by a diverse and inclusive environment. Well provide the support you need, while ensuring you have the freedom to develop your skills and grow your career. Join FICO and help change the way business thinks! Learn more about how you can fulfil your potential at FICO promotes a culture of inclusion and seeks to attract a diverse set of candidates for each job opportunity. We are an equal employment opportunity employer and were proud to offer employment and advancement opportunities to all candidates without regard to race, color, ancestry, religion, sex, national origin, pregnancy, sexual orientation, age, citizenship, marital status, disability, gender identity or Veteran status. Research has shown that women and candidates from underrepresented communities may not apply for an opportunity if they dont meet all stated qualifications. While our qualifications are clearly related to role success, each candidates profile is unique and strengths in certain skill and/or experience areas can be equally effective. If you believe you have many, but not necessarily all, of the stated qualifications we encourage you to apply. Information submitted with your application is subject to theFICO Privacy policy at

FactSet creates flexible, open data and software solutions for over 200,000 investment professionals worldwide, providing instant access to financial data and analytics that investors use to make crucial decisions. At FactSet, our values are the foundation of everything we do. They express how we act and operate, serve as a compass in our decision-making, and play a big role in how we treat each other, our clients, and our communities. We believe that the best ideas can come from anyone, anywhere, at any time, and that curiosity is the key to anticipating our clients’ needs and exceeding their expectations. The Business Information Security Officer (BISO) serves as a trusted security advisor to lines of business. The BISO understands security risks and technologies and is able to effectively communicate them to business units. The BISO works in tandem with the business across multiple services and platforms to address risk, while advising business leaders to ensure they are making decisions with security in mind. The BISO is an advanced role supporting the cybersecurity program. This individual provides leadership, executive support, and strategic and tactical guidance for a world-class cybersecurity program supporting enterprise security initiatives. As a business enabler, the BISO is an effective communicator with the technical aptitude to drive security fundamentals into aspects of the business. The BISO must be capable of working closely with senior management, third parties, project managers and business subject matter experts (SMEs). Additionally, the BISO must be personable and able to translate cybersecurity issues to business leader initiatives. The BISO must have a technical background and be able to understand technologies, their purpose, and their security requirements and data protection needs, wherever they reside. BISOs should also understand threats, as well as risk mitigations and technical controls recommended by security leaders. Job Responsibilities: Serve as a trusted security advisor with business unit leadership. Act as a liaison to ensure cybersecurity practices are built into business unit initiatives for the entire lifecycle. Act as a trusted point of contact across business units. Work closely with security leadership to instill cybersecurity policies and practices throughout business units to address security operations, incident response, application security and infrastructure. Be actively informed and engaged in security projects across the business. Provide disaster recovery and business continuity planning advice when working with leaders for business and cybersecurity resiliency. Enforce the strong security culture set forth by the CISO, ensuring uniformity across business units and employees. Foster strong relationships with internal business units and excel in cybersecurity communication. Advise business units on enterprise-wide people, process and technology security recommendations. Maintain up-to-date knowledge related to security threats, vulnerabilities and mitigations set forth to reduce the attack surface; circulate this knowledge through the business units. Ensure business projects are focused on cybersecurity from the beginning. Identify and document threats and vulnerabilities that may impact the business and address them regularly with business units. In conjunction with security and business leaders, define key performance indicators (KPIs) and metrics aligning with business initiatives and deliver them to non-technical teams in terms that are accessible and comprehensible. Provide motivation to business units to adopt cybersecurity controls. Remove complexity and obstacles that hinder efficient security controls enterprise-wide. Build relationships with business units to deliver security-by-design controls incorporated into projects, architecture, infrastructure and applications. Stay abreast of new laws, regulations and standards, and assess their impact to the business. Verify security content training initiatives and internal/external communication are conducted regularly. Openly support the CISO, management team and executive leadership, even during tumultuous times. Perform other duties as assigned. Job Responsibilities: 15+ years of relevant Cybersecurity experience with minimum 5 years as Cybersecurity Architect or Lead Engineer. Bachelor’s degree in Information Cybersecurity, Cybersecurity Assurance, Computer Science or related fields. Relevant certifications preferred including CISSP, CISM, GSEC, etc. Capable of working with diverse teams and promoting an enterprise-wide positive security mindset/culture.. Adept at understanding business focus and processes and ability to inject cybersecurity into the business through teamwork and influence.. Experience collaborating with IT teams to implement technology solutions that enable business initiatives and reduce risk. Knowledge of a relevant enterprise architecture methodology. Ability to determine key security requirements by evaluating business strategies and requirements; researching information security standards; conducting system security and vulnerability analyses and risk assessments; studying architecture/platform; and identifying integration issues. Ability to translate design into bill of materials and preparing cost estimates. Knowledge of a relevant Cloud architecture standards, methodology, and technology. Experience with risk assessments of new product development efforts as well as externally purchased applications and cloud services. Expert knowledge of security issues, techniques and implications. Advanced knowledge of common system, software and web application vulnerabilities (e.g., OWASP Top 10). General understanding of project management best practices. Ability to translate technical designs into bill of materials for procurement, collaborate with procurement team, draft Request for Quote/Purchase/Information (RFQ/RFP/RFI), and manage vendor relationships. Familiarity of SSDLC (Secure Software Development Life Cycle) or SDL (Secure Development Lifecycle). Experience assisting with third-party risk assessments and security control design validation. Experience performing Root Cause Analysis (RCA) for control failures and advising IT Management with risk treatment plans. Able to deliver quality results in a high-energy/high-pressure environment. Ability to multi-task and manage demands of many projects, issues, and tasks. Ability to perform duties with minimal supervision. Excellent interpersonal and teamwork skills. Excellent communications skills, both verbal and written. Experience performing research and communicating findings to technical and non-technical audience. Ability to credibly speak with clients regarding requests for information, integration, risk management, and compliance. Experience technically leading and influencing teams without depending on management authority. Experience mentoring Cybersecurity and IT team members. Diversity: At FactSet, we celebrate diversity of thought, experience, and perspective. We are committed to disrupting bias and a transparent hiring process. All qualified applicants will be considered for employment regardless of race, color, ancestry, ethnicity, religion, sex, national origin, gender expression, sexual orientation, age, citizenship, marital status, disability, gender identity, family status or veteran status. FactSet participates in E-Verify. Return to Work: Returning from a break? We are here to support you! If you have taken time out of the workforce and are looking to return, we encourage you to apply and chat with our recruiters about our available support to help you relaunch your care Company Overview: FactSet (NYSE:FDS | NASDAQ:FDS) helps the financial community to see more, think bigger, and work better. Our digital platform and enterprise solutions deliver financial data, analytics, and open technology to more than 8,200 global clients, including over 200,000 individual users. Clients across the buy-side and sell-side, as well as wealth managers, private equity firms, and corporations, achieve more every day with our comprehensive and connected content, flexible next-generation workflow solutions, and client-centric specialized support. As a member of the S&P 500, we are committed to sustainable growth and have been recognized among the Best Places to Work in 2023 by Glassdoor as a Glassdoor Employees’ Choice Award winner. Learn more at www.factset.com and follow us on X and LinkedIn. Show more Show less

When you join Verizon You want more out of a career. A place to share your ideas freely — even if they’re daring or different. Where the true you can learn, grow, and thrive. At Verizon, we power and empower how people live, work and play by connecting them to what brings them joy. We do what we love — driving innovation, creativity, and impact in the world. Our V Team is a community of people who anticipate, lead, and believe that listening is where learning begins. In crisis and in celebration, we come together — lifting our communities and building trust in how we show up, everywhere & always. Want in? Join the #VTeamLife. What you’ll be doing... The work you'll be doing is to support mission and business-critical applications within Verizon. You will be enhancing the customer experience and building a world class solutions. Under the mentorship of a technical lead who would be supporting you on delivery, you will also work as a team member on various projects and mentor junior resources. You will help develop, implement and maintain this important application. Designing, developing and maintaining applications and databases by evaluating client needs, analyzing requirements and developing software systems. Testing and coordinating all user interfaces changes of Responsive Web Design. Executing full software development life cycle (SDLC) – concept, design, build, deploy, test, release and support. Ensuring application development sprint cycle is on track and adjusting the plan to meet release timelines. Acting independently, at the same time displaying excellent collaboration within and between various teams. Understanding the domain knowledge and adapting to an agile environment. Building reusable code and libraries for future use in front end and back end technologies. Mentoring junior developers in the team and leading them to deliver on projects. Where you'll be working… In this hybrid role, you'll have a defined work location that includes work from home and assigned office days set by your manager. What we’re looking for... You are curious about new technologies and the possibilities they create. You enjoy the challenge of supporting applications while exploring ways to improve upon the technology. You are driven and motivated, with good communication and analytical skills. You’re a sought-after team member that thrives in a dynamic work environment. You have a thirst for working on cutting edge technology with the drive to change the status quo. You'll Need To Have Bachelor’s degree or four or more years of work experience. Four or more years of relevant experience. Experience on Frontend/Web technologies, micro-services, backend services & database skills Knowledge of SDLC and Agile Development. Knowledge of cloud-native application development. Effective code review, quality, performance tuning experience. Even better if you have one or more of the following: Experience with a high-performance, high-availability environment. Strong analytical, debugging skills. Good communication and presentation skills. Relevant certifications. Experience with UI framework. Experience with OWASP rules and mitigate security vulnerabilities using security tools like Fortify, Sonarcube, Blackduck etc. Experience with Unit testing framework like JUnit, Mokito. Experience monitoring tools like NewRelic. Ability to understand Agile and DevOps tools and technologies. Strong problem solving and debugging skills. AI/GenAI skills Cloud Technologies If Verizon and this role sound like a fit for you, we encourage you to apply even if you don’t meet every “even better” qualification listed above. Why Verizon? Verizon is committed to maintaining a Total Rewards package which is competitive, valued by our employees, and differentiates us as an Employer of Choice. We are a ‘pay for performance’ company and your contribution is rewarded through competitive salaries, performance-based incentives and an employee Stock Program. We create an opportunity for us all to share in the success of Verizon and the value we help to create through this broad-based discretionary equity award program. Your benefits are market competitive and delivered by some of the best providers. You are provided with a full spectrum of health and wellbeing resources, including a first in-class Employee Assistance Program, to empower you to make positive health decisions. We offer generous paid time off benefits to help you manage your work life balance and opportunities for flexible working arrangements*. Verizon provides training and development for all levels, to help you enhance your skills and develop your career, from funding towards education assistance, award-winning training, online development tools and access to industry research. You will be able to take part in volunteering opportunities as part of our environmental, community and sustainability commitment. Your benefits package will vary depending on the country in which you work. subject to business approval Where you’ll be working In this hybrid role, you'll have a defined work location that includes work from home and assigned office days set by your manager. Scheduled Weekly Hours 40 Equal Employment Opportunity Verizon is an equal opportunity employer. We evaluate qualified applicants without regard to race, gender, disability or any other legally protected characteristics. Show more Show less

Why you'll LOVE Sagent: You could work anywhere. We know you are talented and looking for something inspiring and impactful. A place where you will make a difference and have a great time doing it! By choosing Sagent, you can be part of our mission to make loans and homeownership simpler and safer for all US consumers. Sagent powers servicers and consumers. You power Sagent! About the Opportunity: Sagent is seeking a Senior Threat Analyst to join a growing team responsible for securing next-generation, cloud-native financial technology systems. We are seeking a skilled and motivated Threat Analyst to join our growing team. This role offers the opportunity to work in a dynamic environment where your expertise will play a critical role identifying, analyzing, and mitigating security threats. You will be responsible for monitoring, analyzing, and responding to potential security incidents, performing in-depth security investigations, and executing regular threat hunting campaigns across the organization. If you are passionate about information security, possess a keen eye for detail, we encourage you to apply and be a part of our mission to safeguard our digital landscape. We'd love to hear from you if you have: Willingness to work outside of standard business hours during critical incidents. Prior experience administrating and securing IT systems or networks (~5+ years), preferably with both in public cloud environment(s) and physical data center location(s). Proven mastery of SQL-like query languages, and proficient in data manipulation and analysis techniques to extract actionable insights from large and complex cybersecurity datasets. Demonstrated ability to maintain collected demeanor under high-pressure security incident response scenarios. Proficiency of MITRE ATT&CK framework and its application to threat hunting campaign scenarios, as a bonus in hybrid cloud environments. Hands-on experience professionally administrating and securing both Windows and Unix/Linux operating systems, and common threats that each are susceptible to. Proven expertise in identifying, analyzing, and mitigating threats that could impact cloud-based and containerized workloads. Experience administrating cloud IaaS and PaaS infrastructure is a plus. Deep understanding of the OSI model and a wide range of common network protocols, enabling effective analysis, detection, and mitigation of security threats at various layers of the network stack. Extensive experience working within Security Information and Event Management (SIEM) platforms, especially building, and optimizing custom detection rules. Excellent communication skills with ability to effectively translate complex technical concepts and findings into clear and concise insights for non-technical stakeholders, fostering collaboration and informed decision-making across cross functional teams. Expertise of scripting languages such as Python (preferred), Bash scripting, or Powershell; prior experience using scripting to automate tasks. Extensive experience working with modern defense-in-depth security tools and technologies such as Intrusion Detection and Prevention (IDS/IPS), Endpoint Detection and Response (EDR) solutions, Cloud Native Application Protection Platform (CNAPP) and Web Application Firewalls (WAF) Enthusiasm for security automation and creative technical ability to identify time-saving or novel automation workflows. Proven understanding of common web-based attacks at runtime, such as those found OWASP Top 10, and how to respond/mitigate each from an operational standpoint. Extensive experience detecting and mitigating email-based threats, including phishing, malware, and spoofing, and as a bonus, hands-on experience in administering and configuring email security tools and protocols to safeguard against these threats. Thorough understanding of threat modeling concepts and methodologies, with the ability to identify compound attack vectors. Support the larger Information Security team & IT teams with security expertise and assistance as needed. 1 Perks! As a Sagent Associate, you will be eligible to participate in our benefit programs beginning on Day #1! We offer a comprehensive package including Remote/Hybrid workplace options, Group Medical Coverage, Group Personal Accidental, Group Term Life Insurance Benefits, Flexible Time Off, Food@Work, Career Pathing, Summer Fridays and much, much more! Why Sagent? Sagent is transforming the mortgage servicing industry by bringing the modern experience customers now expect from loan originations to loan servicing. Our platform lets customers manage their home-owing lives from anywhere while giving servicers lower costs, scale compliance and higher servicing values through full market cycles. Sagent is a joint venture that combines Fiserv Inc.'s decades of market-leading fintech expertise with Warburg Pincus' skill in growing technology companies. We hire innovators and doers to disrupt the last and most complex frontier of lending and housing. We're growing fast and need you to help shape our future. Sagent is an equal opportunity employer, and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status. Show more Show less

When you join Verizon You want more out of a career. A place to share your ideas freely — even if they’re daring or different. Where the true you can learn, grow, and thrive. At Verizon, we power and empower how people live, work and play by connecting them to what brings them joy. We do what we love — driving innovation, creativity, and impact in the world. Our V Team is a community of people who anticipate, lead, and believe that listening is where learning begins. In crisis and in celebration, we come together — lifting our communities and building trust in how we show up, everywhere & always. Want in? Join the #VTeamLife. What you’ll be doing... The work you'll be doing is to support mission and business-critical applications within Verizon. You will be enhancing the customer experience and building a world class solutions. Under the mentorship of a technical lead who would be supporting you on delivery, you will also work as a team member on various projects and mentor junior resources. You will help develop, implement and maintain this important application. Designing, developing and maintaining applications and databases by evaluating client needs, analyzing requirements and developing software systems. Testing and coordinating all user interfaces changes of Responsive Web Design. Executing full software development life cycle (SDLC) – concept, design, build, deploy, test, release and support. Ensuring application development sprint cycle is on track and adjusting the plan to meet release timelines. Acting independently, at the same time displaying excellent collaboration within and between various teams. Understanding the domain knowledge and adapting to an agile environment. Building reusable code and libraries for future use in front end and back end technologies. Mentoring junior developers in the team and leading them to deliver on projects. Where you'll be working… In this hybrid role, you'll have a defined work location that includes work from home and assigned office days set by your manager. What we’re looking for... You are curious about new technologies and the possibilities they create. You enjoy the challenge of supporting applications while exploring ways to improve upon the technology. You are driven and motivated, with good communication and analytical skills. You’re a sought-after team member that thrives in a dynamic work environment. You have a thirst for working on cutting edge technology with the drive to change the status quo. You'll Need To Have Bachelor’s degree or four or more years of work experience. Four or more years of relevant experience. Experience on Frontend/Web technologies, micro-services, backend services & database skills Knowledge of SDLC and Agile Development. Knowledge of cloud-native application development. Effective code review, quality, performance tuning experience. Even better if you have one or more of the following: Experience with a high-performance, high-availability environment. Strong analytical, debugging skills. Good communication and presentation skills. Relevant certifications. Experience with UI framework. Experience with OWASP rules and mitigate security vulnerabilities using security tools like Fortify, Sonarcube, Blackduck etc. Experience with Unit testing framework like JUnit, Mokito. Experience monitoring tools like NewRelic. Ability to understand Agile and DevOps tools and technologies. Strong problem solving and debugging skills. AI/GenAI skills Cloud Technologies If Verizon and this role sound like a fit for you, we encourage you to apply even if you don’t meet every “even better” qualification listed above. Why Verizon? Verizon is committed to maintaining a Total Rewards package which is competitive, valued by our employees, and differentiates us as an Employer of Choice. We are a ‘pay for performance’ company and your contribution is rewarded through competitive salaries, performance-based incentives and an employee Stock Program. We create an opportunity for us all to share in the success of Verizon and the value we help to create through this broad-based discretionary equity award program. Your benefits are market competitive and delivered by some of the best providers. You are provided with a full spectrum of health and wellbeing resources, including a first in-class Employee Assistance Program, to empower you to make positive health decisions. We offer generous paid time off benefits to help you manage your work life balance and opportunities for flexible working arrangements*. Verizon provides training and development for all levels, to help you enhance your skills and develop your career, from funding towards education assistance, award-winning training, online development tools and access to industry research. You will be able to take part in volunteering opportunities as part of our environmental, community and sustainability commitment. Your benefits package will vary depending on the country in which you work. subject to business approval Where you’ll be working In this hybrid role, you'll have a defined work location that includes work from home and assigned office days set by your manager. Scheduled Weekly Hours 40 Equal Employment Opportunity Verizon is an equal opportunity employer. We evaluate qualified applicants without regard to race, gender, disability or any other legally protected characteristics. Show more Show less

About Us: Birlasoft, a global leader at the forefront of Cloud, AI, and Digital technologies, seamlessly blends domain expertise with enterprise solutions. The company’s consultative and design-thinking approach empowers societies worldwide, enhancing the efficiency and productivity of businesses. As part of the multibillion-dollar diversified CKA Birla Group, Birlasoft with its 12,000+ professionals, is committed to continuing the Group’s 170-year heritage of building sustainable communities. Job Title: Application Security Specialist – Rapid7 Insight AppSe cLocation: Any Birlasoft Locatio nDepartment: Cybersecurity - Application Securit y Role Overvie w,We are seeking a proactive and detail-oriente d Application Security Speciali st with hands-on experience i n Rapid7 InsightAppS ec. The ideal candidate will be responsible for implementing, managing, and optimizing application security testing processes, integrating with CI/CD pipelines, and supporting SOC and client engagements including RFP preparatio n. Key Responsibiliti es,InsightAppSec Implementation & Managem entDeploy and configu re Rapid7 InsightApp Sec for dynamic application security testing (DAS T).Manage scan configurations, schedules, and policies for web applications and AP Is.Analyze scan results, prioritize vulnerabilities, and coordinate remediation with development tea ms.Integrate InsightAppSec wi th CI/CD pipeli nes (e.g., Jenkins, GitLab, Azure DevOps) to enable DevSecOps practic es.Automate vulnerability reporting and ticketing through integrations with tools li ke J IR A, Service Now, or Sl a ck.Collaborate wi th SOC te ams to correlate application vulnerabilities with threat intelligence and incident respon se.Provide support for security incidents involving web applications and AP Is.Prepare and prese nt R FPs, technical proposals, and solution architectures for application securi ty.Conduct client workshops, demos, and PoCs to showcase InsightAppSec capabiliti es.Translate technical findings into business-impact narratives for stakeholde rs.Stay updated on AppSec tre nds and evaluate complementary tools such as Burp Su it e, OWASP ZA P, Verac ode, or Checkm a rx.Recommend improvements to the organization’s application security postu re. Required Skills & Qualificat ions5-8 years of experience in Application Secu rity, with at least 4 years us ing Rapid7 InsightAp p Sec.Strong understanding of OWASP To p 10, DAST, and SDLC security best pract i ces.Experience with scripting (Python, Bash) for automation and report ing.Familiarity w ith DevOps t oo ls, API secu rity, and cloud-native applicat i ons.Excellent communication and presentation skills for client-facing ro les. Preferred Certificat ions:Rapid7 Certified Specialist – InsightAppSec (if avail able )O SCP, GWAPT , or CSSLPCompTIA Secu ri ty+ , CEH, or equiv alent Show more Show less

Who We Are : Sirion is the worlds leading AI-native CLM platform, pioneering the application of generative AI to help enterprises transform the way they store, create, and manage contracts. The platform’s extraction, conversational search, and AI-enhanced negotiation capabilities have revolutionized contracting across enterprise teams – from legal and procurement to sales and finance. The world’s most valuable brands trust Sirion to manage 7M+ contracts worth nearly $800B and relationships with 1M+ suppliers and customers in 100+ languages. Leading analysts such as Gartner, IDC, and Spend Matters have consistently recognized Sirion as a leader in CLM for its focus on category-leading innovation. What You’ll Do : Experienced in application security testing (source code review and application penetration tests) – web, mobile, API’s, Plugin’s. Experienced in performing Threat Modelling. Experience with Cloud and Container Security. Experience with Secure Development and Testing processes and detection. Experience in automating security testing and remediation through scripting using languages like Bash, Python and VBScript. Knowledge of secure coding concepts. Good knowledge of OWASP and current and emerging threats Good experience in Security testing tools like Burp Suite/Acunetix/Metasploit/Kali. Understands Security testing requirements and testing strategy. Knowledge on capturing and diagnosing logs for application errors. Good understanding of the entire project life cycle, QA methodologies and processes. Experience with web application firewall, encryption, networking, web services. Create detailed, comprehensive and well-structured Security test plans and Security test cases. Estimate, prioritize, plan, and coordinate testing activities. Strong, effective interpersonal and communications skills; able to interact professionally with customers and team members. What You’ll Need : Ability to multi-task effectively and work under pressure Relationship and trust-based information security program (not authority-based) Self-driven and initiator Task finisher Commitment to Diversity and Inclusion: We are an equal opportunity employer committed to diversity and inclusion. We do not discriminate based on race, color, gender, religion, national origin, ancestry, age, disability, medical condition, genetic information, military or veteran status, marital status, pregnancy, gender identity, sexual orientation, or any other protected characteristic. We provide reasonable accommodations for disabled employees and applicants as required by law. These principles apply to all aspects of employment, including recruitment, training, promotions, compensation, benefits, transfers, and social programs. Excited about this opportunity? We’d love to hear from you! To apply, simply visit our Careers Page Careers at Sirion page and follow the easy steps to submit your application.