3316 Owasp Jobs - Page 40

Location: Noida, Uttar Pradesh, India Job ID: R0098886 Date Posted: 2025-07-07 Company Name: HITACHI INDIA PVT. LTD Profession (Job Category): Other Job Schedule: Full time Remote: No Job Description: Job Title: Solution Architect Designation : Senior Company: Hitachi Rail GTS India Location: Noida, UP, India Salary: As per Industry Company Overview: Hitachi Rail is right at the forefront of the global mobility sector following the acquisition. The closing strengthens the company's strategic focus on helping current and potential Hitachi Rail and GTS customers through the sustainable mobility transition – the shift of people from private to sustainable public transport, driven by digitalization. Position Overview: We are looking for a Solution Architect that will be responsible for translating business requirements into technical solutions, ensuring the architecture is scalable, secure, and aligned with enterprise standards. Solution Architect will play a crucial role in defining the architecture and technical direction of the existing system. you will be responsible for the design, implementation, and deployment of solutions that integrate with transit infrastructure, ensuring seamless fare collection, real-time transaction processing, and enhanced user experiences. You will collaborate with development teams, stakeholders, and external partners to create scalable, secure, and highly available software solutions. Job Roles & Responsibilities: Architectural Design : Develop architectural documentation such as solution blueprints, high-level designs, and integration diagrams. Lead the design of the system's architecture, ensuring scalability, security, and high availability. Ensure the architecture aligns with the company's strategic goals and future vision for public transit technologies. Technology Strategy : Select the appropriate technology stack and tools to meet both functional and non-functional requirements, considering performance, cost, and long-term sustainability. System Integration : Work closely with teams to design and implement the integration of the AFC system with various third-party systems (e.g., payment gateways, backend services, cloud infrastructure). API Design & Management : Define standards for APIs to ensure easy integration with external systems, such as mobile applications, ticketing systems, and payment providers. Security & Compliance : Ensure that the AFC system meets the highest standards of data security, particularly for payment information, and complies with industry regulations (e.g., PCI-DSS, GDPR). Stakeholder Collaboration : Act as the technical lead during project planning and discussions, ensuring the design meets customer and business needs. Technical Leadership : Mentor and guide development teams through best practices in software development and architectural principles. Performance Optimization : Monitor and optimize system performance to ensure the AFC system can handle high volumes of transactions without compromise. Documentation & Quality Assurance : Maintain detailed architecture documentation, including design patterns, data flow, and integration points. Ensure the implementation follows best practices and quality standards. Research & Innovation : Stay up to date with the latest advancements in technology and propose innovative solutions to enhance the AFC system. Skills (Mandatory): DotNet (C#), C/C++, Java, ASP.NET Core (C#), Angular, OAuth2 / OpenID Connect (Authentication & Authorization) JWT (JSON Web Tokens) Spring Cloud, Docker, Kubernetes, Relational Databases (MSSQL) Data Warehousing SOAP/RESTful API Design, Redis (Caching & Pub/Sub) Preferred Skills (Good to have): Python, Android SSL/TLS Encryption OWASP Top 10 (Security Best Practices) Vault (Secret Management) Keycloak (Identity & Access Management) Swagger (API Documentation) NoSQL Databases, GraphQL, gRPC, OpenAPI, Istio, Apache Kafka, RabbitMQ, Consul, DevOps & CI/CD Tools Tools & Technologies: UML (Unified Modeling Language) Lucidchart / Draw.io (Diagramming) PlantUML (Text-based UML generation) C4 Model (Software architecture model), Enterprise Architect (Modeling), Apache Hadoop / Spark (Big Data), Elasticsearch (Search Engine), Apache Kafka (Stream Processing), TensorFlow / PyTorch (Machine Learning/AI) Education: Bachelor's or Master’s degree in Computer Science, Information Technology, or a related field. Experience Required: 12+ years of experience in solution architecture or software design. Proven experience with enterprise architecture frameworks (e.g., TOGAF, Zachman). Strong understanding of cloud platforms (AWS, Azure, or Google Cloud). Experience in system integration, API design, microservices, and SOA. Familiarity with data modeling and database technologies (SQL, NoSQL). Strong communication and stakeholder management skills. Preferred: Certification in cloud architecture (e.g., AWS Certified Solutions Architect, Azure Solutions Architect Expert). Experience with DevOps tools and CI/CD pipelines. Knowledge of security frameworks and compliance standards (e.g., ISO 27001, GDPR). Experience in Agile/Scrum environments. Domain knowledge in [insert industry: e.g., finance, transportation, healthcare]. Soft Skills: Analytical and strategic thinking. Excellent problem-solving abilities. Ability to lead and mentor cross-functional teams. Strong verbal and written communication.

We are seeking an experienced Application Security Manager to lead our security initiatives and ensure the integrity, confidentiality, and availability of our systems and data. This role is crucial in safeguarding our digital assets and maintaining compliance with industry standards. Themanageroftheapplicationsecurityprogramwillberesponsible for - 1. To Integratesecuritytools,standards,andprocessesintothe productlifecycle(PLC). 2. EnsurethatdevelopersandQApersonnelaretrainedwiththeappropriatele velofsecurityknowledgetoperformtheir dailyactivities. 3. Improveandsupportapplicationsecuritytooldeploymentsincludingstaticanal ysisandruntimetestingtools and securedevelopmentstandards. 4. Conduct and manage periodic penetration testing exercises through expert consulting, internal technology team, and managed services to identify the gaps and fulfill audit/ regulator requirements. 5. Create, Integrate and manage threat modelling process/ practices, following SSDLC and application framework. 6. Manage the secure configuration/ hardening guidelines and compliance. 7. Should create and manage application security KPIs. KRIs compliance reports and dashboards. 8. Should have strong hand-on experience of different tools, processes related to SAST, DAST, API Security and Threat Modelling. 9. Should take care of Infosec functions by coordinating with various stakeholders (App Team, Vendors, Auditors, Regulators). 10. Should have knowledge of best practices like OWASP, Microsoft SDL, SANS, NIST. 11. Should have a good espouser to cloud environment (AWS) and WAF (Imperva, Akamai) 12. Knowledge of Network and Data Security is a plus. Qualifications and Experience: 1. 8-10 years of hands-on experience in application security. 2. Strong understanding of application security best practices, frameworks, and security technologies, like Checkmarx, Fortify, Burp Suite, OWASP ZAP, Acunetix etc. 3. Proven experience in managing VA, PT, Code review, SAST, DAST, SSDLC, Threat Modelling, and Audit processes. 4. Familiarity with regulatory requirements and compliance standards (e.g., RBI, SEBI). 5. Excellent communication, interpersonal, analytical and problem-solving skills. 6. Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field. Masters degree or relevant certifications preferred.

Senior Software Engineer Ahmedabad, India; Hyderabad, India; Islamabad, Pakistan Information Technology 317835 Job Description About The Role: Grade Level (for internal use): 10 The Team: We seek a highly motivated, enthusiastic, and skilled engineer for our Industry Data Solutions Team. We strive to deliver sector-specific, data-rich, and hyper-targeted solutions for evolving business needs. You will be expected to participate in the design review process, write high-quality code, and work with a dedicated team of QA Analysts and Infrastructure Teams. The Impact: Enterprise Data Organization is seeking a Software Developer to create software design, development, and maintenance for data processing applications. This person would be part of a development team that manages and supports the internal & external applications that is supporting the business portfolio. This role expects a candidate to handle any data processing, big data application development. We have teams made up of people that learn how to work effectively together while working with the larger group of developers on our platform. What’s in it for you: Opportunity to contribute to the development of a world-class Platform Engineering team . Engage in a highly technical, hands-on role designed to elevate team capabilities and foster continuous skill enhancement. Be part of a fast-paced, agile environment that processes massive volumes of data—ideal for advancing your software development and data engineering expertise while working with a modern tech stack. Contribute to the development and support of Tier-1, business-critical applications that are central to operations. Gain exposure to and work with cutting-edge technologies, including AWS Cloud and Databricks . Grow your career within a globally distributed team , with clear opportunities for advancement and skill development. Responsibilities: Design and develop applications, components, and common services based on development models, languages, and tools, including unit testing, performance testing, and monitoring, and implementation Support business and technology teams as necessary during design, development, and delivery to ensure scalable and robust solutions Build data-intensive applications and services to support and enhance fundamental financials in appropriate technologies.( C#, .Net Core, Databricsk ,Python, Scala, NIFI , SQL) Build data modeling, achieve performance tuning and apply data architecture concepts Develop applications adhering to secure coding practices and industry-standard coding guidelines, ensuring compliance with security best practices (e.g., OWASP) and internal governance policies. Implement and maintain CI/CD pipelines to streamline build, test, and deployment processes; develop comprehensive unit test cases and ensure code quality Provide operations support to resolve issues proactively and with utmost urgency Effectively manage time and multiple tasks Communicate effectively, especially in writing, with the business and other technical groups Basic Qualifications: Bachelor's/Master’s Degree in Computer Science, Information Systems or equivalent. Minimum 5 to 8 years of strong hand-development experience in C#, .Net Core, Cloud Native, MS SQL Server backend development. Proficiency with Object Oriented Programming. Nice to have knowledge in Grafana, Kibana, Big data, Git Hub, EMR, Terraforms, AI-ML Advanced SQL programming skills Highly recommended skillset in Databricks , Scala technologies. Understanding of database performance tuning in large datasets Ability to manage multiple priorities efficiently and effectively within specific timeframes Excellent logical, analytical and communication skills are essential, with strong verbal and writing proficiencies Knowledge of Fundamentals, or financial industry highly preferred. Experience in conducting application design and code reviews Proficiency with following technologies: Object-oriented programming Programing Languages (C#, .Net Core) Cloud Computing Database systems (SQL, MS SQL) Nice to have: No-SQL (Databricks, Scala, python), Scripting (Bash, Scala, Perl, Powershell) Preferred Qualifications: Hands-on experience with cloud computing platforms including AWS , Azure , or Google Cloud Platform (GCP) . Proficient in working with Snowflake and Databricks for cloud-based data analytics and processing. What’s In It For You? Our Purpose: Progress is not a self-starter. It requires a catalyst to be set in motion. Information, imagination, people, technology–the right combination can unlock possibility and change the world. Our world is in transition and getting more complex by the day. We push past expected observations and seek out new levels of understanding so that we can help companies, governments and individuals make an impact on tomorrow. At S&P Global we transform data into Essential Intelligence®, pinpointing risks and opening possibilities. We Accelerate Progress. Our People: We're more than 35,000 strong worldwide—so we're able to understand nuances while having a broad perspective. Our team is driven by curiosity and a shared belief that Essential Intelligence can help build a more prosperous future for us all. From finding new ways to measure sustainability to analyzing energy transition across the supply chain to building workflow solutions that make it easy to tap into insight and apply it. We are changing the way people see things and empowering them to make an impact on the world we live in. We’re committed to a more equitable future and to helping our customers find new, sustainable ways of doing business. We’re constantly seeking new solutions that have progress in mind. Join us and help create the critical insights that truly make a difference. Our Values: Integrity, Discovery, Partnership At S&P Global, we focus on Powering Global Markets. Throughout our history, the world's leading organizations have relied on us for the Essential Intelligence they need to make confident decisions about the road ahead. We start with a foundation of integrity in all we do, bring a spirit of discovery to our work, and collaborate in close partnership with each other and our customers to achieve shared goals. Benefits: We take care of you, so you can take care of business. We care about our people. That’s why we provide everything you—and your career—need to thrive at S&P Global. Our benefits include: Health & Wellness: Health care coverage designed for the mind and body. Flexible Downtime: Generous time off helps keep you energized for your time on. Continuous Learning: Access a wealth of resources to grow your career and learn valuable new skills. Invest in Your Future: Secure your financial future through competitive pay, retirement planning, a continuing education program with a company-matched student loan contribution, and financial wellness programs. Family Friendly Perks: It’s not just about you. S&P Global has perks for your partners and little ones, too, with some best-in class benefits for families. Beyond the Basics: From retail discounts to referral incentive awards—small perks can make a big difference. For more information on benefits by country visit: https://spgbenefits.com/benefit-summaries Global Hiring and Opportunity at S&P Global: At S&P Global, we are committed to fostering a connected and engaged workplace where all individuals have access to opportunities based on their skills, experience, and contributions. Our hiring practices emphasize fairness, transparency, and merit, ensuring that we attract and retain top talent. By valuing different perspectives and promoting a culture of respect and collaboration, we drive innovation and power global markets. Recruitment Fraud Alert: If you receive an email from a spglobalind.com domain or any other regionally based domains, it is a scam and should be reported to reportfraud@spglobal.com. S&P Global never requires any candidate to pay money for job applications, interviews, offer letters, “pre-employment training” or for equipment/delivery of equipment. Stay informed and protect yourself from recruitment fraud by reviewing our guidelines, fraudulent domains, and how to report suspicious activity here. - Equal Opportunity Employer S&P Global is an equal opportunity employer and all qualified candidates will receive consideration for employment without regard to race/ethnicity, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, marital status, military veteran status, unemployment status, or any other status protected by law. Only electronic job submissions will be considered for employment. If you need an accommodation during the application process due to a disability, please send an email to: EEO.Compliance@spglobal.com and your request will be forwarded to the appropriate person. US Candidates Only: The EEO is the Law Poster http://www.dol.gov/ofccp/regs/compliance/posters/pdf/eeopost.pdf describes discrimination protections under federal law. Pay Transparency Nondiscrimination Provision - https://www.dol.gov/sites/dolgov/files/ofccp/pdf/pay-transp_%20English_formattedESQA508c.pdf - 20 - Professional (EEO-2 Job Categories-United States of America), IFTECH202.1 - Middle Professional Tier I (EEO Job Group), SWP Priority – Ratings - (Strategic Workforce Planning) Job ID: 317835 Posted On: 2025-07-09 Location: Ahmedabad, Gujarat, India

Your role As a Lead QA Engineer, your mission is to [briefly describe the main mission]. You will report to [add Hiring Manager title]. You will describe main responsibility describe main responsibility describe main responsibility To succeed, you will need We encourage you to apply even if you don't meet every single requirement. We value diverse experiences and perspectives and are excited to see what you bring to the role. You have X - X years of experience, working as a XY describe non-negotiable skill describe non-negotiable skill escribe preferred skill escribe preferred skill In return, we offer Culture of trust and accountability Lifelong learning and career growth Innovation powered by people Comprehensive compensation and benefits Health and well-being Job location Option 1: On-Site This role requires you to work on-site at our office in Pune, India (IN). You will be part of a dynamic team and enjoy the benefits of face-to-face collaboration. Option 2: Hybrid This role offers a hybrid working arrangement, allowing you to split your time between working remotely and being on-site at our (insert organization here) in Pune, India (IN). Option 3: Remote This role is fully remote, enabling you to work from anywhere in the world. We value results over location and provide the tools and support you need to succeed from any location. Contact information Talent Acquisition Team: Geeta Singh About Role Join us as a Lead QA Engineer within our Apps and Software Development team, based out of Pune, to deliver end-to-end customized software application testing. We expect you to participate and contribute at every stage of a project, including interacting with internal customers/stakeholders, understanding their requirements, and proposing solutions that best meet their expectations. You will be part of a local team working from the Atlas Copco Pune office but will also have the opportunity to contribute to global project deliveries. You will be a key member of a highly motivated application development team, leading the test automation activities and enabling team members to deliver “first-time-right” application solutions. The Role Testing Strategy Development Define, document, and maintain the overall testing strategy, including unit testing, integration testing, user acceptance testing (UAT) work closely with business stakeholders and product owners and be responsible for writing end-to-end business test cases aligned with user needs and business goals. Establish performance testing protocols to identify and mitigate bottlenecks before production. Define and implement strategies for application security testing to identify vulnerabilities. Drive test automation using tools like Selenium / Playwright to enhance test coverage and efficiency. Design, implement, and maintain automation frameworks, ensuring scripts are integrated into CI/CD pipelines in a DevOps environment. Enable continuous testing by binding automated test scripts to delivery pipelines for immediate feedback Establish and monitor key performance indicators (KPIs) to measure test effectiveness, including defect density, test coverage, and release cycle time, success/failure of test cases Provide regular reports to stakeholders, identifying trends and recommending improvements Collaboration And Leadership Work closely with development, DevOps, and product teams to align testing and release processes with business goals. Provide technical leadership and mentorship to QA, fostering a culture of quality and continuous improvement. Establish metrics to measure the effectiveness of testing and release processes, providing regular reports to stakeholders. Ensure that testing processes comply with industry standards, security requirements, and organizational policies. Maintain documentation and audit trails for all testing activities. To Succeed you need Educational Background: A degree in Computer Science Engineering (B.E., B.Tech, or M.Tech) from a reputed university. Passion for Technology: Strong understanding of software testing concepts and technologies. Agile Experience: Proven experience working within Agile/Scrum teams, including familiarity with Azure DevOps and/or Jira. Minimum 10 years of experience in software testing, release management, or related roles Proven experience with CI/CD tools (e.g., Jenkins, GitLab, Azure DevOps) and test automation frameworks (e.g., Playwright, Selenium). Expertise in Python programming / Shell scripting / JavaScript Hands-on experience with automation tools such as Selenium / Playwright /Cypress etc. Expertise in performance testing tools (e.g., JMeter, LoadRunner) and security testing tools (e.g., OWASP ZAP, Burp Suite). Knowledge of automation practices. Hands-on experience is UI / API / Database testing (Manual as well as automation). Excellent communication and stakeholder management skills. Join Atlas Copco and be part of a team that believes in challenging the status quo and driving innovation in every segment and business we operate. We encourage employees to contribute, grow, and challenge themselves to find a better way. We Offer You Challenging Work Environment: We provide a stimulating environment where you will have the opportunity to work on complex and meaningful projects. Global Impact: Be part of a multinational organization where your work and ideas contribute to both local and global success. Growth & Development: We are dedicated to helping you develop your career by providing opportunities to grow, take on new challenges, and lead initiatives that matter. Innovation Encouraged: Our culture supports challenging the "Status Quo" and fostering new ideas to build tools, frameworks, and applications that make a difference. Collaboration & Support: We work in teams where each person is valued, and where collaboration, mentoring, and support are at the heart of our success City: Pune Last date to apply: 24/07/2025

As a Cybersecurity Specialist you're required to Provide inputs to define cyber governance frameworks and establish governance systems, processes and control systems, Report service level attainment results and provide inputs on improvement opportunities. Work Location: Ahmedabad(On-Site) Educational qualifications: Bachelor’s in Computer Science or related IT-related discipline. Advanced educational qualifications, such as an MBA in Information Systems or a related field. One or more of the following certifications: Certified Information Security Manager (CISM), Certified in Risk Management and Information Systems Control (CRISC), Certified in the Governance of Enterprise IT (CGEIT), Certified Information Systems Security Professional (CISSP). Experience: Bachelor’s degree in computer science, Information Security, or related field. 8-10 years of experience in application security, including vulnerability assessment and penetration testing. Strong understanding of secure coding practices and knowledge of common security vulnerabilities. Familiarity with security standards and frameworks such as OWASP, ISO 27001, and NIST . Experience with security testing tools and automation. Relevant certifications such as CEH, AZ500, AWS Security, Kubernetes, IaC are a plus. Excellent communication and collaboration skills. Ability to stay up-to-date with the latest security trends, threats, and technologies Responsibilities Conduct regular security assessments of applications to identify and prioritize vulnerabilities. Perform penetration testing on web and mobile applications to simulate real-world cyber-attacks and uncover potential weaknesses. Review application code to identify and remediate security flaws, ensuring adherence to secure coding practices. Evaluate the overall security architecture of applications and propose improvements to enhance resilience against cyber threats. Automate repetitive security tasks to improve efficiency and coverage. Work closely with cross-functional teams including developers, QA, DevOps, and IT. Strong coding and scripting skills (e.g., Python, Java, JavaScript, TypeScript, etc.); ability to prototype tools or support initiatives directly. Hands on experience on IaC -Infrastructure as Code. Integrate security testing into CI/CD pipelines (DevSecOps). Monitor and respond to security incidents, conducting root cause analysis and implementing corrective actions. Stay up to date with the latest security trends, threats, and technologies to continuously improve the security posture of applications. Build automation scripts to reduce the repetitive task such as reports, attacking scripts, etc Interested to join, Please reach at 9898791075 for further discussion.

Frontend: Strong proficiency in React.js , Redux/Context API, Hooks, and component-based architecture. Experience with Material UI , Tailwind CSS, or other UI frameworks. Solid understanding of responsive design, cross-browser compatibility, and performance tuning. Backend: Expertise in Node.js and Express.js . Experience in building RESTful APIs and microservices. Database: Strong experience with MongoDB including data modeling, indexing, and performance optimization. Additional Skills: Proficient in JavaScript (ES6+), HTML5, CSS3, JSON. Version control using Git (GitHub/GitLab/Bitbucket). Experience with tools like Postman, Swagger, or similar. Familiarity with Agile methodologies (Scrum/Kanban). Basic understanding of security best practices (OWASP, JWT, OAuth). Familiarity with cloud platforms like AWS, Azure, or GCP is a plus.

Required Qualifications & Skills: Education: Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related technical field. A Master's degree is a plus. Experience: Minimum of 2 years of hands-on experience in cybersecurity roles (e.g., Security Analyst, Penetration Tester, Security Engineer, Incident Responder) or dedicated cybersecurity training. Proven track record of successfully delivering training to individuals or teams. Technical Skills: Strong knowledge of core cybersecurity domains, including but not limited to: Network Security (Firewalls, IDS/IPS, VPNs, Network Segmentation, TCP/IP) Operating System Security (Windows, Linux, macOS) Vulnerability Assessment & Penetration Testing (VAPT) methodologies and tools (e.g., Kali Linux, Metasploit, Nmap, Burp Suite) Incident Response & Management Security Operations Center (SOC) functions Cryptography and Encryption Cloud Security (AWS, Azure, GCP) Application Security (OWASP Top 10) Security Frameworks and Compliance (e.g., NIST, ISO 27001) Malware Analysis and Digital Forensics (basic understanding) Proficiency in scripting languages (e.g., Python, PowerShell, Bash) for automation and analysis. Familiarity with SIEM solutions and log analysis. Certifications (Highly Preferred): CompTIA Security+ Certified Ethical Hacker (CEH) CompTIA CySA+ Certified Information Systems Security Professional (CISSP) Offensive Security Certified Professional (OSCP) Any other relevant vendor-specific or domain-specific certifications. Soft Skills: Excellent communication, presentation, and public speaking skills. Ability to explain complex technical concepts clearly and concisely to diverse audiences. Strong analytical and problem-solving abilities. High attention to detail and organizational skills. Passion for teaching and a commitment to learner success. Adaptability and willingness to learn new technologies. Strong interpersonal skills and ability to build rapport. Preferred Qualifications: Prior experience in an educational institution or corporate training department. Experience with Learning Management Systems (LMS). Knowledge of local industry needs and cybersecurity landscape in India/Tamil Nadu. What We Offer: Competitive salary and benefits package. Opportunity to work with cutting-edge cybersecurity technologies. A dynamic and supportive work environment. Continuous professional development and upskilling opportunities. The chance to make a significant impact on the next generation of cybersecurity professionals. franchise@elysiumacadmey.org 7845736974 Job Types: Full-time, Permanent Pay: ₹11,710.30 - ₹18,000.00 per month Schedule: Day shift Work Location: In person

POSITION: Technical Architect EXPERIENCE: 12+ years ROLE TYPE: Full time LOCATION: Mumbai/ Chennai YOUR AREA OF KNOWLEDGE AND EXPERTISE: Candidate should have minimum 12+ years of experience in technical and enterprise architecture for large and global mission critical applications. Candidate should have intense flair for technology and have a strong understanding of how banking products operate in the global market. Deep understanding of Cloud Native Technologies, Microservices Architecture, PostgreSQL, Apache Kafka, Active MQ, Spring Cloud/Boot, Java and Angular with knowledge in BFSI domain As the enterprise product architect would be responsible for creating and maintaining a common set of architecture standards and principles to be followed by all the product lines. Candidate should have excellent communication skills and be able to lead a vibrant team of architects and effectively work with the development community. Candidate should be able to represent the company in Solution integration discussions with the Bank during implementations, participate in technical discussions and in CXO level customer engagements. Experience in large enterprise systems in banking or financial sector is a must. Experience working with AWS, Azure, or the Google cloud platforms in engineering role Certified in at least one public cloud beneficial Experience working with Private Cloud platforms based on AWS, VMware, Microsoft, or OpenStack technology Skills Required: - AWS or Azure cloud certifications, preferably knowledgeable in AWS Well Architected and Azure Well Architected frameworks architecting & running web and enterprise microservices based platforms on Azure/AWS/Google/On prem clouds - Kubernetes and/or Openshift platforms. - tech stack including Messaging, Kafka, PostgreSQL - security aspects Authentication (OAuth2, SAML etc), Authorisation (JWT, OIDC), Data security, OWASP etc - integration using modern API / Event based flows as well as with legacy applications using Files/Messages YOUR ROLES & RESPONSIBILITIES Enterprise Architecture Governance Standardize, layout, and maintain the enterprise architecture for the entire iGTB product suite in line with the business vision. Establish a governance framework to ensure adherence to architecture guidelines across the organization. Technology Innovation Stay updated on emerging technologies and continuously evaluate their potential to enhance architecture and increase the business value of products. Tool & Quality Evaluation Identify and recommend tools that improve code quality, productivity, and defect prevention throughout the application lifecycle. Architectural Evangelism Promote the adoption of new architectural practices and tools across the development community within the organization. Design Leadership Participate in the design of individual products to ensure technical excellence and alignment with overall architectural principles. Performance & Security Assurance Oversee independent performance and security testing of applications. Partner with accredited labs to obtain third-party certifications when necessary. Customer Engagement Support Participate in pre-sales and post-production customer engagements to positively influence client perception of product superiority. Troubleshooting & Continuous Learning Support teams in issue resolution and feed learning back into the architecture for continuous improvement. Automation Strategy Lead automation initiatives for the product line, including recommending appropriate tools, architectural frameworks, and processes. REQUIRED QUALIFICATION Any graduate degree Experience: [To be specified by recruiter] PREFERRED QUALIFICATION Bachelor's Degree in Engineering or a related technical field

Location: India- Pune (Amdocs Site) In one sentence Secures enterprise information by developing, implementing, and enforcing security controls, safeguards, policies, and procedures. All you need is... Bachelor’s degree in computer science, Information Security, or related field (or equivalent experience). 3+ years of hands-on experience in information security, with a focus on threat detection, penetration testing, and AI-driven security solutions. Demonstrated experience working in financial or SaaS security environments (e.g., PCI DSS, SOC 2, ISO 27001). Advanced knowledge of networking protocols, encryption, firewalls, IDS/IPS, and VPNs. Strong experience with cloud platforms (AWS, GCP, or Azure), including security configurations, monitoring, and automation. Hands-on experience with security tools such as EDR, SIEM (Splunk, ElasticSearch, etc.), vulnerability scanners (Nessus, Qualys), and threat intelligence platforms. Practical experience in penetration testing (e.g., OWASP Top 10, API testing) and red teaming. Expertise in scripting languages (Python, PowerShell) and automation tools. Security Certifications: CEH (Certified Ethical Hacker), CISSP, CISA, or equivalent certifications (required). Additional certifications in cloud security (AWS Certified Security Specialty, etc.) or AI/ML for security (optional but preferred). What will your job look like? Proactively monitor and assess emerging threats using advanced AI-driven tools. Analyze identified threats and develop effective remediation plans to minimize risk to critical systems and data. Lead proactive threat hunts leveraging AI, machine learning models, and automation tools. Identify Indicators of Compromise (IOCs) and detect patterns to anticipate future attacks. Perform advanced penetration testing exercises to identify vulnerabilities, misconfigurations, and weaknesses in systems. Collaborate in purple team exercises to validate security measures and improve resilience. Participate in risk assessments, ensuring compliance with financial industry regulations (e.g., PCI DSS, SOC 2) and internal security policies. Provide guidance on mitigating risks through the integration of AI-based security solutions. Lead the investigation and response to security incidents. Utilize machine learning and EDR tools to perform in-depth analysis of malware, root causes, and attack methodologies. Conduct continuous monitoring using SIEM (Security Information and Event Management), AI-driven anomaly detection systems, and advanced analytics tools to detect and respond to security events. Collaborate with SecDevOps and Engineering teams to automate security controls, incident responses, and vulnerability management using AI and advanced scripting (Python, PowerShell). Work closely with teams across the organization to integrate security at every stage of development (DevSecOps), ensuring secure cloud infrastructure, services, and APIs. Deep involvement in securing public cloud environments (AWS, Azure, GCP), leveraging AI tools to detect misconfigurations, vulnerabilities, and unauthorized access attempts. Support penetration testing efforts, identifying vulnerabilities within cloud and on-premise infrastructure. Lead and contribute to purple team engagements to test and improve defensive capabilities. Stay current with the latest AI, machine learning, and cybersecurity trends. Actively research emerging threats and innovative tools to protect the organization’s assets. Evaluate and implement third-party security tools, AI-based solutions, and threat intelligence platforms to enhance security posture and detection capabilities. Use AI and behavioral analytics to proactively detect threats that evade traditional security solutions. Develop custom threat detection algorithms where needed. Leverage threat intelligence feeds, machine learning models, and threat-hunting tools to proactively identify and mitigate risks from advanced persistent threats (APTs).

As a Fullstack SDE - II at NxtWave, you Build applications at a scale and see them released quickly to the NxtWave learners (within weeks )Get to take ownership of the features you build and work closely with the product tea mWork in a great culture that continuously empowers you to grow in your caree rEnjoy freedom to experiment & learn from mistakes (Fail Fast, Learn Faster )NxtWave is one of the fastest growing edtech startups. Get first-hand experience in scaling the features you build as the company grows rapidl yBuild in a world-class developer environment by applying clean coding principles, code architecture, etc .Responsibilitie sLead design and delivery of complex end-to-end features across frontend, backend, and data layers .Make strategic architectural decisions on frameworks, datastores, and performance patterns .Review and approve pull requests, enforcing clean-code guidelines, SOLID principles, and design patterns .Build and maintain shared UI component libraries and backend service frameworks for team reuse .Identify and eliminate performance bottlenecks in both browser rendering and server throughput .Instrument services with metrics and logging, driving SLIs, SLAs, and observability .Define and enforce comprehensive testing strategies: unit, integration, and end-to-end .Own CI/CD pipelines, automating builds, deployments, and rollback procedures .Ensure OWASP Top-10 mitigations, WCAG accessibility, and SEO best practices .Partner with Product, UX, and Ops to translate business objectives into technical roadmaps .Facilitate sprint planning, estimation, and retrospectives for predictable deliveries .Mentor and guide SDE-1s and interns; participate in hiring .Qualifications & Skill s3–5 years building production Full stack applications end-to-end with measurable impact .Proven leadership in Agile/Scrum environments with a passion for continuous learning .Deep expertise in React (or Angular/Vue) with TypeScript and modern CSS methodologies .Proficient in Node.js (Express/NestJS) or Python (Django/Flask/FastAPI) or Java (Spring Boot) .Expert in designing RESTful and GraphQL APIs and scalable database schemas .Knowledge of MySQL/PostgreSQL indexing, NoSQL (ElasticSearch/DynamoDB), and caching (Redis) .Knowledge of Containerization (Docker) and commonly used AWS services such as lambda, ec2, s3, api gateway etc .Skilled in unit/integration (Jest, pytest) and E2E testing (Cypress, Playwright) .Frontend profiling (Lighthouse) and backend tracing for performance tuning .Secure coding: OAuth2/JWT, XSS/CSRF protection, and familiarity with compliance regimes .Strong communicator able to convey technical trade-offs to non-technical stakeholders .Experience in reviewing pull requests and providing constructive feedback to the team .Qualities we'd love to find in you : The attitude to always strive for the best outcomes and an enthusiasm to deliver high quality softwa reStrong collaboration abilities and a flexible & friendly approach to working with tea msStrong determination with a constant eye on solutio nsCreative ideas with problem solving mind-s etBe open to receiving objective criticism and improving upon itEagerness to learn and zeal to gr owStrong communication skills is a huge pl usWork Location : Hyderab ad About Nxt WaveNxtWave is one of India’s fastest-growing ed-tech startups, revolutionizing the 21st-century job market. NxtWave is transforming youth into highly skilled tech professionals through its CCBP 4.0 programs, regardless of their educational backgro und.NxtWave is founded by Rahul Attuluri (Ex Amazon, IIIT Hyderabad), Sashank Reddy (IIT Bombay) and Anupam Pedarla (IIT Kharagpur). Supported by Orios Ventures, Better Capital, and Marquee Angels, NxtWave raised $33 million in 2023 from Greater Pacific Capi tal.As an official partner for NSDC (under the Ministry of Skill Development & Entrepreneurship, Govt. of India) and recognized by NASSCOM, NxtWave has earned a reputation for excelle nce.Some of its prestigious recognitions incl ude:Technology Pioneer 2024 by the World Economic Forum, one of only 100 startups chosen glob ally‘Startup Spotlight Award of the Year’ by T-Hub in 2023‘Best Tech Skilling EdTech Startup of the Year 2022’ by Times Business Aw ards‘The Greatest Brand in Education’ in a research-based listing by URS M ediaNxtWave Founders Anupam Pedarla and Sashank Gujjula were honoured in the 2024 Forbes India 30 Under 30 for their contributions to tech educa tionNxtWave breaks learning barriers by offering vernacular content for better comprehension and retention. NxtWave now has paid subscribers from 650+ districts across India. Its learners are hired by over 2000+ companies including Amazon, Accenture, IBM, Bank of America, TCS, Deloitte and m ore. Know more about NxtW ave: https://www.cc bp.inRead more about us in the ne ws – Economic Times | CNBC | YourStory | VCC ircle

As a Fullstack SDE - II at NxtWave, you Build applications at a scale and see them released quickly to the NxtWave learners (within weeks) Get to take ownership of the features you build and work closely with the product team Work in a great culture that continuously empowers you to grow in your career Enjoy freedom to experiment & learn from mistakes (Fail Fast, Learn Faster) NxtWave is one of the fastest growing edtech startups. Get first-hand experience in scaling the features you build as the company grows rapidly Build in a world-class developer environment by applying clean coding principles, code architecture, etc. Responsibilities Lead design and delivery of complex end-to-end features across frontend, backend, and data layers. Make strategic architectural decisions on frameworks, datastores, and performance patterns. Review and approve pull requests, enforcing clean-code guidelines, SOLID principles, and design patterns. Build and maintain shared UI component libraries and backend service frameworks for team reuse. Identify and eliminate performance bottlenecks in both browser rendering and server throughput. Instrument services with metrics and logging, driving SLIs, SLAs, and observability. Define and enforce comprehensive testing strategies: unit, integration, and end-to-end. Own CI/CD pipelines, automating builds, deployments, and rollback procedures. Ensure OWASP Top-10 mitigations, WCAG accessibility, and SEO best practices. Partner with Product, UX, and Ops to translate business objectives into technical roadmaps. Facilitate sprint planning, estimation, and retrospectives for predictable deliveries. Mentor and guide SDE-1s and interns; participate in hiring. Qualifications & Skills 3–5 years building production Full stack applications end-to-end with measurable impact. Proven leadership in Agile/Scrum environments with a passion for continuous learning. Deep expertise in React (or Angular/Vue) with TypeScript and modern CSS methodologies. Proficient in Node.js (Express/NestJS) or Python (Django/Flask/FastAPI) or Java (Spring Boot). Expert in designing RESTful and GraphQL APIs and scalable database schemas. Knowledge of MySQL/PostgreSQL indexing, NoSQL (ElasticSearch/DynamoDB), and caching (Redis). Knowledge of Containerization (Docker) and commonly used AWS services such as lambda, ec2, s3, api gateway etc. Skilled in unit/integration (Jest, pytest) and E2E testing (Cypress, Playwright). Frontend profiling (Lighthouse) and backend tracing for performance tuning. Secure coding: OAuth2/JWT, XSS/CSRF protection, and familiarity with compliance regimes. Strong communicator able to convey technical trade-offs to non-technical stakeholders. Experience in reviewing pull requests and providing constructive feedback to the team. Qualities we'd love to find in you: The attitude to always strive for the best outcomes and an enthusiasm to deliver high quality software Strong collaboration abilities and a flexible & friendly approach to working with teams Strong determination with a constant eye on solutions Creative ideas with problem solving mind-set Be open to receiving objective criticism and improving upon it Eagerness to learn and zeal to grow Strong communication skills is a huge plus Work Location: Hyderabad About NxtWave NxtWave is one of India’s fastest-growing ed-tech startups, revolutionizing the 21st-century job market. NxtWave is transforming youth into highly skilled tech professionals through its CCBP 4.0 programs, regardless of their educational background. NxtWave is founded by Rahul Attuluri (Ex Amazon, IIIT Hyderabad), Sashank Reddy (IIT Bombay) and Anupam Pedarla (IIT Kharagpur). Supported by Orios Ventures, Better Capital, and Marquee Angels, NxtWave raised $33 million in 2023 from Greater Pacific Capital. As an official partner for NSDC (under the Ministry of Skill Development & Entrepreneurship, Govt. of India) and recognized by NASSCOM, NxtWave has earned a reputation for excellence. Some of its prestigious recognitions include: Technology Pioneer 2024 by the World Economic Forum, one of only 100 startups chosen globally ‘Startup Spotlight Award of the Year’ by T-Hub in 2023 ‘Best Tech Skilling EdTech Startup of the Year 2022’ by Times Business Awards ‘The Greatest Brand in Education’ in a research-based listing by URS Media NxtWave Founders Anupam Pedarla and Sashank Gujjula were honoured in the 2024 Forbes India 30 Under 30 for their contributions to tech education NxtWave breaks learning barriers by offering vernacular content for better comprehension and retention. NxtWave now has paid subscribers from 650+ districts across India. Its learners are hired by over 2000+ companies including Amazon, Accenture, IBM, Bank of America, TCS, Deloitte and more. Know more about NxtWave: https://www.ccbp.in Read more about us in the news – Economic Times | CNBC | YourStory | VCCircle

We are seeking an experienced Application Security Manager to lead our security initiatives and ensure the integrity, confidentiality, and availability of our systems and data. This role is crucial in safeguarding our digital assets and maintaining compliance with industry standards. Themanageroftheapplicationsecurityprogramwillberesponsible for - 1. To Integratesecuritytools,standards,andprocessesintothe productlifecycle(PLC). 2. EnsurethatdevelopersandQApersonnelaretrainedwiththeappropriatele velofsecurityknowledgetoperformtheir dailyactivities. 3. Improveandsupportapplicationsecuritytooldeploymentsincludingstaticanal ysisandruntimetestingtools and securedevelopmentstandards. 4. Conduct and manage periodic penetration testing exercises through expert consulting, internal technology team, and managed services to identify the gaps and fulfill audit/ regulator requirements. 5. Create, Integrate and manage threat modelling process/ practices, following SSDLC and application framework. 6. Manage the secure configuration/ hardening guidelines and compliance. 7. Should create and manage application security KPIs. KRIs compliance reports and dashboards. 8. Should have strong hand-on experience of different tools, processes related to SAST, DAST, API Security and Threat Modelling. 9. Should take care of Infosec functions by coordinating with various stakeholders (App Team, Vendors, Auditors, Regulators). 10. Should have knowledge of best practices like OWASP, Microsoft SDL, SANS, NIST. 11. Should have a good espouser to cloud environment (AWS) and WAF (Imperva, Akamai) 12. Knowledge of Network and Data Security is a plus. Qualifications and Experience: 1. 8-10 years of hands-on experience in application security. 2. Strong understanding of application security best practices, frameworks, and security technologies, like Checkmarx, Fortify, Burp Suite, OWASP ZAP, Acunetix etc. 3. Proven experience in managing VA, PT, Code review, SAST, DAST, SSDLC, Threat Modelling, and Audit processes. 4. Familiarity with regulatory requirements and compliance standards (e.g., RBI, SEBI). 5. Excellent communication, interpersonal, analytical and problem-solving skills. 6. Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field. Masters degree or relevant certifications preferred.

Job Title: DevOps Engineer with GCP Location : Hyderabad & Ahmedabad Work Model - 3 Days from office Exp : 5+ years Summary: The Senior DevOps Engineer is responsible for designing and managing robust, scalable CI/CD pipelines, automating infrastructure with Terraform, and improving deployment efficiency across GCP-hosted environments Roles and Responsibilities: • Design and implement end-to-end CI/CD pipelines using Jenkins, GitHub Actions, and Argo CD for production-grade deployments. • Define branching strategies and workflow templates for development teams. • Automate infrastructure provisioning using Terraform, Helm, and Kubernetes manifests across multiple environments. • Implement and maintain container orchestration strategies on GKE, including Helm-based deployments. • Manage secrets lifecycle using Vault and integrate with CI/CD for secure deployments. • Integrate DevSecOps tools like Trivy, SonarQube, and JFrog into CI/CD workflows. • Collaborate with engineering leads to review deployment readiness and ensure quality gates are met. • Monitor infrastructure health and capacity planning using Prometheus, Grafana, and Datadog; implement alerting rules. • Implement auto-scaling, self-healing, and other resilience strategies in Kubernetes. • Drive process documentation, review peer automation scripts, and provide mentoring to junior DevOps engineers Mandatory: • OS: Linux • Cloud: GCP (Compute Engine, Load Balancing, GKE, IAM) • CI/CD: Jenkins, GitHub Actions, Argo CD • Containers: Docker, Kubernetes • IaC: Terraform, Helm • Monitoring: Prometheus, Grafana, ELK • Security: Vault, Trivy, OWASP concepts Nice to Have : • Service Mesh (Istio), Pub/Sub, API Gateway – Kong • Advanced scripting (Python, Bash, Node.js) • Skywalking, Rancher, Jira, Freshservice Scope: • Own CI/CD strategy and configuration • Implement DevSecOps practices • Drive automation-first culture

Company Description Resources is the backbone of Publicis Groupe, the world’s third-largest communications group. Formed in 1998 as a small team to service a few Publicis Groupe firms, Re:Sources has grown to 5,000+ people servicing a global network of prestigious advertising, public relations, media, healthcare, and digital marketing agencies. We provide technology solutions and business services including finance, accounting, legal, benefits, procurement, tax, real estate, treasury, and risk management to help Publicis Groupe agencies do their best: create and innovate for their clients. In addition to providing essential, everyday services to our agencies, Re:Sources develops and implements platforms, applications, and tools to enhance productivity, encourage collaboration, and enable professional and personal development. We continually transform to keep pace with our ever-changing communications industry and thrive on a spirit of innovation felt around the globe. With our support, Publicis Groupe agencies continue to create and deliver award-winning campaigns for their clients. Overview JOB SUMMARY: Publicis Re:Sources is hiring a Senior Associate of Security Architecture for the Global Security Team. This full-time position includes identifying security weaknesses in information systems, drafting reports, providing recommendations for security risk mitigation, and collaborating with delivery and infrastructure support teams to address security risks. The candidate, with significant experience as an Information Systems Architect, must be a technical expert in cloud technologies and possess strong general knowledge across a range of technologies such as databases, networking, operating systems, authentication, and encryption — along with a solid understanding of the security aspects of all these systems. The Responsibilities Associated With The Position Are As Follows Conduct secure architecture reviews of application, cloud, and Identity, & Access Management (IAM) solutions to evaluate the adequacy and effectiveness of security measures. Make recommendations to address identified design and implementation gaps. Threat model key enterprise and agency systems. Collaborate with business and technical teams in developing security risk treatment plans addressing vulnerabilities in applications, cloud environments, and IAM solutions. Document and analyze the impact of new system integrations and updates on the current security posture. Develop and contribute to overarching and solution specific techincal security standards, encompassing application, cloud, and Identify, and Access Management (IAM) domains. Ensure system designs and architectures comply with security best practices, company policies, and industry-recognized security standards (e.g., ISO 27001, PCI DSS, NIST, HIPAA etc.). Periodically evaluate technical security standards and configurations, making recommendations for updates or improvements to ensure they remain current to address changing threat landscape. Collaborate closely with stakeholders, including business teams and internal departments, to ensure comprehensive security needs are understood and met in an efficient manner. Participate in software security review process, document security risks and mitigating controls. Participate in team meetings to collaborate on enterprise and business unit specific initiatives. Participate in the new technology evaluations and peer reviews. Essential Job Requirements Four (4) plus years of experience in Application Security and/or Cloud Security Knowledge of Threat Modeling frameworks, such as STRIDE. Cloud Security Certifications (AWS, Azure, GCP) preferred Knowledge of OWASP Top 10. Knowledge of risk management processes (e.g., methods for assessing and mitigating risk). Knowledge of documenting cyber threats and vulnerabilities. Knowledge of authentication, authorization, and access control methods. Knowledge of data security standards (e.g., PCI, PII, PHI, etc.) Skill in designing multi-level security/cross domain solutions. Ability to apply secure system design tools, methods and techniques. Ability to design architectures and frameworks. Qualifications Bachelor’s degree in Computer Science, Engineering, or other Engineering or Technical discipline or equivalent relevant experience Additional Information OTHER JOB REQUIREMENTS: Good communication and documentation skills Ability to work effectively and collaboratively with stakeholders Willingness to work with geographically dispersed teams A ‘can do’ attitude team player who works well under pressure and with dispersed groups, worldwide Must be a self starter with strong organizational skills to enable navigation of the company to identify sponsors, stakeholders and interested parties

Who Are We: At SecureLayer7, we aim to solve challenging cybersecurity problems and hurdles faced by organizations. We bring bright minds together to provide a smooth experience in cybersecurity and achieve our vision of making organizations secure from cyber-attacks. Our skilled pen testers and security engineers work on projects ranging from cryptocurrency exchanges to IoT devices. SecureLayer7 is also the parent company of cybersecurity products, namely Sensfrx and BugDazz. About the Role: We are seeking a highly skilled Cybersecurity Expert with over 5 years of hands-on experience in offensive security assessments. The ideal candidate will hold elite certifications such as OSCP, CREST, and have published CVE(s). You should possess deep technical knowledge and practical expertise across Web, Mobile, Source Code (SAST), and Thick Client application testing. Key Responsibilities: Lead and manage end-to-end security assessments for web, mobile (iOS/Android), API, and thick client applications. Conduct manual and automated VAPT using industry-standard tools and methodologies. Drive secure development lifecycle (SDLC) practices, including threat modelling, secure code review, and remediation planning. Design and review secure architectures for enterprise applications and network systems. Perform configuration reviews for firewalls, routers, and operating systems (Linux/Windows). Manage and deliver internal and external application security audits (PCI DSS, HIPAA, ISO 27001). Collaborate with cross-functional teams (development, QA, DevOps) to embed security best practices. Lead red team exercises and simulate attack scenarios to identify exploitable gaps. Own client engagement, project planning, delivery, and post-assessment remediation support. Mentor junior security analysts and contribute to internal knowledge-sharing initiatives. Key Requirements: 5 + years of experience in cybersecurity with a strong focus on application security. Proven expertise in: Vulnerability Assessment & Penetration Testing (VAPT) Source Code Review Red Team Exercises Threat Modelling Secure Architecture Reviews Proficiency in using tools like Burp Suite, OWASP ZAP, Nmap, Metasploit, Nessus, etc. Sound knowledge of secure coding practices across various programming languages. Experience managing client projects across BFSI, telecom, and government sectors. Strong communication and reporting skills for both technical and business stakeholders. Preferred Qualifications & Certifications: Bachelor’s or Master’s degree in Computer Science, Information Security, or related field.

Job Information Date Opened 07/10/2025 Job Type Permanent RSD NO 11425 Industry IT Services Min Experience 6 Max Experience 8 City Chennai State/Province Tamil Nadu Country India Zip/Postal Code 600018 Job Description Athena Offshore React Developer Project Overview: We need Rockstar Full-stack developer proficient in React to join our all-star team as we embark on a journey to create brand-new, state of the art web applications in React at NT. Role: We are looking for a senior React developer to join a team of like-minded Rockstar developers and help us drive the next-phase of our web application development journey. This role will involve extensive hands-on React and TypeScript knowledge to solve current and future UI development challenges - including micro-FE based implementation to allow several semi-independent applications to be co-hosted in same container, re-usable components library which is feature-rich and provides consistent look and feel for the platform and mobile-friendly websites which offer best-in-class user experience by leveraging cutting edge data visualization techniques and modern UI/UX design guidelines. Experience Level: 6+ years Qualifications: • At least 6 years of professional development experience with significant exposure to working on complex projects with cross functional teams. • Minimum of 4 years experience with ReactJS and TypeScript • Extremely strong JavaScript framework and Front-End Development experience • Strong Node.JS experience is highly desired • Must have proven experience building external facing mobile friendly websites using JavaScript frameworks. Good to Haves: • Redux Toolkit or other state management libraries in the React ecosystem • Data visualization experience (e.g. D3, Chart.js, Highcharts, SVG, Canvas, etc.) • Good sense of UI/UX design • Experience with a code style guide (we use the Airbnb style guide) • Experience working with databases (relational, document, etc.) and writing SQL • Experience writing automated tests (e.g. Mocha, Jest, Enzyme,Playwright etc.) • Knowledge of web application security (http-https, Content Security Policy, OWASP, etc.) • Knowledge of Webpack or similar module bundler Secondary Skills: • Highly motivated, self-directed and possesses solid execution skills. • Demonstrates critical thinking and probes beyond the surface of the requested data to get at the valuable (actionable) information. • Able to understand complex technical concepts quickly. • Detail oriented but understands broader impacts of requests. • Adjusts quickly to changing priorities as necessary. • Manages multiple tasks and deliverables simultaneously and in an organized and results-oriented manner. • Strives to proactively identify and address areas where business process efficiency and effectiveness improvements would make a positive impact on the top and bottom lines. • Excellent written and verbal communication skills. • Possesses a strong analytical, quantitative and objective outlook. • Excellent people skills are also necessary since this position interacts with all levels of resources across the entire organization. Tasks & responsibilities: • Developing new greenfield and brownfield products using ReactJS. • Building reusable components and front-end libraries for future use. • Translating designs and wireframes into high quality code. • Responsible for efficiently working with other teams in the organization to help them leverage the micro-FE framework/components library in their quest to modernize their applications. • Optimizing components for maximum performance across a vast array of web-capable devices and browsers. At Indium diversity, equity, and inclusion (DEI) are the cornerstones of our values. We champion DEI through a dedicated council, expert sessions, and tailored training programs, ensuring an inclusive workplace for all. Our initiatives, including the WE@IN women empowerment program and our DEI calendar, foster a culture of respect and belonging. Recognized with the Human Capital Award, we are committed to creating an environment where every individual thrives. Join us in building a workplace that values diversity and drives innovation.

DevsLane is seeking a highly skilled and experienced Senior Full Stack Developer to join our dynamic team. The ideal candidate will have a strong background in building scalable backend systems and intuitive frontend interfaces, with a passion for delivering high- quality software solutions. Company Profile DevsLane is a leading Software Consultancy Firm based in India. We offer a wide range of services, from proof- of- concepts to end- to- end product development, partnering with clients worldwide to bring their ideas to life. Job Responsibilities Design, develop, and maintain robust backend services using Node.js and associated frameworks. Build responsive, user- centric frontend interfaces using React.js (or equivalent frameworks). Collaborate with cross- functional teams to define, design, and ship new features. Ensure the performance, quality, and responsiveness of both frontend and backend applications. Implement and maintain RESTful APIs and real- time communication protocols like WebSockets. Optimize applications for maximum speed, scalability, and maintainability. Troubleshoot and debug applications across the stack to ensure optimal performance. Stay updated with emerging technologies and apply them into operations and activities. Desired Profile Minimum Requirements : Bachelors degree in Computer Science, Engineering, or related field. 3 years of hands- on experience in backend development using Node.js and frontend development with React.js (or similar frameworks like Angular or Vue). Proficient in JavaScript (ES6+), TypeScript, and modern frontend paradigms. Experience integrating RESTful APIs and third- party services. Solid understanding of relational (MySQL/PostgreSQL) or NoSQL (MongoDB) databases. Version control with Git and collaborative development practices. Exposure to cloud platforms like AWS, GCP, or Azure. Knowledge of containerization (Docker). Familiarity with CI/CD pipelines and DevOps culture. Knowledge of frontend state management libraries like Redux, React Query or Context API. Preferred Requirements Masters degree in Computer Science or a related technical discipline. Experience with microservices, GraphQL, and event- driven architecture. Familiarity with orchestration (Kubernetes). Contributions to open- source projects or personal GitHub portfolio. Previous experience in high- growth startups or product- first companies. Skills Required Backend Development : Node.js (v14+), Express.js, NestJS or Koa.js JavaScript, TypeScript RESTful API development and integration GraphQL (Apollo Server or equivalent) Bonus WebSockets or real- time data handling (e.g., Socket.io) Frontend Development React.js (preferred), Next.js or similar frameworks Responsive design with HTML5, CSS3, and modern UI frameworks (TailwindCSS, Material UI, Bootstrap) Strong understanding of cross- browser compatibility and performance optimization Database MongoDB, PostgreSQL, or MySQL Working with ORMs like Sequelize, Mongoose, or TypeORM Testing & Quality Unit and integration testing using Jest, Mocha, Chai, Cypress (for frontend) Understanding of TDD or BDD approaches DevOps & Infra Docker (required), Kubernetes (preferred) CI/CD tools like GitHub Actions, Jenkins, or CircleCI Familiarity with serverless architecture (bonus) Security & Compliance Implementing JWT/OAuth2 for authentication Awareness of OWASP Top 10 vulnerabilities and secure coding practices Collaboration & Workflow Git- based workflows Agile development (Scrum/Kanban) Experience Required Minimum of 3 years of professional experience in full stack development with strong proficiency in both backend and frontend technologies. Compensation Range : INR 12- 18 LPA (Exceptions possible for outstanding candidates) Working Days & Shifts : Monday to Friday with US Client Overlap Location : Remote (ref:hirist.tech)

Job Title : SDE 2 Full Stack Developer Responsibilities Lead design and delivery of complex end-to-end features across frontend, backend, and data layers. Make strategic architectural decisions on frameworks, datastores, and performance patterns. Review and approve pull requests, enforcing clean-code guidelines, SOLID principles, and design patterns. Build and maintain shared UI component libraries and backend service frameworks for team reuse. Identify and eliminate performance bottlenecks in both browser rendering and server throughput. Instrument services with metrics and logging, driving SLIs, SLAs, and observability. Define and enforce comprehensive testing strategies : unit, integration, and end-to-end. Own CI/CD pipelines, automating builds, deployments, and rollback procedures. Ensure OWASP Top-10 mitigations, WCAG accessibility, and SEO best practices. Partner with Product, UX, and Ops to translate business objectives into technical roadmaps. Facilitate sprint planning, estimation, and retrospectives for predictable deliveries. Mentor and guide SDE-1s and interns; participate in hiring. Qualifications & Skills 35 years building production Full stack applications end-to-end with measurable impact. Proven leadership in Agile/Scrum environments with a passion for continuous learning. Deep expertise in React (or Angular/Vue) with TypeScript and modern CSS methodologies. Proficient in Node.js (Express/NestJS) or Python (Django/Flask/FastAPI) or Java (Spring Boot). Expert in designing RESTful and GraphQL APIs and scalable database schemas. Knowledge of MySQL/PostgreSQL indexing, NoSQL (ElasticSearch/DynamoDB), and caching (Redis). Knowledge of Containerization (Docker) and commonly used AWS services such as lambda, ec2, s3, apigateway etc. Skilled in unit/integration (Jest, pytest) and E2E testing (Cypress, Playwright). Frontend profiling (Lighthouse) and backend tracing for performance tuning. Secure coding : OAuth2/JWT, XSS/CSRF protection, and familiarity with compliance regimes. Strong communicator able to convey technical trade-offs to non-technical stakeholders. Experience in reviewing pull requests and providing constructive feedback to the team. Qualities We'd Love To Find In You The attitude to always strive for the best outcomes and an enthusiasm to deliver high quality software. Strong collaboration abilities and a flexible & friendly approach to working with teams. Strong determination with a constant eye on solutions. Creative ideas with problem solving mind-set. Be open to receiving objective criticism and improving upon it. Eagerness to learn and zeal to grow. Strong communication skills is a huge plus. Work Location : Hyderabad (ref:hirist.tech)

Role Description Job Title: Senior Threat Hunter & VAPT Specialist – SIEM/EDR Tools Location: [Trivandrum] Experience Required: 5+ Years Department: Cybersecurity / Information Security Employment Type: Full-Time Role Overview We are seeking a versatile and experienced Cybersecurity Professional to join our team as a Threat Hunter and VAPT Analyst . In this dual-capacity role, you will proactively identify and mitigate emerging cyber threats, perform in-depth vulnerability assessments, and help protect critical infrastructure and data assets. This role requires a blend of advanced technical expertise , analytical mindset , and strong collaboration with SOC and incident response teams. Key Responsibilities Threat Hunting Proactively hunt for undetected threats across networks, systems, and endpoints using behavioral analysis and threat intelligence. Identify Tactics, Techniques, and Procedures (TTPs) and anomalies to detect potential threats or APT activities. Leverage threat intelligence feeds and the MITRE ATT&CK framework to build and validate detection use cases. Collaborate with SOC teams to enhance detection rules and reduce false positives. Conduct forensic investigations and perform root cause analysis on incidents and suspicious behaviors. Develop custom scripts and queries (Python, PowerShell, Bash) for automating hunting activities in EDR, SIEM, and XDR platforms. Document and share threat hunting reports, IOCs, and actionable recommendations with relevant stakeholders. Vulnerability Assessment & Penetration Testing (VAPT) Conduct vulnerability assessments and penetration tests on systems, applications, networks, and APIs. Analyze vulnerabilities, assess risks, and deliver detailed, actionable reports to technical teams. Use a combination of automated tools (e.g., Nessus, Burp Suite, Nmap, Metasploit) and manual techniques to identify security flaws. Ensure all assessments adhere to internal policies and regulatory standards. Perform periodic and ad-hoc security assessments for web applications, databases, wireless, and cloud environments. Collaborate with IT teams to validate remediations through re-testing and follow-ups. Stay current on emerging vulnerabilities, exploit techniques, and threat actor tactics. Qualifications & Skills Bachelor’s degree in Computer Science, Information Security, or a related discipline. 5+ years of experience in a cybersecurity role with hands-on work in threat hunting and VAPT. Strong expertise in VAPT tools and methodologies: Nessus, Burp Suite, Nmap, Metasploit, OWASP Top 10. Experience with SIEMs, EDR platforms, and threat intelligence tools. Working knowledge of the MITRE ATT&CK framework. Proficient in scripting languages such as Python, PowerShell, or Bash. Excellent analytical, investigative, and report-writing skills. Strong communication and stakeholder engagement abilities. Preferred Certifications OSCP – Offensive Security Certified Professional CEH – Certified Ethical Hacker GIAC – GCIH, GPEN, GWAPT CISSP – Certified Information Systems Security Professional CESM or other equivalent cybersecurity credentials Skills Soc,TTP,Troubleshooting

Logitech is the Sweet Spot for people who want their actions to have a positive global impact while having the flexibility to do it in their own way. JD - Principal Product Security Engineer Responsibilities Product Security Governance Develop, implement, and maintain comprehensive product security policies, standards, and procedures. Establish clear security requirements for all product development initiatives. Define and manage the product security risk assessment and threat modeling processes. Ensure adherence to industry standards and regulations (e.g., OWASP, GDPR, etc.). Conduct regular security reviews and audits of products and processes. Product Security Tooling Evaluate, select, and implement cutting-edge security tools for static and dynamic analysis, vulnerability scanning, and penetration testing. Manage and optimize the configuration and usage of these tools to maximize their effectiveness. Integrate security tools into the software development lifecycle (SDLC) and CI/CD pipelines. Provide training and support to development teams on the effective use of security tools. R&D Security Support Partner with R&D teams to identify and mitigate security risks early in the design phase. Conduct secure code reviews and provide actionable feedback to developers. Assist in the investigation and remediation of security incidents related to products. Foster a security-conscious culture within R&D through training, mentorship, and collaboration. Additional Responsibilities Stay abreast of the latest security threats, vulnerabilities, and mitigation techniques. Research emerging security technologies and trends to inform future strategies. Represent the company on product security matters to internal and external stakeholders. Working with Multiple Teams To cover the entire organization, the Principal Product Security Engineer will work closely with multiple teams, including: Product Management: to understand product requirements and ensure that security features are aligned with business objectives. Engineering: to integrate security tools into the development process and provide guidance on secure coding practices. Quality Assurance: to collaborate on security testing and validation activities. Operations: to ensure that security measures are implemented and maintained in production environments. Risk and Compliance: to assess and manage product security risks and ensure compliance with regulations. By working with these teams, the Principal Product Security Engineer can ensure that security is embedded throughout the organization and that all products are developed and deployed with the highest level of security. Across Logitech we empower collaboration and foster play. We help teams collaborate/learn from anywhere, without compromising on productivity or continuity so it should be no surprise that most of our jobs are open to work from home from most locations. Our hybrid work model allows some employees to work remotely while others work on-premises. Within this structure, you may have teams or departments split between working remotely and working in-house. Logitech is an amazing place to work because it is full of authentic people who are inclusive by nature as well as by design. Being a global company, we value our diversity and celebrate all our differences. Don’t meet every single requirement? Not a problem. If you feel you are the right candidate for the opportunity, we strongly recommend that you apply. We want to meet you! We offer comprehensive and competitive benefits packages and working environments that are designed to be flexible and help you to care for yourself and your loved ones, now and in the future. We believe that good health means more than getting medical care when you need it. Logitech supports a culture that encourages individuals to achieve good physical, financial, emotional, intellectual and social wellbeing so we all can create, achieve and enjoy more and support our families. We can’t wait to tell you more about them being that there are too many to list here and they vary based on location. All qualified applicants will receive consideration for employment without regard to race, sex, age, color, religion, sexual orientation, gender identity, national origin, protected veteran status, or on the basis of disability. If you require an accommodation to complete any part of the application process, are limited in the ability, are unable to access or use this online application process and need an alternative method for applying, you may contact us toll free at +1-510-713-4866 for assistance and we will get back to you as soon as possible.

Job Description: About Us At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities and shareholders every day. One of the keys to driving Responsible Growth is being a great place to work for our teammates around the world. We’re devoted to being a diverse and inclusive workplace for everyone. We hire individuals with a broad range of backgrounds and experiences and invest heavily in our teammates and their families by offering competitive benefits to support their physical, emotional, and financial well-being. Bank of America believes both in the importance of working together and offering flexibility to our employees. We use a multi-faceted approach for flexibility, depending on the various roles in our organization. Working at Bank of America will give you a great career with opportunities to learn, grow and make an impact, along with the power to make a difference. Join us! Global Business Services Global Business Services delivers Technology and Operations capabilities to Lines of Business and Staff Support Functions of Bank of America through a centrally managed, globally integrated delivery model and globally resilient operations. Global Business Services is recognized for flawless execution, sound risk management, operational resiliency, operational excellence and innovation. In India, we are present in five locations and operate as BA Continuum India Private Limited (BACI), a non-banking subsidiary of Bank of America Corporation and the operating company for India operations of Global Business Services. Process Overview This Vulnerability Analyst role supports Bank of America’s Attack Surface & Vulnerability Management (ASVM) team. ASVM is a global function, with teammates in the Americas, EMEA and APAC, that is responsible for evaluation and prioritization of security vulnerabilities to enable appropriate remediation across the company. This role will join a team of vulnerability analysts leveraging technical and analytic skills to assess cyber security related risks based on an understanding of the bank’s attack surface, control environment and threat landscape. Among other things, this will involve data mining efforts to answer the following three questions: Do we have it? Are we vulnerable? Is it exploitable? In addition, this role will assist with reporting and tracking of vulnerability risks that impact the organization. Job Description This role will join a team of vulnerability analysts leveraging technical and analytic skills to assess cyber security related risks based on an understanding of the bank’s attack surface, control environment and threat landscape. Among other things, this will involve data mining efforts to answer the following three questions: Do we have it? Are we vulnerable? Is it exploitable? In addition, this role will assist with reporting and tracking of vulnerability risks that impact the organization. Responsibilities Evaluate and rate vulnerabilities using available data sources, tools and leveraging new data sources as needed. Analyze environmental conditions as it relates to vulnerabilities, threat scenarios, and mitigating controls. Search systems of record and scan tool output to identify whether vulnerable products are present in our environment Manage reporting, tracking and research updates for “watch list” vulnerabilities Identification of data ingestion errors or quality concerns with intelligence feed and escalation to vendor for remediation Coordination with threat intelligence teams Confirmation of ratings with downstream stakeholders Participate in follow-the-sun handoff communications to ASVM teammates in other regions Requirements Education BE/BTECH/MCA/MSC (IT) equivalent (Any Technical Degree) Certifications If Any : NA Experience Range :6+ Years Foundational Skills Broad knowledge of information security principles Understanding of Vulnerability Management principles and Risk Assessment methodologies Wide knowledge of application and IT products, interoperability, and IT security Familiarity with industry standard scoring models such as CVSS Familiarity with industry standard data models such as CPE Familiarity with OWASP Top 10 vulnerabilities, SANS 25, MITRE Attack, and CWEs Effective communication skills Process oriented with keen attention to detail Excellent analytical skills/problem solving/conceptual thinking Strong work ethic and ability to effectively multi-task in a fast-paced support environment Highly motivated and willing to learn Desired Skills Experience as a Vulnerability or Threat Analyst Knowledge of vulnerability attack methods, exploit results, attack chains Experience operationalizing MITRE Attack & TTPs in vulnerability prioritization Knowledge of Linux and Windows Operating Systems Familiarity with basic program languages such as Python and Java Experience conducting vulnerability assessments, code reviews and penetration tests against system and application technologies, services, platforms and languages to find flaws and exploits (e.g., SQL Injection, Cross-Site Scripting, Cross-Site Request Forgery, Clickjacking, Authentication/Authorization, Privilege Escalation, Business Logic Bypass) Knowledge of container/cloud risk management Work Timings 1:30PM - 10:30PM (IST) Job Location* Chennai/Mumbai

Position Description Company Profile: At CGI, we’re a team of builders. We call our employees members because all who join CGI are building their own company - one that has grown to 72,000 professionals located in 40 countries. Founded in 1976, CGI is a leading IT and business process services firm committed to helping clients succeed. We have the global resources, expertise, stability and dedicated professionals needed to achieve. At CGI, we’re a team of builders. We call our employees members because all who join CGI are building their own company - one that has grown to 72,000 professionals located in 40 countries. Founded in 1976, CGI is a leading IT and business process services firm committed to helping clients succeed. We have the global resources, expertise, stability and dedicated professionals needed to achieve results for our clients - and for our members. Come grow with us. Learn more at www.cgi.com. This is a great opportunity to join a winning team. CGI offers a competitive compensation package with opportunities for growth and professional development. Benefits for full-time, permanent members start on the first day of employment and include a paid time-off program and profit participation and stock purchase plans. We wish to thank all applicants for their interest and effort in applying for this position, however, only candidates selected for interviews will be contacted. No unsolicited agency referrals please. Job Title: IT Security Professional Position: Systems Engineer/ Senior Systems Engineer Experience:2 - 6 Years Category: Software Development/ Engineering Main location: Mumbai Position ID: J0525-1868 Employment Type: Full Time Job Description : Direct Responsibilities Work on the remediation titles to be actionable – good understanding of vulnerabilities Provide data cleaning rules where needed – need understanding of Databases and Scripting Coordinate with Global counterparts Automatize reporting in GCSD – experience in scripting. Work closely with regional production security teams to transition scanning & reporting activities Document SOP for operational teams (tools maintenance and IVM activities) Contributing Responsibilities Contribute to the Permanent Control framework for implementation of policies and procedures in day-to-day business activities, such as Control Plan Contribute to Internal Audit response activities. Comply with regulatory requirements and internal guidelines. Contribute to improvement of tools used by Production Security to follow-up on the Security Incidents Must Have: OWASP methodologies application is a mandatory. 2 – 4-year experience in IT Security minimum University degree, preferably in Computer Science with spec. in IT Security Experience working in an international and complex financial environment, dealing with both business constraints and IT users across countries. Good knowledge of Security scanning tools like Qualys, Nexpose, Appspider is highly appreciated along with good understanding of Kubernetes. Experience in a multi-cultural environment is appreciated. CEH or Any Security certifications are appreciated. Good To Have: Experience in Development languages and scripting is appreciated. Note: This job description is a general outline of the responsibilities and qualifications typically associated with the Virtualization Specialist role. Actual duties and qualifications may vary based on the specific needs of the organization. CGI is an equal opportunity employer. In addition, CGI is committed to providing accommodations for people with disabilities in accordance with provincial legislation. Please let us know if you require a reasonable accommodation due to a disability during any aspect of the recruitment process and we will work with you to address your needs. Your future duties and responsibilities Required Skills & Qualifications: Business skills: Architecture (Mastered) Knowledge of Data (Mastered) Computer tests (Expert) IT infrastructure (Expert) Transversal skills: Analytical capacity (Expert) Ability to lead a meeting, a seminar, a committee, a training session, etc. (Mastered) Ability to understand, explain and lead change (Mastered) Ability to define relevant performance indicators (Mastered) Ability to work with Agile methods (Mastered) Behavioral skills: Ability to share/transmit knowledge (Expert) Be results oriented (Expert) Creativity & Innovation / Ability to solve problems (Expert) Ability to collaborate / teamwork (Expert) Develop and maintain system documentation, including configuration guides, and standard operating procedures. Direct and be responsible for the implementation effort. Provide technical guidance and mentorship to team members. Assess demand for their service or technology area and develop plans to meet future capacity needs and makes recommendations to the manager. Aware of all critical changes to infrastructure and applications that could impact service delivery to their business customers. Able to work autonomously and as part of a team using strong analytical skills. Be service oriented, customer focused, positive, committed and have an enthusiastic “can do” attitude. Demonstrate a systematic and logical approach to problem-solving. Able to follow the bank’s standards, processes, and procedures. Escalating incidents internally or to 3rd party partners when required. Required Qualifications To Be Successful In This Role Bachelor’s degree in Computer Science, Engineering, or related field preferred. Your future duties and responsibilities Required Qualifications To Be Successful In This Role Together, as owners, let’s turn meaningful insights into action. Life at CGI is rooted in ownership, teamwork, respect and belonging. Here, you’ll reach your full potential because… You are invited to be an owner from day 1 as we work together to bring our Dream to life. That’s why we call ourselves CGI Partners rather than employees. We benefit from our collective success and actively shape our company’s strategy and direction. Your work creates value. You’ll develop innovative solutions and build relationships with teammates and clients while accessing global capabilities to scale your ideas, embrace new opportunities, and benefit from expansive industry and technology expertise. You’ll shape your career by joining a company built to grow and last. You’ll be supported by leaders who care about your health and well-being and provide you with opportunities to deepen your skills and broaden your horizons. Come join our team—one of the largest IT and business consulting services firms in the world.

> Role Purpose The purpose of this role is to analyse, identify, rectify & recommend specific improvement measures that help in the security posture of the organization by protecting the sensitive information Do Ensuring customer centricity by providing apt cybersecurity Monitoring and safeguarding the log sources and security access Planning for disaster recovery in the event of any security breaches Monitor for attacks, intrusions and unusual, unauthorized or illegal activity Performs moderately complex log reviews and forensic analysis to identify unauthorized or unacceptable access to data or systems Conduct security assessments, risk analysis and root cause analysis of security incidents Handling incidents escalated by the L1 team in 24x7 rotational shifts Use advanced analytics tools to determine emerging threat patterns and vulnerabilities Completing all tactical security operations tasks associated with this engagement. Analyses all the attacks and come up with remedial attack analysis Conduct detailed analysis of incidents and create reports and dashboards Stakeholder coordination & audit assistance Liaise with stakeholders in relation to cyber security issues and provide future recommendations Maintain an information security risk register and assist with internal and external audits relating to information security Assist with the creation, maintenance and delivery of cyber security awareness training for colleagues Advice and guidance to employees on issues such as spam and unwanted or malicious emails Deliver No. Performance Parameter Measure 1. Customer centricity Timely security breach solutioning to end users, Internal stakeholders & external customers experience 2. Process Adherence Adherence to SLAs (90-95%), response time and resolution time TAT

Job Description The Application Security Testing Manager will be responsible for leading a team of security testers and ensuring the security and integrity of software applications within G&B. This role involves planning, executing, and overseeing security assessments, identifying vulnerabilities, and driving their remediation. Qualification Details Essential Qualification: Bachelors or Masters degree in computer science, cybersecurity, or a related field. Excellent communication skills. Strong problem-solving and analytical abilities. Preferred Qualification: same as above Experience Details Essential Experience: Proven experience (typically 5+ years) in application security testing and vulnerability assessment. Familiarity with security testing tools such as Burp Suite, OWASP ZAP, Nessus, and others. Proficiency in programming and scripting languages (e.g., Python, Java) for security testing and automation. Strong understanding of software development lifecycles and secure coding practices. Experience with security standards, frameworks, such as OWASP Preferred Experience: same as above Special Skill Excellent communication skills. Strong problem-solving and analytical abilities.

Senior Application Security (DevSecOps) Engineer*Location:*India (Bangalore/Chennai/Hybrid) Team:*Application Security / DevSecOps Reports to:*Head of Application Security *Pearson seeking a highly motivated and experienced Senior Application Security (DevSecOps) Engineer with a strong background in DevOps, Application Security, and Cloud Security. In this role, you will lead and support the integration of security controls into CI/CD pipelines and cloud environments, working closely with developers, SREs, and cloud platform teams. The ideal candidate has hands-on experience in building and scaling security automation in enterprise-grade environments. Responsibilities*Application security SME for ongoing GitHub migration program Integrate SAST, SCA, IaC scanning, and DAST tools into CI/CD pipelines (e.g., GitHub Actions, Jenkins, GitLab CI). Drive security initiatives within GitHub Enterprise Security (code scanning, secret scanning, dependency management). Collaborate with development, SRE, and cloud teams to embed security into SDLC and DevOps workflows. Manage and optimize CSPM tools (e.g., Rapid7 ICS, Prisma Cloud, Wiz, Lacework) to enforce security policies across cloud assets. Create and maintain reusable security automation patterns and scripts (e.g., GitHub Actions, Terraform modules). Support application security reviews and recommend mitigations for security findings. Build dashboards and metrics to track pipeline coverage, tool effectiveness, and SLA adherence. Provide guidance and hands-on support during secure development, threat modeling, and remediation planning. Advocate for security best practices in engineering forums and architecture discussions. Skills & Experience Required*5\u20137 years of experience in a DevSecOps, Application Security, or DevOps Security role. Strong working knowledge of: Extensive experience in GitHub Enterprise and related security capabilities specially security tool integrations and automations CI/CD pipeline integration of security tooling. Cloud platforms (AWS, Azure, GCP) and hands-on experience with CSPM solutions. Working experience in Application security tools (SAST, DAST, SCA, IaC) Sound working experience in scripting and programming languages Experience collaborating with software engineers, cloud teams, and SREs in a security capacity. Good understanding of OWASP Top 10, secure coding practices, and DevOps lifecycle. Proficient in scripting (e.g., Python, Bash) and automation (e.g., GitHub Actions, Terraform, Ansible). Nice to Have*Experience with threat modelling or security architecture reviews Knowledge of container security and Kubernetes security controls (e.g., Kube-bench, Trivy) Exposure to risk and vulnerability management workflows (e.g., Jira, ServiceNow, Qualys) Key Success Areas for the Candidates*Becoming a security \u2018guru\u2019 for