Expert in performance testing tools: LoadRunner, JMeter, NeoLoad, Gatling, k6, BlazeMeter. 2. Strong scripting and coding skills in Java, Python, JavaScript, Groovy, or Shell. 3. Proficient in protocol-based testing: HTTP/HTTPS, WebSockets, REST/SOAP APIs, MQ, Citrix, SAP GUI. 4. Hands-on experience with APM & monitoring tools: AppDynamics, Dynatrace, Grafana, Prometheus, Splunk, ELK Stack. 5. Experience with CI/CD tools and integration: Jenkins, Git, Maven, Docker, Kubernetes. 6. Deep knowledge of system resource profiling: CPU, memory, disk I/O, network utilization, GC logs. 7. Expertise in analyzing server-side logs, thread dumps, heap dumps for bottleneck identification. 8. Familiarity with cloud platforms: AWS, Azure, GCP and cloud-native performance testing. Experience with database performance testing and optimization: Oracle, MySQL, PostgreSQL, MongoDB. 2. Exposure to microservices and containerized architecture testing. 3. Understanding of security and compliance testing (e.g., OWASP-related performance risks). 4. Knowledge of DevOps and SRE practices. 5. Agile methodology and Test Management tools: JIRA, Confluence, TestRail. Show more Show less

Job Family Advanced Business Analysis (India) Travel Required None Clearance Required None What You Will Do Utilizing technology to streamline processes and integrate different systems within an organization, including implementing software and tools to automate tasks, improve efficiency, and ensure seamless system integration. Ensuring smooth and high-quality delivery of software products to end users by coordinating release schedules, conducting quality assurance testing, and implementing processes to minimize the risk of errors in software releases. Tailoring and implementing technology solutions to meet the specific needs and expectations of clients, involving understanding client requirements, customizing solutions, and ensuring successful delivery and adoption of the technology. Participating in the design, development, and enhancement of software applications, including tasks such as coding, testing, debugging, and collaborating with team members to create software that meets user requirements and industry standards. What You Will Need Candidates from computer background (B.Tech Computer Science, B.Sc CS, BCA, etc.) Good communication and teamwork skills Knowledge in programming/scripting languages Understanding of database concepts and hands-on experience in SQL Knowledge of SDLC and Agile methodologies Knowledge in OOPs concepts Flexibility to learn and build new skill set, eagerness to stay updated Algorithms and Data Structures Strong problem-solving skills Positive attitude, commitment, and can-do approach Must be Trained, certified, or an intern with experience in the following technologies: Full-stack development (React, Angular, or Vue.js, GoLang, Python, Ruby on Rails, or Java Spring, MySQL, PostgreSQL), Cloud computing (AWS, Microsoft Azure, serverless computing, container orchestration, cloud databases) DevOps (Git, Jenkins, Docker, Kubernetes) Microservices architecture Vulnerability (OWASP) Agile methodologies (Scrum, Kanban, Jira) AI and machine learning (basic understanding of concepts and algorithms, integrating AI and machine learning features into applications). What Would Be Nice To Have You will receive a skills assessment sheet to share your proficiency. What We Offer Guidehouse offers a comprehensive, total rewards package that includes competitive compensation and a flexible benefits package that reflects our commitment to creating a diverse and supportive workplace. About Guidehouse Guidehouse is an Equal Opportunity Employer–Protected Veterans, Individuals with Disabilities or any other basis protected by law, ordinance, or regulation. Guidehouse will consider for employment qualified applicants with criminal histories in a manner consistent with the requirements of applicable law or ordinance including the Fair Chance Ordinance of Los Angeles and San Francisco. If you have visited our website for information about employment opportunities, or to apply for a position, and you require an accommodation, please contact Guidehouse Recruiting at 1-571-633-1711 or via email at RecruitingAccommodation@guidehouse.com. All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodation. All communication regarding recruitment for a Guidehouse position will be sent from Guidehouse email domains including @guidehouse.com or guidehouse@myworkday.com. Correspondence received by an applicant from any other domain should be considered unauthorized and will not be honored by Guidehouse. Note that Guidehouse will never charge a fee or require a money transfer at any stage of the recruitment process and does not collect fees from educational institutions for participation in a recruitment event. Never provide your banking information to a third party purporting to need that information to proceed in the hiring process. If any person or organization demands money related to a job opportunity with Guidehouse, please report the matter to Guidehouse’s Ethics Hotline. If you want to check the validity of correspondence you have received, please contact recruiting@guidehouse.com. Guidehouse is not responsible for losses incurred (monetary or otherwise) from an applicant’s dealings with unauthorized third parties. Guidehouse does not accept unsolicited resumes through or from search firms or staffing agencies. All unsolicited resumes will be considered the property of Guidehouse and Guidehouse will not be obligated to pay a placement fee. Show more Show less

Job Description Associate Specialist, Cybersecurity Operations The Opportunity Based in Hyderabad, join a global healthcare biopharma company and be part of a 130- year legacy of success backed by ethical integrity, forward momentum, and an inspiring mission to achieve new milestones in global healthcare. Be part of an organisation driven by digital technology and data-backed approaches that support a diversified portfolio of prescription medicines, vaccines, and animal health products. Drive innovation and execution excellence. Be a part of a team with passion for using data, analytics, and insights to drive decision-making, and which creates custom software, allowing us to tackle some of the world's greatest health threats. Our Technology Centers focus on creating a space where teams can come together to deliver business solutions that save and improve lives. An integral part of our company’s IT operating model, Tech Centers are globally distributed locations where each IT division has employees to enable our digital transformation journey and drive business outcomes. These locations, in addition to the other sites, are essential to supporting our business and strategy. A focused group of leaders in each Tech Center helps to ensure we can manage and improve each location, from investing in growth, success, and well-being of our people, to making sure colleagues from each IT division feel a sense of belonging to managing critical emergencies. And together, we must leverage the strength of our team to collaborate globally to optimize connections and share best practices across the Tech Centers. Role Overview As a Cybersecurity Engineer, you will be responsible for designing, implementing, and maintaining security measures to protect the organization's computer systems, networks, and data from cyber threats. This role will involve a combination of technologies, processes, and practices designed to safeguard data, applications, and networks from threats like malware, phishing, and data breaches. You will be tasked with identifying vulnerabilities, supporting the response to incidents, and ensuring that security protocols and controls are adhered to. Your role is vital in safeguarding critical assets and ensuring compliance with legal and regulatory standards. What Will You Do In This Role Collaborate with product teams to enforce application security best practices, conduct reviews, perform scans and assist in threat modeling to identify and mitigate security risks throughout the development lifecycle. Contribute with penetration testing efforts to evaluate the security posture of applications and containers, providing detailed reports on findings and working with development teams to remediate identified issues. Collaborate to the oversight of security-related bugs and vulnerabilities using tracking systems. Help prioritize security issues based on risk and impact and ensuring that reported issues are triaged and addressed in a timely manner. Contribute to the creation and delivery of training materials for the workforce to raise awareness and increase adoption of application security best practices, cloud security best practices, including secure usage of cloud applications and availability of compensating controls. Help maintain and monitor security tools and dashboards, ensuring that applications deployed in our environments adhere to organizational security standards and compliance requirements. Follow standard approaches and established design patterns to create new designs for systems or system components. Identify and resolve minor design issues. Monitor and log the actual service provided, compared to that required by service level agreements. Assist in maintaining security infrastructure and performing system updates. Investigate minor security breaches in accordance with established procedures. Assist users in defining their access rights and privileges and perform non-standard operational security tasks. Resolve security events and operational security issues. Work closely with cross-functional Infrastructure teams on Automation and Orchestration. Create and document detailed designs for simple software applications or components. Apply agreed modelling techniques, standards, patterns, and tools. Work within a matrix organizational structure, reporting to both the functional manager and the project manager. What Should You Have Bachelors’ degree in Information Technology, Computer Science or any Technology stream. 3+ years of hands-on experience working with network protocols, firewalls, intrusion detection systems, encryption technologies, and endpoint security solutions. Proficiency in security tools in the areas of cloud, application, endpoint, network or identity, vulnerability scanners, and malware analysis platforms. Understanding of OWASP most 10 security risks and mitigation strategies, relevant NIST standards, and Zero Trust principles. Working experience in cloud environments AWS must have and good to have Azure, or GCP. Familiarity with software development/delivery lifecycle and related technologies Familiarity with programming/scripting languages like Python, Bash, Terraform, Ansible, JSON, PowerShell, or JavaScript for automating tasks. Knowledge of authentication methods, identity management, and security access protocols (e.g., SSO, MFA, LDAP). Ideally AWS certified. Good interpersonal and communication skills (verbal and written). Relevant certifications (e.g., CISSP, CISM, CEH, CompTIA Security+) are often required or highly desirable. Proven record of delivering high-quality results. Product and customer-centric approach. Innovative thinking, experimental mindset. Our technology teams operate as business partners, proposing ideas and innovative solutions that enable new organizational capabilities. We collaborate internationally to deliver services and solutions that help everyone be more productive and enable innovation. Who We Are We are known as Merck & Co., Inc., Rahway, New Jersey, USA in the United States and Canada and MSD everywhere else. For more than a century, we have been inventing for life, bringing forward medicines and vaccines for many of the world's most challenging diseases. Today, our company continues to be at the forefront of research to deliver innovative health solutions and advance the prevention and treatment of diseases that threaten people and animals around the world. What We Look For Imagine getting up in the morning for a job as important as helping to save and improve lives around the world. Here, you have that opportunity. You can put your empathy, creativity, digital mastery, or scientific genius to work in collaboration with a diverse group of colleagues who pursue and bring hope to countless people who are battling some of the most challenging diseases of our time. Our team is constantly evolving, so if you are among the intellectually curious, join us—and start making your impact today. #HYDIT2025 Current Employees apply HERE Current Contingent Workers apply HERE Search Firm Representatives Please Read Carefully Merck & Co., Inc., Rahway, NJ, USA, also known as Merck Sharp & Dohme LLC, Rahway, NJ, USA, does not accept unsolicited assistance from search firms for employment opportunities. All CVs / resumes submitted by search firms to any employee at our company without a valid written search agreement in place for this position will be deemed the sole property of our company. No fee will be paid in the event a candidate is hired by our company as a result of an agency referral where no pre-existing agreement is in place. Where agency agreements are in place, introductions are position specific. Please, no phone calls or emails. Employee Status Regular Relocation VISA Sponsorship Travel Requirements Flexible Work Arrangements Hybrid Shift Valid Driving License Hazardous Material(s) Required Skills Design Applications, Information Security, Security Operations, SLA Management, Software Development, Software Development Life Cycle (SDLC), System Designs, Technical Advice, Vulnerability Scanning Preferred Skills Job Posting End Date 07/2/2025 A job posting is effective until 11 59 59PM on the day BEFORE the listed job posting end date. Please ensure you apply to a job posting no later than the day BEFORE the job posting end date. Requisition ID R342303 Show more Show less

🚀 We're Hiring: Manager– AppSec & Vulnerability Management 📍 Location: India – Managed Security Services Organization 💼 Job Type: Full-Time We are looking for an experienced and dynamic Lead – AppSec & Vulnerability Management to join our team and take charge of security assessments, penetration testing, vulnerability management, and DevSecOps for IT/Cloud and OT infrastructure. In this leadership role, you'll manage a talented team, drive the execution of security projects, and ensure the successful delivery of services to customers. Key Responsibilities: 🔒 Lead and manage the AppSec & Vulnerability Management function, ensuring top-notch service delivery and operational success. 🔧 Provide technical leadership and guide your team to build and grow expertise in cybersecurity best practices. 🛠️ Perform penetration testing, vulnerability assessments, and security architecture reviews for IT, Cloud, and OT environments. 📈 Manage customer relationships, pre-sales strategies, and continuously identify opportunities to expand business. 💬 Communicate technical findings effectively to non-technical stakeholders and help implement mitigation strategies. Key Skills & Experience: ✅ 10+ years of experience in managing threat & vulnerability management functions, cybersecurity projects, and customer engagements. ✅ 6-8 years of hands-on experience in security assessments, penetration testing, vulnerability management, and web/mobile app security. ✅ Strong knowledge of security frameworks, OWASP Top 10, cloud security (AWS/Azure), API security, and DevSecOps. ✅ Proven leadership experience in managing teams, driving results, and handling key customer relationships. ✅ Strong communication and interpersonal skills, able to work cross-functionally with senior stakeholders. Qualifications & Certifications: 🎓 Education: B.Tech/B.E. in CSE/IT or related fields. 📜 Certifications: CEH, CISSP, OSCP, or similar security certifications. 🔧 Technical Skills: Expertise in vulnerability assessment tools (e.g., Burp Suite, OWASP ZAP), mobile app security, and security in DevOps environments. Why Join Us? 🌟 Lead and innovate in a fast-paced, growing industry. 🌟 Collaborate with cross-functional teams and drive impactful results. 🌟 Opportunity to shape the security strategy for large-scale enterprise clients. If you're passionate about cybersecurity and ready to make an impact, we’d love to hear from you! 👉 Apply Now! Shruti.Muskara@tribastion.com Show more Show less

🛡️ Cyber Security Analyst Intern 📍 Location: Remote (100% Virtual) 📅 Duration: 3 Months 💸 Stipend for Top Interns: ₹15,000 🎁 Perks: Certificate | Letter of Recommendation | Full-Time Offer (Performance-Based) About INLIGHN TECH INLIGHN TECH is a rapidly growing edtech startup focused on practical, real-world learning. Our Cyber Security Analyst Internship is built to provide aspiring professionals with the tools, knowledge, and experience needed to understand, detect, and respond to cyber threats. 🚀 Internship Overview As a Cyber Security Analyst Intern , you will gain hands-on experience in monitoring systems, identifying vulnerabilities, analyzing threats, and implementing basic security measures. You will work on real-time use cases and contribute to strengthening the organization’s cyber defense posture. 🔧 Key Responsibilities Monitor and analyze system logs and network traffic for suspicious activities Conduct vulnerability assessments and assist in penetration testing Use tools like Wireshark, Nmap, Nessus, Burp Suite, or Splunk Assist in implementing security policies, firewalls, and access controls Respond to simulated incident scenarios and create incident reports Stay updated with the latest cyber threats, malware trends, and attack vectors Document findings, recommendations, and best practices ✅ Qualifications Pursuing or recently completed a degree in Cybersecurity, Computer Science, IT , or related fields Familiarity with network protocols , Linux/Windows systems , and security tools Understanding of concepts like firewalls, encryption, OWASP Top 10, and vulnerability scanning Strong analytical thinking and problem-solving abilities Basic knowledge of scripting or automation tools (e.g., Bash, Python) is a plus Eagerness to learn, research, and grow in the cybersecurity domain 🎓 What You’ll Gain Real-world exposure to cyber threat analysis and defensive strategies Hands-on practice with popular security tools and platforms Internship Certificate upon successful completion Letter of Recommendation for outstanding performance Opportunity for a Full-Time Offer based on performance Experience to help prepare for certifications like CEH, CompTIA Security+, or OSCP Show more Show less

Come work at a place where innovation and teamwork come together to support the most exciting missions in the world! Responsibilities: Technical Leadership: Architect and design secure, scalable Java backend systems for cybersecurity applications, including APIs, data processing pipelines, and user authentication mechanisms. Lead the development and implementation of secure coding practices to mitigate vulnerabilities in Java applications. Stay abreast of emerging cybersecurity threats and trends, incorporating relevant security protocols into backend architectures. Review and approve technical designs, ensuring adherence to security standards and best practices. Team Management: Manage a team of Java backend developers, providing technical guidance, mentoring, and performance feedback. Assign tasks, prioritize projects, and monitor team progress to meet project deadlines. Foster a collaborative environment within the team, encouraging knowledge sharing and continuous improvement. Development and Deployment: Oversee the development lifecycle of backend applications, including requirement gathering, design, coding, testing, and deployment. Ensure efficient implementation of secure coding practices, including input validation, encryption, and access control mechanisms. Work closely with DevOps teams to streamline the deployment process and manage infrastructure. Security Focus: Collaborate with security architects to design and implement robust security measures, including threat modeling, vulnerability assessments, and penetration testing. Monitor system logs and alerts to detect potential security incidents and respond effectively Implement security best practices for data handling, access management, and API security. Required Skills and Experience: Technical Expertise: Deep proficiency in Java programming language, including core Java concepts, Spring Framework, and microservices architecture Experience with relational databases (MySQL, PostgreSQL) and NoSQL databases (MongoDB) Flink streaming architectures lambda designs Understanding of security principles like authentication, authorization, encryption, and secure coding practices Familiarity with cloud platforms (AWS, Azure, GCP) for deployment and scaling Leadership and Management Skills: Proven ability to lead and mentor a team of backend developers Excellent communication and collaboration skills to work with cross-functional teams Strong problem-solving and analytical skills to troubleshoot complex technical issues Cybersecurity Knowledge: Awareness of current cybersecurity threats and vulnerabilities Understanding of security standards and compliance requirements (e.g., GDPR, HIPAA) Experience with security tools and frameworks (e.g., OWASP, SIEM) Education: Bachelor's degree in Computer Science or a related field Show more Show less

Sprinto is a leading platform that automates information security compliance. By raising the bar on information security, Sprinto ensures compliance, healthy operational practices, and the ability for businesses to grow and scale with unwavering confidence. We are a team of 300+ employees & helping 2500+ Customers across 75+ Countries . We are funded by top investment partners Accel, Elevation, and Blume Ventures and have raised 31.8 million USD in funding, including our latest Series B round. The Role We are looking for a Product Security Engineer to lead efforts in securing our products. This role involves integrating security into the SDLC, conducting threat assessments, and collaborating with engineering teams to ensure secure design and coding practices. You will also manage vulnerability remediation, ensure compliance, and educate teams on security best practices What You Will Do Secure SDLC Integration: Embed security into CI/CD pipelines and secure coding practices across development teams Threat Modeling & Risk Assessments: Perform threat assessments and define mitigation strategies for new features Application Security Audits: Conduct security reviews and vulnerability assessments for applications Security Design Reviews: Provide feedback on product designs to ensure security is built in from the start Vulnerability Management: Oversee vulnerability identification, prioritization, and remediation workflows Cross-Functional Collaboration: Work closely with development teams to promote secure coding and operational practices What We’re Looking For 5–9 years in application security, product security, or related roles Proficient in web application security (OWASP Top 10), secure coding practices, and vulnerability remediation Hands-on experience with security tools (SAST/DAST) and securing cloud environments Familiar with cloud security (AWS, Azure) and container security (Docker, Kubernetes) Strong understanding of compliance standards like SOC 2, ISO 27001, and GDPR. Benefits Remote First Policy 5 Days Working With FLEXI Hours Group Medical Insurance (Parents, Spouse, Children) Group Accident Cover Company Sponsored Device Education Reimbursement Policy Show more Show less

For over four decades, PAR Technology Corporation (NYSE: PAR) has been a leader in restaurant technology, empowering brands worldwide to create lasting connections with their guests. Our innovative solutions and commitment to excellence provide comprehensive software and hardware that enable seamless experiences and drive growth for over 100,000 restaurants in more than 110 countries. Embracing our "Better Together" ethos, we offer Unified Customer Experience solutions, combining point-of-sale, digital ordering, loyalty and back-office software solutions as well as industry-leading hardware and drive-thru offerings. To learn more, visit partech.com or connect with us on LinkedIn, X (formerly Twitter), Facebook, and Instagram. Position Description ParTech, Inc. is seeking a Quality Assurance Automation Engineer to join our ParPay-Payments software development team. The QA Automation Engineer will, under general supervision and adhering to established procedures for quality assurance design and implement test strategies related to POS software. The QA Automation Engineer will coordinate, create, execute and maintain test cases to ensure quality control standards are achieved. The QA Automation Engineer will be involved in system, regression, and performance and scalability testing to meet quality objectives. Position Location: Jaipur / Gurugram Reports To: Engineering Manager What We’re Looking For Bachelor’s in computer science/Engineering or related field required. Minimum of 5 years of functional testing background, including defining test strategy, test planning, test case design, and execution 4+ years of professional coding experience in C#, JavaScript, Powershell Project experience using an Agile methodology (e.g. Scrum) Expertise in automated testing frameworks and scripting. Experience with Continuous Integration/Continuous Deployment (CI/CD) pipelines. Knowledge of testing strategies around microservices architecture and modern monolith architecture. Experience with API testing and tools (e.g., Postman, REST-assured, Swagger). Proficiency with and/or familiarity with a variety of software testing tools such as: Selenium Test Complete JMeter Ready API Additional technical experience Performance / load testing SQL proficiency Proficiency in version control systems (e.g., Git) Good understanding with AWS, Azure, or any other related Cloud Infrastructure. Good understanding of security testing practices and tools (e.g., OWASP, SAST, DAST). Unleash your potential: What you will be doing and owning: Collaborates closely with Scrum team to monitor and provide constant feedback, to ensure the quality of the final product Designs test strategies and test cases for complex systems and execute various types of testing (e.g. functional, integration, end-to-end) on a variety of platforms (e.g. desktop, web) Create and execute automated test cases and report test results Interview Process Interview #1: Phone Screen with Talent Acquisition Team Interview #2: Video interview with the Technical Teams (via MS Teams/F2F) Interview #3: Video interview with the Hiring Manager (via MS Teams/F2F) PAR is proud to provide equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability or genetics. We also provide reasonable accommodations to individuals with disabilities in accordance with applicable laws. If you require reasonable accommodation to complete a job application, pre-employment testing, a job interview or to otherwise participate in the hiring process, or for your role at PAR, please contact accommodations@partech.com. If you’d like more information about your EEO rights as an applicant, please visit the US Department of Labor's website. Show more Show less

For over four decades, PAR Technology Corporation (NYSE: PAR) has been a leader in restaurant technology, empowering brands worldwide to create lasting connections with their guests. Our innovative solutions and commitment to excellence provide comprehensive software and hardware that enable seamless experiences and drive growth for over 100,000 restaurants in more than 110 countries. Embracing our "Better Together" ethos, we offer Unified Customer Experience solutions, combining point-of-sale, digital ordering, loyalty and back-office software solutions as well as industry-leading hardware and drive-thru offerings. To learn more, visit partech.com or connect with us on LinkedIn, X (formerly Twitter), Facebook, and Instagram. Position Description ParTech, Inc. is seeking a Quality Assurance Automation Engineer to join our ParPay-Payments software development team. The QA Automation Engineer will, under general supervision and adhering to established procedures for quality assurance design and implement test strategies related to POS software. The QA Automation Engineer will coordinate, create, execute and maintain test cases to ensure quality control standards are achieved. The QA Automation Engineer will be involved in system, regression, and performance and scalability testing to meet quality objectives. Position Location: Jaipur / Gurugram Reports To: Engineering Manager What We’re Looking For Bachelor’s in computer science/Engineering or related field required. Minimum of 5 years of functional testing background, including defining test strategy, test planning, test case design, and execution 4+ years of professional coding experience in C#, JavaScript, Powershell Project experience using an Agile methodology (e.g. Scrum) Expertise in automated testing frameworks and scripting. Experience with Continuous Integration/Continuous Deployment (CI/CD) pipelines. Knowledge of testing strategies around microservices architecture and modern monolith architecture. Experience with API testing and tools (e.g., Postman, REST-assured, Swagger). Proficiency with and/or familiarity with a variety of software testing tools such as: Selenium Test Complete JMeter Ready API Additional technical experience Performance / load testing SQL proficiency Proficiency in version control systems (e.g., Git) Good understanding with AWS, Azure, or any other related Cloud Infrastructure. Good understanding of security testing practices and tools (e.g., OWASP, SAST, DAST). Unleash your potential: What you will be doing and owning: Collaborates closely with Scrum team to monitor and provide constant feedback, to ensure the quality of the final product Designs test strategies and test cases for complex systems and execute various types of testing (e.g. functional, integration, end-to-end) on a variety of platforms (e.g. desktop, web) Create and execute automated test cases and report test results Interview Process Interview #1: Phone Screen with Talent Acquisition Team Interview #2: Video interview with the Technical Teams (via MS Teams/F2F) Interview #3: Video interview with the Hiring Manager (via MS Teams/F2F) PAR is proud to provide equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability or genetics. We also provide reasonable accommodations to individuals with disabilities in accordance with applicable laws. If you require reasonable accommodation to complete a job application, pre-employment testing, a job interview or to otherwise participate in the hiring process, or for your role at PAR, please contact accommodations@partech.com. If you’d like more information about your EEO rights as an applicant, please visit the US Department of Labor's website. Show more Show less

Principal Secuirty Researcher Manager Hyderabad, Telangana, India Date posted Jun 13, 2025 Job number 1830120 Work site Microsoft on-site only Travel 0-25 % Role type People Manager Profession Security Engineering Discipline Security Research Employment type Full-Time Overview Security represents the most critical priorities for our customers in a world awash in digital threats, regulatory scrutiny, and estate complexity. Microsoft Security aspires to make the world a safer place for all. We want to reshape security and empower every user, customer, and developer with a security cloud that protects them with end to end, simplified solutions. The Microsoft Security organization accelerates Microsoft’s mission and bold ambitions to ensure that our company and industry is securing digital technology platforms, devices, and clouds in our customers’ heterogeneous environments, as well as ensuring the security of our own internal estate. Our culture is centered on embracing a growth mindset, a theme of inspiring excellence, and encouraging teams and leaders to bring their best each day. In doing so, we create life-changing innovations that impact billions of lives around the world. Security represents the most critical priorities for our customers in a world awash in digital threats, regulatory scrutiny, and estate complexity. The Microsoft Security Response Center (MSRC) is responsible for detecting, protecting, and responding to threats that affect Microsoft’s products and services. We are looking for a motivated Leader to manage a team of highly skilled security researchers who also is adept at vulnerability research to join our team. As part of the MSRC, our team is responsible for analyzing vulnerabilities found in Microsoft’s products and services to determine their root cause, severity, and security impact. This analysis plays a critical role in shaping the security updates that are deployed to customers. The knowledge that we gain from analyzing vulnerabilities also informs the offensive and defensive security research performed by our team. As part of this research, our team works collaboratively with many teams across Microsoft to investigate, develop, and deploy security features that help discover and mitigate the biggest threats to customers. Our team is passionate about a range of topics including vulnerability discovery & automation, safer programming languages, exploit and vulnerability mitigations, software sandboxes, penetration testing & red teaming, exploit development, operating systems security (Windows and Linux), virtualization security, cloud services security, OWASP top 10, and hardware vulnerabilities and mitigations. This particular role is focused on the online services (OLS), e.g. cloud and web bugs. This is a unique opportunity to have a positive impact on improving safety for customers around the world and to work on challenging real-world security problems as part of a supportive and collaborative team. Microsoft’s mission is to empower every person and every organization on the planet to achieve more. As employees we come together with a growth mindset, innovate to empower others, and collaborate to realize our shared goals. Each day we build on our values of respect, integrity, and accountability to create a culture of inclusion where everyone can thrive at work and beyond. In alignment with our Microsoft values, we are committed to cultivating an inclusive work environment for all employees to positively impact our culture every day. Qualifications 10+ years of experience in vulnerability/exploits research and mitigation Bachelor's Degree in Statistics, Mathematics, Computer Science or related field and experience in software development lifecycle, large-scale computing, modeling, cybersecurity, and/or anomaly detection Have a hands-on approach to technical leadership in setting the engineering direction for the team with sound design and development best practices. Drive engineering roadmaps, leading teams, mentoring, and helping others grow. Own career development of team through active coaching. Lead the team by bringing clarity, creating energy, and driving results. Create a strong culture of engineering excellence, customer passion, collaboration, diversity, and inclusion. Have a hands-on approach to technical leadership in setting the engineering direction for the team with sound design and development best practices. Drive engineering roadmaps, leading teams, mentoring, and helping others grow. Own career development of team through active coaching. Lead the team by bringing clarity, creating energy, and driving results. Create a strong culture of engineering excellence, customer passion, collaboration, diversity, and inclusion. In-depth experience in working as a security engineer Experience in identifying common vulnerability types (OWASP top 10, CWE top 25) in software and services written in C#, JavaScript/HTML, C++, C, etc Ability to debug and root cause vulnerabilities in software, services, and cloud platforms Excellent written and verbal communication skills Preferred Qualifications: Public track record of vulnerability research and discovery Familiarity with cloud service architectures (Azure etc), design, and implementations Familiarity with operating system internals for Windows and/or Linux Familiarity with exploitation techniques and mitigations Responsibilities Lead and manage a team of security researchers to Analyzing vulnerabilities in software and services to determine their root cause, severity, and security impact Identifying variants of vulnerabilities and discovering new vulnerabilities. Lead the team while also collaborating with stakeholders in peer teams and organizations to build tools and invent new approaches to automate the discovery & analysis of vulnerabilities Influence and align org vision by collaborating with customers, partners, product management and engineering teams. Analyzing trends in vulnerabilities being discovered to spot patterns Researching, developing, and deploying mitigations for common patterns of vulnerabilities Performing penetration testing, offensive security research, and red teaming activities Engaging with and contributing knowledge back to the security research community Mentoring and contributing to the growth of individuals within the team and across Microsoft Supporting a healthy and inclusive culture within the team and across Microsoft Own career development of team through active coaching. Lead the team by bringing clarity, creating energy, and driving results. Create a strong culture of engineering excellence, customer passion, collaboration, diversity, and inclusion. Lead the team by bringing clarity, creating energy, and driving results. Create a strong culture of engineering excellence, customer passion, collaboration, diversity, and inclusion. Benefits/perks listed below may vary depending on the nature of your employment with Microsoft and the country where you work.  Industry leading healthcare  Educational resources  Discounts on products and services  Savings and investments  Maternity and paternity leave  Generous time away  Giving programs  Opportunities to network and connect Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, citizenship, color, family or medical care leave, gender identity or expression, genetic information, immigration status, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran or military status, race, ethnicity, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable local laws, regulations and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application process, read more about requesting accommodations.

Job Title - Senior Security Engineer (Application & Cloud Security) Location: Chennai About Tazapay Tazapay is a cross border payment service provider. They offer local collections via local payment methods, virtual accounts and cards in over 70 markets. The merchant does not need to create local entities anywhere and Tazapay offers the additional compliance framework to take care of local regulations and requirements. This results in decreased transaction costs, fx transparency and higher auth rates. They are licensed and backed by leading investors. www.tazapay.com What's exciting waiting for you? This is an amazing opportunity for you to join a fantastic crew before the rocket ship launch. It will be a story you will carry with you through your life and have the unique experience of building something ground up and have the satisfaction of seeing your product being used and paid for by thousands of customers. You will be a part of a growth story in securing critical payment infrastructure that spans both application security and cloud security across 70+ markets. We believe in a culture of openness, innovation & great memories together. About The Senior Security Engineer Role As a Senior Security Engineer, you will play a pivotal role in securing our entire technology stack - from application-level security to cloud infrastructure protection. You will lead comprehensive security initiatives across our AWS cloud environments and payment applications built with Node.js and GoLang microservices, while leveraging AWS security services and modern security tools to protect against evolving threats. This role combines deep technical expertise in both application security and cloud security with leadership responsibilities. Key Responsibilities Application Security Leadership Lead comprehensive security assessments of microservices-based applications built with GoLang, Java, or Scala Conduct advanced security reviews of Vue.js and ReactJS frontend applications and their integration with backend services Execute expert-level manual and automated web application penetration testing using industry-standard methodologies (OWASP Testing Guide, PTES) Design and implement vulnerability scoring and risk assessment frameworks using CVSS, OWASP Risk Rating, and custom business impact metrics Utilize govulncheck for Go-specific vulnerability detection and dependency analysis across microservices Deploy Semgrep/OpenGrep for advanced static code analysis and custom security policy enforcement Integrate Gitleaks for comprehensive secret detection across development workflows Lead secure development lifecycle (SDLC) integration and establish security standards for development teams Perform complex web application penetration testing including authentication bypass, authorization flaws, injection attacks, and business logic vulnerabilities AWS Cloud Security Architecture Design and implement enterprise-level security architecture for AWS cloud environments Configure and optimize AWS Shield (Standard and Advanced) for comprehensive DDoS protection Implement and manage AWS CloudFront security configurations including advanced WAF rules, SSL/TLS, and origin protection Secure complex AWS services including EC2, ECS, EKS, Lambda, RDS, S3, API Gateway, and multi-region deployments Design network security controls using VPC, Security Groups, NACLs, AWS Transit Gateway, and PrivateLink Establish and lead secure CI/CD pipeline implementations for Node.js applications and GoLang microservices Architect container security solutions for Docker and Kubernetes (EKS) environments Security Automation & Monitoring Implement comprehensive security monitoring using AWS CloudTrail, GuardDuty, and Security Hub Deploy and manage Prowler for continuous AWS security assessments and compliance validation Utilize ScoutSuite for multi-cloud security posture management and configuration auditing Configure Gitleaks for continuous secret monitoring across enterprise development workflows Implement Semgrep/OpenGrep rules for real-time security vulnerability detection and policy enforcement Lead automation initiatives using Infrastructure as Code (Terraform, CloudFormation, AWS CDK) Develop advanced security automation scripts and frameworks using Python, Bash, and AWS SDKs Create comprehensive security dashboards and executive reporting mechanisms Vulnerability Management & Risk Assessment Lead enterprise vulnerability management programs with comprehensive scoring using CVSS v3.1, OWASP Risk Rating, and custom business impact assessments Develop sophisticated risk scoring matrices incorporating technical severity, business impact, exploitability, and regulatory requirements Create detailed penetration testing reports with executive summaries, technical findings, and strategic remediation roadmaps Establish vulnerability SLA metrics and track remediation timelines based on risk scores and business priorities Conduct root cause analysis (RCA) on complex security incidents and implement preventive measures Lead threat modeling sessions and strategic risk assessments for new features and infrastructure changes Mentor junior security engineers and provide technical guidance on vulnerability remediation Compliance & Regulatory Security Ensure comprehensive compliance with financial industry regulations (PCI DSS, SOX, GDPR, PSD2) Lead compliance audits and regulatory assessments using Prowler for AWS compliance validation Implement ScoutSuite for comprehensive multi-cloud security auditing Design and maintain data protection controls for sensitive payment processing workloads Develop and maintain disaster recovery and business continuity security plans Lead security aspects of vendor risk assessments and third-party integrations Represent security requirements to business leadership and regulatory bodies Technical Leadership & Strategy Serve as technical security leader for complex cross-functional projects Influence security strategies, standards, and architectural decisions across the organization Lead security initiatives and mentor junior engineers on advanced security practices Participate in strategic security planning and technology evaluation Drive security culture transformation and champion security best practices Represent security needs to executive leadership and board-level communications Experience Required Qualifications 8+ years of experience in information security with demonstrated expertise in both application security and cloud security Extensive experience securing microservices architectures, particularly those built with GoLang, Java, or Scala Advanced experience with AWS cloud security including Shield, CloudFront, and comprehensive security service management Expert-level web application penetration testing experience including complex business logic vulnerabilities and multi-tier architectures Proven leadership in vulnerability scoring and risk assessment using industry-standard frameworks Hands-on expertise with security automation tools: govulncheck, Gitleaks, Semgrep/OpenGrep, Prowler, ScoutSuite Strong experience securing Node.js applications and modern JavaScript frameworks (Vue.js, ReactJS) Experience leading security teams and influencing organizational security strategy Technical Skills Expert-level proficiency in AWS security services including Shield, CloudFront, GuardDuty, Security Hub, WAF, and comprehensive service portfolio Advanced application security expertise across GoLang, Java, Scala, Node.js, Vue.js, and ReactJS technologies Mastery of security automation tools: govulncheck (Go vulnerability scanning), Gitleaks (secret detection), Semgrep/OpenGrep (static analysis), Prowler (AWS security assessment), ScoutSuite (multi-cloud auditing) Expert-level web application penetration testing skills using advanced tools and custom exploitation frameworks Comprehensive knowledge of vulnerability scoring frameworks including CVSS v3.1, OWASP Risk Rating, and FAIR methodology Advanced Infrastructure as Code proficiency (Terraform, CloudFormation, AWS CDK) Expert container and orchestration security (Docker, Kubernetes/EKS, service mesh security) Advanced scripting and automation capabilities (Python, Bash, PowerShell, Go) Enterprise network security and cloud networking expertise Security Expertise Deep understanding of application security principles and advanced penetration testing methodologies Expert knowledge of cloud security frameworks (NIST, CSA, AWS Well-Architected Security Pillar) Advanced understanding of financial services security and payment processing compliance requirements Expertise in security architecture design for complex distributed systems Advanced threat modeling and risk assessment capabilities Comprehensive knowledge of cryptography, PKI, and secure communication protocols Expert-level incident response and forensic analysis skills Advanced understanding of regulatory compliance frameworks and audit requirements Nice to Have Certifications AWS Security Specialty certification (required) Advanced penetration testing certifications (OSCP, GWEB, eWPT, eWPTX) Security leadership certifications (CISSP, CISM, CISSP) Cloud architecture certifications (AWS Solutions Architect Professional, DevOps Engineer Professional) Additional cloud security certifications (Azure Security, GCP Security) Additional Skills Experience with multi-cloud security architectures and hybrid environments Advanced knowledge of serverless security (AWS Lambda, API Gateway, serverless frameworks) Expertise in security orchestration and automated response (SOAR) platforms Experience with machine learning/AI security applications and threat detection Advanced understanding of payment processing security and financial services infrastructure Experience with regulatory examination processes and security audit leadership Knowledge of emerging security technologies and threat landscape evolution Experience with security product evaluation and vendor management Advanced presentation and executive communication skills Key Abilities And Traits Technical Excellence: Demonstrated ability to architect and implement comprehensive security solutions across complex application and cloud environments processing sensitive financial data. Leadership: Proven capability to lead security initiatives across multiple teams, influence strategic decisions, and mentor engineering talent while representing security needs to executive leadership. Strategic Thinking: Ability to balance immediate security needs with long-term strategic objectives, translating business requirements into technical security solutions. Problem-Solving: Expert-level analytical and problem-solving skills with the ability to address complex security challenges spanning application code to cloud infrastructure. Communication: Exceptional verbal and written communication skills, capable of explaining complex security concepts to technical teams, business stakeholders, and executive leadership. Continuous Innovation: Commitment to staying current with emerging security threats, technologies, and industry best practices while driving security innovation within the organization. Project Management: Advanced ability to manage multiple complex security initiatives simultaneously while ensuring compliance with regulatory requirements and business objectives. Mentorship: Strong commitment to developing junior security talent and fostering a security-conscious culture across engineering teams. Join our team and let's groove together to the rhythm of innovation and opportunity! Your Buddy, Tazapay Show more Show less

Description : We are seeking a skilled Cloud Vulnerability Management Operator to join our dynamic team. As an Cloud Vulnerability Management Operator, you will be responsible for identifying, assessing, and mitigating vulnerabilities across our multi-cloud environments. You will leverage native cloud tooling and services to ensure the security and integrity of our cloud infrastructure. What you will do: Work under the supervision and direction of the Threat and Vulnerability Operations Manager (TVM) and other senior members of the Security Operations team Develop strong working relationships with support teams, management, and cross-functional working groups Provide guidance to junior-level staffing where appropriate You would be responsible for reducing the Security risks in the cloud infrastructure environment Curate and ensure metrics and reporting are shared with leadership and key stakeholders, time to triage, time to respond Configure and maintain Cloud Posture Management tooling (CSPM) and provide guidance on secure infrastructure best practices Provide expertise within the Threat and Vulnerability Management program which includes Cloud Security Posture Management (CSPM) Develop technical security controls and secure configuration baselines for public cloud resources in AWS, Azure, and GCP Responsible for identifying, assessing, and mitigating vulnerabilities within a multi-cloud infrastructure Implement and leverage native cloud services to ensure the security and integrity of the multi-cloud infrastructure (e.g., AWS Inspector, GCP SCCP, Azure Defender) Ensure the regular scanning of instances and images to identify and assess vulnerabilities Assist with the tracking of the Infrastructure Bill of Materials (IBOM) to maintain an up-to-date inventory of all components and their security status Collaborate with development and operations teams to integrate security best practices into the CI/CD pipeline as it relates to posture management Review and ensure cloud infrastructure assets follow traditional CIS benchmarking standards and complete all required scanning (e.g., image scanning, VM, container, etc.) Create and maintain remediation tickets across our multi-cloud environment Proactively document and communicate deviations from standard baselines Fundamentals, Network/Endpoint Security, Cybersecurity Risk & Compliance, or Information Technology Strong organizational, interpersonal, and presentation skills Excellent written and oral communication skills Ability to multi-task and handle multiple projects at the same time Exceptional problem-solving, critical thinking, and analytical skills Desired Skills: 5-10+ years of Cloud Security experience Experience in Cloud Vulnerability management, configuration, and validation using various tools across multi-cloud environments Subject matter specialist or expert knowledge in AWS Inspector for Cloud, GCPs SCCP Cloud-related certification in either AWS or GCP Azure certification desired Awareness of metrics and reporting structure including experience with metrics curation tools (e.g., PowerBi) Proficiency using both the AWS Management Console and the AWS Command Line Interface (CLI) Proficiency in using both the GCP SCCP and the GCloud CLI commands Experience leading teams without a management role Possess at least five years of Linux and/or Windows System Administration knowledge Experience with vulnerability scanning tools and reporting Experience with vulnerability management scoring methodologies Knowledge of Cloud Posture Management tooling Knowledge of OWASP Top 10 Experience with the threat intelligence lifecycle Experience with application security frameworks Show more Show less

Company Description IS Global Service Center (GSC) operating from Chennai, India, is a part of IS supporting Expeditors IT operations.IS GSC started with 6 employees now we are 520+ employees today delivering world class Information services globally. This Product based Strategic Center's IT transformation has delivered a radical change to Expeditors IT manpower profile and skills. We will continue to deliver services as we continue to grow responsibly in the coming years. Expeditors is a global logistics company headquartered in Seattle, Washington. As a Fortune 500 company, founded in 1979 we have employed over 18,000+ trained professionals in a worldwide network of over 340+ locations across six continents. Expeditors satisfies the increasingly sophisticated needs of international trade through customized solutions and seamless, integrated information systems Job Description A Configuration Administrator works on projects or tasks that ensure consistency & stability in design & implementation of configuration tools used in the development of software & asset management in the production environment. Be creative during collaboration on best practices and ways to improve performance along with efficiency. Possessive resolve troubleshooting complex and simple issues. They will have a keen eye for recognizing inefficiency and take the initiative to simplify processes for their team and customers. A solid understanding of automation and infrastructure as code would be desired! Roles And Responsibilities Utilizing Infrastructure as Code best practices, develop, maintain, and enhance systems using scripting language (Python and bash) Analyze the Infrastructure, pipeline design issues and suggest better solution. Create and maintain CI/CD pipeline for application with DevSecOps standards. Provide recommendations to management through research and review of recent industry solutions in various configuration related tools/technologies. Maintain Config admin owned tools such Nexus, GitLab, k8’s, Apache, Tomcat, etc. with ability to utilize Ansible or Terraform. Create documentation and training material; provide training to others to ensure cross collaboration. Support on patch management and automate the application startup solution. Participate in Companywide working group for contribute to strategy for Enterprise needs. Collaborate with DEV team to stable the application accessibility. Configure and maintain the azure platform using terraform modules. Understand the alerts and its priority, react based on it. Qualifications Minimum Qualifications 5+ years of DevSecOps experience as Config Admin or similar role Excellent troubleshooting and problem-solving skillset. Past participation in major systems rollouts and deployments Good understanding of git workflows and automation. Understanding of advanced continuous delivery methods. Solid foundation in infrastructure and networking concepts Proficient UNIX/LINUX scripting knowledge (Python, Bash, etc.) Ability to formulate a design strategy from a mix of business requirements, concept documents and verbal description. Good understanding of IaC – preferably Terraform Outstanding communication skills, including oral, written, motivation and presentation skills. Desired Qualifications Hands-on experience with Linux Hands-on experience with Docker and Kubernetes including deployments Cloud deployment models and concepts – Azure. Hands-on experience with DevSecops Tools: Jenkins, Nexus, GitLab, Ansible, OWASP, Sonarquble, Trivy, Checkov, etc. Experience in configuring various monitoring tools. (ELK, Grafana, Prometheus, Thanos, Mimir etc.) Experience in DevSecOps and CI/CD pipeline management. Java programming understanding is an added advantage Held the role of a critical contributor to or leading major systems rollouts and deployments Active participant in the vendor/product selection process Additional Information Expeditors offers excellent benefits: Paid Vacation, Holiday Health Plan: Medical Insurance Employee Stock Purchase Plan Training and Education Programs Unlimited opportunities for career advancement Show more Show less

What we offer Home About Services Back IT Consulting DevSecOps DevOps Site Reliability Engineering Cloud Advancement Managed Kubernetes Services Platform Engineering Infrastructure Automation Data Intelligence and Innovation Cloud Native Architecture Internet of Things (IoT) SAP DevEx Need different solutions? BerryBytes scalable solutions adapt to your needs, ensuring robust growth without compromise. Talk to sales Learn more about 01Cloud Protection Against Cyber Threats Scalable and Tailored Solutions Expert Guidance and Support Careers Events News Contact SecOps Engineer SecOps Engineer Job Category: Infrastructure Engineering Job Type: Full Time Job Location: India & Nepal Reports To: Director of Cloud Infrastructure We’re looking for a SecOps Engineer to help us get to cyber resiliency in our infrastructure. You will be responsible for ensuring security standards are set and adhered to for operational excellence in the areas of availability, productivity, capacity, and efficiency. Responsibilities Define & execute on company’s strategy for a secure infrastructure, applications and third party vendors Understanding the tooling behind the security Analyse, identify and remediate security weaknesses in cloud infrastructure Build cyber resiliency in our cloud infrastructure Consult on security-critical infrastructure and system features Championing improvements for a company’s security controls, identifying automation opportunities and tools that could improve the ability to detect and react to events Internal infrastructure network testing, mainly within Kubernetes clusters Vulnerability assessment (VMs, container images) Container runtime security Web application security testing (ability to identify vulnerabilities within the OWASP Top Ten) Static Application Security Testing (SAST) and DAST (Dynamic Application Security Testing); mainly automated but some manual work required to eliminate false positives Mobile Application Security Testing (MAST) Participate in security code reviews Develop KPIs to show how many issues found and how many issues fixed Participate in security architecture reviews Assist with automation to help development and operations consume security service Requirements Experienced with Application Security Tools (SAST, DAST, SCA) Knowledge on threat modelling and security design review methodologies Promoting security knowledge sharing within technical organisations Assisting in the design of enhancements to the cloud security strategy by identifying and alerting on appropriate event types Managing CI/CD security strategy with integration of Security as Code (SaC) and Policy as Code (PaC) Great To Have Ability to carry out manual code security review (this would mean some knowledge of the Javascript, Java, PHP, Go, C#, Python, Terraform, HTML, XML and CSS languages) Experience in helping an organisation to meet the PCI DSS and SOC-2 compliance standards Experience in Kubernetes AWS/GCP exposure. Qualification Bachelor’s or master’s degree in Computer Science, Information Technology, or a related field, or 1 years equivalent practical Information Security professional experience. 1+ years of Information Technology experience with a focus on Security. 1+ years of experience in Cloud Administration, Networking, or another operations-related field. Candidates should have exceptional troubleshooting and problem-solving skills. Experience engineering and operating public-facing infrastructure Knowledge with integrating crucial security tasks into CI/CD pipelines Apply for this position Full Name * Email * Phone * Cover Letter * Upload CV/Resume *Allowed Type(s): .pdf By using this form you agree with the storage and handling of your data by this website. * Get the latest BerryBytes updates by subscribing to our Newsletter! Unleash Your Potential with Cloud Native Solutions Contact Us Navigation Home About Careers Events News Contact Services IT Consulting DevSecOps DevOps Site Reliability Engineering Cloud Advancement Managed Kubernetes Services Platform Engineering Services Infrastructure Automation Data Intelligence and Innovation Cloud Native Architecture Internet Of Things (IoT) SAP DevEx Legal Terms & Conditions Cookie Policy Privacy Policy Copyright © 2025 BerryBytes. All Rights Reserved. Designed & Built by Wattdot What we offer Home About Services Back IT Consulting DevSecOps DevOps Site Reliability Engineering Cloud Advancement Managed Kubernetes Services Platform Engineering Infrastructure Automation Data Intelligence and Innovation Cloud Native Architecture Internet of Things (IoT) SAP DevEx Need different solutions? BerryBytes scalable solutions adapt to your needs, ensuring robust growth without compromise. Talk to sales Learn more about 01Cloud Protection Against Cyber Threats Scalable and Tailored Solutions Expert Guidance and Support Careers Events News Contact Show more Show less

Cyber Security Trainer Job Location: Pune Required Experience: 3 to 5 Years Skills Technical process trainer in Cyber Security, Network Security, Web application, Mobile application & API, Cloud Security, Cyber Security Governance and Security Operations Centre Incident Management Excellent Communication, Strong Interpersonal skills, Organizational and Presentation skills : Conduct pre-scheduled seminars and trainings for college students and corporate employees Conduct Training sessions on Cyber Security, Web Application Security and concepts of VAPT Enhancing Course plans, Assignments and Presentations to suit the training needs Designing hands-on sessions with practice labs Providing assessments for measuring proficiency of the trainees Impart training programs, webinars, workshops in groups or individually Maintain training related MIS (attendance, feedback forms, evaluation scores and certificate issued) Incorporate participants feedback for improvisation of the training programs Working on Creative slides and upgrading training material Researching the latest security best practices, staying abreast of new threats and vulnerabilities, technologies Flexible in travelling for delivering the training at Varutra offices or client locations if needed Any Certification related in Cyber Security would be beneficial Required Skills Proven experience as technical process trainer in Cyber Security, Network Security, Application Security (Web, Mobile, API), Cloud Security, Cyber Security Governance and Security Operations Centre Incident Management Hands-on experience in delivering security testing and ethical hacking modules on Penetration Testing, OWASP testing methodologies to corporate as well as freshers Hands-on working experience and understanding of OWASP Top 10 Technical experience in conducting cyber security assessments, vulnerability and exploitation engagements Knowledge of modern training techniques and tools Should have Excellent Communication, Strong Interpersonal, Organizational, and Presentation skills Innovative and able to think outside the box Apply For This Position First Name Email address Phone Cover Letter Upload CV/Resume Allowed Type(s): .pdf, .doc, .docx By using this form you agree with the storage and handling of your data by this website Show more Show less

Description Job Summary: Responsible for developing software programs per technical specifications following programming standards and procedures, performing testing, executing program modifications, and responding to problems by diagnosing and correcting errors in logic and coding. Key Responsibilities Applies secure coding and UI standards and best practices to develop, enhance, and maintain IT applications and programs. Assists with efforts to configures, analyzes, designs, develops, and maintains program code and applications. Performs unit testing and secure code testing, and issues resolution. Follow the process for source code management. Participate in integration, systems, and performance testing and tuning of code. Participates in peer secure code reviews. Harvest opportunities for re-usability of code, configurations, procedures, and techniques. Responsibilities Competencies: Action oriented - Taking on new opportunities and tough challenges with a sense of urgency, high energy, and enthusiasm. Balances stakeholders - Anticipating and balancing the needs of multiple stakeholders. Business insight - Applying knowledge of business and the marketplace to advance the organization’s goals. Drives results - Consistently achieving results, even under tough circumstances. Plans and aligns - Planning and prioritizing work to meet commitments aligned with organizational goals. Tech savvy - Anticipating and adopting innovations in business-building digital and technology applications. Performance Tuning - Conceptualizes, analyzes and solves application, database and hardware problems using industry standards and tools, version control, and build and test automation to meet business, technical, security, governance and compliance requirements. Programming - Creates, writes and tests computer code, test scripts, and build scripts using algorithmic analysis and design, industry standards and tools, version control, and build and test automation to meet business, technical, security, governance and compliance requirements. Solution Configuration - Configures, creates and tests a solution for commercial off-the-shelf (COTS) applications using industry standards and tools, version control, and build and test automation to meet business, technical, security, governance and compliance requirements. Solution Functional Fit Analysis - Composes and decomposes a system into its component parts using procedures, tools and work aides for the purpose of studying how well the component parts were designed, purchased and configured to interact holistically to meet business, technical, security, governance and compliance requirements. Solution Validation Testing - Validates a configuration item change or solution using the Function's defined best practices, including the Systems Development Life Cycle (SDLC) standards, tools and metrics, to ensure that it works as designed and meets customer requirements. Values differences - Recognizing the value that different perspectives and cultures bring to an organization. Education, Licenses, Certifications College, university, or equivalent degree in Computer Science, Information Technology, Business, or related subject, or relevant equivalent experience required. This position may require licensing for compliance with export controls or sanctions regulations. Experience Intermediate level of relevant work experience required. 3-5 years of experience. Qualifications Key Responsibilities: Development & Coding: Design, develop, and maintain scalable web applications using modern front-end and back-end technologies. Write clean, efficient, and reusable code for both front-end and back-end components. Integrate APIs and third-party services into the web applications. Develop and manage NoSQL database schemas, and optimize queries for performance and scalability. Collaborative Problem-Solving: Collaborate with product managers, designers, and other developers to create functional, user-friendly, and visually appealing web applications. Participate in code reviews to ensure code quality, security, and maintainability. Troubleshoot, debug, and optimize applications for better performance and user experience. Technical Leadership & Mentorship: Provide guidance and support to junior developers and help them grow technically. Continuously stay updated with new technologies, tools, and best practices to contribute innovative ideas to the team. Front-End Development: Build responsive and adaptive user interfaces using modern front-end frameworks and libraries (e.g., React, Angular, Vue.js). Implement best practices for UI/UX design and ensure the application is mobile-friendly. Back-End Development: Develop RESTful APIs, microservices, and server-side logic using backend technologies (e.g., Node.js, Python, Java, Typescript). Ensure security, data protection, and compliance with industry standards. Database & Storage: Design, implement, and manage relational (SQL) and non-relational (NoSQL) databases such as PostgreSQL, MySQL, Neo4J, CosmosDB, etc. Perform database optimizations for faster query processing and better performance. Version Control & Deployment: Use version control systems (e.g., Git) to manage and document changes to the codebase. Participate in continuous integration and continuous deployment (CI/CD) processes, ensuring the software is regularly deployed to production. Testing & Debugging: Write unit, integration, and end-to-end tests for applications to ensure robustness and reliability. Conduct thorough testing and debugging to ensure a smooth user experience. Documentation: Document technical specifications, API endpoints, and any relevant development processes. Maintain clear and concise documentation for code, database schemas, and deployment procedures. Technical Skill Set Front-End Technologies: Strong experience with HTML5, CSS3, and JavaScript. Proficiency in front-end frameworks such as React, Angular, or Vue.js. Knowledge of responsive design and cross-browser compatibility. Familiarity with front-end build tools (Webpack, Gulp, etc.). Back-End Technologies: Proficient in one or more back-end programming languages such as Node.js, Python or Java. Experience with server-side frameworks (Express.js, Django, Spring, GraphQL etc.). Strong knowledge of RESTful API and GraphQL design and development. Strong experience in Azure Cloud web services. Experience in Kubernetes development and deployment. Databases: Proficiency in relational databases (SQL Server, PostgreSQL, etc.). Knowledge of NoSQL databases (MongoDB, Neo4J, CosmosDB, Redis, etc.). Strong SQL skills and ability to write optimized queries. Version Control: Experience with Git for version control, including branching, merging, and pull requests. Familiarity with Git workflows such as GitFlow or trunk-based development. Deployment & DevOps: Experience with CI/CD tools such as Jenkins, GitLab CI, or CircleCI. Familiarity with containerization technologies like Docker and container orchestration platforms like Kubernetes. Knowledge of cloud platforms (AWS, Azure, GCP) for hosting and deploying applications. Testing & Debugging: Knowledge of testing frameworks and tools like Jest, Mocha, or Jasmine. Experience with test-driven development (TDD) and writing unit and integration tests. Familiarity with debugging tools and strategies. Agile Methodology: Experience working in Agile development environments, participating in Scrum ceremonies (stand-ups, sprint planning, etc.). Familiarity with project management tools like Jira, Trello, or Asana. Additional Skills: Strong problem-solving skills and ability to think critically. Good understanding of web security best practices (e.g., OWASP Top 10). Ability to work in a collaborative, team-oriented environment. Strong communication skills and ability to articulate technical concepts to non-technical stakeholders. Preferred Qualifications 3-5 years of hands-on experience as a full-stack developer. Bachelor's degree in Computer Science, Engineering, or related field (or equivalent experience). Familiarity with additional technologies or frameworks like React, Vue.js, Svelte, etc. Job Systems/Information Technology Organization Cummins Inc. Role Category Hybrid Job Type Exempt - Experienced ReqID 2411090 Relocation Package Yes Show more Show less

Job Summary: We are hiring an experienced Application Security Engineer specializing in Java ADF and Jasper Reports, with a strong track record of resolving Vulnerability Assessment and Penetration Testing (VAPT) findings. The ideal candidate must have secured complex enterprise applications, including online payments and eCommerce systems, particularly on legacy stacks such as Java 1.7, MySQL 5.5, and JBoss 7.1. This role is hands-on and remediation-focused, requiring deep understanding of secure development and hardening in deprecated environments. Key Responsibilities: Lead remediation of high-priority VAPT findings in large-scale enterprise systems. Secure passwords and PII data at all stages: At view/input: masking, form validation, secure front-end patterns In transit: TLS, secure headers, HTTPS enforcement At rest: encryption, proper salting and hashing (e.g., bcrypt, SHA-256) Fix injection attacks (SQLi, XSS, LDAPi, command injection), CSRF, clickjacking, IDOR, and other OWASP Top 10 issues. Apply secure API integration practices: auth tokens, rate limiting, input validation. Harden session and cookie management (HttpOnly, Secure, SameSite attributes, session fixation prevention). Review and fix insecure code in ADF Faces, Task Flows, Bindings, BC4J, and Jasper Reports. Secure Jasper Reports generation and access (parameter validation, report-level authorization, export sanitization). Work hands-on with legacy platforms: Java 1.7, MySQL 5.5, JBoss 7.1 — applying secure remediation without disrupting production. Strengthen security of online payment/eCommerce systems with proven compliance (e.g., PCI-DSS). Maintain detailed remediation logs, documentation, and evidence for audits and compliance (GDPR, DPDPA, STQC, etc.). Technical Skills: Java EE, Oracle ADF (ADF Faces, Task Flows, BC4J), Jasper Reports Studio/XML Strong debugging skills in Java 1.7, MySQL 5.5, JBoss 7.1 Secure development lifecycle practices with a focus on legacy modernization Strong grounding in OWASP Top 10, SANS 25, CVSS, and secure coding principles Experience in PII handling, data masking, salting, and hashing Proficiency in OAuth2, SAML, JWT, and RBAC security models Performance improvement and application profiling Expertise in analyzing application, system, and security logs to identify and fix issues Ability to ensure application stability and high availability Be the champion/lead and guide the team to fix the issues PHP experience is a plus, especially in legacy web app environments Required Experience: 5–10+ years in application development and security Demonstrated experience remediating security vulnerabilities in eCommerce and payment platforms Ability to work independently in production environments with deprecated technologies Preferred Qualifications / Plus: B.E./B.Tech/MCA in Computer Science, IT, or Cybersecurity Use of AI tools for identification and fixing the issues is real plus Any VAPT or Application Security Certification is a plus (e.g., CEH, OSCP, CSSLP, GWAPT, Oracle Certified Expert) Familiarity with compliance standards: PCI-DSS, GDPR, DPDPA, STQC Proficiency with security tools: Fortify, ZAP, SonarQube, Checkmarx, Burp Suite Soft Skills: Strong problem-solving and diagnostic capabilities, especially in large monolithic codebases Good documentation and communication skills for cross-functional collaboration Able to work under pressure, troubleshoot complex issues, and deliver secure code fixes rapidly Show more Show less

Company Description Strategy (Nasdaq: MSTR) is at the forefront of transforming organizations into intelligent enterprises through data-driven innovation. We don't just follow trends, we set them and drive change. As a market leader in enterprise analytics and mobility software, we've pioneered the BI and analytics space, empowering people to make better decisions and revolutionizing how businesses operate. But that's not all. Strategy is also leading a groundbreaking shift in how companies approach their treasury reserve strategy, boldly adopting Bitcoin as a key asset. This visionary move is reshaping the financial landscape and solidifying our position as a forward-thinking, innovative force in the market. Four years after adopting the Bitcoin Standard, Strategy's stock has outperformed every company in S&P 500. Our people are the core of our success. At Strategy, you'll join a team of smart, creative minds working on dynamic projects with cutting-edge technologies. We thrive on curiosity, innovation, and a relentless pursuit of excellence. Our corporate values—bold, agile, engaged, impactful, and united—are the foundation of our culture. As we lead the charge into the new era of AI and financial innovation, we foster an environment where every employee's contributions are recognized and valued. Join us and be part of an organization that lives and breathes innovation every day. At Strategy, you're not just another employee; you're a crucial part of a mission to push the boundaries of analytics and redefine financial investment. Job Description Join Strategy’s IT Security group as an Application Security Engineer and play a crucial role in safeguarding Strategy’s software applications while using modern security and AI tooling. In this position, you will be responsible for integrating security practices throughout the software development lifecycle, ensuring that our software products are resilient against vulnerabilities. Secure SDLC Integration: Work closely with development teams to integrate security into the SDLC, including threat modeling, secure code reviews, and security testing. Vulnerability Management: Identify, triage, and remediate security vulnerabilities through static and dynamic application security testing (SAST/DAST) and software composition analysis (SCA) tools. Security Assessments & Penetration Testing: Conduct manual and automated penetration testing of web, mobile, and cloud applications to detect security flaws. Secure Code Review: Analyze source code and provide security recommendations to developers to ensure adherence to secure coding best practices. Threat Modeling & Risk Analysis: Perform threat modeling to anticipate potential attack vectors and improve security architecture. DevSecOps Enablement: Support and enhance DevSecOps initiatives by integrating security automation within CI/CD pipelines. Incident Response & Remediation: Assist in investigating security incidents related to applications and work with engineering teams to remediate threats. Security Awareness & Training: Educate and mentor developers on OWASP Top 10, SANS 25, and other security best practices. Job Location Application Security Engineer Pune, India Full-time in person from Strategy Office Qualifications Bachelor’s degree in Computer Science, Engineering, or related field Minimum 2 years of software development or software security experience in an agile environment Hands-on experience with SAST, DAST, IAST, and SCA tools (e.g., Checkmarx, Fortify, Veracode, SonarQube, Burp Suite, ZAP). Fluent in one or more programming languages, such as Python, Java, JavaScript Strong knowledge of secure coding principles and application security frameworks Familiarity with security tools (e.g., static and dynamic analysis tools, vulnerability scanners) Understanding of security standards and regulations (e.g., OWASP, NIST) Hands-on experience with Generative AI and/or ML in creating innovative applications that enhance productivity and efficiency, coupled with a strong eagerness to learn Experience with cloud security best practices in AWS, Azure, or GCP. Strong work ethic with a commitment to meeting business needs and effectively collaborating with global colleagues Effective interpersonal skills; ability to collaborate successfully with both technical and non-technical stakeholders Ability to articulate complex technical concepts with clarity, supported by effective written and verbal communication skills Additional Information The recruitment process includes online assessments as a first step (English, logic, design, technical) - we send them via e-mail, please check also your SPAM folder Show more Show less

About BNP Paribas India Solutions Established in 2005, BNP Paribas India Solutions is a wholly owned subsidiary of BNP Paribas SA, European Union’s leading bank with an international reach. With delivery centers located in Bengaluru, Chennai and Mumbai, we are a 24x7 global delivery center. India Solutions services three business lines: Corporate and Institutional Banking, Investment Solutions and Retail Banking for BNP Paribas across the Group. Driving innovation and growth, we are harnessing the potential of over 10000 employees, to provide support and develop best-in-class solutions. About BNP Paribas Group BNP Paribas is the European Union’s leading bank and key player in international banking. It operates in 65 countries and has nearly 185,000 employees, including more than 145,000 in Europe. The Group has key positions in its three main fields of activity: Commercial, Personal Banking & Services for the Group’s commercial & personal banking and several specialised businesses including BNP Paribas Personal Finance and Arval; Investment & Protection Services for savings, investment, and protection solutions; and Corporate & Institutional Banking, focused on corporate and institutional clients. Based on its strong diversified and integrated model, the Group helps all its clients (individuals, community associations, entrepreneurs, SMEs, corporates and institutional clients) to realize their projects through solutions spanning financing, investment, savings and protection insurance. In Europe, BNP Paribas has four domestic markets: Belgium, France, Italy, and Luxembourg. The Group is rolling out its integrated commercial & personal banking model across several Mediterranean countries, Turkey, and Eastern Europe. As a key player in international banking, the Group has leading platforms and business lines in Europe, a strong presence in the Americas as well as a solid and fast-growing business in Asia-Pacific. BNP Paribas has implemented a Corporate Social Responsibility approach in all its activities, enabling it to contribute to the construction of a sustainable future, while ensuring the Group's performance and stability. Commitment to Diversity and Inclusion At BNP Paribas, we passionately embrace diversity and are committed to fostering an inclusive workplace where all employees are valued, respected and can bring their authentic selves to work. We prohibit Discrimination and Harassment of any kind and our policies promote equal employment opportunity for all employees and applicants, irrespective of, but not limited to their gender, gender identity, sex, sexual orientation, ethnicity, race, colour, national origin, age, religion, social status, mental or physical disabilities, veteran status etc. As a global Bank, we truly believe that inclusion and diversity of our teams is key to our success in serving our clients and the communities we operate in. Ob Title Web Developer Date 01-Sep-2024 Department IT-Solutions Location: Chennai Business Line / Function ISPL – PI Germany Reports To (Direct) NA Grade (if applicable) (Functional) Number Of Direct Reports 0 Directorship / Registration NA Position Purpose The developer helps with the development of Consors bank information systems, Business Applications and contributes to ensuring its continuity through personal effort as part of a team or to a limited extent within the department to achieve short-term and occasionally medium-term goals. They help in the development and realization of the software architecture as a contribution to high-quality software solutions in accordance with the applicable best practices (maintainable, safe, documented, scalable, testable and in accordance with the needs of the business area). Responsibilities Direct Responsibilities Software Development & Architecture Analysis of business requirements. Feasibility study of received business requirements. To design feasible and efficient solution for business requirement. To develop solution based on best practices, which conforms to business and technical requirements. To improve software source code and their maintainability. To maintain the conformity of BNPP group standards for development process, software quality and security Software Testing, Acceptance And Handover To define, to implement and to execute & document necessary tests. To update system document for particular applications affected. To integrate und configure developed software into different environments Software Maintenance To define and to execute 3rd level support tasks for systems and applications in charge. To do necessary bug fix and to execute small enhancement tasks To take care about prevention of obsolete components and libraries. Analysis Und Continuous Improvement To support optimization of software development processes & methods and possible usage of advanced tools and technologies To maintain and to improve stability and performance of development software solutions To develop prototypes which are based on new technologies by PoCs To improve operational aspects of developed solutions together with IT Production teams Contributing Responsibilities Cooperation within team and company To define necessary infrastructure with configuration for software development activities To support the implementation and testing, acceptance of necessary infrastructure To contribute to system stability of the infrastructure and affected system components To support troubleshooting of urgent software or infrastructure issues. Knowhow And Knowledge To support sharing and transferring Knowhow and Knowledge with other colleagues To continuously support code reviews and pair programming with other colleagues To foster exchange of software development knowledge with internal channel and network, to share best practices To ensure necessary training and continuous improvement of knowledge and knowhow To ensure successful participation in mandatory regulatory trainings on-time Technical & Behavioral Competencies Degree in business informatics, computer science, engineering or comparable and several years of professional experience At least 8 years of experience in web application development Knowhow of modern software architectures and modern development concepts & processes Deep know how and understanding of respective development domain (Web, Mobile, Middleware, API, Platform, CRM, CMS etc.) Expert knowhow in necessary development tools and programming languages Expert knowhow in software requirement engineering and managing requirements Should be able to translate wireframes into actual Web page Design Knowledge in modern frontend frameworks to develop Web Application based on JS Frameworks Knowledge in software testing incl. unit test design & execution as well as E2E tests Basic knowledge in IT cyber security and secure software development Basic knowledge of banking economics (banking, trading, investing; products and transactions) Working in an agile environment with Scrum Very good English skills in words and writing Specific Qualifications (if Required) Angular/React JS/VueJS/ Typescript /Javascript /HTML /CSS/ Webcomponents /Lit /EcmaScript 6 /Storybook /Webpack, Vite or Turbopack Testing frameworks & tools (Junit, Karma, JEST, Playwright) /Browserstack Full stack developer with Spring Boot + RestAPI + Angular/React JS/VueJS/ + Webcomponents He should have worked with Security concepts (Oauth / Spring Security / OWASP / CSRF/XSS) for min 3 Yrs Should have min 5 Yrs exp in CSS and able to write custom styles ( Not Tailwind CSS exp) Should have 3 Yrs experience in creating WebComponents (Web Standard) Should have experience in tuning the performance of Web pages Knowledge of TDD / BDD framework with work experience in creating Unit Tests, Web Automation tests, Integration Tests is added advantage LIT Library is good to have but not mandatory Knowledge of Accessibility implementation framework to support Differently abled customers is good to have. Transversal Skills: (Please select up to 5 skills) Ability to develop and adapt a process Ability to develop and leverage networks Choose an item. Choose an item. Choose an item. Education Level Bachelor Degree or equivalent Experience Level At least 7 years Show more Show less

Project description Security is a global organization within Group Technology Infrastructure and Security Engineering. Our services focus on preventing and detecting cyber threats and securing our IT systems. We provide consolidated and reliable security services that implement secure design principles and create best-fit solutions. You will be working in the Cyber Technology service team, providing security products and services for the Cyber Hygiene space - specifically for Infrastructure Scanning and vulnerability assessment. We provide consolidated and reliable security hygiene controls to our clients using the latest technology. As a Cyber Security Engineer, you will play a vital role in creating Infrastructure Scanning and Security Remediation capabilities, determining required IT business solutions, and assisting in implementing them. We offer flexibility in the workplace and equal opportunities to all our team members. Responsibilities Perform vulnerability scanning to discover and analyze vulnerabilities and characterize risks to networks, OS, application, databases etc. (to meet scan coverage targets) Stakeholder engagement to recommend appropriate remedial actions to mitigate risks and validate remedial actions and ensure compliance with regulatory requirements. Perform vulnerability management system administration functions, as required Maintain proficiency in vulnerability management best practices Onboarding new attack surface to vulnerability scanning process Documentation management and continuous service improvement Skills Must have - 5-10 years relevant experience Degree in related discipline or qualified by experience Well-developed oral and written English communication skills Team player with ability to work collaboratively with others and aptitude for self-development Experience using commercial vulnerability scanning solutions such as Rapid7, Qualys, Tenable etc. Expertise with administration of networks, windows and or Linux operating systems An understanding of IT Security Risk, attack vector Nice to have N/A Other Languages EnglishC1 Advanced Seniority Regular

Hands-on experience with testing frameworks in line with Web App, Mobile, Web Services/APIs, Network & blockchain. Experience in both commercial and open source tools likeBurp Professional, Nmap, Kali, Metasploit, etc. Experience with Open Web Application Security Project (OWASP), Open Source Security Testing Methodology Manual (OSSTMM) methodologies and tools. Experience in preparing a security threat model and associated test plans. Experience in translating the complex security threats to simpler procedures for web application developers, systems administrators, and management to understand security testing results. In-depth knowledge of application development processes and at least one programing or scripting language (e.g., Java, Scala, C#, Ruby, Perl, Python, PowerShell) is preferred. Knowledge of current information security threats Primary Skills Certification on CEH (Certified Ethical Hacker). OSCP (Offensive Security Certified Professional) is desirable.

Job Title: Client Data Protection Opportunity Support (CDPOS) Specialist + Level 09/10 + CF Location: India Management Level: 09 Specialist/10 Senior Analyst Must have skill :Information Security process and procedures As part of the CDPOS Client Response team, the CDPOS RFP Specialist is primarily responsible for supporting Accenture business development teams to respond to a) client Information Security (IS) and Vendor questionnaires (which are commonly issued as part of Request for Proposal (RFP) process), b) reviewing client Information Security policies / standards, c) completing client Risk Management market surveys, and d) supporting IS and DP conversations with both Client and Accenture Account teams. The role sits within the pre-contract, business development space interfacing with multiple stakeholders common to the contract development process (Solution Architects, Legal, Contract Management and Security leads). The Specialist will act as an Information Security Subject Matter Expert who will support multiple Accenture business development teams (operating across multiple countries) to respond to client information security and data privacy requests related to Accenture IS policies / standards / processes and recognized security frameworks. Key Responsibilities: Respond to client security questionnaires and management market surveys Liaise with account business development team, IT and technical teams to understand specific client security requirements set out in security questionnaire / market survey and determine appropriate responses that meet both client technical requirements and Accenture Information Security standards. Agree a project schedule to respond to requirements and communicate progress with key stakeholders. Perform quality checks on final information security submission Participate in client meetings focused on Information Security controls (if required) Establish and maintain effective working relationships across multiple stakeholders who interact with the Accenture business development process - account management, business development, technical / solution leads, Information Security, Legal and Finance representatives Contribute to the creation of high-quality and reusable IS solutions by updating the CDPOS RFP database with new information security related proposal data (new product release documents / new responses created / changes to Accenture IS Standards & Policies and other Accenture wide developments) Continually build own knowledge on the features of Accenture products, IS practice, services and commonly used IT concepts to respond to client and account questions that are technical in nature Skills and Experience: Possess an understanding and awareness of typical information security framework and common information security standards Demonstrate working knowledge of the Accenture business development process (with practical experience working with stakeholders in the process being an advantage) Be comfortable challenging account executives who are most commonly above peer group - influencing executive decisions and addressing conflicts and challenges Developed an appreciation of Information security best practices, auditing, and overall risk management Possess strong organizational skills with the ability to handle multiple work activities under tight, short-term deadlines (whilst meeting account and qualitative expectations) Demonstrate effective prioritization and time management capability Achieved work experience assessing and implementing information security and data protection controls Strong relationship development skills with an ability to influence and interact with organizational leadership and account executive across multiple countries Preferably hold at least one recognized security certification such as ISO 27001 LA, CISSP, CISA, CISM or CRISC Demonstrate good verbal and written communication skills Possess a good knowledge of MS Office applications (Excel, Word, Power Point) About Our Company | AccentureQualification Good to have skill: Overview on ITIL Experience: Minimum of 1yr

Are you passionate about building great products? Do you want to redefine the way travellers explore the world? Keen to be part of this growth journey with a bunch of amazing people? Then Pelago is the place for you! We are looking for ambitious and motivated talents who are excited about staying on the cutting edge of Technology and always keen on innovating new ways to drive growth and taking our startup to new heights. WHO ARE WE? Pelago is a travel experiences platform created by Singapore Airlines Group. Think of us as a travel magazine that you can book - highly curated, visually inspiring, with the trust and quality of Singapore Airlines. We connect you with global, local cultures and ideas so you can expand your life. We are a team of diverse, passionate, empowered, inclusive, authentic and open individuals who share the same values and strive towards a common goal! WHAT CAN WE OFFER YOU? A unique opportunity to take end-to-end ownership of your workstream to deliver real value to users. Platforms to solve real user problems concerning travel planning & booking with innovative products/services. An amazing peer group to work with, and the ability to learn from the similarly great minds around you. An opportunity to be an integral part of shaping the company’s growth and culture with a diverse, fun, and dynamic environment with teammates from different parts of the world. Competitive compensation and benefits - including work flexibility, insurance, remote working and more! WHAT WILL YOU DO? Write code as part of a diverse and multi-skilled development team Design and architect innovative, modern architectures and follow best practices Champion a focus on software qualities such as testability, security, scalability, operability etc Work with state of the art technologies to solve genuine, real-world problems Champion good agile practices that provide a foundation for iterative product development Build strong relationships with product managers, designers and business team Enjoy working in a diverse, dynamic, collaborative, transparent, environment where everyone’s ideas and opinions are equally valued Demonstrate and communicate a passion for implementing highly scalable and maintainable backend services Share technical solutions and product ideas through design review, pair programming, code review and technological discussions WHAT EXPERTISE YOU NEED TO HAVE? 3-5+ years of hands-on development and delivery experience with a broad mix of languages and technologies Experience working with Agile, Lean and Continuous Delivery approaches, such as Continuous Integration, TDD, Infrastructure as Code etc. Deploying your own code to production with a CI/CD pipeline Working with relational databases and interacting them with ORMs Experience building cloud native scalable software architecturesAPI design and structure, especially in collaboration with the frontend team Building software in a security-conscious way, especially keeping in mind things like the OWASP top 10 vulnerabilities Strong people skills that contribute to an open and collaborative environment Experience in communicating ideas and decisions to a variety of team members Working closely and proactively with product managers and designers to deliver a high-quality user experiencesPlease also let us know if you have experience with any of the following, although these are not required: Infrastructure-as-code tools like Terraform Experience working in the travel industry or with B2C platforms Below Are The Technologies We Primarily Use. However, We’ll Always Choose The Best Tool For The Job (maybe You Can Suggest One?), So Don’t Consider This List Either Exhaustive Or Immutable Must Haves: Python, Flask, PostgreSQL, AWS Good To Have: GraphQL, Knowledge of Redis, Celery, Elasticsearch If you’re as excited as we are in this journey, do apply directly with a copy of your full resume. We'll reach out to you as soon as we can! Show more Show less

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Security Architecture Design Good to have skills : NAMinimum 5 year(s) of experience is required Educational Qualification : BE or MCA or MSc with Good Computer Science Background with good academic record of 65 and above Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. You will also document the implementation of the cloud security controls and transition to cloud security-managed operations. Roles & Responsibilities:- Expected to be an SME- Collaborate and manage the team to perform- Responsible for team decisions- Engage with multiple teams and contribute on key decisions- Provide solutions to problems for their immediate team and across multiple teams- Develop and implement security architecture solutions- Conduct security assessments and provide recommendations- Stay updated on the latest security trends and technologies Professional & Technical Skills: - Must To Have Skills: Proficiency in Security Architecture Design- Strong understanding of cloud security principles- Experience in implementing security controls in cloud environments- Knowledge of security compliance standards and regulations- Good To Have Skills: Experience with cloud security tools and technologies Additional Information:- The candidate should have a minimum of 5 years of experience in Security Architecture Design- This position is based at our Gurugram office- A BE or MCA or MSc with Good Computer Science Background with good academic record of 65 and above is required Qualification BE or MCA or MSc with Good Computer Science Background with good academic record of 65 and above

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : ServiceNow Governance, Risk, and Compliance (GRC) Good to have skills : Security Architecture DesignMinimum 7.5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. You will document the implementation of the cloud security controls and transition to cloud security-managed operations. Showcasing creativity and expertise in cloud security solutions. Roles & Responsibilities:- Expected to be an SME, collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Provide solutions to problems for their immediate team and across multiple teams.- Develop and implement security architecture solutions.- Conduct risk assessments and provide recommendations for security enhancements.- Lead security governance initiatives and ensure compliance with industry standards.- Stay updated on the latest security trends and technologies. Professional & Technical Skills: - Must To Have Skills: Proficiency in ServiceNow Governance, Risk, and Compliance (GRC).- Strong understanding of security architecture design.- Experience in defining and implementing cloud security frameworks.- Knowledge of security controls and compliance requirements.- Hands-on experience in transitioning to cloud security-managed operations. Additional Information:- The candidate should have a minimum of 7.5 years of experience in ServiceNow Governance, Risk, and Compliance (GRC).- This position is based at our Gurugram office.- A 15 years full-time education is required. Qualification 15 years full time education