Role: Infosec Manager Ways of Working – Work from Office- Be in Office -3 days (Tuesday/Wed/Thursday) Location: Bangalore | Karnataka Year of Experience: Minimum 10 years of experience in the security domain with exposure to Security Products About the Team & Role: Position Overview: We are seeking a highly experienced and proactive Information Security Manager to lead our security initiatives. This role requires deep expertise in threat analysis, SIEM tools (Splunk, SentinelOne), and major security frameworks (OWASP, NIST). The ideal candidate will be responsible for identifying and mitigating technical risks, enhancing security tools, preparing intelligence reports, and providing technical leadership to a team. Candidates should have a minimum of 10 years in the security domain, strong experience with cloud security (Google, Microsoft, AWS), scripting (Python, PowerShell), and security event log analysis. Excellent communication and problem-solving skills are essential. Preferred qualifications include SIEM and vulnerability management experience, relevant security certifications (Security+, CEH, GCIH), and a Bachelor's degree in a related field. What will you get to do here? Initial point of contact for client requirements and operational escalation Proactively identify technical and architectural risks, and work effectively to mitigate them Research, plan, and implement new tool features to make security tools more effective and add value Prepare and present Security Intelligence Reports Provide technical direction to Associates and Analysts within the team Assist in investigations of high-level, complex violations of information security policies Report security performance against established security metrics Provide deep subject matter expertise in architecture, policy, and operational processes for threat analysis and client escalation Provide guidance and support to 3rd-level technical support, including architecture review, rules and policy review/tuning Establish and communicate extent of threats, business impacts, and advise on containment and remediation Collaborate with other BUs on security gaps and educate teams on cybersecurity importance Manage platforms and vendors What qualities are we looking for? Minimum 10 years of experience in the security domain with exposure to Security Products Experience with methodologies and tools for threat analysis of complex systems, such as threat modeling SME knowledge of SIEM tools (Splunk), SentinalOne, CASB tool (NetSkope), DLP, etc. Understanding of major security frameworks (OWASP, CWE, SANS, NIST, etc.) SME-level knowledge of the current threat landscape Experience securing applications deployed on cloud platforms (Google, Microsoft, AWS) Knowledge and experience with scripting languages like Python, PowerShell Experience with security operations program development Proficiency with security event log analysis and various event logging systems Excellent verbal and written communication skills Ability to learn and retain new skills in a changing technical environment Willingness to learn new technology platforms SIEM experience and Vulnerability Management Recognized network and security certifications (Security+, CEH, ECIH, GCIH, etc.) Experience with Wireshark and packet sniffing tools Python development experience Bachelor's degree in Computer Science, Engineering, or a related field Strong proficiency in programming languages (Java, Shell, JavaScript, Python) Excellent problem-solving skills and attention to detail Strong communication and teamwork abilities Expertise with privacy software Visit our tech blogs to learn more about some of the challenging Problem Statements the team works at:- https://bytes.swiggy.com/engineering-challenges-at-swiggy-430dea6c86a3 https://bytes.swiggy.com/the-swiggy-delivery-challenge-part-one-6a2abb4f82f6 https://bytes.swiggy.com/what-serviceability-means-at-swiggy-c94c1aad352a https://bytes.swiggy.com/architecture-and-design-principles-behind-the-swiggys-delivery-partner s-app-4db1d87a048a https://bytes.swiggy.com/swiggy-distance-service-9868dcf613f4 https://bytes.swiggy.com/the-tech-that-brings-you-your-food-1a7926229886 We are an equal opportunity employer, and all qualified applicants will receive consideration for employment without regard to race, colour, religion, sex, disability status, or any other characteristic protected by the law.

Security Test Engineer Hyderabad, India Information Technology 307720 Job Description About The Role: Grade Level (for internal use): 10 The Team: Security Testing Team In The Quality Engineering Space Plays A Crucial Role In Safeguarding Business Operations By Identifying Vulnerabilities And Ensuring Robust Protection Against Cyber Threats. Through Meticulous Testing Practices, We Enhance The Security Posture Of Applications, Thereby Reducing The Risk Of Data Breaches And Financial Loss. By Integrating Security Measures Early In The Development Lifecycle, The Team Helps Streamline Processes, Minimize Disruptions, And Ultimately Contribute To Greater Business Efficiency And Resilience. S&P Global Ratings Is The World’s Leading Provider Of Independent Credit Ratings. Our Ratings Are Essential To Driving Growth, Providing Transparency, And Helping Educate Market Participants So They Can Make Decisions With Confidence. We Have More Than One Million Credit Ratings Outstanding On Government, Corporate, Financial Sector And Structured Finance Entities And Securities. We Offer An Independent View Of The Market Built On A Unique Combination Of Broad Perspective And Local Insight. We Provide Our Opinions And Research About Relative Credit Risk; Market Participants Gain Independent Information To Help Support The Growth Of Transparent, Liquid Debt Markets Worldwide. What Is In It For You: Serve As A Highly Technical Security Expert To Bring Security Transformation To Both New And Legacy Applications In Quality Engineering Space. Using A Wide Range Of Cutting-Edge Technology To Innovate While Testing. An Ever-Challenging Environment To Hone Your Existing Skills In Security Testing, Automation, Python Programming, Bash Scripting Etc. Being A Part Of An Organization Which Values ‘Culture Of Urgency’ And ‘Shift Left’ Approaches. Gain The Opportunity To Apply Your Strategic Thinking Alongside Technical Skills To Safeguard Our Systems Defending Against Emerging Cyber Threats. A Plenty Of Skill Building, Knowledge Sharing, And Innovation Opportunities. Building A Fulfilling Career With A Global Financial Technology Company. Responsibilities: This Role Will Involve Designing And Executing Security Tests, Identify Vulnerabilities, And Drive Remediation Strategies While Collaborating With Cross-Functional Teams In An Agile Environment. Understand The Application’s Security Requirements And Identify & Document The Scope Of The Test. Develop And Maintain Security Testing Automation Using Tools Like Burp Suite, ZAP, Or Similar Tools. Integrate Security Testing Into CI/CD Pipelines. Automate Processes And Workflows Using Python To Minimize Manual Work. Collaborate With Development, QE, And DevOps Teams To Investigate Security Incidents, Perform Root Cause Analysis, And Validate Security Fixes. Oversee Results And Logs To Analyze, Prioritize, And Initiate Remediation For Findings Identified By Security Tools During SAST, DAST, SCA, Artifact Scanning, Container Scanning, Etc... Prepare Detailed Reports Summarizing Test Results, Logs, Findings, And Recommendations For Strengthening Overall Security Of An Application. Create And Track Security Metrics, KPIs, And KRIs To Measure Operational Effectiveness. Prepare Comprehensive Reports For Senior Management On Security Performance And Strategic Initiatives. Work Independently, Providing Recommendations, And Leading The Accomplishments Of The Tasks From Inception To Completion. Demonstrate Outstanding Flexibility And Leadership With Proper Communication Of Security Testing Result Interpretation And Explanation To Audience. Participate In Daily Stand-Up Calls, Works Closely With The Agile Manager To Know The Deliverables And Commitments Of Each Release. Actively Taking Part In Resolving Critical Security Issues And Coming Up With Solutions To Mitigate The Same. Basic Qualifications Bachelor's Or Master’s Degree In Electronics And Communication, Computer Science, Cybersecurity, Or Related Fields. 6 To 9 Years Of IT Experience With Relevant Professional Experience Of Minimum 4 Years In The Field Of Cyber Security Testing. Should Have Strong Hands-On Experience In Security Testing, Penetration Testing, And Vulnerability Assessment. Strong Experience In Web, API, And Cloud Security Testing. Clear Understanding Of Security Vulnerabilities, Exploits, And Mitigation Techniques Strong Grasp Of The OWASP Top 10 Vulnerabilities And Effective Mitigation Strategies. Hands-On Experience With Security Testing Tools Such As Burp Suite, OWASP ZAP, Wireshark, Nessus, OpenSSL And Crypto Validation Tools. Proficiency In SAST/DAST Tools And Security Frameworks Like OWASP Top 10, CIS Benchmarks, And CVSS. Hands-On Experience With Selenium, Pytest, And RestAssured API Testing Using Python. Strong Hands-On Experience With Scripting And Programming Languages Including Python, PowerShell, Bash For Security Tasks. Familiarity With RESTful APIs, Webhooks, And Integration Of Third-Party Security Tools And Services Via Automation. Knowledge Of DevSecOps Practices And Integrating Security In CI/CD Pipelines. Self-Motivated And Driven To Stay Updated With The Latest Security Trends, Technologies, And Best Practices, Maintain High Level Of Accuracy In Security Assessments. Ability To Analyze And Communicate Complex Cybersecurity And Technical Challenges To Technical And Non-Technical Users, Leaders, And Stakeholders. Experience Collaborating With Cross Functional Global And Remote Teams With Diverse Backgrounds. Should Be Able To Work Under A Competitive Time Frame And Deliver. Should Be A Very Fast Learner And Have The Excellent Problem-Solving Ability. Should Have Excellent Written And Verbal Communication Skills. Nice To Have Skills: Security Certifications Like CISSP, CEH, CISM, OSCP Or CompTIA Security+ Shall Be Having The Preference. Hands-On Experience In Building AI-Powered Security Tools, Chatbots, And Agent-Driven Automation Pipelines. Knowledge On Agentic AI Frameworks, LLMs, And Orchestration Libraries Like LangChain, CrewAI Or RAG-Based Architectures. Grade: 10 Location: Hyderabad Shift Time: 11am To 8pm / 12pm To 9pm IST Hybrid Model: Twice A Week Work From Office About S&P Global Ratings At S&P Global Ratings, our analyst-driven credit ratings, research, and sustainable finance opinions provide critical insights that are essential to translating complexity into clarity so market participants can uncover opportunities and make decisions with conviction. By bringing transparency to the market through high-quality independent opinions on creditworthiness, we enable growth across a wide variety of organizations, including businesses, governments, and institutions. S&P Global Ratings is a division of S&P Global (NYSE: SPGI). S&P Global is the world’s foremost provider of credit ratings, benchmarks, analytics and workflow solutions in the global capital, commodity and automotive markets. With every one of our offerings, we help many of the world’s leading organizations navigate the economic landscape so they can plan for tomorrow, today. For more information, visit www.spglobal.com/ratings What’s In It For You? Our Purpose: Progress is not a self-starter. It requires a catalyst to be set in motion. Information, imagination, people, technology–the right combination can unlock possibility and change the world. Our world is in transition and getting more complex by the day. We push past expected observations and seek out new levels of understanding so that we can help companies, governments and individuals make an impact on tomorrow. At S&P Global we transform data into Essential Intelligence®, pinpointing risks and opening possibilities. We Accelerate Progress. Our People: We're more than 35,000 strong worldwide—so we're able to understand nuances while having a broad perspective. Our team is driven by curiosity and a shared belief that Essential Intelligence can help build a more prosperous future for us all. From finding new ways to measure sustainability to analyzing energy transition across the supply chain to building workflow solutions that make it easy to tap into insight and apply it. We are changing the way people see things and empowering them to make an impact on the world we live in. We’re committed to a more equitable future and to helping our customers find new, sustainable ways of doing business. We’re constantly seeking new solutions that have progress in mind. Join us and help create the critical insights that truly make a difference. Our Values: Integrity, Discovery, Partnership At S&P Global, we focus on Powering Global Markets. Throughout our history, the world's leading organizations have relied on us for the Essential Intelligence they need to make confident decisions about the road ahead. We start with a foundation of integrity in all we do, bring a spirit of discovery to our work, and collaborate in close partnership with each other and our customers to achieve shared goals. Benefits: We take care of you, so you can take care of business. We care about our people. That’s why we provide everything you—and your career—need to thrive at S&P Global. Our benefits include: Health & Wellness: Health care coverage designed for the mind and body. Flexible Downtime: Generous time off helps keep you energized for your time on. Continuous Learning: Access a wealth of resources to grow your career and learn valuable new skills. Invest in Your Future: Secure your financial future through competitive pay, retirement planning, a continuing education program with a company-matched student loan contribution, and financial wellness programs. Family Friendly Perks: It’s not just about you. S&P Global has perks for your partners and little ones, too, with some best-in class benefits for families. Beyond the Basics: From retail discounts to referral incentive awards—small perks can make a big difference. For more information on benefits by country visit: https://spgbenefits.com/benefit-summaries Global Hiring and Opportunity at S&P Global: At S&P Global, we are committed to fostering a connected and engaged workplace where all individuals have access to opportunities based on their skills, experience, and contributions. Our hiring practices emphasize fairness, transparency, and merit, ensuring that we attract and retain top talent. By valuing different perspectives and promoting a culture of respect and collaboration, we drive innovation and power global markets. S&P Global has a Securities Disclosure and Trading Policy (“the Policy”) that seeks to mitigate conflicts of interest by monitoring and placing restrictions on personal securities holding and trading. The Policy is designed to promote compliance with global regulations. In some Divisions, pursuant to the Policy’s requirements, candidates at S&P Global may be asked to disclose securities holdings. Some roles may include a trading prohibition and remediation of positions when there is an effective or potential conflict of interest. Employment at S&P Global is contingent upon compliance with the Policy. - Equal Opportunity Employer S&P Global is an equal opportunity employer and all qualified candidates will receive consideration for employment without regard to race/ethnicity, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, marital status, military veteran status, unemployment status, or any other status protected by law. Only electronic job submissions will be considered for employment. If you need an accommodation during the application process due to a disability, please send an email to: EEO.Compliance@spglobal.com and your request will be forwarded to the appropriate person. US Candidates Only: The EEO is the Law Poster http://www.dol.gov/ofccp/regs/compliance/posters/pdf/eeopost.pdf describes discrimination protections under federal law. Pay Transparency Nondiscrimination Provision - https://www.dol.gov/sites/dolgov/files/ofccp/pdf/pay-transp_%20English_formattedESQA508c.pdf - 20 - Professional (EEO-2 Job Categories-United States of America), IFTECH202.1 - Middle Professional Tier I (EEO Job Group) Job ID: 307720 Posted On: 2025-06-12 Location: Hyderabad, Telangana, India

Organizations everywhere struggle under the crushing costs and complexities of “solutions” that promise to simplify their lives. To create a better experience for their customers and employees. To help them grow. Software is a choice that can make or break a business. Create better or worse experiences. Propel or throttle growth. Business software has become a blocker instead of ways to get work done. There’s another option. Freshworks. With a fresh vision for how the world works. At Freshworks, we build uncomplicated service software that delivers exceptional customer and employee experiences. Our enterprise-grade solutions are powerful, yet easy to use, and quick to deliver results. Our people-first approach to AI eliminates friction, making employees more effective and organizations more productive. Over 72,000 companies, including Bridgestone, New Balance, Nucor, S&P Global, and Sony Music, trust Freshworks’ customer experience (CX) and employee experience (EX) software to fuel customer loyalty and service efficiency. And, over 4,500 Freshworks employees make this possible, all around the world. Fresh vision. Real impact. Come build it with us. Job Description In Freshworks, as a Lead Cloud Security Engineer, you will play a role in ensuring the security and compliance of our cloud infrastructure. In this role, you’ll be at the forefront of securing our cutting-edge cloud infrastructure, implementing advanced security strategies, and driving proactive security measures. Responsibilities: Support cross-team security initiatives of internal teams and consult with teams on security in design Engineer and tune the cloud security solutions including but not limited to enrollments, monitoring, alerting and maintaining defined security posture. Designing a secure application-release automation process to make security an integral part of the CI/CD pipelines and Integrate security tools for issue tracking with Jira. Identifying security tools and leading operationalization of solutions from POC to Production. Implementing automation to investigation and response workflows for Automated Incident Response. Reduce time-to-detect and time-to-remediate by driving the automation of applied threat intelligence and sensor enrichment. Work with Architecture teams to Implement an identity management ecosystem holistically and create a secure infrastructure, Enforce compliance with IAM principals including least privilege access, password management, Audit logging, RBAC, deploy and maintain password management, user account lifecycle, certificate management and system authentication solutions Improve Web App Firewalls (WAF/DDoS), Ensure early Identification of intrusion & attacks and implement countermeasures Implement security measures that monitor and protect sensitive data and systems from infiltration and cyber-attacks. Develop innovative security controls to protect assets across a complex environment Implement security orchestration and automation in support of security operations. Act as a first-responder for security-related incidents. Qualifications At least 5-8 years of total experience in Cyber security including Incident response, Engineering, Cloud architectures, Tuning etc. At least 3+ years of experience and hands-on expertise in SIEM, WAF/DDOS, Cloud Security and/or Opensource development. Experience in Kubernetes and containerized environments. Must have proficiency with scripting languages (Batch scripting, Python and Ansible). Must have experience in Monitoring and improving DevSecOps tools and processes, automate routine tasks, improve system reliability and should be from a strong information security background. Must have hands- on experience with Linux/Unix systems. Experience in developing and reviewing hardening guidelines for various Linux Operating systems in line with the industry best practices. Understanding of security frameworks and standards like OWASP & NIST, Solid understanding of security protocols, cryptography, authentication, authorization Good understanding of Linux, TCP/IP protocol stack and networking fundamentals, security principles at all layers of the OSI stack Should have broad technical foundation and be able to understand network, operating system, database and application development design and support as necessary to be able to analyse issues and recommend solutions for the detection, remediation and prevention of security vulnerabilities. Experience in designing and reviewing security controls for Public cloud based deployments. Experience of implementing any cloud based SIEM Tools will be an advantage. Experience with PKI, SSL, SSH, HTTPS etc Hands on knowledge of Automation skills, Dev-Ops skills etc. Additional Information At Freshworks, we are creating a global workplace that enables everyone to find their true potential, purpose, and passion irrespective of their background, gender, race, sexual orientation, religion and ethnicity. We are committed to providing equal opportunity for all and believe that diversity in the workplace creates a more vibrant, richer work environment that advances the goals of our employees, communities and the business. Show more Show less

Company Description TVS Credit Services Ltd. empowers Indians from various socio-economic backgrounds with timely and affordable credit, furthering financial inclusion across the nation. As part of the $8.5 billion TVS Group, the company offers financial products like two-wheeler, used car, three-wheeler, and tractor loans. These products are designed to support growth in India's small towns and rural areas. With an innovative entrepreneurial culture and initiatives like AIM and GURU, TVS Credit Services has won numerous awards and serves over 11 million customers, boasting a long-term CRISIL rating of AA (Stable). Role Description This is a full-time, on-site role located in Chennai for a Deputy Manager - Application Security. The Deputy Manager will be responsible for ensuring the security of applications by performing security assessments, managing security incidents, developing security standards, and collaborating with development teams to implement secure coding practices. Daily tasks include vulnerability assessments, threat modeling, risk assessments, and compliance monitoring. Qualifications Experience in Application Security, Security Assessments, and Vulnerability Assessments Knowledge of Secure Coding Practices, with hands on experience in Burp suite, Nessus and Postman API security testing VAPT - VA using nessus or related , PT - using Burpsuite/kalilinux Proficiency in Application Security and API security Strong Knowledge in SAST, SCA, DAST Familiarity with Security Standards and Frameworks (e.g., OWASP, NIST, ISO 27001) Strong analytical and problem-solving skills Excellent communication and collaboration abilities Ability to work independently and as part of a team Bachelor's degree in Computer Science, Information Security, or a related field Relevant certifications such as CISSP, CEH, or CISM are a plus Show more Show less

Organizations everywhere struggle under the crushing costs and complexities of “solutions” that promise to simplify their lives. To create a better experience for their customers and employees. To help them grow. Software is a choice that can make or break a business. Create better or worse experiences. Propel or throttle growth. Business software has become a blocker instead of ways to get work done. There’s another option. Freshworks. With a fresh vision for how the world works. At Freshworks, we build uncomplicated service software that delivers exceptional customer and employee experiences. Our enterprise-grade solutions are powerful, yet easy to use, and quick to deliver results. Our people-first approach to AI eliminates friction, making employees more effective and organizations more productive. Over 72,000 companies, including Bridgestone, New Balance, Nucor, S&P Global, and Sony Music, trust Freshworks’ customer experience (CX) and employee experience (EX) software to fuel customer loyalty and service efficiency. And, over 4,500 Freshworks employees make this possible, all around the world. Fresh vision. Real impact. Come build it with us. Job Description In Freshworks, as a Lead Cloud Security Engineer, you will play a role in ensuring the security and compliance of our cloud infrastructure. In this role, you’ll be at the forefront of securing our cutting-edge cloud infrastructure, implementing advanced security strategies, and driving proactive security measures. Responsibilities: Support cross-team security initiatives of internal teams and consult with teams on security in design Engineer and tune the cloud security solutions including but not limited to enrollments, monitoring, alerting and maintaining defined security posture. Designing a secure application-release automation process to make security an integral part of the CI/CD pipelines and Integrate security tools for issue tracking with Jira. Identifying security tools and leading operationalization of solutions from POC to Production. Implementing automation to investigation and response workflows for Automated Incident Response. Reduce time-to-detect and time-to-remediate by driving the automation of applied threat intelligence and sensor enrichment. Work with Architecture teams to Implement an identity management ecosystem holistically and create a secure infrastructure, Enforce compliance with IAM principals including least privilege access, password management, Audit logging, RBAC, deploy and maintain password management, user account lifecycle, certificate management and system authentication solutions Improve Web App Firewalls (WAF/DDoS), Ensure early Identification of intrusion & attacks and implement countermeasures Implement security measures that monitor and protect sensitive data and systems from infiltration and cyber-attacks. Develop innovative security controls to protect assets across a complex environment Implement security orchestration and automation in support of security operations. Act as a first-responder for security-related incidents. Qualifications At least 5-8 years of total experience in Cyber security including Incident response, Engineering, Cloud architectures, Tuning etc. At least 3+ years of experience and hands-on expertise in SIEM, WAF/DDOS, Cloud Security and/or Opensource development. Experience in Kubernetes and containerized environments. Must have proficiency with scripting languages (Batch scripting, Python and Ansible). Must have experience in Monitoring and improving DevSecOps tools and processes, automate routine tasks, improve system reliability and should be from a strong information security background. Must have hands- on experience with Linux/Unix systems. Experience in developing and reviewing hardening guidelines for various Linux Operating systems in line with the industry best practices. Understanding of security frameworks and standards like OWASP & NIST, Solid understanding of security protocols, cryptography, authentication, authorization Good understanding of Linux, TCP/IP protocol stack and networking fundamentals, security principles at all layers of the OSI stack Should have broad technical foundation and be able to understand network, operating system, database and application development design and support as necessary to be able to analyse issues and recommend solutions for the detection, remediation and prevention of security vulnerabilities. Experience in designing and reviewing security controls for Public cloud based deployments. Experience of implementing any cloud based SIEM Tools will be an advantage. Experience with PKI, SSL, SSH, HTTPS etc Hands on knowledge of Automation skills, Dev-Ops skills etc. Additional Information At Freshworks, we are creating a global workplace that enables everyone to find their true potential, purpose, and passion irrespective of their background, gender, race, sexual orientation, religion and ethnicity. We are committed to providing equal opportunity for all and believe that diversity in the workplace creates a more vibrant, richer work environment that advances the goals of our employees, communities and the business. Show more Show less

Job Responsibilities: Design, implement, and maintain secure cloud infrastructures across public and private cloud environments (AWS, OpenStack, Azure, GCP), ensuring the integration of best security practices and alignment with business goals. Develop and execute a comprehensive cloud security strategy that integrates security requirements into cloud architecture and development processes, focusing on continuous improvement and threat mitigation. Architect and implement robust network security solutions, including firewalls, intrusion detection systems (IDS/IPS), VPNs, and secure remote access, ensuring the confidentiality, integrity, and availability of cloud-based assets. Design, configure, and manage Web Application Firewalls (WAF) to protect web applications from external threats such as DDoS, SQL injection, cross-site scripting (XSS), and other OWASP Top 10 vulnerabilities. Conduct regular security assessments, penetration testing, and vulnerability assessments to identify and mitigate security risks in cloud environments and network infrastructure. Lead the automation of security processes, implementing infrastructure-as-code (IaC) for secure and compliant cloud deployments using tools such as Terraform and CloudFormation. Ensure compliance with industry standards and regulations (e.g., SOC 2, ISO 27001, GDPR, NIST). Establish incident response protocols for cloud environments, leading investigations and remediating security incidents across cloud and network infrastructures. Manage and integrate cloud security tools, including identity and access management (IAM), encryption solutions, cloud-native security services (e.g., AWS Guard Duty, Azure Security Centre), and third-party solutions like WAF and EDR. Provide guidance and mentorship to junior security engineers and other stakeholders on cloud security best practices, threat intelligence, and network security design. Maintain thorough documentation of cloud security architectures, configurations, incident response actions, and risk assessments. Regularly report to senior management on security posture and improvements. Stay up to date with the latest security threats, vulnerabilities, and mitigation techniques, especially for cloud security and network infrastructure. Proactively design solutions to combat emerging threats. Qualifications: 8+ years of experience leading security initiatives for enterprises in an information security (InfoSec) consultant or architect role. Prior experience as a team lead or role mentoring junior team members. AWS, CEH, OSCP, AWS Certified Security Specialty or CISSP Certifications preferred. Required Skills: Extensive experience in designing and implementing secure cloud infrastructures and services, with proficiency in one or more cloud platforms (AWS, OpenStack, Azure, Google Cloud). Deep understanding of network security concepts and practices including firewalls, VPNs, proxy servers, IDS/IPS, and network access control in cloud environments. Hands-on experience in implementing, configuring, and managing WAF solutions (e.g., AWS WAF, Azure WAF) to protect applications from external attacks, including DDoS, XSS, and SQL injections. Expertise in configuring and managing IAM policies, roles, and permissions in cloud environments to enforce least-privilege access and mitigate insider threats. Strong knowledge of security standards and frameworks such as ISO 27001, SOC 2, NIST, GDPR, and PCI-DSS, and experience ensuring compliance in cloud and network security projects. Experience with cloud-based security monitoring tools (e.g., AWS Guard Duty, Azure Sentinel) and leading incident response efforts for cloud security incidents. Experience conducting vulnerability assessments, penetration tests, and security audits to identify weaknesses and implement remediation strategies in cloud and network environments. Deep understanding of security architecture principles and designing systems with a “Security by Design” mindset to safeguard cloud and network infrastructure. Knowledge of data encryption techniques for data-at-rest and data-in-transit and securing data storage and communication in cloud environments. Ability to lead and mentor teams of security engineers, fostering collaboration across security, DevOps, and network engineering teams. Should be comfortable working with different teams and have good communication skills. About RTDS: Founded in 2010, Real Time Data Services (RTDS) is a group of companies excelling in global information technology, specializing in Cloud Computing and Cloud Telephony. We empower businesses worldwide with technologically advanced solutions that streamline operations and enhance efficiency. Being a market leader, we've catered to 10,000+ clients across the globe, consistently guaranteeing exceptional services. Our Mission: To become the forefront of Tech Global Leaders in Cloud Computing by striving towards excellence in our robust products & services, providing a competitive edge to our customers. Our Vision: Our vision is to achieve excellence through continuous improvement, innovation, and integrity, driven by a results-oriented and collaborative approach. Our Brands: AceCloud: AceCloud is a leading provider of high-performance, affordable cloud solutions for SMBs and enterprises. Its comprehensive suite of services includes: Public Cloud Private Cloud Cloud GPUs Kubernetes Infrastructure as a Service (IaaS) AWS Services Ace Cloud is working closely with AWS for the SMB and Startup verticals PAN India. We specialize in Cloud Assessment, AWS Migration, Application & Database Modernization as well as Data Analytic, Machine Learning and AI. With a strong emphasis on innovation and customer satisfaction, Ace Cloud offers single-click deployment and 24/7 human support to ensure seamless operations for its clients. Learn more: https://acecloud.ai/ Ace Cloud Hosting: Headquartered in Florida, USA, Ace Cloud Hosting is a leader in managed hosting with over 15 years of expertise in cloud-based technologies. Its services include: Accounting/Tax Application Hosting, Managed Security Services Managed IT Services and Hosted Virtual Desktop Solutions Learn More: https://www.acecloudhosting.com/ Key Highlights: Industry Experience: 15+ years in the industry serving over 8,000 clients globally with a team of 600+ employees Data Center Partners: 10+ data center partners located across the USA, UK, and India Strategic Partnerships: Microsoft Direct Partner under the CSP Program. Intuit Authorized Commercial Hosting Provider. AWS Advanced Consulting Partner with Storage & SMB Competencies VMware Enterprise Partner for Infrastructure & Desktop Virtualization solutions Accreditations and Memberships: ISO/IEC 27001:2022 Certified Registered with NASSCOM Member of the Internet Telephony Services Providers’ Association in the UK. Awards and Recognitions: Customer Service Department of the Year Stevie Award (2024) CPA Practice Advisor Readers' Choice Awards (2023) VMware Accelerating Cloud Provider Partner Award (2020) K2 Quality Award for Customer Satisfaction (2019) Great User Experience Award by FinancesOnline (2018) User Favourite Award by Accountex USA (2016) Contact Information Website: https://www.myrealdata.in Show more Show less

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. Attack & Penetration Testing - Senior As part of our Cyber Security team, you shall perform penetration testing which includes internet, intranet, wireless, web application, social engineering and physical penetration testing. You shall also perform in-depth analysis of penetration testing results and create report that describes findings, exploitation procedures, risks and recommendations. The opportunity We’re looking for Security Consultant / Senior Security Consultant with expertise in penetration testing. This is a fantastic opportunity to be part of a leading firm whilst being instrumental in the growth of a new service offering. Your Key Responsibilities Lead engagements from kickoff with clients through scoping engagements, penetration testing and reporting while adhering to the agreed scope and deadlines. Perform penetration testing which includes Network, web application, Mobile app (both Android & iOS), APIs Cloud Security, Thick Client application, wireless, social engineering, physical penetration testing. Execute penetration testing projects using the established methodology, tools and rules of engagements. Execute red team assessments to highlight gaps impacting organizations security postures. Identify and exploit security vulnerabilities in a wide array of systems in a variety of situations. Perform in-depth analysis of penetration testing results and create report that describes findings, exploitation procedures, risks and recommendations. Convey complex technical security concepts to technical and non-technical audiences including executives. Perform technical quality reviews and conduct technical conversations directly with clients. Keep uptodate with the latest techniques and concepts. Confident with OWASP Top 10 and SANS Top 25 vulnerabilities and ability to effectively communicate methodologies and techniques with development teams Utilize tools such as BurpSuite, Nessus, Nmap, Kali Linux, and Nessus for effective vulnerability assessment and penetration testing. Understanding and experience with Active Directory attacks. Stay up-to-date with the latest security threats, vulnerabilities, and best practices in vulnerability management. Knowledge of AI in Pentest, TCP/IP, OSI Layer, IPv4 & IPv6, Network Protocols and Wireless Communication skills preferred. Working knowledge with any scripting languages (e.g. Python, Perl, PHP, Ruby) to develop automated solutions that mitigate risks throughout the organization. Support SDLC and agile environments with application security testing and source code reviews. Serve as a mentor and guide to junior pen testers, sharing your knowledge, skills, and best practices to nurture their growth and development. Provide technical expertise and guidance to clients on remediation strategies and security best practices. Skills And Attributes For Success In-depth understanding of OWASP Top 10 vulnerabilities and their mitigation strategies. Good understanding of enterprise security controls in Active Directory / Windows environments Good to have knowledge in AI in pentest Understanding of TCP/IP network protocols. Understanding of network security and popular attacks vectors. Experience with Operation Technology / Internet of Things, Cloud technologies (AWS, Azure, GCP), Active Directory and 802.1x penetration testing Strong understanding of security principles, policies, and industry best practices Proven ability to lead client engagements, build strong client relationships, and deliver exceptional results. Excellent communication and presentation skills, both written and verbal. Demonstrated thought leadership in the cybersecurity field through publications, speaking engagements, or contributions to industry forums. Exceptional problem-solving skills, strategic thinking, and the ability to influence and lead. To qualify for the role, you must have BE/ B.Tech/ MCA or equivalent Minimum of 3 years of work experience in penetration testing which may include at least three of the following: Network, web application Mobile app (Android & iOS), Thick client, APIs, wireless, social engineering, physical and Red Team assessments. One of the following certifications: OSCP, OSCE, OSEP, OSWE, CREST, CRTE, eCPTX, or eWPTX Knowledge of Windows, Linux, UNIX, any other major operating systems. 3-9 years of work experience in Strategy and Operations projects Team management skills are preferred. Conduct technical discussions and perform technical Quality reviews. Familiarity with OWASP methodologies and application security vulnerabilities. Exceptional ability to educate and guide application developers in security best practices. Excellent communication, presentation, and interpersonal skills. Strong Word, Excel and PowerPoint skills. Ideally, you’ll also have Project management skills Certifications: OSCP, OSCE, CRTP, CRTO, CISSP, GPEN, GWAPT. What We Look For Who can perform penetration testing which includes internet, intranet, wireless, web application, social engineering and physical penetration testing and provide analysis for the testing results. What Working At EY Offers At EY, we’re dedicated to helping our clients, from start–ups to Fortune 500 companies — and the work we do with them is as varied as they are. You get to work with inspiring and meaningful projects. Our focus is education and coaching alongside practical experience to ensure your personal development. We value our employees and you will be able to control your own development with an individual progression plan. You will quickly grow into a responsible role with challenging and stimulating assignments. Moreover, you will be part of an interdisciplinary environment that emphasizes high quality and knowledge exchange. Plus, we offer: Support, coaching and feedback from some of the most engaging colleagues around Opportunities to develop new skills and progress your career The freedom and flexibility to handle your role in a way that’s right for you EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today. Show more Show less

Job Description Responsible for testing our product software. Depending upon your project’s need may lead to functional or non-functional testing and manual or automated testing for such apps. This is a technical leadership role that involves testing complex features and working independently while collaborating with other leaders to meet the project’s objectives. Depending upon the project's need, may lead less experienced testers in the team and supervise their work. Responsibilities Study business requirements and approved architecture to understand the broader testing context. Based on this, create high-quality test strategies and test scenarios using appropriate tools and techniques. Own end-to-end test planning and management of all quality control activities in your project including functional / non-functional testing and manual / automated testing as appropriate. Test complex features and requirements effectively with the aim of detecting maximum defects. Use a risk-based approach to plan testing across requirements to ensure a good balance between effort and effectiveness. Follow all applicable processes and prepare necessary artifacts. Guide less experienced testers on their work and review their work for quality, completeness, and process compliance. Work with other leads to plan and lead sprint planning, daily stand-ups, sprint demos, and retrospectives. Provide technical coaching to less experienced testers and share relevant feedback with their managers. Present own work and learnings at internal forums. Develop a strong T-shaped technical skillset by undergoing appropriate training and courses and attending relevant industry events. Participate in hiring junior testers by conducting technical interviews. Participate in activities like vendor risk assessment and tool qualification for vendors and tools relevant to testers’ work. Work closely with your manager to meet your own goals. Qualifications Education: Bachelor’s or Master's degrees in Computer Science and engineering (CSE) or equivalent STEM degrees are preferred; however, experienced candidates from other disciplines with strong software testing skills may also be considered. Experience At least 5 years of hands-on experience in testing complex, rich, and highly interactive web applications, or desktop applications. Candidates with web app testing experience should have strong hands-on experience in at least one of these – manual or automated frontend testing, backend testing with API testing, and non-functional testing (load, performance, security, etc.). Strong experience working with SDLC tools like TestRail, JIRA, Confluence, and Bitbucket. Strong experience working in Agile Scrum teams and knowledge of frameworks like Scrum. Skills Knowledge of software design fundamentals and architectural patterns applicable to your project (client-server, layered architecture, microservices, etc.) Strong hands-on testing skills based on your role in the project: functional testing, backend / API testing, non-functional testing, test automation. Strong knowledge of appropriate testing tools based on your role (e.g., Postman, LoadRunner, JMeter, OWASP ZAP, Selenium, Ranorex, etc.) In the case of automation testers, strong knowledge of scripting languages used at Cytel, e.g., C#.NET, JavaScript, Python. Excellent verbal and written English communication skills as well as excellent interpersonal skills and a collaborative mindset. ISTQB, CAST, CSTE, or similar certification preferred. Specializations like security testing, performance testing, etc. may require additional skills and specific experience. Show more Show less

Role: Technical Lead Location: Gurugram Office Experience – 8+ Years Role & Responsibilities: ● Conduct comprehensive vulnerability assessments on infrastructure, applications, and networks ● Prioritize vulnerabilities based on risk levels and provide actionable remediation plans ● Develop and maintain a robust vulnerability management lifecycle ● Perform manual and automated penetration tests on web applications, APIs, mobile apps, and networks ● Simulate real-world attacks to identify security weaknesses and validate controls ● Research and integrate emerging tools and techniques to enhance testing capabilities ● Integrate security controls into the CI/CD pipelines to ensure secure software development practices ● Automate security testing processes, including static and dynamic code analysis ● Perform in-depth security reviews of applications, including source code reviews and architecture analysis ● Advocate for security-by-design principles across all stages of the SDLC ● Develop and implement long-term strategies for improving overall security posture ● Engage in threat modeling and risk assessment for critical assets ● Secure Configuration Reviews ● Development and Implementation of Secure Coding / Secure Development Process/Framework ● Support for implementation of Secure Application Architecture for Applications ● Source Code, Application Security Reviews ● Implementation of SCA / SBOM controls ● Document findings, write detailed reports, and present results to technical and non-technical stakeholders ● Ensure compliance with security standards (e.g., OWASP, NIST, ISO 27001) ● Leading and mentoring team to achieve the objectives ● In-depth understanding of frameworks like MITRE ATT&CK, OWASP Top 10, and secure SDLC ● Provide expert guidance during incident response and post-breach analysis ● Collaborate with cross-functional teams, including IT, DevOps, and compliance ● Stay updated on emerging threats, vulnerabilities, and security technologies Disclaimer: IGT Solutions provides equal employment opportunities to all individuals based on job-related qualifications and ability to perform a job, without regard to age, gender, gender identity, sexual orientation, race, color, religion, creed, national origin, disability, genetic information, veteran status, citizenship or marital status, and to maintain a non-discriminatory environment free from intimidation, harassment or bias based upon these groups. Show more Show less

3Pillar Global builds breakthrough software products that power digital businesses. 3Pillar is an innovative product development partner whose solutions drive rapid revenue, market share, and customer growth for industry leaders in Software and SaaS, Media and Publishing, Information Services, and Retail. Leveraging a lean and agile approach, 3Pillar delivers value-generating, digital solutions with specialized product strategy and management, user experience design, as well as software and data engineering expertise across mobile, cloud, and disruptive technologies. 3Pillar's key differentiator is our Product Mindset. Our teams apply this mindset to build digital products that are customer-facing and revenue-generating. Our business-minded approach to agile development ensures that we align to client goals from the earliest conceptual stages through market launch and beyond. Job Description A minimum of 5+ years of experience/expertise in the following areas specified below: Java 8+, Angular, JSON, corespring, springboot, SQL, MongoDB, Oracle, Kafka, Protocols TCP UDP, microservices. experience in writing Unit test cases. Experience in Agile software development methodologies. Expertise in applying Object-Oriented Programming principles (abstraction, encapsulation). High-level design proficiency following UML / C4 / ArchiMate. Experience in creating and implementing well-tested, scalable, and performant enterprise-level systems. Practice and initiative mentoring other engineers and decision-makers throughout the organization. Good understanding of SOLID principles. Familiarity with OWASP. Proficiency in the English language. Regards Rajan Paul Apply for this job Show more Show less

This is Team of Application Security experts who were passionate about Security, Application layer attacks/protection mechanisms, threat intelligence, OWASP attacks. They are highly focused on emerging Security trends. Job description: Implement, configure, and maintain Web Application Firewalls (WAFs) to protect web applications and services from security threats, including bot attacks. Develop and maintain security policies and rules for WAFs to ensure that they are effective in preventing OWASP-Top-10 vulnerabilities for WAF and API, unauthorized access, data breaches, and other security incidents. Security assessments and penetration testing of web applications and services to identify vulnerabilities and recommend remediation measures. Collaborate with other security teams, developers to ensure that security best practices are followed in the design, development, deployment, and maintenance of features for web applications and bot management. Stay informed with emerging security threats, technologies, and best practices to continuously improve security posture and protect against new and evolving threats for WAF and API. Collaborate, participate in incident response and investigations as needed to identify the root cause of security incidents and prevent their recurrence. Responsible for making improvements of processes, systems or products to enhance performance of the job area. Problems and issues faced are difficult and may require understanding of broader set of issues. Problems typically involve consideration of multiple issues, job areas or specialties. Qualifications: Bachelor's (BE/B.Tech) or Master's degree in Computer Science, Information Security, or equivalent work experience for 5 years. Several years of experience on network protocols such as TCP, UDP, HTTP, DNS, SSL/TLS and web application security, with a focus on WAFs and bot mitigation. Experience with industry-leading WAFs such as Citrix NetScaler AppFirewall, Imperva, ModSecurity, or F5 BIG-IP ASM. Experience with programming C, C++ and scripting languages such as Python, Perl Strong analytical and problem-solving skills, with the ability to quickly identify and respond to security threats. Excellent communication and collaboration skills, with the ability to work effectively with a wide range of stakeholders. About Us: Cloud Software Group is one of the world’s largest cloud solution providers, serving more than 100 million users around the globe. When you join Cloud Software Group, you are making a difference for real people, each of whom count on our suite of cloud-based products to get work done — from anywhere. Members of our team will tell you that we value passion for technology and the courage to take risks. Everyone is empowered to learn, dream, and build the future of work. We are on the brink of another Cambrian leap -- a moment of immense evolution and growth. And we need your expertise and experience to do it. Now is the perfect time to move your skills to the cloud. Cloud Software Group is firmly committed to Equal Employment Opportunity (EEO) and to compliance with all federal, state and local laws that prohibit employment discrimination. All qualified applicants will receive consideration for employment without regard to age, race, color, creed, sex or gender, sexual orientation, gender identity, gender expression, ethnicity, national origin, ancestry, citizenship, religion, genetic carrier status, disability, pregnancy, childbirth or related medical conditions (including lactation status), marital status, military service, protected veteran status, political activity or affiliation, taking or requesting statutorily protected leave and other protected classifications. If you need a reasonable accommodation due to a disability during any part of the application process, please email us at AskHR@cloud.com for assistance. Show more Show less

3Pillar Global builds breakthrough software products that power digital businesses. 3Pillar is an innovative product development partner whose solutions drive rapid revenue, market share, and customer growth for industry leaders in Software and SaaS, Media and Publishing, Information Services, and Retail. Leveraging a lean and agile approach, 3Pillar delivers value-generating, digital solutions with specialized product strategy and management, user experience design, as well as software and data engineering expertise across mobile, cloud, and disruptive technologies. 3Pillar's key differentiator is our Product Mindset. Our teams apply this mindset to build digital products that are customer-facing and revenue-generating. Our business-minded approach to agile development ensures that we align to client goals from the earliest conceptual stages through market launch and beyond. Job Description A minimum of 5+ years of experience/expertise in the following areas specified below: Java 8+, Angular, JSON, corespring, springboot, SQL, MongoDB, Oracle, Kafka, Protocols TCP UDP, microservices. experience in writing Unit test cases. Experience in Agile software development methodologies. Expertise in applying Object-Oriented Programming principles (abstraction, encapsulation). High-level design proficiency following UML / C4 / ArchiMate. Experience in creating and implementing well-tested, scalable, and performant enterprise-level systems. Practice and initiative mentoring other engineers and decision-makers throughout the organization. Good understanding of SOLID principles. Familiarity with OWASP. Proficiency in the English language. Show more Show less

Location : Remote Role : Staff Engineer Experience : 8+ Responsibilities: ● Collaborate with the Engineering Group and Product team to understand requirements and design comprehensive solutions. ● Optimize applications for maximum speed, scalability, and security. ● Implement security and data protection measures. ● Build high-quality, reusable code for both frontend and backend applications. ● Document and communicate application design, topologies, and architecture clearly to peers and the business. ● Work closely with User Experience, Product Management, Engineering, and Marketing teams to create outstanding web experiences. ● Partner with Engineering and other teams to develop new frameworks, feature sets, and functionalities. ● Lead and coach team members, promoting thought leadership and project excellence. ● Provide technical leadership, ensuring adherence to best software engineering practices, such as TDD, continuous integration, delivery, and deployment. Must have experience requirements: ● Education and experience: ○ Bachelor’s or Master’s degree in Computer Science, Engineering, or a related field. ○ Minimum of 8+ years of professional experience in full-stack development. ● Technical Requirements: ○ Proficiency in JavaScript, including ES6 and beyond, asynchronous programming, closures, and prototypal inheritance. ○ Expertise in modern front-end frameworks/libraries (React, Vue.js). ○ Strong understanding of HTML5, CSS3, and pre-processing platforms like SASS or LESS. ○ Experience with responsive and adaptive design principles. ○ Knowledge of front-end build tools like Webpack, Babel, and npm/yarn. ○ Proficiency in Node.js and frameworks like Express.js, Koa, or NestJS. ○ Experience with RESTful API design and development. ○ Experience with Serverless.(Lambda, CloudFunctions) ○ Experience with GraphQL. ○ Experience with SQL databases (e.g., MySQL, PostgreSQL) and NoSQL databases (e.g., MongoDB, Redis). ○ Experience with caching & search frameworks. (Redis, ElasticSearch) ○ Proficiency in database schema design and optimization. ○ Experience with containerization tools (Docker, Kubernetes). ○ Experience with CI/CD pipelines (Jenkins, GitHub Actions, GitLab CI). ○ Knowledge of cloud platforms (AWS, Azure, Google Cloud). ○ Proficiency in testing frameworks and libraries (Jest, vitest, Cypress, Storybook). ○ Strong debugging skills using tools like Chrome DevTools, Node.js debugger. ○ Expertise in using Git and platforms like GitHub, GitLab, or Bitbucket. ○ Understanding of web security best practices (OWASP). ○ Experience with authentication and authorization mechanisms (OAuth, JWT). ○ System Security, Scalability, System Performance experience ● Leadership & Team: ○ Proven experience in leading and mentoring a team of developers. ○ Proven track record of delivering complex projects successfully. ○ Ability to conduct code reviews and provide constructive feedback. ○ Experience in agile methodologies (Scrum, Kanban). ○ Ability to manage project timelines and deliverables effectively. ○ Excellent verbal and written communication skills. ○ Ability to explain technical concepts to non-technical stakeholders. ○ Strong analytical and problem-solving skills. ○ Ability to troubleshoot and resolve complex technical issues. ○ Experience in working with cross-functional teams (designers, product managers, QA). ○ Ability to quickly learn and adapt to new technologies and frameworks. Perks: ● Day off on the 3rd Friday of every month (one long weekend each month) ● Monthly Wellness Reimbursement Program to promote health well-being ● Monthly Office Commutation Reimbursement Program ● Paid paternity and maternity leaves Show more Show less

Job Description: About Us At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities, and shareholders every day. One of the keys to driving Responsible Growth is being a great place to work for our teammates around the world. We’re devoted to being a diverse and inclusive workplace for everyone. We hire individuals with a broad range of backgrounds and experiences and invest heavily in our teammates and their families by offering competitive benefits to support their physical, emotional, and financial well-being. Bank of America believes both in the importance of working together and offering flexibility to our employees. We use a multi-faceted approach for flexibility, depending on the various roles in our organization. Working at Bank of America will give you a great career with opportunities to learn, grow and make an impact, along with the power to make a difference. Join us! Global Business Services Global Business Services delivers Technology and Operations capabilities to Lines of Business and Staff Support Functions of Bank of America through a centrally managed, globally integrated delivery model and globally resilient operations. Global Business Services is recognized for flawless execution, sound risk management, operational resiliency, operational excellence and innovation. In India, we are present in five locations and operate as BA Continuum India Private Limited (BACI), a non-banking subsidiary of Bank of America Corporation and the operating company for India operations of Global Business Services. Process Overview* Employee Experience Technology team provides technology solutions to support the Audit & Legal Technologies. Chief Administrative Office, Internal Technology and Global Human Resources. CACR Technology deliver applications and tools to support Corporate Audit functions. Job Description* We are seeking a Feature Lead to lead the architecture, design, and development of modern distributed applications. The role requires both hands-on coding and collaboration with stakeholders to drive strategic design decisions. The ideal candidate has a proven track record in developing and deploying Java, Spring Boot, Micro-Services, Angular applications combined with strong expertise in distributed systems. Responsibilities* Lead the architecture and design for building scalable, resilient, and secure distributed applications ensuring compliance with organizational technology guidelines, security standards, and industry best practices like 12-factor principles and well-architected framework guidelines. Actively contribute to hands-on coding, building core components, APIs and microservices while ensuring high code quality, maintainability, and performance. Ensure adherence to engineering excellence standards and compliance with key organizational metrics such as code quality, test coverage and defect rates. Integrate secure development practices, including data encryption, secure authentication, and vulnerability management into the application lifecycle. Work on adopting and aligning development practices with CI/CD best practices to enable efficient build and deployment of the application on the target platforms like VMs and/or Container orchestration platforms like Kubernetes, OpenShift etc. Collaborate with stakeholders to align technical solutions business requirements, driving informed decision-making and effective communication across teams. Mentor team members, advocate best practices, and promote a culture if continuous improvement and innovation in engineering processes. Requirements* Education* Graduation / Post Graduation: BE/B.Tech/MCA Certifications If Any: NA Experience Range* 10 to 12 Years Foundational Skills* 10+ years of work experience in full-stack software development with at least 5 - 6 years of strong experience in architecture, design, and development of modern distributed cloud native applications. Strong hands-on expertise in programming languages such Java and experience in technologies/frameworks such as Spring Framework, Spring Boot, Spring Micro Services, Angular. Deep knowledge of microservices. modular applications, REST APIs, messaging systems [Kafka, MQ], Redis and SQL database technologies on Oracle Strong knowledge in DevOps practices, CI/CD technologies, container technologies and platforms like Docker, Kubernetes/OpenShift. Deep knowledge and well-versed in industry best practices including SOLID principles, 12-factor standards, well-architected framework guidelines and secure development standards such as OWASP standards. Strong knowledge in cloud platform technologies and good to have experience in at least one major cloud platform like Azure, AWS or GCP. Desired Skills* Experience in developing Single page UI Application using any UI Technologies (Angular/React). Effective communication, Strong stakeholder engagement skills, Proven ability in leading and mentoring a team of software engineers in a dynamic environment. Work Timings* 11:30 AM to 8:30 PM IST Job Location* Chennai /Hyderabad Show more Show less

Who We Are: Headquartered in Canada with locations across the United States and around the globe with a footprint on six continents, Bulletproof, a GLI company has decades of technology, security, and compliance expertise. Bulletproof’s work in the security space has been recognized nationally and globally with Microsoft’s global Security Partner of the Year in 2021 and five Microsoft Canada Impact Award wins from 2019 to present-day. At Bulletproof, our vision is to serve, secure, and empower the world through people and technology; one customer at a time. We believe everyone has the right to feel safe and secure. Our mission is to serve and protect organizations to ensure their success. What We Have To Offer Challenging Work - We love solving highly complex problems. Across our teams and in all roles, every employee is empowered to bring their best ideas forward and to jump in and solve the problems they're passionate about. Great People - We are stronger, together, when we are open, honest, and above all, real. Every person is valued here and plays an important role in our shared success. Global Impact - As a global team spanning continents, boundaries, and cultures, every day we are inspired by the impact our work has on our colleagues, our customers, our communities, and the world at large. Diversity, Equity and Inclusion - We celebrate each other’s differences, continuously strive for equality and recognize that inclusion makes us stronger as individuals, a company and a global citizen. What the Role Does… As a pentester, you will conduct security assessments by probing for and exploiting security vulnerabilities in web-based applications, networks and systems and finding ways to ensure that any risk to our client is mitigated. We highly prefer if you live in Noida (India) because you will need to be in the office. Duties and Responsibilities include, but are not limited to: Conducts security assessments that can be multi-faceted for a wide variety of assigned clients Defines the scope for security testing assignments Creates quality assurance security test reports and other documentation as needed Works with clients to develop appropriate remediation plans Provides clients with exceptional service in a professional, courteous and timely manner Provides technical support as a subject matter expert in the sale of security testing assignments on an as needed basis Provides thought leadership and direction for the Information Security practice on malware, attack vectors and methods to protect against threats Teams up with colleagues in other lines of services in support of client needs for Information Security services Stays up to date on current tools, technologies and vulnerabilities to incorporate into testing practices Other related duties as assigned Requirements: Degree in Computer Science, Information Systems, Engineering or related major from an accredited University or College Diploma equivalent Experience performing vulnerability assessments and/or penetration tests would be preferred Application and/or infrastructure penetration testing experience above and beyond running automated tools A good understanding of Linux, Windows and network security skills Excellent written and oral communication skills in English Ability to meet deadlines and deliver a high-quality product (reports) Strong attention to detail Ability to work both independently and in a team environment. Familiar with (if not qualified in) test suites such as: Nessus MetaSploit Burp Suite Kali NMap Fortify Acunetix Certifications - One or more of the following certifications are considered an asset: EC-Council Certified Ethical Hacker (CEH) EC-Council Licensed Penetration Tester (LPT) GIAC Certified Penetration Tester (CPEN) IACRB Certified Penetration Tester (CPT) Offensive Security Certified Professional (OSCP) CREST Registered Tester (CRT) CREST Infrastructure Certification CESG CHECK Team Leader CESG CHECK Team Member Tiger Scheme Senior Security Tester Tiger Scheme Qualified Security Tester Any other recognized penetration testing certification/accreditation The following skills are preferred but not required: PCI ASV CREST recognized penetration testing certification/accreditation (CREST Certified Tester (CCT) or CHECK Team Leader (CTL) Experience developing custom scripts or tools used for vulnerability scanning and identification Familiarity with threat modelling and security design review methodologies Support team technical development (e.g. through service development or research) and contribute to company technical processes overall Development and/or source code review experience in C/C++, C#, VB.NET, ASP, PHP, or Java and/or Fortify, Veracode, Brakeman and/or IDA Pro Experience with physical security testing, phishing and social engineering techniques. Experience with mobile applications such as Android DeBug Bridge (ADS), OWASP ZAP, Drozer, Mobile Security Framework (MobSF), Smartphone Pentest Framework (SPF), Burp Suite, Android SDK, Friday, Cydia and/or IDB This job description should not be interpreted as all-inclusive; it is intended to identify major responsibilities and requirements of the job. The incumbent may be requested to perform other job-related task and responsibilities than those stated above. Equal Opportunity Statement Bulletproof is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, colour, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status. Bulletproof is also committed to compliance with all fair employment practices regarding citizenship and immigration Show more Show less

Company Description Evince Development Pvt. Ltd. (EvinceDev) is a CMMI 3-Level leading IT service company that delivers innovative solutions to clients worldwide. With a commitment to excellence and a dynamic team of professionals, we aim to exceed client expectations and drive success through cutting-edge technology. Eligibility: 2 - 3 Years of Experience Role Description EvinceDev (Evince Development) is looking for talented candidates based on the requirements described here. Following are the Brief points of the Job Requirements Develop highly interactive, responsive, and performant user interfaces using Angular (v16+) with advanced features like Signals, Standalone Components, and Functional Guards. Implement server-side logic using .NET 6+/8, focusing on microservices architecture, clean architecture (Onion/Hexagonal), and Domain-Driven Design (DDD). Optimize applications for maximum speed, scalability, and SEO using server-side rendering (SSR) with Angular Universal. Design and consume RESTful & GraphQL APIs with gRPC for high-performance communication. Utilize NgRx/Standalone Services for advanced state management in Angular applications. Implement real-time features using SignalR/Socket.IO in .NET for live updates and notifications. Ensure secure coding practices (OWASP standards) including JWT authentication, OAuth 2.0, and role-based access control (RBAC). Write unit and integration tests using Jasmine/Karma (Angular) and xUnit/NUnit (.NET) with mocking frameworks (Moq, NSubstitute). Implement responsive UI using Tailwind, FlexLayout, Angular Material, or Bootstrap. Use GIT for version control and maintain clear commit history and branching strategy. Participate actively in Agile practices including sprint planning, grooming, stand-ups, and retrospectives. Maintain application scalability and performance by analyzing bottlenecks and tuning queries/services. Use Swagger for API documentation and interface testing. Participate in peer code reviews to ensure high code quality and consistent coding standards. Expert in TypeScript with emphasis on interfaces, generics, and OOP principles. Good understanding of asynchronous programming using async/await and Promises. Angular (v16+) with Signals, Standalone Components, and lazy-loaded modules Proficient with RxJS and handling Observables, Subjects, and advanced operators. State Management: NgRx (Redux pattern) or lightweight alternatives (Service-based) Reactive Programming: RxJS (Advanced operators, custom pipes, WebSockets) Strong experience in building Web App, REST APIs using ASP.NET Core and C#. Hands-on with Entity Framework Core, LINQ, and data migrations. Proficient in middleware pipelines, dependency injection, and attribute-based routing. Experience with authentication and authorization using JWT and ASP.NET Identity. Knowledge of Clean Architecture, Repository and Unit of Work patterns. Capable of writing asynchronous methods using async/await and cancellation tokens. Experience with custom exception handling and global error filters. How to Apply: Interested candidates are invited to submit their resume and a cover letter detailing their relevant experience and qualifications to career@evincedev.com EvinceDev is an equal opportunity employer. We encourage applications from candidates of all backgrounds and experiences. We are looking forward to meeting our next Spartan! Show more Show less

Location: Hyderabad (Onsite) Experience: 7+ Years Employment Type: Full-Time About the Role We are looking for a highly skilled Full Stack Developer with a strong backend focus to join our product development team at Instaresz Business Services Pvt Ltd. The ideal candidate will be an expert in Node.js, RESTful APIs, and Microservices Architecture, with additional experience in Python, Redis, PostgreSQL, and CI/CD pipelines. Key Responsibilities - Design, develop, and maintain scalable Node.js-based backend services - Build and manage RESTful APIs and microservices used across multiple platforms - Implement MVC architecture with well-structured models, controllers, and routes - Develop and optimize database schemas, queries, and stored procedures - Integrate and maintain Redis for caching and real-time data needs - Work on Python-based utilities and integrations - Implement and maintain CI/CD pipelines, primarily using Jenkins - Collaborate with front-end developers and DevOps to ensure seamless delivery - Participate in code reviews, architecture discussions, and performance tuning - Monitor, troubleshoot, and optimize application performance - Maintain high code quality, security, and scalability standards Technical Requirements Core Node.js Expertise - Advanced understanding of Node.js fundamentals including Event Loop, Callbacks, Promises, and async/await - Proficiency in error handling patterns and process management - Strong command of JavaScript/TypeScript best practices Frameworks & Architecture - Expert-level experience with Express.js (or similar frameworks like NextJS,Fastify, NestJS) - Implementation of middleware patterns and lifecycle management - Experience with MVC architectural patterns - Validation libraries implementation (Joi, Zod) - Authentication/Authorization systems (JWT, OAuth2) Database & Caching - Advanced knowledge of PostgreSQL (ACID principles, joins, triggers, stored procedures) - Experience with ORMs like Sequelize, Prisma, or TypeORM - Proficiency with Redis for caching, session management, and pub/sub mechanisms - Query optimization and database performance tuning API Development - RESTful API design and implementation best practices - Experience with WebSockets for real-time communications - Implementation of rate limiting, throttling, and API security measures - API documentation tools and practices Microservices - In-depth understanding of microservices architecture and communication patterns - Domain-Driven Design patterns Testing & Quality Assurance - Unit and Integration testing (Jest, Mocha, Supertest) - Test coverage measurement and mocking techniques - Debugging tools proficiency (Node Inspector, VS Code debugger) - Code quality tools and linting Security - Implementation of OWASP security standards - Secure coding practices against XSS, CSRF, SQL Injection - Data validation and sanitization experience - Implementation of secure headers & cookies DevOps & Deployment - CI/CD pipeline experience (Jenkins, GitHub Actions) - Docker containerization and basic Kubernetes knowledge - Performance profiling and memory leak detection Required Skills & Qualifications - 7+ years of professional experience in full-stack or backend development - Strong hands-on experience with Node.js, Express.js, and modern JavaScript/TypeScript - In-depth understanding of RESTful API design and integration - Proficient in Microservices architecture and messaging patterns - Solid knowledge of Python scripting and backend utilities - Experience with Redis for caching and pub/sub mechanisms - Proficiency in PostgreSQL and writing efficient SQL queries - Hands-on experience with CI/CD pipelines, especially using Jenkins - Familiarity with Docker and containerized deployment - Strong problem-solving skills and ability to work in an agile environment Good to Have - Experience with front-end frameworks (React, Angular, etc.) - Exposure to cloud platforms (AWS, GCP, Azure) - Experience with serverless architectures - Knowledge of event-driven architectures - Performance optimization expertise for high-traffic applications - Experience with GraphQL APIs Why Join Us - Work on impactful, large-scale products in a high-performance tech environment - Collaborate with a talented and passionate team - Competitive salary with performance-based growth - Opportunity to build innovative solutions at scale --- To Apply: Please send your updated resume with relevant experience details to dimple.sharma@nirapad9.com Show more Show less

We are seeking an experienced AI Solution Architect to lead the design and implementation of AI-driven, cloud-native applications. The ideal candidate will possess deep expertise in Generative AI, Agentic AI, cloud platforms (AWS, Azure, GCP), and modern data engineering practices. This role involves collaborating with cross-functional teams to deliver scalable, secure, and intelligent solutions in a fast-paced, innovation-driven environment. Key Responsibilities: Design and architect AI/ML solutions, including Generative AI, Retrieval-Augmented Generation (RAG), and fine-tuning of Large Language Models (LLMs) using frameworks like LangChain, LangGraph, and Hugging Face. Implement cloud migration strategies for monolithic systems to microservices/serverless architectures using AWS, Azure, and GCP. Lead development of document automation systems leveraging models such as BART, LayoutLM, and Agentic AI workflows. Architect and optimize data lakes, ETL pipelines, and analytics dashboards using Databricks, PySpark, Kibana, and MLOps tools. Build centralized search engines using ElasticSearch, Solr, and Neo4j for intelligent content discovery and sentiment analysis. Ensure application and ML pipeline security with tools like SonarQube, WebInspect, and container security tools. Collaborate with InfoSec and DevOps teams to maintain CI/CD pipelines, perform vulnerability analysis, and ensure compliance. Guide modernization initiatives across app stacks and coordinate BCDR-compliant infrastructures for mission-critical services. Provide technical leadership and mentoring to engineering teams during all phases of the SDLC. Hands-on experience with: Generative AI, LLMs, Prompt Engineering, LangChain, AutoGen, Vertex AI, AWS Bedrock Python, Java (Spring Boot, Spring AI), PyTorch Vector & Graph Databases: ElasticSearch, Solr, Neo4j Cloud Platforms: AWS, Azure, GCP (CAF, serverless, containerization) DevSecOps: SonarQube, OWASP, oAuth2, container security Strong background in application modernization, cloud-native architecture, and MLOps orchestration. Familiarity with front-end technologies: HTML, JavaScript, React, JQuery. Certifications Any certification on AI/ML from reputed institute Required Skills & Qualifications Bachelor's degree in Computer Science, Engineering, or Mathematics 10+ years of total experience, with extensive tenure as a Solution Architect in AI and cloud-driven transformations. Advanced knowledge of leading architecture solutions in the industry area Strong interpersonal and collaboration skills Ability to demonstrate technical concepts to non-technical audiences Show more Show less

Company Description About CyberArk : CyberArk (NASDAQ: CYBR), is the global leader in Identity Security. Centered on privileged access management, CyberArk provides the most comprehensive security offering for any identity – human or machine – across business applications, distributed workforces, hybrid cloud workloads and throughout the DevOps lifecycle. The world’s leading organizations trust CyberArk to help secure their most critical assets. To learn more about CyberArk, visit our CyberArk blogs or follow us on Twitter, LinkedIn or Facebook. Job Description About the Role We are seeking a highly skilled Software Security Architect to join our team. This role will be instrumental in driving innovation and ensuring the highest level of security for our software products. The ideal candidate will have a deep understanding of software security principles, a proven track record in architecting secure systems, and a passion for staying ahead of emerging threats. Responsibilities Security Architecture: Develop, maintain, and enforce security architectures and standards for our software products. Threat Modeling: Conduct comprehensive threat modeling assessments to identify potential vulnerabilities and risks. Risk Management: Develop and implement risk mitigation strategies to protect our software and data. Innovation: Stay abreast of the latest security trends and technologies, and incorporate them into our security practices. Compliance: Ensure that our software products comply with relevant security regulations and industry standards. Collaboration: Work closely with development teams to integrate security into the software development lifecycle. Incident Response: Provide technical guidance and support during security incidents. Education and Awareness: Conduct security training and awareness programs for development teams and other stakeholders. Security Guidelines and Tools: Contribute the development and maintenance of secure-development guidelines and standards. Manage security tools, provide training, and assist developers in utilizing these tools and interpreting reports. Code and Design Reviews: Initiate and participate in code reviews, design reviews, and other critical assessments to ensure security standards are met. Qualifications Bachelor’s degree in Computer Science, Information Security, or a related field. 6+ years of experience in software development 3+ years of experience in software security Strong understanding of security principles, including authentication, authorization, encryption, and vulnerability management. Experience with security frameworks and methodologies (e.g., OWASP, NIST, ISO 27001). Knowledge of programming languages, scripting, and security tools. Excellent problem-solving, analytical, and communication skills. Ability to work independently and as part of a team. Personal Attributes Demonstrated leadership, motivational, and mentorship abilities. Ability to think like a hacker and anticipate potential security threats. Fluent in English, with excellent communication, presentation, and crowd-facing skills. Experience with Agile development methodologies. Preferred Qualifications Certifications such as CISSP, CISM, or CSSLP. Experience with cloud security and DevOps practices. Knowledge of emerging security threats and trends. Show more Show less

About Us: At its heart, Probo is India’s leading online skill gaming platform building prediction markets for India. On Probo, users can find questions on many topics of their interest, like sports, news, finance and many more. Users can swipe yes or no to express their opinion and place trade(s), and by doing so they enter into an event contract with another user on the other side of the trade. Probo is a matching engine that enables the execution of this event contract. We're also backed by 3 marquee investors- Sequoia, Elevation and Fundamentum. Job Requirements Should have at least 5 years of professional experience in application security or a related field. Proven expertise in web and mobile security architecture, frameworks, and testing methodologies (e.g., OWASP Top 10). Extensive hands-on experience with implementing and scaling DevSecOps practices across CI/CD pipelines. Proficient in at least one programming and one scripting language, with the ability to review and guide secure coding practices. Experience working with bug bounty programs or vulnerability disclosure platforms is a strong plus. Ability to lead security reviews, influence engineering teams, and mentor junior security professionals is highly valued. Next steps Finally, if this tickles your bones and you know what it takes to build magical user experiences, this is definitely the right place for you. Encouraging you to know more about us - Check out our app/trading platform: https://probo.in/events Engineering Principles: https://engineering.probo.in/probo-engineering-principles-67e2e6d55a81 Show more Show less

Job Description: Prudent Technologies and Consulting is seeking an experienced Principal Application Security Engineer to lead our rapidly expanding web application penetration testing services. This senior-level position will play a critical role in advancing our offensive security capabilities, mentoring junior security consultants, and delivering high-value security assessments to our global client base. The ideal candidate will combine technical expertise in web application security with leadership skills and client engagement experience to drive our security consulting practice forward. As a Principal Application Security Engineer, you will serve as a technical leader within our offensive security practice, specializing in web application penetration testing methodologies. You will lead complex security engagements, provide subject matter expertise to clients and internal teams, mentor junior security consultants, and contribute to the development of our service offerings. This position requires a deep understanding of application security principles, extensive hands-on testing experience, and exceptional communication skills to translate technical findings into actionable business insights. Responsibilities: Lead complex web application penetration testing engagements for enterprise clients, ensuring delivery of high-quality assessments that meet or exceed client expectations Serve as the principal security advisor to clients, translating technical findings into business context and providing strategic remediation guidance Develop and enhance the organization's application security testing methodologies, incorporating industry best practices like OWASP and MITRE ATT&CK frameworks Perform advanced manual testing to identify sophisticated vulnerabilities beyond the capabilities of automated tools, including business logic flaws, authentication bypasses, and authorization weaknesses Conduct comprehensive threat modeling sessions with development teams to identify security risks early in the software development lifecycle Lead code reviews to identify security vulnerabilities in client applications and provide remediation guidance Create detailed technical reports and executive summaries that clearly articulate security findings, business impact, and prioritized remediation recommendations Mentor junior security consultants, providing technical guidance and contributing to their professional development Collaborate with sales teams to scope complex engagements, participate in pre-sales activities, and support business development efforts Contribute to research initiatives that enhance the company's security testing capabilities and industry reputation Evaluate emerging tools and technologies to improve the efficiency and effectiveness of security testing processes Qualifications: Required Qualifications: 5-8+ years of professional experience in application security, with a strong focus on web application penetration testing Demonstrated expertise in identifying, exploiting, and documenting complex web application vulnerabilities following OWASP methodologies Proficiency with industry-standard penetration testing tools including Burp Suite Professional, DAST scanners, and other exploitation frameworks Experience leading security assessments across diverse technologies and environments including web applications, APIs, cloud services (AWS, Azure, GCP), and modern web frameworks Strong understanding of secure coding practices, common vulnerability patterns, and remediation strategies across multiple programming languages and frameworks Exceptional technical writing skills, with the ability to produce clear, concise, and compelling security assessment reports for both technical and executive audiences Proven ability to build trusted relationships with clients and effectively communicate complex security concepts to technical and non-technical stakeholders Experience mentoring junior security professionals and leading technical teams Preferred Qualifications: Bachelor's degree in computer science, cybersecurity, or related technical field Advanced security certifications such as OSWE, GWAPT, GPEN, OSCP, or equivalent industry recognitions Experience developing custom tools or scripts to automate aspects of penetration testing using Python, Go, or similar languages Prior software development experience that informs a deep understanding of modern application architectures and development practices Contributions to the security community through published research, CVE discoveries, open-source tool development, or conference presentations Experience with mobile application security testing (iOS and Android) and API security assessment methodologies Knowledge of cloud security architecture and specialized cloud service penetration testing techniques Experience with AI/ML system security evaluation and testing methodologies Education: Direct work experience performing application penetration testing assessments; ability to begin testing immediately with guidance on Prudent’s specific approach and methodology Bachelor's degree in computer science, cybersecurity, or related technical field Advanced security certifications such as OSWE, GWAPT, GPEN, OSCP, or equivalent industry recognitions Show more Show less

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. Attack & Penetration Testing - Senior As part of our Cyber Security team, you shall perform penetration testing which includes internet, intranet, wireless, web application, social engineering and physical penetration testing. You shall also perform in-depth analysis of penetration testing results and create report that describes findings, exploitation procedures, risks and recommendations. The opportunity We’re looking for Security Consultant / Senior Security Consultant with expertise in penetration testing. This is a fantastic opportunity to be part of a leading firm whilst being instrumental in the growth of a new service offering. Your Key Responsibilities Lead engagements from kickoff with clients through scoping engagements, penetration testing and reporting while adhering to the agreed scope and deadlines. Perform penetration testing which includes Network, web application, Mobile app (both Android & iOS), APIs Cloud Security, Thick Client application, wireless, social engineering, physical penetration testing. Execute penetration testing projects using the established methodology, tools and rules of engagements. Execute red team assessments to highlight gaps impacting organizations security postures. Identify and exploit security vulnerabilities in a wide array of systems in a variety of situations. Perform in-depth analysis of penetration testing results and create report that describes findings, exploitation procedures, risks and recommendations. Convey complex technical security concepts to technical and non-technical audiences including executives. Perform technical quality reviews and conduct technical conversations directly with clients. Keep uptodate with the latest techniques and concepts. Confident with OWASP Top 10 and SANS Top 25 vulnerabilities and ability to effectively communicate methodologies and techniques with development teams Utilize tools such as BurpSuite, Nessus, Nmap, Kali Linux, and Nessus for effective vulnerability assessment and penetration testing. Understanding and experience with Active Directory attacks. Stay up-to-date with the latest security threats, vulnerabilities, and best practices in vulnerability management. Knowledge of AI in Pentest, TCP/IP, OSI Layer, IPv4 & IPv6, Network Protocols and Wireless Communication skills preferred. Working knowledge with any scripting languages (e.g. Python, Perl, PHP, Ruby) to develop automated solutions that mitigate risks throughout the organization. Support SDLC and agile environments with application security testing and source code reviews. Serve as a mentor and guide to junior pen testers, sharing your knowledge, skills, and best practices to nurture their growth and development. Provide technical expertise and guidance to clients on remediation strategies and security best practices. Skills And Attributes For Success In-depth understanding of OWASP Top 10 vulnerabilities and their mitigation strategies. Good understanding of enterprise security controls in Active Directory / Windows environments Good to have knowledge in AI in pentest Understanding of TCP/IP network protocols. Understanding of network security and popular attacks vectors. Experience with Operation Technology / Internet of Things, Cloud technologies (AWS, Azure, GCP), Active Directory and 802.1x penetration testing Strong understanding of security principles, policies, and industry best practices Proven ability to lead client engagements, build strong client relationships, and deliver exceptional results. Excellent communication and presentation skills, both written and verbal. Demonstrated thought leadership in the cybersecurity field through publications, speaking engagements, or contributions to industry forums. Exceptional problem-solving skills, strategic thinking, and the ability to influence and lead. To qualify for the role, you must have BE/ B.Tech/ MCA or equivalent Minimum of 3 years of work experience in penetration testing which may include at least three of the following: Network, web application Mobile app (Android & iOS), Thick client, APIs, wireless, social engineering, physical and Red Team assessments. One of the following certifications: OSCP, OSCE, OSEP, OSWE, CREST, CRTE, eCPTX, or eWPTX Knowledge of Windows, Linux, UNIX, any other major operating systems. 3-9 years of work experience in Strategy and Operations projects Team management skills are preferred. Conduct technical discussions and perform technical Quality reviews. Familiarity with OWASP methodologies and application security vulnerabilities. Exceptional ability to educate and guide application developers in security best practices. Excellent communication, presentation, and interpersonal skills. Strong Word, Excel and PowerPoint skills. Ideally, you’ll also have Project management skills Certifications: OSCP, OSCE, CRTP, CRTO, CISSP, GPEN, GWAPT. What We Look For Who can perform penetration testing which includes internet, intranet, wireless, web application, social engineering and physical penetration testing and provide analysis for the testing results. What Working At EY Offers At EY, we’re dedicated to helping our clients, from start–ups to Fortune 500 companies — and the work we do with them is as varied as they are. You get to work with inspiring and meaningful projects. Our focus is education and coaching alongside practical experience to ensure your personal development. We value our employees and you will be able to control your own development with an individual progression plan. You will quickly grow into a responsible role with challenging and stimulating assignments. Moreover, you will be part of an interdisciplinary environment that emphasizes high quality and knowledge exchange. Plus, we offer: Support, coaching and feedback from some of the most engaging colleagues around Opportunities to develop new skills and progress your career The freedom and flexibility to handle your role in a way that’s right for you EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today. Show more Show less

Urgent Hiring!!! Location : Remote Role : Staff Engineer Experience : 8+ Responsibilities Collaborate with the Engineering Group and Product team to understand requirements and design comprehensive solutions. Optimize applications for maximum speed, scalability, and security. Implement security and data protection measures. Build high-quality, reusable code for both frontend and backend applications. Document and communicate application design, topologies, and architecture clearly to peers and the business. Work closely with User Experience, Product Management, Engineering, and Marketing teams to create outstanding web experiences. Partner with Engineering and other teams to develop new frameworks, feature sets, and functionalities. Lead and coach team members, promoting thought leadership and project excellence. Provide technical leadership, ensuring adherence to best software engineering practices, such as TDD, continuous integration, delivery, and deployment. Must Have Experience Requirements Education and experience: ○ Bachelor’s or Master’s degree in Computer Science, Engineering, or a related field. ○ Minimum of 8+ years of professional experience in full-stack development. Technical Requirements: ○ Proficiency in JavaScript, including ES6 and beyond, asynchronous programming, closures, and prototypal inheritance. ○ Expertise in modern front-end frameworks/libraries (React, Vue.js). ○ Strong understanding of HTML5, CSS3, and pre-processing platforms like SASS or LESS. ○ Experience with responsive and adaptive design principles. ○ Knowledge of front-end build tools like Webpack, Babel, and npm/yarn. ○ Proficiency in Node.js and frameworks like Express.js, Koa, or NestJS. ○ Experience with RESTful API design and development. ○ Experience With Serverless.(Lambda, CloudFunctions) ○ Experience with GraphQL. ○ Experience with SQL databases (e.g., MySQL, PostgreSQL) and NoSQL databases (e.g., MongoDB, Redis). ○ Experience with caching & search frameworks. (Redis, ElasticSearch) ○ Proficiency in database schema design and optimization. ○ Experience with containerization tools (Docker, Kubernetes). ○ Experience with CI/CD pipelines (Jenkins, GitHub Actions, GitLab CI). ○ Knowledge of cloud platforms (AWS, Azure, Google Cloud). ○ Proficiency in testing frameworks and libraries (Jest, vitest, Cypress, Storybook). ○ Strong debugging skills using tools like Chrome DevTools, Node.js debugger. ○ Expertise in using Git and platforms like GitHub, GitLab, or Bitbucket. ○ Understanding of web security best practices (OWASP). ○ Experience with authentication and authorization mechanisms (OAuth, JWT). ○ System Security, Scalability, System Performance experience Leadership & Team: ○ Proven experience in leading and mentoring a team of developers. ○ Proven track record of delivering complex projects successfully. ○ Ability to conduct code reviews and provide constructive feedback. ○ Experience in agile methodologies (Scrum, Kanban). ○ Ability to manage project timelines and deliverables effectively. ○ Excellent verbal and written communication skills. ○ Ability to explain technical concepts to non-technical stakeholders. ○ Strong analytical and problem-solving skills. ○ Ability to troubleshoot and resolve complex technical issues. ○ Experience in working with cross-functional teams (designers, product managers, QA). ○ Ability to quickly learn and adapt to new technologies and frameworks. Perks Day off on the 3rd Friday of every month (one long weekend each month) Monthly Wellness Reimbursement Program to promote health well-being Monthly Office Commutation Reimbursement Program Paid paternity and maternity leaves Show more Show less

Job Title: Senior Java Developer – NFR Specialist Experience: 8+ Years Location: Remote Employment Type: Full-time Job Summary: We are seeking a highly skilled and experienced Senior Java Developer with a strong background in Non-Functional Requirements (NFR) such as performance, scalability, availability, reliability, and security. The ideal candidate will have a minimum of 8 years of experience in backend Java development and proven expertise in designing and delivering enterprise-grade applications that meet demanding NFR standards. Key Responsibilities: Design, develop, and maintain Java-based enterprise applications with a focus on performance, scalability, and high availability. Collaborate with architects and business stakeholders to analyze non-functional requirements and integrate them into system design. Optimize application performance using JVM tuning, garbage collection analysis, thread management, and connection pooling. Implement best practices for security, logging, exception handling, and resource management. Conduct system performance testing and stress testing to ensure applications meet SLAs. Review code for adherence to coding standards and NFR compliance. Mentor junior developers and provide technical leadership in NFR areas. Work with DevOps teams to implement CI/CD pipelines, monitoring, and alerting strategies. Document technical designs and system configurations for ongoing maintenance and scalability. Required Skills and Qualifications: 8+ years of professional experience in Java development (Java 8+). Strong understanding of Non-Functional Requirements including performance, scalability, reliability, availability, and security. Experience with performance tuning and profiling tools (e.g., JProfiler, VisualVM, YourKit). In-depth knowledge of multithreading, memory management, and asynchronous programming. Solid understanding of microservices architecture and frameworks like Spring Boot . Experience with containerization technologies such as Docker and orchestration tools like Kubernetes . Familiarity with logging, monitoring, and observability tools (e.g., ELK Stack, Prometheus, Grafana). Knowledge of secure coding practices and common vulnerabilities (e.g., OWASP Top 10). Familiarity with database optimization (SQL/NoSQL), connection pooling, and caching mechanisms (Redis, Ehcache). Experience working with cloud platforms (AWS, Azure, GCP) is a plus. Excellent problem-solving and analytical skills. Preferred Qualifications: Certifications in Java or cloud technologies (AWS, GCP, etc.). Experience with message queues (Kafka, RabbitMQ). Familiarity with SRE practices and tools. Show more Show less

About The Team/Role At WEX, we simplify the business of running a business. Our WEX Health & Benefits solutions reduce complexity and help manage costs of benefits administration for our clients and partners. We are looking for passionate technologists, collaborators, and problem solvers to join our Health & Benefits Technology team as we build the next generation of employer benefits solutions and services. As a Software Engineering Director on the WEX Health & Benefits Technology team, you will lead a team that partners closely with Product Managers and customers to learn about the challenges employers face while navigating the competitive employee benefits landscape. You will become a domain expert, designing solutions that solve problems in ways our customers love and work for our business. You will lead teams who build the highest quality software in the latest technologies and test driven development practices. How you’ll make an impact Lead, mentor, and manage your team through the successful delivery of valuable customer software. Stay current with emerging technologies and industry trends to drive innovation and strengthen TDD and BDD processes. Collaborate closely with Product Management by providing technical guidance on software design. Guide your team on best practices, coding standards, and design principles. Conduct performance reviews, set goals, and support professional development for team members. Measure, inspect, and drive decisions using data. Design, test, code, and instrument new solutions. Support live applications, promote proactive monitoring, rapid incident response and troubleshooting, and continuous improvement. Analyze existing systems and processes to identify bottlenecks and opportunities for improvements. Understand how your domain fits into and contributes to the overall company and drive any needed changes to increase productivity. Partner with cross functional teams to influence priority, expectations, and timelines within your domain. Lead the engineering teams in fully automating continuous code integration and code deployment process on Azure. Long term Focus on instrumentation and team efficiency and performance measurables. Drive the long term vision and the strategy to achieve the vision for the technology organization. Interact and communicate effectively with peer groups, non-technical organizations, and middle management. Drive collaboration across technology teams to foster innovation and follow guidelines around re-usability of frameworks and governance of architecture patterns Partner with the 3rd party vendors and service providers to ensure best in class service model. Drive innovation in the organization with transformative technologies like Generative AI and use of Agentic AI frameworks like Autogen or Langchain. Drive the design and architecture of the systems and applications to be always available, performant and highly secure. Experience you’ll bring Bachelor’s degree in Computer Science, Software Engineering, or a related field; OR a Master’s degree in Computer Science or Software Engineering. A minimum of 12 years of experience in software engineering. with a Bachelor's degree or at least 9 years with a Master's degree. A minimum of 7 years of management or supervisory experience with a Bachelor's degree, or 10 years experience with a Master's degree. Proven ability to lead and inspire engineering teams to achieve exceptional results. Strategic thinker with a track record of aligning technical direction with business goals and driving innovation. Exceptional problem-solving, communication, and collaboration skills. Strong passion for modern technologies, design principles, and continuous learning. Comprehensive understanding of software security principles, including OWASP guidelines. Technology Must-Haves C#, Python (if applicable) Docker Modern RDBMS (i.e. MS SQL, Postgres, MySQL) ASP.NET RESTful API design Kafka / event-driven design Modern Web UI Frameworks and Libraries (i.e. Angular, React) Kubernetes NoSQL databases Designing and developing Cloud-Native applications and services Generative AI and Agentic AI models and frameworks Helm/ArgoCD Terraform GitHub Actions GraphQL Show more Show less