3316 Owasp Jobs - Page 39

About The Role Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Delivery Excellence Good to have skills : NAMinimum 18 year(s) of experience is required Educational Qualification : 15 years full time education Summary :Should be able to manage the delivery for the large client with multiple skills and different verticals. Should be able to lead large number of teams.As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to document the implementation of cloud security controls and facilitate the transition to cloud security-managed operations, ensuring that all security measures align with organizational objectives and compliance standards. You will engage in discussions to refine security strategies and provide guidance on best practices, contributing to a secure and efficient cloud environment. Roles & Responsibilities:- Expected to be a Subject Matter Expert with deep knowledge and experience.- Should have influencing and advisory skills.- Engage with multiple teams and responsible for team decisions.- Expected to provide solutions to problems that apply across multiple teams, and provide solutions to business area problems.- Facilitate workshops and training sessions to enhance team understanding of cloud security practices.- Continuously assess and improve the cloud security framework to adapt to evolving threats and business needs. Professional & Technical Skills: - Must To Have Skills: Proficiency in Delivery Excellence.- Strong understanding of cloud security principles and frameworks.- Experience with risk assessment and management in cloud environments.- Ability to design and implement security controls tailored to cloud architectures.- Familiarity with compliance standards and regulations related to cloud security. Additional Information:- The candidate should have minimum 18 years of experience in Delivery Excellence.- This position is based at our Bengaluru office.- A 15 years full time education is required. Qualification 15 years full time education

Transport is at the core of modern society. Imagine using your expertise to shape sustainable transport and infrastructure solutions for the future? If you seek to make a difference on a global scale, working with next-gen technologies and the sharpest collaborative teams, then we could be a perfect match. Job Description Senior Full Stack Developer: Developer will be responsible for the development, implementation, and maintenance of applications using Angular and Dot Net core. Should be able to contribute in overall design of application collaborating with architect. Responsibilities: Develop and test features according to the requirement, using appointed tools and technologies. Coordinate and collaborate with multiple stakeholders including Business Analysts, Architects, Product Owner and Tech Lead Follow all coding/testing/security guidelines and best practices. Build, release and deploy on different environments. Support implementations/Rollouts of new features/issue fixes/enhancements in non-prod/Prod environments. Lead and guide junior developers. Mandatory Requirements: Bachelor s or Master s degree in Engineering (BE/B.Tech/MCA) 8 to 12 years of experience in .NET Web Application development Strong hands-on experience in: o C#, .NET Core 3.1 / .NET 6 o Web API2, LINQ, Entity Framework Core o Azure PaaS Services, Azure DevOps, including YAML Pipelines o SQL Server, RESTful APIs, and Microservice architecture Strong in Angular (v10+) and TypeScript for front-end development Solid experience with JavaScript, HTML5, and CSS3 Good knowledge and implementation of: o OOPs, SOLID principles, and Design Patterns o Developing and consuming .NET Core Web APIs (REST and GraphQL) Experience in Azure cloud services and deployment pipelines Excellent communication and presentation skills Comfortable working in a multi-cultural, distributed environment and collaborating with global teams Strong customer focus and commitment to delivery excellence Proactive in continuous improvement, process enhancement, and adoption of new technologies Experience working in Agile/Scrum teams A committed team player with a self-driven attitude Preferred Attributes: Experience with frontend/backend unit testing frameworks Familiarity with CI/CD, containerization, or serverless deployments on Azure Understanding of secure coding practices and performance optimization Experience in SonarQube, security tools-DAST/SAST, OWASP. Travel Required: Occasional Travel Who we are and what we believe in We are committed to shaping the future landscape of efficient, safe, and sustainable transport solutions. Fulfilling our mission creates countless career opportunities for talents across the group s leading brands and entities. Applying to this job offers you the opportunity to join Volvo Group . Every day, you will be working with some of the sharpest and most creative brains in our field to be able to leave our society in better shape for the next generation. We are passionate about what we do, and we thrive on teamwork. We are almost 100,000 people united around the world by a culture of care, inclusiveness, and empowerment. Group Digital & IT is the hub for digital development within Volvo Group. Imagine yourself working with cutting-edge technologies in a global team, represented in more than 30 countries. We are dedicated to leading the way of tomorrow s transport solutions, guided by a strong customer mindset and high level of curiosity, both as individuals and as a team. Here, you will thrive in your career in an environment where your voice is heard and your ideas matter.

About The Role Project Role : Application Developer Project Role Description : Design, build and configure applications to meet business process and application requirements. Must have skills : CloudSense Good to have skills : NAMinimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As an Application Developer, you will design, build, and configure applications to meet business process and application requirements. Your typical day will involve collaborating with teams to develop innovative solutions and contribute to key decisions. Roles & Responsibilities:- Expected to be an SME- Collaborate and manage the team to perform- Responsible for team decisions- Engage with multiple teams and contribute on key decisions- Provide solutions to problems for their immediate team and across multiple teams- Lead the team in implementing best practices for application development- Stay updated on industry trends and technologies to enhance application performance Professional & Technical Skills: - Must To Have Skills: Proficiency in CloudSense- Strong understanding of cloud computing principles- Experience in designing and developing scalable applications on cloud platforms- Knowledge of DevOps practices for continuous integration and deployment- Hands-on experience with cloud-based application security measures Additional Information:- The candidate should have a minimum of 5 years of experience in CloudSense- This position is based at our Pune office- A 15 years full-time education is required Qualification 15 years full time education

Provide a brief description of the overall purpose of the position, why this position exists and how it will contribute in achieving the teams goal. Responsibilities Direct Responsibilities Direct Responsibilities - To perform Penetration testing (Gray Box and/or Black Box) for Web applications; Thick Client, API, and mobile applications. - To understand the applications security requirements and identify & document the scope of the test - Ensure execution of the documented security scenarios for the application under test. - Document and report all findings - Collaborate with the developers to help them understand the vulnerabilities reported in application - Escalate issues to the local management and onshore stakeholders in case it affects the testing progress - Ensure processes for the project is followed for the assessments Note : - Optional, experience in Source Code Assessment (SCA)/SAST, Mobile Testing Contributing Responsibilities Technical & Behavioral Competencies - Clear understanding of OWASP Top 10 - application security risks - Tools/OS: Burp Suite, OWASP ZAP, Kali Linux - Manual Security Testing & Analysis, Security Test Designing - Excellent Inter personal and presentation skills - Strong in verbal and written communication - Good analytical skills - Strong Time Management - Must be flexible, independent, self-motivated - Team player Specific Qualifications (if required) CSSLP/CEH or equivalent certification preferred Skills Referential Behavioural Skills : (Please select up to 4 skills) Choose an item. Choose an item. Choose an item. Choose an item. Transversal Skills: Choose an item. Choose an item. Choose an item. Choose an item. Choose an item. Education Level: Bachelor Degree or equivalent Experience Level At Least 3 years Other/Specific Qualifications (if required) -

Key Result Areas: Effectively lead and manage the application security testing team. Ensure the team meets project deadlines and objectives. Successfully plan and execute security assessments on software applications and Infrastructure devices. Identify and report vulnerabilities accurately and in a timely manner. Monitor and track the resolution of identified vulnerabilities. Stay current with evolving security threats and best practices. Effectively communicate security risks and recommendations to stakeholders. Job Description: The Application Security Testing Manager will be responsible for leading a team of security testers and ensuring the security and integrity of software applications within G&B. This role involves planning, executing, and overseeing security assessments, identifying vulnerabilities, and driving their remediation. Preferred candidate profile Essential: Proven experience (typically 5+ years) in application security testing and vulnerability assessment. Familiarity with security testing tools such as Burp Suite, OWASP ZAP, Nessus, and others. Proficiency in programming and scripting languages (e.g., Python, Java) for security testing and automation. Strong understanding of software development lifecycles and secure coding practices. Experience with security standards, frameworks, such as OWASP SPECIAL SKILLS REQUIRED Essential: Bachelor's or Master's degree in computer science, cybersecurity, or a related field. Excellent communication skills. Strong problem-solving and analytical abilities.

About The Role Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : ServiceNow Governance, Risk, and Compliance (GRC) Good to have skills : Security Architecture DesignMinimum 7.5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. You will document the implementation of the cloud security controls and transition to cloud security-managed operations. Showcasing creativity and expertise in cloud security solutions. Roles & Responsibilities:- Expected to be an SME, collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Provide solutions to problems for their immediate team and across multiple teams.- Develop and implement security architecture solutions.- Conduct risk assessments and provide recommendations for security enhancements.- Lead security governance initiatives and ensure compliance with industry standards.- Stay updated on the latest security trends and technologies. Professional & Technical Skills: - Must To Have Skills: Proficiency in ServiceNow Governance, Risk, and Compliance (GRC).- Strong understanding of security architecture design.- Experience with data security and compliance regulations.- Knowledge of cloud security best practices.- Hands-on experience in implementing security controls and measures.- Familiarity with security assessment tools and methodologies. Additional Information:- The candidate should have a minimum of 7.5 years of experience in ServiceNow Governance, Risk, and Compliance (GRC).- This position is based at our Coimbatore office.- A 15 years full-time education is required. Qualification 15 years full time education

About The Role Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : ForgeRock Access Management Good to have skills : NAMinimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. You will also document the implementation of cloud security controls and transition to cloud security-managed operations. Roles & Responsibilities:- Expected to be an SME- Collaborate and manage the team to perform- Responsible for team decisions- Engage with multiple teams and contribute on key decisions- Provide solutions to problems for their immediate team and across multiple teams- Lead security assessments and provide recommendations- Develop security architecture standards and guidelines- Conduct security reviews and audits Professional & Technical Skills: - Must To Have Skills: Proficiency in ForgeRock Access Management- Strong understanding of cloud security principles- Experience in implementing security controls in cloud environments- Knowledge of industry security standards and best practices- Hands-on experience with security tools and technologies Additional Information:- The candidate should have a minimum of 5 years of experience in ForgeRock Access Management- This position is based at our Coimbatore office- A 15 years full-time education is required Qualification 15 years full time education

Join us as a Solution Architect at Barclays, where youll spearhead the evolution of our digital landscape, driving innovation and excellence. Youll harness cutting-edge technology to revolutionise our digital offerings, ensuring unparalleled customer experiences. As a part of the team, you will deliver technology stack, using strong analytical and problem solving skills to understand the business requirements and deliver quality solutions. Youll be working on complex technical problems that will involve detailed analytical skills and analysis. This will be done in conjunction with fellow engineers, business analysts and business stakeholders. To be successful as a Solution Architect you should have experience with: Essential Skills: A very good broad understanding of a wide variety of technologies pertinent to Barclaycard, including emerging technologies. (e. g. AWS, Java, Adaptive and Responsive design, etc. ) Awareness of IT Security patterns, considerations, best practice (e. g. OWasp). Experience designing secure, scalable, highly available, resilient performant solutions. Knowledge of Software delivery and deployment patterns (e. g. Continuous Delivery, Continuous Integration, etc. ) with deep understanding of Enterprise Container Platforms (e. g. Docker) Knowledge of different integration mechanisms (e. g. RESTful Web Services, ETL etc. ) Awareness of different data solutions and data architecture best practice (e. g. Mongo, Data Driven Design, etc. ) Awareness of SCM, packaging and build tools - GIT, Jenkins and MavenGradle. Desirable skills/Preferred Qualifications : Payments/ Acquiring domain knowledge / experience. Good understanding of Customer Journeys in the Acquiring (Authorisations, Scheme Clearing, Scheme settlement, Merchant payments, Chargeback Processing) Familiar with integration and implementation issues and their architectural implications. Excellent understanding of best practice architectural and design methods with proven innovative and leading edge thinking (e. g. Domain Driven Architecture, event based architecture, building for resilience, scalability, performance, Microservice design patterns etc. ) Project Delivery - Understands different project methodologies, project lifecycles, major phases, dependencies and milestones within a project, and the required documentation needs. Service Delivery - Good understanding of concepts of service delivery and support and how this can be affected by technical delivery You may be assessed on key critical skills relevant for success in role, such as risk and controls, change and transformation, business acumen, strategic thinking and digital and technology, as well as job-specific technical skills. This role is based out of Pune location. Purpose of the role To design, develop, and implement solutions to complex business problems, collaborating with stakeholders to understand their needs and requirements, and design and implement solutions that meet those needs and create solutions that balance technology risks against business delivery, driving consistency. Accountabilities Design and development of solutions as products that can evolve, meeting business requirements that align with modern software engineering practices and automated delivery tooling. This includes identification and implementation of the technologies and platforms. Targeted design activities that apply an appropriate workload placement strategy and maximise the benefit of cloud capabilities such as elasticity, serverless, containerisation etc. Best practice designs incorporating security principles (such as defence in depth and reduction of blast radius) that meet the Bank s resiliency expectations. Solutions that appropriately balance risks and controls to deliver the agreed business and technology value. Adoption of standardised solutions where they fit. If no standard solutions fit, feed into their ongoing evolution where appropriate. Fault finding and performance issues support to operational support teams, leveraging available tooling. Solution design impact assessment in terms of risk, capacity and cost impact, inc. estimation of project change and ongoing run costs. Development of the requisite architecture inputs required to comply with the banks governance processes, including design artefacts required for architecture, privacy, security and records management governance processes. Assistant Vice President Expectations To advise and influence decision making, contribute to policy development and take responsibility for operational effectiveness. Collaborate closely with other functions/ business divisions. Lead a team performing complex tasks, using well developed professional knowledge and skills to deliver on work that impacts the whole business function. Set objectives and coach employees in pursuit of those objectives, appraisal of performance relative to objectives and determination of reward outcomes If the position has leadership responsibilities, People Leaders are expected to demonstrate a clear set of leadership behaviours to create an environment for colleagues to thrive and deliver to a consistently excellent standard. The four LEAD behaviours are: L - Listen and be authentic, E - Energise and inspire, A - Align across the enterprise, D - Develop others. OR for an individual contributor, they will lead collaborative assignments and guide team members through structured assignments, identify the need for the inclusion of other areas of specialisation to complete assignments. They will identify new directions for assignments and/ or projects, identifying a combination of cross functional methodologies or practices to meet required outcomes. Consult on complex issues; providing advice to People Leaders to support the resolution of escalated issues. Identify ways to mitigate risk and developing new policies/procedures in support of the control and governance agenda. Take ownership for managing risk and strengthening controls in relation to the work done. Perform work that is closely related to that of other areas, which requires understanding of how areas coordinate and contribute to the achievement of the objectives of the organisation sub-function. Collaborate with other areas of work, for business aligned support areas to keep up to speed with business activity and the business strategy. Engage in complex analysis of data from multiple sources of information, internal and external sources such as procedures and practises (in other areas, teams, companies, etc). to solve problems creatively and effectively. Communicate complex information. Complex information could include sensitive information or information that is difficult to communicate because of its content or its audience. Influence or convince stakeholders to achieve outcomes.

Requirements: Security management, including handling security audits and assessments. Any cloud security PEN Testing (Preferably AWS) Security frameworks such as NIST, ISO 27001, and CIS benchmarks Responsibilities: Handling security audits and assessments. Knowledgeable in any cloud platforms (Preferably AWS) Working experience in defining and implementing Security frameworks, and should be knowledgeable (such as NIST, ISO 27001, and CIS benchmarks), should have worked closely on IT Infrastructure-related activities and should have hands-on experience in defining the IT controls for Information security, Should be capable to technically advise stakeholders interms of any Information security controls Should possess Good Documentation skills Should be knowledgeable in understanding the Architecture of the product. Job Type: Full-time Ability to commute/relocate: Hyderabad, Telangana: Reliably commute or planning to relocate before starting work (Required) Experience: IT Security: 7 years (Required) Cloud security: 4 years (Required)

About The Role Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Security Architecture Design Good to have skills : NAMinimum 7.5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. You will also document the implementation of the cloud security controls and transition to cloud security-managed operations. Roles & Responsibilities:- Expected to be an SME- Collaborate and manage the team to perform- Responsible for team decisions- Engage with multiple teams and contribute on key decisions- Provide solutions to problems for their immediate team and across multiple teams- Lead security architecture design discussions- Develop security architecture solutions- Conduct security assessments and provide recommendations Professional & Technical Skills: - Must To Have Skills: Proficiency in Security Architecture Design- Strong understanding of cloud security principles- Experience with security tools and technologies- Knowledge of security compliance standards- Hands-on experience in implementing security controls Additional Information:- The candidate should have a minimum of 7.5 years of experience in Security Architecture Design- This position is based at our Noida office- A 15 years full time education is required Qualification 15 years full time education

About The Role Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : SailPoint IdentityIQ Good to have skills : NAMinimum 12 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to document the implementation of cloud security controls and facilitating the transition to cloud security-managed operations. You will engage in discussions to align security strategies with organizational objectives, ensuring that all security measures are effectively integrated into the cloud environment. Your role will also require you to stay updated on the latest security trends and technologies to enhance the overall security posture of the organization. Roles & Responsibilities:- Expected to be an SME.- Collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Expected to provide solutions to problems that apply across multiple teams.- Facilitate training sessions to enhance team knowledge and skills in cloud security.- Conduct regular assessments of cloud security measures to identify areas for improvement. Professional & Technical Skills: - Must To Have Skills: Proficiency in SailPoint IdentityIQ.- Strong understanding of cloud security principles and frameworks.- Experience with identity and access management solutions.- Knowledge of regulatory compliance requirements related to cloud security.- Ability to analyze and mitigate security risks in cloud environments. Additional Information:- The candidate should have minimum 12 years of experience in SailPoint IdentityIQ.- This position is based at our Gurugram office.- A 15 years full time education is required. Qualification 15 years full time education

Location: Remote Duration: 1 Year (Renewable) Start: ASAP Job Purpose: We are seeking an experienced Application Security Architect to design, implement, and maintain secure cloud and enterprise platforms. The role involves ensuring the confidentiality, integrity, and availability of data across environments, and active participation in the SDLC to define and enforce security requirements. Key Responsibilities: Define and assess security requirements across cloud platforms (SaaS/IaaS). Support secure design and integration of applications and APIs. Participate in SDLC reviews and threat modeling. Develop and implement security standards, baselines, and best practices. Collaborate with DevOps, Engineering, and Infra teams for secure deployments. Provide guidance on cloud security posture, compliance, and remediation. Experience & Skills: 7 8 years in Information Security, with expertise in architecture, assessment, and implementation. 5 8 years in: Application security design, assessment, and engineering. Securing public/private cloud (AWS/Azure/DevOps). Secure SDLC, threat modeling, risk assessments. Strong knowledge in: IAM, SSO, API gateways, OAuth, SAML. SIEM, WAF, firewalls, VPNs, endpoint protection. Security standards like NIST, OWASP, ISO 27001. Preferred Skills: Hands-on with CASBs, cloud governance tools. Familiarity with mobile app security. Strong communication, documentation, and collaboration skills. Qualifications: Engineering degree in IT or Computer Science. Certifications (any of the following): CEH, OCSP, OWASP, AWS/Azure/GCP, TOGAF, SABSA, CISSP-ISSAP, CCSP.

Associate Consultant 2-4 Years Roles and Responsibilities: 1. To perform Web and API Penetration testing 2. Perform Cloud security assessment (AWS and Azure must) based on CIS benchmark 3. Client interaction 4. Perform retest post confirmation on the fixes 5 Follow-up with the relevant stakeholders on the remediation of open vulnerabilities Mandatory Skills required for the role: Web, API Penetration Testing Good understanding of OWASP methodology, ASVS and other checklists Knowledge on cloud security and CIS benchmark Good written and spoken communication skills Ability to do report walkthrough with relevant stakeholders Hands-on experience with Burp suite pro, SQLmap, Kali Linux tools Hands on experience with Prowler, Pmapper, Scoutsuite, Cloudsploit Optional Skills for the role: Thick client/ Mobile App PT Secure code review

Senior Software Engineer - Full Stack Location: Bangalore, IN, 562122 Position Type: Professional Transport is at the core of modern society. Imagine using your expertise to shape sustainable transport and infrastructure solutions for the futureIf you seek to make a difference on a global scale, working with next-gen technologies and the sharpest collaborative teams, then we could be a perfect match. Job Description Senior Full Stack Developer: Developer will be responsible for the development, implementation, and maintenance of applications using Angular and Dot Net core. Should be able to contribute in overall design of application collaborating with architect. Responsibilities: Develop and test features according to the requirement, using appointed tools and technologies. Coordinate and collaborate with multiple stakeholders including Business Analysts, Architects, Product Owner and Tech Lead Follow all coding/testing/security guidelines and best practices. Build, release and deploy on different environments. Support implementations/Rollouts of new features/issue fixes/enhancements in non-prod/Prod environments. Lead and guide junior developers. Mandatory Requirements: Bachelor s or Master s degree in Engineering (BE/B.Tech/MCA) 8 to 12 years of experience in .NET Web Application development Strong hands-on experience in: o C#, .NET Core 3.1 / .NET 6 o Web API2, LINQ, Entity Framework Core o Azure PaaS Services, Azure DevOps, including YAML Pipelines o SQL Server, RESTful APIs, and Microservice architecture Strong in Angular (v10+) and TypeScript for front-end development Solid experience with JavaScript, HTML5, and CSS3 Good knowledge and implementation of: o OOPs, SOLID principles, and Design Patterns o Developing and consuming .NET Core Web APIs (REST and GraphQL) Experience in Azure cloud services and deployment pipelines Excellent communication and presentation skills Comfortable working in a multi-cultural, distributed environment and collaborating with global teams Strong customer focus and commitment to delivery excellence Proactive in continuous improvement, process enhancement, and adoption of new technologies Experience working in Agile/Scrum teams A committed team player with a self-driven attitude Preferred Attributes: Experience with frontend/backend unit testing frameworks Familiarity with CI/CD, containerization, or serverless deployments on Azure Understanding of secure coding practices and performance optimization Experience in SonarQube, security tools-DAST/SAST, OWASP. Travel Required: Occasional Travel We value your data privacy and therefore do not accept applications via mail. Who we are and what we believe in We are committed to shaping the future landscape of efficient, safe, and sustainable transport solutions. Fulfilling our mission creates countless career opportunities for talents across the group s leading brands and entities. Applying to this job offers you the opportunity to join Volvo Group . Every day, you will be working with some of the sharpest and most creative brains in our field to be able to leave our society in better shape for the next generation. We are passionate about what we do, and we thrive on teamwork. We are almost 100,000 people united around the world by a culture of care, inclusiveness, and empowerment. Group Digital & IT is the hub for digital development within Volvo Group. Imagine yourself working with cutting-edge technologies in a global team, represented in more than 30 countries. We are dedicated to leading the way of tomorrow s transport solutions, guided by a strong customer mindset and high level of curiosity, both as individuals and as a team. Here, you will thrive in your career in an environment where your voice is heard and your ideas matter. Job Category: Information Technology Organization: Group Digital & IT Travel Required: Occasional Travel Requisition ID: 22784 View All Jobs Do we share the same aspirations Every day, Volvo Group products and services ensure that people have food on the table, children arrive safely at school and roads and buildings can be constructed. Looking ahead, we are committed to driving the transition to sustainable and safe transport, mobility and infrastructure solutions toward a net-zero society. Joining Volvo Group, you will work with some of the world s most iconic brands and be part of a global and leading industrial company that is harnessing automated driving, electromobility and connectivity. Our people are passionate about what they do, they aim for high performance and thrive on teamwork and learning. Everyday life at Volvo is defined by a climate of support, care and mutual respect. If you aspire to grow and make an impact, join us on our journey to create a better and more resilient society for the coming generations.

Checkmarx is the enterprise application security leader and the host of Checkmarx One™ — the industry -leading cloud-native AppSec platform that helps enterprises build #DevSecTrust. Description Who are we?  Checkmarx is the leader in application security and ensures that enterprises worldwide can secure their application development from code to cloud. Our consolidated platform and services address the needs of enterprises by improving security and reducing TCO, while simultaneously building trust between AppSec, developers, and CISOs. At Checkmarx, we believe it’s not just about finding risk, but remediating it across the entire application footprint and software supply chain with one seamless process for all relevant stakeholders. We are honored to serve more than 1,800 customers, which includes 40 percent of all Fortune 100 companies including Siemens, Airbus, SalesForce, Stellantis, Adidas, Wal-Mart and Sanofi. What are we looking for? Checkmarx, a leader in the application security testing market, actively seeks talented application security engineers (AppSec Eng.) to support Checkmarx Global Services and our customers. The perfect candidate has a robust background in software development and application security. How will you make an impact? Support some of our strategic/top-tier customers in conducting security-focused code reviews using the Checkmarx Platform. Support customer's AppSec and Dev Teams with mitigation advice for identified vulnerabilities. Create proof-of-concept based on identified vector attacks. Daily and monthly responsibilities: Conduct security-focused statical code analysis on top of a broad range of development languages and open-source libraries. Support customer AppSec/Dev teams with mitigation strategy/advice for identified vulnerabilities. When required, create proofs-of-concept that can illustrate a given vulnerability exploitability. When needed, support AppSec/Dev teams in analyzing applications. Requirements What You’ll Need: Bachelor's degree in computer science or another highly technical scientific discipline. +3 years experience in development using one or more high-level programming languages like Java, .Net, Javascript, Go, Python, etc. +3 years experience in security-focused code review covering some market standards AppSec Frameworks like OWASP Web/API/Mobile Top 10, PCI- DSS, etc. A proactive approach to spotting problems, areas for improvement, and performance bottlenecks. Strong technical aptitude - being able to pick up technical concepts rapidly is required. Highly motivated self-starter. Fluent in English (++ for other languages). The fine print: Work from office/home (hybrid). Some international travel required (less than 10%) If you have the skillset we’re looking for, we will get you up-to-speed with Checkmarx Platform solutions and invest in you to improve your knowledge and technical skills. What we have to offer Checkmarx offers a great work environment, professional development, challenging careers, competitive compensation, great work-life balance, as well as great benefits and perks throughout the year. Checkmarx is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national or ethnic origin, sex, sexual orientation, gender identity or expression, age, disability, or other characteristics protected by law.

Are you a highly motivated and experienced software engineer looking to take your career to the next level? Look no further! Our team at Lean is on a mission to revolutionize the fintech industry by providing developers with a universal API to access their customer's financial accounts from across the Middle East. We are breaking down infrastructure barriers and empowering the growth of the fintech industry, and we need a talented software engineer like you to help us make it happen! As a software engineer at Lean, you will play a critical role in developing and building the product line that will underpin the future of the financial ecosystem. You'll have the opportunity to work with technologies such as Java Spring Boot, PostgreSQL, Kafka, Redis, and more. You will be responsible for developing and maintaining microservices that implement our products, continuously improving their performance, scalability, and reliability. But it's not just about the technology, we're looking for a problem-solver, someone who thrives on challenges and is ready to implement compelling solutions to complex problems. You'll be working closely with other cross-functional teams, staying up-to-date with the latest developments in fintech and ensuring our systems are aligned with industry standards. You'll also be participating in code reviews, and ensuring that all code is of high quality and adheres to best practices. Who are we Lean enables companies to seamlessly connect to their users’ bank accounts to initiate real-time payments and retrieve their account information. Our products have garnered the trust of leading companies and enabled them to deliver powerful experiences when connected with a user’s bank account, allowing users to perform prudent financial planning, get better rates on loans, transfer money to friends, and more, without compromising on privacy or security. Some of Lean’s clients include the likes of Ciclys, Tabby, Tamara, Salla, Tawuniya, and many more, making it the region’s most valuable Open Banking platform. The company has now processed hundreds of millions of dollars, and its products are also connected with hundreds of thousands of accounts. Lean envisions a fully inclusive financial ecosystem that serves everyone, no matter where they bank or live in the MENAP region. Requirements 3-5 years of experience as a software engineer Experience with Java, Spring Boot, PostgreSQL Experience on Microservice architecture and REST fundamentals. Strong desire to learn new technologies and implement them Interest in the Fintech industry, especially related to Open Banking Excellent verbal and written communication skills Bachelor’s degree in Computer Science or a related field Strong problem-solving skills Strong understanding of software development best practices Self-motivated and comfortable with autonomy Bonus Experience working in the financial sector Experience working in startup environments Knowledge of Kafka, Redis and No SQL databases Be familiar with API and OWASP top 10 security vulnerabilities. Ability to produce code that adheres to secure coding guidelines What Excites you? Freedom and the opportunity to build and experiment with new things. Being a part of a team that is revamping their codebases and implementing best practices. Joining a team that is elevating their code to the next level while adhering to best practices. Having the ability to experiment with new ideas and collaborate with like-minded people. What's in it for you? Competitive salary and benefits package The opportunity to work on a product that aligns with and empowers developers to build the financial applications they are passionate about The chance to work with a team of talented, dedicated professionals who are passionate about the fintech industry As one of the first hires in Riyadh, you will join a dedicated and talented team that is deeply passionate about the fintech industry. You will have the opportunity to play a crucial role in setting the tone and culture for our expanding operations in Riyadh.

We are seeking dedicated and skilled professionals to contribute to a forward-thinking organization by enhancing its cloud security posture through innovative solutions, continuous monitoring, and collaboration with cross-functional teams. prospect should have deep expertise in cloud security to design, implement, and manage robust security frameworks that protect cloud-based infrastructure, applications, and data. Educational qualifications Bachelor’s degree in Computer Science, Information Security, or related field. Experience 10-12 years of experience in cloud security, including architecting and implementing solutions on platforms like AWS, GCP, and Azure. Proven experience in application security, vulnerability assessment, and penetration testing. Strong understanding of secure coding practices and knowledge of common security vulnerabilities. Familiarity with security standards and frameworks such as OWASP, ISO 27001, and NIST. Experience with security testing tools and automation. Relevant certifications such as CISSP, CEH, or OSCP are a plus. Excellent communication and collaboration skills. Ability to stay up-to-date with the latest security trends, threats, and technologies. Roles and Responsibilities Lead the design, development, and deployment of modular cloud-based systems. Develop and maintain cloud solutions in accordance with best practices. Ensure efficient functioning of data storage and process functions in accordance with company security policies and best practices in cloud security. Identify, analyse, and resolve infrastructure vulnerabilities and application deployment issues. Regularly review existing systems and make recommendations for improvements. Perform threat modelling and design reviews to evaluate the introduction of new technologies’ security implications and requirements. Collaborate with cross-functional teams to integrate security measures throughout the software development lifecycle. Create and maintain comprehensive security documentation, including risk assessments, security policies, and procedures. Attract, develop, and retain talent, improving productivity, efficiency, and effectiveness of the team. PLease email your resume to mansi.namdev1@adani.com

When you join Verizon You want more out of a career. A place to share your ideas freely — even if they’re daring or different. Where the true you can learn, grow, and thrive. At Verizon, we power and empower how people live, work and play by connecting them to what brings them joy. We do what we love — driving innovation, creativity, and impact in the world. Our V Team is a community of people who anticipate, lead, and believe that listening is where learning begins. In crisis and in celebration, we come together — lifting our communities and building trust in how we show up, everywhere & always. Want in? Join the #VTeamLife. What You’ll Be Doing… You will be part of the Network Planning group in GNT organization supporting development of deployment automation pipelines and other tooling for the Verizon Cloud Platform. You will be supporting a highly reliable infrastructure running critical network functions. You will be responsible for solving issues that are new and unique, which will provide the opportunity to innovate. You will have a high level of technical expertise and daily hands-on implementation working in a planning team designing and developing automation. This entitles programming and orchestrating the deployment of feature sets into the Kubernetes CaaS platform along with building containers via a fully automated CI/CD pipeline utilizing Ansible playbooks, Python and CI/CD tools and process like JIRA, GitLab, ArgoCD, or any other scripting technologies. Leverage monitoring tools such as Redfish, Splunk, and Grafana to monitor system health, detect issues, and proactively resolve them. Design and configure alerts to ensure timely responses to critical events. Work with the development and Operations teams to design, implement, and optimize CI/CD pipelines using ArgoCD for efficient, automated deployment of applications and infrastructure. Implement security best practices for cloud and containerized services and ensure adherence to security protocols. Configure IAM roles, VPC security, encryption, and compliance policies. Continuously optimize cloud infrastructure for performance, scalability, and cost-effectiveness. Use tools and third-party solutions to analyze usage patterns and recommend cost-saving strategies. Work closely with the engineering and operations teams to design and implement cloud-based solutions. Provide mentorship and support to team members while sharing best practices for cloud engineering. Maintain detailed documentation of cloud architecture and platform configurations and regularly provide status reports, performance metrics, and cost analysis to leadership. What We’re Looking For... You’ll need to have: Bachelor’s degree or four or more years of work experience. Four or more years of relevant work experience. Four or more years of work experience in Kubernetes administration. Hands-on experience with one or more of the following platforms: EKS, Red Hat OpenShift, GKE, AKS, OCI GitOps CI/CD workflows (ArgoCD, Flux) and Very Strong Expertise in the following: Ansible, Terraform, Helm, Jenkins, Gitlab VSC/Pipelines/Runners, Artifactory Strong proficiency with monitoring/observability tools such as New Relic, Prometheus/Grafana, logging solutions (Fluentd/Elastic/Splunk) to include creating/customizing metrics and/or logging dashboards Backend development experience with languages to include Golang (preferred), Spring Boot, and Python Development Experience with the Operator SDK, HTTP/RESTful APIs, Microservices Familiarity with Cloud cost optimization (e.g. Kubecost) Strong experience with infra components like Flux, cert-manager, Karpenter, Cluster Autoscaler, VPC CNI, Over-provisioning, CoreDNS, metrics-server Familiarity with Wireshark, tshark, dumpcap, etc., capturing network traces and performing packet analysis Demonstrated expertise with the K8S ecosystem (inspecting cluster resources, determining cluster health, identifying potential application issues, etc.) Strong Development of K8S tools/components which may include standalone utilities/plugins, cert-manager plugins, etc. Development and working experience with Service Mesh lifecycle management and configuring, troubleshooting applications deployed on Service Mesh and Service Mesh related issues Expertise in RBAC and Pod Security Standards, Quotas, LimitRanges, OPA & Gatekeeper Policies Working experience with security tools such as Sysdig, Crowdstrike, Black Duck, etc. Demonstrated expertise with the K8S security ecosystem (SCC, network policies, RBAC, CVE remediation, CIS benchmarks/hardening, etc.) Networking of microservices, solid understanding of Kubernetes networking and troubleshooting Certified Kubernetes Administrator (CKA) Demonstrated very strong troubleshooting and problem-solving skills Excellent verbal communication and written skills Even better if you have one or more of the following: Certified Kubernetes Application Developer (CKAD) Red Hat Certified OpenShift Administrator Familiarity with creating custom EnvoyFilters for Istio service mesh and integrating with existing web application portals Experience with OWASP rules and mitigating security vulnerabilities using security tools like Fortify, Sonarqube, etc. Database experience (RDBMS, NoSQL, etc.) Where you’ll be working In this hybrid role, you'll have a defined work location that includes work from home and assigned office days set by your manager. Scheduled Weekly Hours 40 Equal Employment Opportunity Verizon is an equal opportunity employer. We evaluate qualified applicants without regard to race, gender, disability or any other legally protected characteristics.

FactSet creates flexible, open data and software solutions for over 200,000 investment professionals worldwide, providing instant access to financial data and analytics that investors use to make crucial decisions. At FactSet, our values are the foundation of everything we do. They express how we act and operate , serve as a compass in our decision-making, and play a big role in how we treat each other, our clients, and our communities. We believe that the best ideas can come from anyone, anywhere, at any time, and that curiosity is the key to anticipating our clients’ needs and exceeding their expectations. The Business Information Security Officer (BISO) serves as a trusted security advisor to lines of business. The BISO understands security risks and technologies and is able to effectively communicate them to business units. The BISO works in tandem with the business across multiple services and platforms to address risk, while advising business leaders to ensure they are making decisions with security in mind. The BISO is an advanced role supporting the cybersecurity program. This individual provides leadership, executive support, and strategic and tactical guidance for a world-class cybersecurity program supporting enterprise security initiatives. As a business enabler, the BISO is an effective communicator with the technical aptitude to drive security fundamentals into aspects of the business. The BISO must be capable of working closely with senior management, third parties, project managers and business subject matter experts (SMEs). Additionally, the BISO must be personable and able to translate cybersecurity issues to business leader initiatives. The BISO must have a technical background and be able to understand technologies, their purpose, and their security requirements and data protection needs, wherever they reside. BISOs should also understand threats, as well as risk mitigations and technical controls recommended by security leaders. Job Responsibilities: Serve as a trusted security advisor with business unit leadership. Act as a liaison to ensure cybersecurity practices are built into business unit initiatives for the entire lifecycle. Act as a trusted point of contact across business units. Work closely with security leadership to instill cybersecurity policies and practices throughout business units to address security operations, incident response, application security and infrastructure. Be actively informed and engaged in security projects across the business. Provide disaster recovery and business continuity planning advice when working with leaders for business and cybersecurity resiliency. Enforce the strong security culture set forth by the CISO, ensuring uniformity across business units and employees. Foster strong relationships with internal business units and excel in cybersecurity communication. Advise business units on enterprise-wide people, process and technology security recommendations. Maintain up-to-date knowledge related to security threats, vulnerabilities and mitigations set forth to reduce the attack surface; circulate this knowledge through the business units. Ensure business projects are focused on cybersecurity from the beginning. Identify and document threats and vulnerabilities that may impact the business and address them regularly with business units. In conjunction with security and business leaders, define key performance indicators (KPIs) and metrics aligning with business initiatives and deliver them to non-technical teams in terms that are accessible and comprehensible. Provide motivation to business units to adopt cybersecurity controls. Remove complexity and obstacles that hinder efficient security controls enterprise-wide. Build relationships with business units to deliver security-by-design controls incorporated into projects, architecture, infrastructure and applications. Stay abreast of new laws, regulations and standards, and assess their impact to the business. Verify security content training initiatives and internal/external communication are conducted regularly. Openly support the CISO, management team and executive leadership, even during tumultuous times. Perform other duties as assigned. Job Responsibilities: 15+ years of relevant Cybersecurity experience with minimum 5 years as Cybersecurity Architect or Lead Engineer. Bachelor’s degree in Information Cybersecurity, Cybersecurity Assurance, Computer Science or related fields. Relevant certifications preferred including CISSP, CISM, GSEC, etc. Capable of working with diverse teams and promoting an enterprise-wide positive security mindset/culture.. Adept at understanding business focus and processes and ability to inject cybersecurity into the business through teamwork and influence.. Experience collaborating with IT teams to implement technology solutions that enable business initiatives and reduce risk. Knowledge of a relevant enterprise architecture methodology. Ability to determine key security requirements by evaluating business strategies and requirements; researching information security standards; conducting system security and vulnerability analyses and risk assessments; studying architecture/platform; and identifying integration issues. Ability to translate design into bill of materials and preparing cost estimates. Knowledge of a relevant Cloud architecture standards, methodology, and technology. Experience with risk assessments of new product development efforts as well as externally purchased applications and cloud services. Expert knowledge of security issues, techniques and implications. Advanced knowledge of common system, software and web application vulnerabilities (e.g., OWASP Top 10). General understanding of project management best practices. Ability to translate technical designs into bill of materials for procurement, collaborate with procurement team, draft Request for Quote/Purchase/Information (RFQ/RFP/RFI), and manage vendor relationships. Familiarity of SSDLC (Secure Software Development Life Cycle) or SDL (Secure Development Lifecycle). Experience assisting with third-party risk assessments and security control design validation. Experience performing Root Cause Analysis (RCA) for control failures and advising IT Management with risk treatment plans. Able to deliver quality results in a high-energy/high-pressure environment. Ability to multi-task and manage demands of many projects, issues, and tasks. Ability to perform duties with minimal supervision. Excellent interpersonal and teamwork skills. Excellent communications skills, both verbal and written. Experience performing research and communicating findings to technical and non-technical audience. Ability to credibly speak with clients regarding requests for information, integration, risk management, and compliance. Experience technically leading and influencing teams without depending on management authority. Experience mentoring Cybersecurity and IT team members. Diversity: At FactSet, we celebrate diversity of thought, experience, and perspective. We are committed to disrupting bias and a transparent hiring process. All qualified applicants will be considered for employment regardless of race, color, ancestry, ethnicity, religion, sex, national origin, gender expression, sexual orientation, age, citizenship, marital status, disability, gender identity, family status or veteran status. FactSet participates in E-Verify. Return to Work: Returning from a break? We are here to support you! If you have taken time out of the workforce and are looking to return, we encourage you to apply and chat with our recruiters about our available support to help you relaunch your care Company Overview: FactSet ( NYSE:FDS | NASDAQ:FDS ) helps the financial community to see more, think bigger, and work better. Our digital platform and enterprise solutions deliver financial data, analytics, and open technology to more than 8,200 global clients, including over 200,000 individual users. Clients across the buy-side and sell-side, as well as wealth managers, private equity firms, and corporations, achieve more every day with our comprehensive and connected content, flexible next-generation workflow solutions, and client-centric specialized support. As a member of the S&P 500, we are committed to sustainable growth and have been recognized among the Best Places to Work in 2023 by Glassdoor as a Glassdoor Employees’ Choice Award winner. Learn more at www.factset.com and follow us on X and LinkedIn . At FactSet, we celebrate difference of thought, experience, and perspective. Qualified applicants will be considered for employment without regard to characteristics protected by law.

Overview: The Information Security Assessment Lead is responsible for safeguarding PepsiCo's digital assets by assessing the cyber risk and compliance of new and changing systems against information security requirements and managing risks associated with IT and Information Security systems throughout the project lifecycle. The ISA Lead will collaborate with various security teams and businesses to facilitate compliance with Information Security standards, provide technical guidance for key strategic initiatives, and drive the secure delivery of technology solutions within PepsiCo. The role heavily focuses on security risk-based assessments, and data-driven decision-making and automation. Responsibilities: Security Design Expertise: Proven track record in assessing security designs, including data flow diagrams, architectural blueprints, low-level designs, networking diagrams, authentication mechanisms, and authorization schemes. Must demonstrate experience in aligning these designs with industry standards such as NIST 800-53, ISO 27002, CIS, and OWASP to ensure robust security postures. Skilled at identifying potential security gaps and implementing best practices to fortify system architectures against emerging threats. Familiarity with the latest security tools and technologies, as well as experience in integrating security measures into complex IT environments, is essential. Compliance Assessment: Assess new and changing application designs and requirements to ensure compliance with PepsiCo information security standards. Risk Communication: Identify, quantify, and communicate technology risks impacting the business, recommending resolutions and identifying root causes. Explain scan results (infrastructure, applications, databases) and pen testing results to stakeholders. Threat Modeling: Utilize expert knowledge in threat modeling techniques and methodologies to proactively identify, assess, and prioritize security risks, enabling the organization to implement targeted mitigation strategies and maintain a robust information security posture. Project Lifecycle Reviews: Review IT and Information Security systems throughout the project lifecycle, identifying risks and security requirements, and recommending paths to eliminate identified risks and implement compensating controls. Automated Risk Assessments: Conduct risk-based assessments using automated tools and techniques to prioritize and address security risks. Collaboration and Education: Collaborate with various IT and Business teams to ensure they are knowledgeable about Information Security processes and requirements, influencing them to eliminate or reduce risks. ServiceNow Utilization: Experience using ServiceNow to gather necessary information and data, automating security assessment processes to enhance efficiency and effectiveness. Metrics Management and Reporting: Manage operational metrics related to the ISA and GRC processes, utilizing Power BI for advanced reporting, tracking project progress, and developing corrective action plans. Process Improvement and Proactive Security: Govern Information Security services from the ISA, tracking process metrics, identifying issues, and driving process improvement initiatives. Stay updated with threat intelligence, leverage Azure and cloud security knowledge, and implement Agile and DevSecOps methodologies to integrate security into the development process. Qualifications: A minimum of 8 years of experience in Information Security, IT Risk Management, or a similar role. Mandatory Technical Skills: In-depth technical experience and knowledge of infrastructure technologies, networks, web, computing, cloud services, manufacturing equipment, mobile devices, and information (cyber) security. Strong understanding of information security frameworks, regulations, and standards such as NIST 800-53, CIS, and ISO 27002. Proficient in ServiceNow, with the ability to leverage its modules for information gathering, data analysis, and automation of the ISA service. Experience in threat modeling and applying threat modeling methodologies in previous roles. Proficient in Power BI for developing reports and dashboards to support data-driven decision-making. Strong skills in developing ad hoc reports and managing metrics. Knowledge of Azure and general cloud security principles. Ability to read and explain scan (infrastructure, applications, databases) and pen testing results to technical and non-technical stakeholders, guiding them on risk and vulnerability remediation. Mandatory Non-Technical Skills: Proficient in influencing and educating stakeholders on security best practices and policies, ensuring understanding and adherence to security standards. Established a reputation as a trusted adviser, providing expert guidance on information security matters. Strong presence to represent PepsiCo Information Security in complex situations with business and IT partners. Ability to collaborate with various stakeholders, including business units and product managers.

5 - 7 Years 1 Opening Trivandrum Role description Job Title: Senior Threat Hunter & VAPT Specialist – SIEM/EDR Tools Location: [Trivandrum] Experience Required: 5+ Years Department: Cybersecurity / Information Security Employment Type: Full-Time Role Overview We are seeking a versatile and experienced Cybersecurity Professional to join our team as a Threat Hunter and VAPT Analyst . In this dual-capacity role, you will proactively identify and mitigate emerging cyber threats, perform in-depth vulnerability assessments, and help protect critical infrastructure and data assets. This role requires a blend of advanced technical expertise , analytical mindset , and strong collaboration with SOC and incident response teams. Key Responsibilities Threat Hunting Proactively hunt for undetected threats across networks, systems, and endpoints using behavioral analysis and threat intelligence . Identify Tactics, Techniques, and Procedures (TTPs) and anomalies to detect potential threats or APT activities. Leverage threat intelligence feeds and the MITRE ATT&CK framework to build and validate detection use cases. Collaborate with SOC teams to enhance detection rules and reduce false positives. Conduct forensic investigations and perform root cause analysis on incidents and suspicious behaviors. Develop custom scripts and queries (Python, PowerShell, Bash) for automating hunting activities in EDR, SIEM, and XDR platforms. Document and share threat hunting reports , IOCs , and actionable recommendations with relevant stakeholders. Vulnerability Assessment & Penetration Testing (VAPT) Conduct vulnerability assessments and penetration tests on systems, applications, networks, and APIs. Analyze vulnerabilities, assess risks, and deliver detailed, actionable reports to technical teams. Use a combination of automated tools (e.g., Nessus , Burp Suite , Nmap , Metasploit ) and manual techniques to identify security flaws. Ensure all assessments adhere to internal policies and regulatory standards . Perform periodic and ad-hoc security assessments for web applications , databases , wireless , and cloud environments . Collaborate with IT teams to validate remediations through re-testing and follow-ups . Stay current on emerging vulnerabilities , exploit techniques , and threat actor tactics . Qualifications & Skills Bachelor’s degree in Computer Science , Information Security , or a related discipline. 5+ years of experience in a cybersecurity role with hands-on work in threat hunting and VAPT . Strong expertise in VAPT tools and methodologies: Nessus, Burp Suite, Nmap, Metasploit, OWASP Top 10 . Experience with SIEMs , EDR platforms , and threat intelligence tools . Working knowledge of the MITRE ATT&CK framework . Proficient in scripting languages such as Python, PowerShell, or Bash . Excellent analytical , investigative , and report-writing skills. Strong communication and stakeholder engagement abilities. Preferred Certifications OSCP – Offensive Security Certified Professional CEH – Certified Ethical Hacker GIAC – GCIH, GPEN, GWAPT CISSP – Certified Information Systems Security Professional CESM or other equivalent cybersecurity credentials Skills Soc,TTP,Troubleshooting About UST UST is a global digital transformation solutions provider. For more than 20 years, UST has worked side by side with the world’s best companies to make a real impact through transformation. Powered by technology, inspired by people and led by purpose, UST partners with their clients from design to operation. With deep domain expertise and a future-proof philosophy, UST embeds innovation and agility into their clients’ organizations. With over 30,000 employees in 30 countries, UST builds for boundless impact—touching billions of lives in the process.

Global Security Office Gurgaon, India Publicis Re:Sources India Intermediate Hybrid 7/10/2025 115360 Company description Resources is the backbone of Publicis Groupe, the world’s third-largest communications group. Formed in 1998 as a small team to service a few Publicis Groupe firms, Re:Sources has grown to 5,000+ people servicing a global network of prestigious advertising, public relations, media, healthcare, and digital marketing agencies. We provide technology solutions and business services including finance, accounting, legal, benefits, procurement, tax, real estate, treasury, and risk management to help Publicis Groupe agencies do their best: create and innovate for their clients. In addition to providing essential, everyday services to our agencies, Re:Sources develops and implements platforms, applications, and tools to enhance productivity, encourage collaboration, and enable professional and personal development. We continually transform to keep pace with our ever-changing communications industry and thrive on a spirit of innovation felt around the globe. With our support, Publicis Groupe agencies continue to create and deliver award-winning campaigns for their clients. Overview JOB SUMMARY: Publicis Re:Sources is hiring a Senior Associate of Security Architecture for the Global Security Team. This full-time position includes identifying security weaknesses in information systems, drafting reports, providing recommendations for security risk mitigation, and collaborating with delivery and infrastructure support teams to address security risks. The candidate, with significant experience as an Information Systems Architect, must be a technical expert in cloud technologies and possess strong general knowledge across a range of technologies such as databases, networking, operating systems, authentication, and encryption — along with a solid understanding of the security aspects of all these systems. The responsibilities associated with the position are as follows: Conduct secure architecture reviews of application, cloud, and Identity, & Access Management (IAM) solutions to evaluate the adequacy and effectiveness of security measures. Make recommendations to address identified design and implementation gaps. Threat model key enterprise and agency systems. Collaborate with business and technical teams in developing security risk treatment plans addressing vulnerabilities in applications, cloud environments, and IAM solutions. Document and analyze the impact of new system integrations and updates on the current security posture. Develop and contribute to overarching and solution specific techincal security standards, encompassing application, cloud, and Identify, and Access Management (IAM) domains. Ensure system designs and architectures comply with security best practices, company policies, and industry-recognized security standards (e.g., ISO 27001, PCI DSS, NIST, HIPAA etc.). Periodically evaluate technical security standards and configurations, making recommendations for updates or improvements to ensure they remain current to address changing threat landscape. Collaborate closely with stakeholders, including business teams and internal departments, to ensure comprehensive security needs are understood and met in an efficient manner. Participate in software security review process, document security risks and mitigating controls. Participate in team meetings to collaborate on enterprise and business unit specific initiatives. Participate in the new technology evaluations and peer reviews. ESSENTIAL JOB REQUIREMENTS: Four (4) plus years of experience in Application Security and/or Cloud Security Knowledge of Threat Modeling frameworks, such as STRIDE. Cloud Security Certifications (AWS, Azure, GCP) preferred Knowledge of OWASP Top 10. Knowledge of risk management processes (e.g., methods for assessing and mitigating risk). Knowledge of documenting cyber threats and vulnerabilities. Knowledge of authentication, authorization, and access control methods. Knowledge of data security standards (e.g., PCI, PII, PHI, etc.) Skill in designing multi-level security/cross domain solutions. secure system design tools, methods and techniques. Ability to design architectures and frameworks. Qualifications Bachelor’s degree in Computer Science, Engineering, or other Engineering or Technical discipline or equivalent relevant experience Additional information OTHER JOB REQUIREMENTS: Good communication and documentation skills Ability to work effectively and collaboratively with stakeholders Willingness to work with geographically dispersed teams A ‘can do’ attitude team player who works well under pressure and with dispersed groups, worldwide Must be a self starter with strong organizational skills to enable navigation of the company to identify sponsors, stakeholders and interested parties

Job Title: Intermediate Backend Developer Location: Mumbai Experience: 2-4 yrs Responsibilities - Develop, test, and maintain backend services using Node.js and MongoDB. - Build reusable code and libraries for future use, ensuring maintainability and scalability. - Optimize backend applications for maximum speed, performance, and scalability. - Design and implement APIs and services that integrate with various AWS services, including S3, CloudFront, and EC2. - Implement security and data protection strategies in compliance with best practices. - Work with message queues like RabbitMQ or BullMQ for asynchronous job processing. - Collaborate with frontend developers and other team members to integrate front-end and back-end services. - Develop and maintain documentation for the codebase and APIs, ensuring clarity for team members and future use. - Participate in the development of microservices architecture for scalable systems. - Work closely with DevOps to ensure smooth deployment, monitoring, and troubleshooting of backend services. - Ensure the application complies with best practices in security, performance, and scalability. Skills And Qualifications - Node.js: 2+ years of experience building and maintaining backend services using Node.js. - MongoDB: Proficiency in MongoDB, including data modeling and query optimization. - AWS Services: Hands-on experience with AWS services like S3, CloudFront, and EC2 for deploying and managing backend applications. - Unix/Linux: Hands-on experience with Unix/Linux environments, including shell scripting for server management. - Queues: Experience working with message queues like RabbitMQ or BullMQ for managing background jobs and tasks. - API Development: Proficiency in building RESTful APIs. - Version Control: Experience using Git in collaborative team environments. - Familiarity with Tools: Familiarity with tools like Postman for API testing, Redis Insight, MongoDB Compass, and Cyberduck for file transfers. - Soft Skills: Problem-solving skills, effective communication, and ability to work collaboratively in a team. Plus Points - NestJS: Extensive hands-on experience with the NestJS framework will be highly preferred. - Email Providers: Experience with email providers such as AWS SES or SendGrid. - Redis: Practical experience using Redis for queuing or caching purposes. - WebSockets: Hands-on experience implementing real-time communication using WebSockets. - Coding Patterns: Knowledge of coding patterns like Emitter or Observer. - RxJS/Event Emitters: Familiarity with RxJS or event emitters for reactive or event-driven programming. - OWASP: Understanding of OWASP security principles. - Microservices: Experience working with or developing microservices architecture for scalable systems. - Documentation: Ability to document codebases and APIs effectively for future maintainability and scalability. Job Type: Full-time Pay: ₹400,000.00 - ₹900,000.00 per year Benefits: Paid sick time Schedule: Day shift Ability to commute/relocate: Mumbai, Maharashtra: Reliably commute or planning to relocate before starting work (Preferred) Experience: JavaScript: 2 years (Preferred) Node.js: 2 years (Required)

Job Title: Sr. Automation Tester Job Overview: We are seeking a skilled Automation Tester to join our team. The successful candidate will be responsible for developing, implementing, and maintaining automation frameworks, as well asexecuting automated tests to ensure the quality and reliability of our software applications. You will collaborate with cross-functional teams to identify and resolve issues and contribute to the overall improvement of our testing processes. Responsibilities: 1. Develop, implement, and maintain automation frameworks to streamline the testing process and improve efficiency. 2. Create and execute automated test scripts using programming languages such as Java, Python, Ruby, or C#. 3. Conduct API testing using tools like Postman and SoapUI to verify the functionality and performance of application programming interfaces. 4. Utilize your understanding of database technologies and SQL to perform database testing and validate data integrity. 5. Conduct performance testing using tools such as JMeter or LoadRunner to assess system scalability, responsiveness, and resource usage. 6. Collaborate with cross-functional teams to integrate automation testing into DevOps and CI/CD pipelines. 7. Troubleshoot and debug automation scripts and frameworks, identifying and resolving issues to ensure reliable test execution. 8. Apply security testing principles and use tools like OWASP ZAP and Burp Suite to identify vulnerabilities and security flaws. 9. Utilize testing frameworks and tools such as Selenium WebDriver, Appium, TestNG, JUnit, and Cucumber to automate various types of tests. 10. Participate in test planning, test case creation, and test execution activities. 11. Document test results, track defects, and provide detailed reports to stakeholders. Requirements: 1. Bachelor's degree in Computer Science, Engineering, or a related field. 2. Proven experience in developing and maintaining automation frameworks for software testing. 3. Strong analytical and problem-solving skills, with keen attention to detail. 4. Excellent communication and collaboration skills, with the ability to work well within a team. 5. Demonstrated leadership abilities, including the ability to lead and manage a testing team. 6. Experience in creating test plans, test scenarios, and test cases based on project requirements. 7. Ability to assign work, provide guidance to team members, and crosscheck their work for quality assurance, code reviews. Job Type: Full-time Pay: ₹600,000.00 - ₹1,000,000.00 per year Benefits: Flexible schedule Leave encashment Provident Fund Work Location: In person Speak with the employer +91 9875952832

Profile - Pen Tester Experience required - 2+ years Location - Dubai We are seeking a experienced VAPT Tester with over 2+ years of hands-on experience in conducting vulnerability assessments and penetration tests across network, web, and mobile platforms. The ideal candidate will have a deep understanding of the latest security threats, vulnerabilities, and mitigation techniques. Key Responsibilities: 1. Vulnerability Assessment: Conduct regular vulnerability assessments on network infrastructure, web applications, and mobile apps. Use a variety of automated tools and manual techniques to identify vulnerabilities. Prioritize vulnerabilities based on risk and potential impact. 2. Penetration Testing: Simulate cyber-attacks on network infrastructure, web applications, and mobile apps to identify security weaknesses. Develop custom scripts and payloads to test the resilience of systems. Document findings and provide recommendations for mitigation. 3. Reporting: Prepare detailed reports on findings, risks, and recommended solutions. Present findings to technical and non-technical stakeholders. 4. Research Development: Stay updated with the latest cybersecurity trends, vulnerabilities, and threats. Test and evaluate new security tools and technologies. Contribute to the organization's knowledge base by documenting new vulnerabilities and attack techniques. 5. Collaboration: Work closely with the development and IT teams to ensure secure coding practices are followed. Assist in security awareness training for staff and stakeholders. Qualifications Bachelor's degree in Computer Science, Information Technology, or a related field. Minimum of 2 years of experience in VAPT with a focus on network, web, and mobile platforms. Certifications such as eJPTx, CEH, OSWE, OSCP, GWAPT, or equivalent are preferred. Proficiency in using security tools like Burp Suite, Metasploit, Nessus, Wireshark, etc and Kali Linux. Strong knowledge of web application vulnerabilities (OWASP Top 10) and mitigation techniques. Familiarity with mobile application security testing for both Android and iOS platforms. Experience with cloud platforms and their security considerations is a plus. Skills: Strong analytical and problem-solving skills. Excellent communication and report-writing skills. Ability to work independently and as part of a team. Ethical mindset with a high level of integrity and professionalism. Additional Information we recommend focusing on the following topics: 1. VAPT (Vulnerability Assessment and Penetration Testing) Basics 2. Network Security 3. Mobile Application Security 4. Web Application Security Please ensure you are well-versed in these areas to demonstrate your skills effectively during the interview. Interested candidate can share their resume on recruitment@safeaeon.com