Get alerts for new jobs matching your selected skills, preferred locations, and experience range.
5.0 - 8.0 years
5 - 8 Lacs
Mumbai
Work from Office
As an Application Security Specialist,youll play a vital role in building secure systems from the ground up. Workingclosely with engineering, compliance, and DevOps teams, you will ensure ourapplications meet rigorous security and regulatory standards across globaljurisdictions. Your Impact on the Mission: Integrate security into the Software Development Lifecycle (SDLC) , embedding security controls at every phase. Conduct threat modeling , secure code reviews , and penetration testing for internal and third-party applications. Collaborate with development teams to address security issues across CI/CD pipelines (DevSecOps). Manage and mitigate application-level risks in line with security frameworks and regulatory requirements. Support compliance efforts for GDPR , NIS2 , PCI-DSS , and DORA by applying security controls and maintaining evidence. Drive secure practices in the software supply chain , improving defenses against attacks like those seen in SolarWinds. Business Impact Reduces application security vulnerabilities across internal and customer-facing systems. Helps ensure Noventiqs compliance with global cybersecurity regulations. Lowers production defects and remediation costs through early detection. Strengthens resilience ofcloud-native and third-party platforms. What Youll Bring to The Table About You: 5 years in Application Security, including secure development, testing, and DevSecOps. Solid understanding of OWASP Top 10 , SAST/DAST , threat modeling , and common attack vectors. Familiarity with CI/CD environments (e.g., GitLab, GitHub Actions, Azure DevOps). Hands-on experience with tools such as Burp Suite , OWASP ZAP , SonarQube , Checkmarx , or similar. Preferred Certifications Industry-recognized certifications are a plus, including: OSCP , GWAPT, CISSP, or CSSLP Bonus for Azure Security Engineer (AZ-500) or Certified DevSecOps Professional Frameworks Compliance Working knowledge of: OWASP , CIS Controls v8, ISO/IEC 27001 GDPR , NIS2 Directive, PCI-DSS, DORA Regulation
Posted 1 week ago
11.0 - 16.0 years
10 - 15 Lacs
Pune
Work from Office
Education Criteria (Must): B.Sc (IT/CS) / B.Tech in any Engineering background, BCA, MCA M.Sc. Information Technology, or related field. CEH, CISSP, CISA, CISM, CRISC (If any security related certification) 11-15 years of experience in Application Security, Network Security, and IT Risk Compliance, with hands-on expertise in security assessments, process audits, and application reviews. Experience in BFSI is preferred. Lead and manage the AppSec team consisting of L1 and L2 resources. Serve as the primary point of contact between the Client and the team for all project-related activities. Monitor daily operations, ensure resource optimization, and address any issues that arise during the engagement. Application Security Review - Oversee the review of application security including web, mobile, API, and other banking applications. Perform comprehensive reviews of Network Architecture, Source Code, VAPT reports, and configuration audits. Review deliverables from L1 and L2 resources, ensuring completeness and quality. Compliance and Risk Management Reporting Stakeholder Management Skill-Vulnerability Assessment, Manual Penetration Testing using OWASP checklists, Penetration Testing, OWASP Top 10, OWASP ZAP, Ethical Hacking, Static/dynamic testing of mobile applications, Vulnerability Mitigation.
Posted 1 week ago
5.0 - 9.0 years
9 - 14 Lacs
Bengaluru
Work from Office
Manual Penetration Testing using OWASP checklists, Penetration Testing, Vulnerability Assessment, OWASP Top 10, OWASP ZAP, AWS Cloud, Azure Cloud, Cyber Security, Cloud Security Assessment, Cyber Security Assessment Consulting, Cybersecurity, Data Security Assessment Consulting Perform Penetration testing Develop and recommend mitigation strategies to enhance the defense mechanisms of critical infrastructure components Collaborate with IT and security teams to refine security measures and response strategies Prepare detailed reports on findings from simulations and suggest improvements Facilitate training sessions for internal teams on security awareness and breach response tactics
Posted 1 week ago
2.0 - 7.0 years
5 - 10 Lacs
Bengaluru
Hybrid
Hiring for Security Test Engineer at Bangalore location Role: Security Test Engineer Exp: 2 - 7 Years Job location: Bangalore Notice Period: Immediate joiners only - Must Work Mode: Hybrid Interview Mode: 2 rounds ( Virtual & F2F round is Must ) Direct Responsibilities: To perform Penetration testing (Gray Box and/or Black Box), for Web applications, Thick Client, API, and mobile applications. Understand and deep knowledge of application security engineering principles to follow secure development practices which includes secure build processes, secure code review, security testing. Understanding of the security tools in DevOps Processes Knowledge of one or more scripting languages for automation Collaborate with the developers to help them understand the vulnerabilities reported in application. Contributing Responsibilities To understand the applications security requirements and identify & document the scope of the test. Ensure execution of the documented security scenarios for the application under test. Document and report all findings. Escalate issues to the local management and onshore stakeholders in case it affects the testing progress. Ensure processes for the project is followed for the assessments. Help review peer's work and mentor junior members in the team. Technical & Behavioral Competencies: Clear understanding of OWASP Top 10 - application security risks Tools/OS: Burp Suite, OWASP ZAP, Kali Linux Manual Security Testing & Analysis, Security Test Designing Excellent Interpersonal and presentation skills Strong in verbal and written communication Good analytical skills Strong Time Management Must be flexible, independent, self-motivated. Team Player Interested candidates can share your updated profile to premkumar.m@kiya.ai
Posted 1 week ago
7.0 - 11.0 years
0 - 1 Lacs
Pune, Ahmedabad, Delhi / NCR
Work from Office
Job Title: DevOps Engineer Experience: 7+ Years Location: Remote Notice Period: Immediate Worker Type: C2C / Full-Time (specify based on engagement) Mandatory Skills: DevOps, Azure DevOps, Terraform Key Responsibilities: Design, implement, and manage scalable CI/CD pipelines using Azure DevOps and GitHub Actions . Automate infrastructure provisioning using Terraform and configuration management tools like Ansible . Manage containerized applications in Kubernetes and Docker environments. Integrate and manage test automation frameworks (e.g., Selenium, JUnit) to uphold software quality. Embed vulnerability scanning tools such as SonarQube and OWASP ZAP into the pipeline for secure deployments. Monitor system health, performance, and proactively troubleshoot production issues. Collaborate with cross-functional teams to continuously improve DevOps processes and delivery pipelines. Participate in on-call support rotations and respond to incidents effectively. Stay current with DevOps trends , tools, and technologies to introduce process optimizations. Required Skills & Qualifications: Minimum 7 years of experience in DevOps or related roles. Strong scripting skills using Bash, PowerShell, or Python . Proficient in Azure Cloud Services and infrastructure-as-code (IaC) using Terraform . Expertise in containerization (Docker) and orchestration platforms (Kubernetes). Solid experience in Azure DevOps , GitHub Actions , and CI/CD best practices. Hands-on experience with tools like Ansible , Puppet , or Chef . Familiarity with automated testing tools and test integration in pipelines. Exposure to DevSecOps practices and tools for vulnerability scanning and compliance. Excellent problem-solving abilities and communication skills. Preferred Qualifications: Prior experience integrating test automation into CI/CD pipelines. Strong grasp of DevOps security best practices and cloud-native security principles. Azure certifications or equivalent cloud platform credentials are a plus. Interested candidates can apply at: B.Simran@ekloudservices.com Note: Immediate joiners preferred. Profiles with relevant DevOps + Azure + Terraform experience will be shortlisted on priority.
Posted 1 week ago
3.0 - 6.0 years
16 - 25 Lacs
Pune
Hybrid
Greetings from Peoplefy Infosolutions !!! We are hiring for one of our reputed MNC client based in Pune . We are looking for candidates with 3 + years of experience in below skills - Primary skills : Ethical Hacking Penetration Testing Software development Cyber forensics or threat hunting Application security Secure coding Burp suite, OWASP, OWASP ZAP Interested candidates for above position kindly share your CVs on asha.ch@peoplefy.com with below details - Experience : CTC : Expected CTC : Notice Period : Location :
Posted 1 week ago
1.0 - 3.0 years
16 - 20 Lacs
Pune
Work from Office
Design, develop, and maintain automated and manual test cases with a focus on security. Perform static and dynamic application security testing (SAST/DAST). Identify, document, and track security-related defects and work with engineering teams for remediation. Conduct threat modeling and risk assessments as part of the software development lifecycle. Validate fixes and patches for known vulnerabilities. Assist in integrating security testing tools (e.g., OWASP ZAP, Burp Suite, SonarQube) into CI/CD pipelines. Stay current with security best practices, industry trends, and vulnerability databases (e.g., CVE, NVD). Collaborate with QA, DevSecOps, and security analysts to promote secure development practices. Participate in code reviews and assist in the development of secure coding guidelines.
Posted 1 week ago
6.0 - 8.0 years
8 - 10 Lacs
Hyderabad
Hybrid
Job Title: P r o g r a m M a n a g e r Business Unit: Piramal Swasthya Domain: Social Sector Location: PSMRI office, Hyderabad Big Bet: Shared Services Department: IT Design, implement, and maintain scalable, secure, and high-performance DevOps practices on AWS infrastructure. Drive the integration of security into every phase of the DevOps lifecycle. Support automation, deployment, monitoring, and security hardening to achieve agility, reliability, and compliance. Purpose of Job Essential Qualifications : *Any Graduate, preferably bachelor's degree in computer science or information technology. *Overall Working Experience of 6-8 Years *Minimum 4 years of experience in DevOps with AWS and security automation *AWS Certified DevOps Engineer / AWS Security Specialty (preferred) Preferred Key Skill /Qualifications : Deep understanding of AWS services (EC2, S3, IAM, RDS, Lambda, CloudTrail, CloudWatch, Config, GuardDuty, VPC, EKS, CloudFormation) Infrastructure as Code (Terraform, AWS CDK, CloudFormation) Network security, firewall configuration, security groups, VPC subnetting Identity & Access Management (IAM, RBAC, MFA, SSO) Vulnerability assessment, penetration testing, patch management CI/CD tools (Jenkins, GitHub Actions, GitLab CI/CD) Scripting (Python, Bash, Shell) Containerization (Docker, Kubernetes/EKS) Security-as-Code and automated compliance tools (e.g., Checkov, TFSec, Open Policy Agent) Preferred Key Skill /Qualifications : Secrets management (HashiCorp Vault, AWS Secrets Manager) SAST/DAST tools (SonarQube, OWASP ZAP, Snyk, Fortify) IAM roles, policies, encryption, KMS, and secure configurations Centralized logging and monitoring (CloudWatch, ELK Stack, Prometheus, Grafana) Excellent documentation, communication, and collaboration skills Essential Experience : • Automating security checks in CI/CD pipelines • Implementing least privilege access control and identity federation Securing infrastructure provisioning and deployments • Conducting threat modeling and vulnerability remediation • Enforcing compliance and audit readiness (ISO, HIPAA, etc.) Working knowledge of secure networking (VPCs, firewalls, VPNs, NACLs, etc.) • Incident response and root cause analysis for infrastructure issues Partnering with infosec teams to roll out security best practices Supporting development teams to adopt security-by-design Competencies • Strong analytical, problem-solving, and debugging skills Security-first mindset across DevOps practices Effective communicator and team collaborator Continuous learning and proactive approach Decision Making Choice of security tools and DevSecOps frameworks Cloud architecture decisions aligned with compliance Key Roles/Responsibilities: • Build and maintain AWS cloud environments with infrastructure as code • Integrate security controls into CI/CD pipelines and DevOps workflows • Automate security scans, testing, and compliance validation • Support secure deployment of applications in containers and serverless setups • Implement cloud-native logging, monitoring, and alerting systems • Manage secrets, certificates, and access securely • Work closely with development, infosec, and operations teams to enforce DevSecOps best practices • Document all configurations, procedures, and known issues • Conduct internal training on DevOps, secure coding and best security practices • Respond to security incidents and participate in audits and reviews • Ensure adherence to SLAs, compliance mandates, and performance KPIs
Posted 2 weeks ago
2.0 - 5.0 years
3 - 7 Lacs
Hyderabad
Work from Office
What you will do Let’s do this. Let’s change the world. In this vital role you will Guide and support junior team members by offering technical advice, conducting code reviews, and sharing knowledge to promote their professional development. Perform security testing (e.g., penetration testing, code reviews) and ensure continuous security monitoring across the organization’s IT landscape. Identify vulnerabilities in networks, systems, applications, and infrastructure through hands-on penetration testing. Attempt to exploit discovered vulnerabilities to demonstrate their impact and prove their existence (e.g., retrieving sensitive data, elevating user privileges, or gaining access to admin functionality). Perform assessments on web applications, cloud environments, and network infrastructure. Use automated tools and manual techniques to identify security weaknesses. Conduct advanced post-exploitation tasks to simulate real-world attack scenarios. Work with third-party security vendors for audits, product testing, and external assessments when required. Use automated tools (e.g., Burp Suite, OWASP ZAP, or Acunetix) to identify common vulnerabilities such as SQL Injection, Cross-Site Scripting (XSS), Cross-Site Request Forgery (CSRF), and others. Document identified vulnerabilities in detail, explaining how they were found, their severity, and their potential impact. Include proof-of-concept (PoC) for critical vulnerabilities. Offer actionable, practical solutions for fixing the vulnerabilities, such as secure coding practices, configuration changes, or security controls. Use risk-based prioritization, categorizing issues by their severity and business impact (e.g., high, medium, low) to help the organization focus on the most critical issues. Continuously learn about the latest vulnerabilities, exploits, and security trends. Present the findings to stakeholders, security teams, and management, explaining the business risk and potential impacts of the vulnerabilities discovered. Familiarity with industry standards and compliance requirements (e.g., PCI-DSS, NIST, ISO 27001) and their relevance to penetration testing. What we expect of you We are all different, yet we all use our unique contributions to serve patients. This role has a strong focus on ensuring the organization's infrastructure, applications, and systems are secure from external and internal threats. This role is responsible for conducting authorized security tests on IT infrastructure to evaluate the strength of its systems against potential cyberattacks. A variety of automated tools and manual techniques are leveraged to simulate real-world attacks. The penetration tester then works with the organization to prioritize, remediate and report on identified issues, strengthening the overall security posture. Basic Qualifications: Bachelor’s degree with 6 - 8 years of experience in Computer Science, Cybersecurity or Information Systems related field . Preferred Qualifications: Must-Have Skills: Strong knowledge of common vulnerabilities (e.g., OWASP Top 10, SANS Top 25), network protocols, encryption standards, application security and common penetration testing methodologies (ISSAF, OSSTMM, PTES). Familiarity with tools like Burp Suite, OWASP ZAP and Metasploit. A deep understanding of web application architecture, databases, and authentication mechanisms. Ability to think critically and creatively when testing and attempting to exploit vulnerabilities. Good-to-Have Skills: Experience with threat intelligence and incorporating emerging threats into penetration testing practices Proficiency in scripting and automation (e.g., Python, Bash) is a plus Professional Certifications (please mention if the certification is preferred or mandatory for the role): PreferredeJPT, eCPPT, eWPT, OSCP, OSWA, GWAPT What you can expect of us As we work to develop treatments that take care of others, we also work to care for your professional and personal growth and well-being. From our competitive benefits to our collaborative culture, we’ll support your journey every step of the way. In addition to the base salary, Amgen offers competitive and comprehensive Total Rewards Plans that are aligned with local industry standards. Apply now for a career that defies imagination Objects in your future are closer than they appear. Join us. careers.amgen.com As an organization dedicated to improving the quality of life for people around the world, Amgen fosters an inclusive environment of diverse, ethical, committed and highly accomplished people who respect each other and live the Amgen values to continue advancing science to serve patients. Together, we compete in the fight against serious disease. Amgen is an Equal Opportunity employer and will consider all qualified applicants for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, disability status, or any other basis protected by applicable law. We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.
Posted 2 weeks ago
3.0 - 8.0 years
8 - 18 Lacs
Pune
Hybrid
Role Overview: This role focuses on integrating security best practices into CI/CD pipelines and production system deployments, ensuring security is embedded throughout the software development lifecycle. As a DevSecOps Engineer, you will work closely with architecture, development, and operations teams to make security a shared responsibility across all stages of software development and deployment. Your primary responsibility will be implementing security best practices, testing, and automation tools into CI/CD pipelines and production environments using industry-standard tools such as Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and other security mechanisms. Key Responsibilities : Security Integration into DevOps: Collaborate with development and operations teams to integrate security practices into every stage of the software development lifecycle, from code creation to deployment. CI/CD Pipeline Security: Configure, implement, and manage security tools and automation in CI/CD pipelines to detect vulnerabilities early in the development process. Security Testing: Use SAST and DAST tools to automate security testing for code and applications. Continuously monitor security scans, report findings, and recommend remediation strategies. Automation & Process Improvement: Continuously enhance and automate security processes to deliver secure software efficiently while minimizing manual intervention. Experience Required: 3+ years of experience in DevOps or a similar role focused on integrating security into CI/CD processes. Proven experience implementing and configuring security tools such as SAST, DAST, and other automation tools. Strong hands-on experience with CI/CD tools and languages (e.g., Jenkins, Groovy, Git, Python, Bash) for pipeline automation. Proficiency in cloud-native deployments and management (e.g., Helm, Kustomize), Kubernetes objects, and cluster debugging. Familiarity with Infrastructure as Code (IaC) tools like Terraform and Ansible. Knowledge of CIS benchmark recommendations and system hardening practices. Curious? Apply now :-cognyte.70.75E@applynow.io
Posted 2 weeks ago
3.0 - 6.0 years
7 - 11 Lacs
Bengaluru
Work from Office
About The Role We are looking for a skilled Application Security Engineer to strengthen our security posture by proactively identifying and mitigating vulnerabilities across our web applications, APIs, and mobile apps. The ideal candidate will have a strong background in penetration testing, secure code review, and security automation. Roles & Responsibilities(What will you do): -Perform penetration testing of web applications, APIs, and mobile apps, providing in-depth vulnerability analysis and remediation guidance. -Conduct manual and automated secure code reviews, primarily in Java, Python, and JavaScript. -Develop security automation solutions using Python to streamline testing, improve coverage, and reduce manual effort. -Work closely with development teams to ensure timely resolution of security issues within fast-paced release cycles. -Create and maintain threat models, applying threat modeling techniques to proactively identify and mitigate design-level security risks. -Foster a security-first mindset by educating developers on secure coding practices, common vulnerabilities, and attack vectors while effectively communicating security findings to stakeholders. What Makes You a Great Fit -1-5 years of experience in application security, penetration testing, or related fields. -Strong penetration testing expertise with tools like Burp Suite, OWASP ZAP, semgrep, MobSF, Jadx-GUI and other mobile security testing frameworks. -Experience integrating security into SDLC and familiarity with DevSecOps tools. -Proficiency in secure coding principles, OWASP Top 10, CWE, and exploit techniques. -Strong scripting skills (Python preferred) for security automation. -Excellent communication and stakeholder management abilities. -Passion for continuous learning and staying updated on security trends. -Certifications like OSCP, OSWE, CRTP, or a proven Bug Bounty track record and/or CTF partipation are a plus PhonePe Full Time Employee Benefits (Not applicable for Intern or Contract Roles) Insurance Benefits - Medical Insurance, Critical Illness Insurance, Accidental Insurance, Life Insurance Wellness Program - Employee Assistance Program, Onsite Medical Center, Emergency Support System Parental Support - Maternity Benefit, Paternity Benefit Program, Adoption Assistance Program, Day-care Support Program Mobility Benefits - Relocation benefits, Transfer Support Policy, Travel Policy Retirement Benefits - Employee PF Contribution, Flexible PF Contribution, Gratuity, NPS, Leave Encashment Other Benefits - Higher Education Assistance, Car Lease, Salary Advance Policy
Posted 3 weeks ago
4 - 6 years
5 - 11 Lacs
Guwahati
Work from Office
Position: VAPT Engineer Reporting to: Platform Lead Infrastructure Security Employment Type: Employee - Full Time Work Location: Guwahati Key Focus area: Infrastructure Penetration Tester Key Responsibilities: Identification and remediation of new vulnerabilities and risk analysis for Infrastructure is a key responsibility. Identifying and maintaining Key metrics and SLA on Infrastructure Security. Ensure that vulnerability assessments are performed to evaluate effectiveness of security controls in applications, middleware, databases, network and operating systems. Thorough experience in configurations reviews against CIS benchmarks and security standards. Ensure all Hardening and Patching activities are conducted and tracked as per defined policies. Create/Update hardening documents and build audit file for automated testing. Knowledge of current and emerging security threats and techniques for exploiting security vulnerabilities. Conduct security penetration testing to identify vulnerabilities and potential security risks along with designing and implement security solutions to protect enterprise systems, applications, data, assets, and people. Collaborate with cross-functional teams to ensure security measures are integrated into all aspects of the organization's operations. Perform Internal/ External Penetration Testing on Jio Infrastructure and producing reports with recommendations for detailed penetration testing findings. Sound understanding of Azure/GCP/AWS environment activities and Perform Vulnerability Assessment & Penetration Testing for networks (internal & external), applications, APIs & cloud assets along with Red & Purple Team assessments. Safeguarding information, infrastructures, applications, and business processes against cyber threats. Proactively create, share, and read reports as part of the penetration testing activities. Responsible for utilizing threat intelligence to identify new threats in our environment, coordinating with stakeholders to remediate identified vulnerabilities, and ensuring closure through thorough cross-validation. Qualification and Work Experience Qualification: BE / BTech (Similar Education Background) Work experience: 7-15 Years 7+ years of experience in Infrastructure Penetration Testing and Vulnerability Management including practical experience with Linux and Windows operating systems. Thorough understanding of Application and Infrastructure Architectures, and related vulnerabilities. Ability to interpret and prioritize vulnerability scan results into remediation actions and tracking those actions through to completion. Working knowledge of ORACLE DB, MS SQL DB, MYSQL DB & Network Devices is required. Ability to analyse vulnerabilities to appropriately characterize threats and provide remediation advice. Familiarity with classes of vulnerabilities, appropriate remediation, and industry-standard classification schemes (CVE, CVSS, CPE). Extensive experience in vulnerability management, including the ability to forecast potential threats and develop proactive mitigation plans. Hands on experience in testing diverse infra components including various enterprise platforms such as private clouds, OpenShift infra, dockers/container infra etc. The candidate should be able to perform manual & automated penetration testing for internal, external perimeter, web applications, IT infrastructure, end-points, cloud etc. using hacking tools; e.g. Nuclei, Acunetix, BURP, Wireshark, Nmap, netcat, Firebug, Nessus, Kali OS, Parrot, Metasploit, Aircrack-ng. Preferred: Security related professional certification (e.g. CEH, CPENT, OSCP, OSCE, OSWE, GPEN, GWAPT or similar certifications) Preferred: Script writing skills (Python/Ruby/bash/PowerShell). Experience with security standards and frameworks such as ISO 27001, NIST, and PCI DSS. Preferred: Security solutions technologies such as IPS, firewalls, endpoint protection, web/email filtering, DLP, Digital rights management, encryption, SEIM, and virtualization platforms. Expertise in performing grey box/Black box testing. Experience devising methods to automate testing activities and streamline testing processes. Proven ability to develop and test Proof of Concept (PoC) exploits as part of vulnerability assessment and penetration testing exercises. Competencies / Expertise Required (Functional & Behavioral) Systematic strong analytical thinking and problem-solving skills. Excellent in analytical thinking for translating data into informative visuals and reports. Adaptable to change. Quick Learner Open learn and work on new technologies and products. If you're interested, please share below mention details for the same. Location Preferred location Current Co Experience Current CTC Expected CTC Notice Period Offer in Hand Highest Education SSC % HSC % Graduation % University Name Regards, Ashwini Chakor
Posted 2 months ago
0 - 6 years
6 - 9 Lacs
Jaipur
Work from Office
AM Enterprise is hiring a remote Red Team Security Specialist to simulate cyberattacks, perform penetration tests, and collaborate with Blue Team members to enhance cybersecurity defenses. Requires expertise in penetration testing tools, scripting. Health insurance Annual bonus Office cab/shuttle
Posted 2 months ago
9 - 12 years
37 - 40 Lacs
Ahmedabad, Noida, Kolkata
Work from Office
Dear Candidate, We are looking for a skilled Penetration Tester to identify and exploit vulnerabilities in systems, networks, and applications. If you have expertise in ethical hacking, red teaming, and security assessments, we'd love to hear from you! Key Responsibilities: Perform penetration testing and ethical hacking on web applications, networks, and systems. Identify security vulnerabilities and provide remediation recommendations. Simulate real-world cyber attacks to test security controls. Utilize tools like Burp Suite, Metasploit, and Kali Linux for security assessments. Document findings in detailed security reports. Collaborate with development and security teams to enhance security measures. Stay updated with the latest hacking techniques, threats, and vulnerabilities. Required Skills & Qualifications: Strong knowledge of penetration testing methodologies (OWASP, OSSTMM). Hands-on experience with security tools like Nmap, Nessus, and Wireshark. Proficiency in scripting for automation (Python, Bash, PowerShell). Knowledge of web security vulnerabilities (XSS, SQL Injection, CSRF). Familiarity with cloud security testing (AWS, Azure, GCP). Soft Skills: Strong problem-solving and analytical skills. Excellent communication skills to work with cross-functional teams. Ability to work independently and as part of a team. Detail-oriented with a focus on delivering high-quality solutions. Note: If you are interested, please share your updated resume and suggest the best number & time to connect with you. If your resume is shortlisted, one of the HR from my team will contact you as soon as possible. Srinivasa Reddy Kandi Delivery Manager Integra Technologies
Posted 2 months ago
5 - 10 years
7 - 12 Lacs
Udaipur
Work from Office
Senior information security engineer Job Name: Senior information security engineer Job Role: Sr. IT Security Engineer Industry:IT, Software, Bpo Job Location:Udaipur (Rajasthan) Experience:5- 10 yearSkills:Team Handling, information security controls, VPN, Cloud Server Salary:Best in the Industry Education:BCA, MCA, B.tech(CS/IT) Job Summary: Looking for Sr.information security engineer. Should have strong work exposure in the IT Security department. having work exposure in the IT security environment to identify cybersecurity gaps in systems, processes, and controls and evaluate the potential risk exposure. Work with IT management to develop opportunities for improvement. Architect, configure, manage, and deploy devices including firewalls, IPS, and IDS to improve our ability to prevent and detect intrusions in real-time. About The Role :: Should have strong work exposure in the IT Security department. having work exposure in the IT security environment to identify cybersecurity gaps in systems, processes, and controls and evaluate the potential risk exposure. Work with IT management to develop opportunities for improvement. Architect, configure, manage, and deploy devices including firewalls, IPS, and IDS to improve our ability to prevent and detect intrusions in real-time.To develop and maintain the information security policy and accompanying standards, procedures, and guidance. Research and stay informed of potential information security threats, breaches, industry trends, emerging technologies, and response alternatives. Conduct research and provide insight to identify, assess, and deploy security technology solutions and partners including but not limited to encryption, firewalls, authorization, authentication, intrusion detection, and gateway security controls. To develop and deliver a programme of planned compliance reviews and ensure any gaps are addressed. Engage in regular assessment of the current IT security environment to identify cybersecurity gaps in systems, processes and controls and evaluate the potential risk exposure. Work with IT management to develop opportunities for improvement. Architect, configure, manage and deploy devices including firewalls, IPS and IDS to improve our ability to prevent and detect intrusions in real-time. Monitor and proactively recommend solutions for correcting issues related to security technology performance and capabilities of vendors. Collaborate on critical technology projects to ensure that security issues are addressed throughout the project life cycle. Develop and implement recommendations for security technology solutions, which may include technology for encryption, firewalls, authorization, authentication, intrusion, detection, and gateway security controls. Work in an advisory role in application development or acquisition projects to assess security requirements and implement controls as planned. Perform day- to- day security log review and analysis in adherence to company requirements and industry security best practices. Do static scanning (code, open-source libraries) and dynamic scanning. The log reviews include:operating systems, databases, applications, networks and security applications. Work with auditors to demonstrate processes and ensure appropriate levels of access are applied throughout the information lifecycle. Lead the design, development, and delivery of security training programs. 24x7 on-call availability as required. Knowledge of trends and developments in technology relating to security and risk management. Strong understanding of information security controls, risks and threats. Strong knowledge of enterprise security technologies, e.g., Virtual Private Network (VPN), Encryption, Firewalls, Intrusion Detection/ Prevention, and Anti- Virus. Working knowledge of Linux, Windows,Cloud Server, and other enterprise- wide applications. Knowledge of information security standards (ISO, SOC), data privacy laws, computer crime laws, and federal data protection laws, etc. Knowledge of vulnerability analysis tools, OWASP Zap, Veracode, Qualys, Sonarqube, Acunetix, Burp Suite, etc. Knowledge of information security audit and assessment methodologies, policies, standards, procedures and best practices. Ability to conduct risk management assessments; provide assistance in identification, prioritization and remediation of information systems vulnerabilities. Strong technical depth and passion for security. Experience working with 3rd party vendors and service providers.
Posted 2 months ago
3 - 6 years
3 - 6 Lacs
Chennai
Hybrid
Please dont call me if anyone intrested who is an immediate joiner or serving notice period is below 15 days , please watsapp me your details with resume -9003993690 or send me your resume with the below email id -sushma.v@bct-consulting.com - To perform Penetration testing (Gray Box and/or Black Box) for Web applications; Thick Client, API, and mobile applications. - To understand the applications security requirements and identify & document the scope of the test - Ensure execution of the documented security scenarios for the application under test. - Document and report all findings - Collaborate with the developers to help them understand the vulnerabilities reported in application - Escalate issues to the local management and onshore stakeholders in case it affects the testing progress - Ensure processes for the project is followed for the assessments Note:
Posted 2 months ago
3 - 8 years
6 - 10 Lacs
Chennai, Pune, Delhi
Work from Office
About Us Astra is a cybersecurity SaaS company that makes otherwise chaotic pentests a breeze with its one-of-a-kind AI-led offensive Pentest Platform Astra's continuous vulnerability scanner emulates hacker behavior to scan applications for 13,000+ security tests CTOs and CISOs love Astra because it helps them to achieve continuous security at scale, fix vulnerabilities in record time, and seamlessly transition from DevOps to DevSecOps with Astra's powerful CI/CD integrations Astra is loved by 800+ companies across 70+ countries In 2024 Astra uncovered 2 5 million+ vulnerabilities for its customers, saving customers $110M+ in potential losses due to security vulnerabilities We've been awarded by the President of France Mr Fran?ois Hollande at the La French Tech program and Prime Minister of India Shri Narendra Modi at the Global Conference on Cyber Security Loom, MamaEarth, Muthoot Finance, Canara Robeco, Dream 11, OLX Autos etc are a few of Astras customers Job Description: This is a remote position Role Overview: As a SDE II (Vulnerability Detection), you will be at the forefront of vulnerability research and detection engineering for our cloud-based SaaS security platform Your primary focus will be on identifying new attack techniques, researching emerging threats, and developing high-fidelity detection rules to enhance our offensive security engine This role requires a deep understanding of web, cloud, and API security, along with hands-on experience in exploiting vulnerabilities, writing detection logic, and optimizing scanning strategies You will work closely with security researchers, engineers, and product teams to ensure our platform remains ahead of evolving threats If you're passionate about offensive security, love breaking things to make them more secure, and want to shape the future of automated vulnerability detection, wed love to have you on board Roles & Responsibilities: Work in our Attack Engine Team to create vulnerability detection rules that identify exploits in web applications, cloud environments, and APIs Conduct security research on vulnerabilities, CVEs, and zero-days impacting web technologies, cloud infrastructure, and API ecosystems Develop and maintain JavaScript/GoLang-based detection logic, leveraging your programming skills to automate security analysis and exploit identification Collaborate with security researchers and engineering teams to design and implement detection modules, APIs, and automation frameworks Work in an agile development environment, contributing to the architecture, design, and implementation of Astras web security engine Research, design, develop, and troubleshoot?what you build, you own Write secure, modular, testable, and well-documented code to maintain high-quality engineering standards Adhere to strict code review and security best practices, ensuring high-quality and maintainable code Ensure timely delivery of features, maintaining transparency with technical managers regarding development progress What we are looking for: Strong analytical mindset with a passion for security research and offensive security 3-4 years' experience involving security & development experience in JavaScript (preferred) or any curly-bracket language such as C, C++, PHP Understanding of security concepts and experience with vulnerability research for Web, API, and Cloud environments Excellent problem-solving skills and strong attention to detail Strong communication and collaboration skills, with the ability to work effectively in a remote team environment Eagerness to learn and adapt to new technologies, methodologies, and evolving security threats Hands-on experience with Git for version control and collaboration Good to have: Experience using security tools such as Burp Suite, OWASP ZAP, or similar vulnerability assessment tools Understanding of Software Architecture and Design Patterns, with the ability to write scalable and maintainable code Prior experience working in a remote role, with strong self-management and collaboration skills What we offer: Adrenaline rush of being a part of a fast-growing company and working on hard problems that matter Fully remote, agile working environment Good engineering culture with full ownership in design, development, and release lifecycle A wholesome opportunity where you get to build things from scratch, improve, and ship code to production in hours, not weeks Holistic understanding of the SaaS and security industry Annual trips to beaches or mountains (last one was to Wayanad!) Open and supportive culture Health insurance & other benefits for you and your spouse (maternity benefits included)
Posted 3 months ago
2 - 4 years
8 - 14 Lacs
Hyderabad
Work from Office
About the Role : We are seeking a highly motivated and detail-oriented Test Engineer to join our growing team. You will play a crucial role in ensuring the quality of our software products by designing, developing, and executing test plans and test cases. This role requires a strong understanding of software testing methodologies, experience with various testing tools, and excellent analytical and problem-solving skills. Responsibilities : - Develop comprehensive test plans that cover all aspects of the software, including functional, performance, usability, and security testing. - Design and create detailed test cases based on requirements and specifications. - Execute test cases and document results, including identifying and reporting defects. - Track and manage defects using a defect tracking system, ensuring that defects are resolved and retested. - Develop and maintain automated test scripts using appropriate testing tools and frameworks. - Conduct performance testing to evaluate the performance and scalability of the software. - Perform usability testing to assess the user-friendliness and intuitiveness of the software. - Participate in security testing to identify vulnerabilities and ensure the security of the software. - Work closely with developers, business analysts, and other stakeholders to ensure the quality of the software. - Contribute to the continuous improvement of testing processes and methodologies. - Prepare and present test reports to management, summarizing test results and highlighting any issues. Qualifications : - Bachelor's degree in Computer Science or a related field. - 2+ years of experience in software testing. Technical Skills (Mandatory) : - Strong understanding of software testing methodologies (e.g, Agile, Waterfall). - Proficient in designing and executing test cases. - Defect Tracking Tools : Experience with defect tracking tools (e.g , Jira, Bugzilla). - Experience with test automation tools (e.g, Selenium, Appium, JUnit, TestNG). - Basic understanding of SQL for database testing. Technical Skills (Added Advantage) : - Familiarity with programming languages (e.g , Java, Python) for test automation. - Experience with API testing tools (e.g , Postman, RestAssured). - Experience with performance testing tools (e.g , JMeter, LoadRunner). - Familiarity with security testing tools (e.g , OWASP ZAP, Burp Suite). - Experience with Continuous Integration and Continuous Deployment pipelines. - Familiarity with cloud platforms like AWS, Azure, or Google Cloud. Soft Skills : - Excellent communication and interpersonal skills. - Strong analytical and problem-solving skills. - Attention to detail and a commitment to quality. - Ability to work effectively in a team environment. - Ability to learn new technologies quickly
Posted 3 months ago
3 - 5 years
9 - 13 Lacs
Bengaluru
Work from Office
Project Role : Test Automation Lead Project Role Description : Lead the transformation of testing into a continuous and efficient end-to-end quality engineering function through the use of quality processes, tools, and methodologies significantly improving control, accuracy and integrity. Evolve more predictive and intelligent testing approaches based on automation and innovative testing products and solutions. Must have skills : Automotive Functional Safety Good to have skills : NA Minimum 3 year(s) of experience is required Educational Qualification : Bachelor of Engineering in Electronics or any related stream Key ResponsibilitiesAs a Penetration Tester, you will be responsible for identifying and exploiting security vulnerabilities in our systems and applications. You will work closely with IT, development, and operations teams to ensure our infrastructure is resilient against cyber threats. Your expertise in ethical hacking and security assessment will be crucial in safeguarding our digital assets. Technical Experience Proven experience as a Penetration Tester or in a similar role within a complex IT environment. Strong knowledge of penetration testing methodologies and tools, including: * Metasploit * Burp Suite * Nmap * OWASP ZAP * Kali Linux * Wireshark Proficiency in scripting languages such as Python, Bash, or PowerShell, and familiarity with programming languages such as Java, C++, or Ruby. In-depth understanding of network protocols, firewall configurations, and common vulnerabilities. Knowledge of secure coding practices, web application vulnerabilities (OWASP Top 10), and API security. Familiarity with regulatory requirements and standards such as GDPR, ISO 27001, and PCI-DSS. Overall, 3+ years of experience in vehicle security or a related field. In-depth knowledge and practical experience with various vehicle systems, including telematics, CAN bus, remote entry/start, OTA, and EV charging. Familiarity with relevant security standards and regulations, such as ISO/SAE 21434, ISO 27001, NIST Cybersecurity Framework, and UN Regulation No. 155.Professional Attributes Excellent problem-solving skills and attention to detail. Strong communication and collaboration skills to effectively convey technical information to non-technical stakeholders. Excellent communication and interpersonal skills. Motivation to stay updated with the latest cybersecurity trends, tools, and techniques. Ability to work effectively in a cross-functional team environment.Preferred Qualifications Relevant certifications such as Certified Ethical Hacker (CEH), Offensive Security Certified Professional (OSCP), GIAC Penetration Tester (GPEN), or CompTIA PenTest+. Experience with advanced penetration testing techniques, wireless security assessments, social engineering, and physical security testing.Knowledge of cloud security and experience with penetration testing in cloud environments such as AWS, Azure, or Google Cloud. Qualifications Bachelor of Engineering in Electronics or any related stream
Posted 3 months ago
4 - 7 years
10 - 14 Lacs
Bengaluru
Work from Office
Position 1: Consultant - MAST Vanguard Requirements: Mandatory technical & functional skills •Strong knowledge on manual secure code review against common programming languages (Java, C#) •Minimum three (3) years of recent experience working with application tools to perform security tests: AppScan, NetsSparker, Acunetix, Checkmarx, Veracode, BurpSuite, OWASP ZAP, Kali Linux, or equivalent. •Minimum three (3) years of performing manual penetration testing and code review against web apps, mobile apps, and APIs •Minimum three (3) years of working with technical and non-technical audiences in reporting results and lead remediation conversations. •Preferred one year of experience in development of web applications and/or APIs. •should be able to identify and work with new tools / technologies to plug and play on client projects as needed to solve the problem at hand. •One or more major ethical hacking certifications not required but preferred; GWAPT, CREST, OSCP, OSWE, OSWA Job Description: Roles & responsibilities •Perform manual application penetration tests on one or more of the following to discover and exploit vulnerabilities: web applications, internal applications, APIs, internal and external networks, and mobile applications •Perform manual security code review against common programming languages (Java, CSharp). •Perform automated testing of running applications and static code (SAST, DAST). •Experience in one or more of the following a plus: AI pen testing. •Need to work on application tools to perform security tests: AppScan, NetsSparker, Acunetix, Checkmarx, Veracode, BurpSuite, OWASP ZAP, Kali Linux. •Able to explain IDOR, Second Order SQL Injection, CSRF Vulnerability, Root cause, Remediation
Posted 1 month ago
4 - 7 years
7 - 14 Lacs
Bengaluru
Work from Office
*ONLY IMMEDIATE JOINERS PREFERRED* Job Title: Consultant - MAST Vanguard Experience: 4-7 Years Location: Bangalore (WFO 5 days) Work timings 12PM to 9PM Job Description: Roles & responsibilities •Perform manual application penetration tests on one or more of the following to discover and exploit vulnerabilities: web applications, internal applications, APIs, internal and external networks, and mobile applications •Perform manual security code review against common programming languages (Java, CSharp). •Perform automated testing of running applications and static code (SAST, DAST). •Experience in one or more of the following plus: AI pen testing. •Need to work on application tools to perform security tests: AppScan, NetsSparker, Acunetix, Checkmarx, Veracode, BurpSuite, OWASP ZAP, Kali Linux. •Able to explain IDOR, Second Order SQL Injection, CSRF Vulnerability, Root cause, Remediation Mandatory technical & functional skills Mandatory technical & functional skills Strong knowledge on manual secure code review against common programming languages ( Java, C#) Minimum three (3) years of recent experience working with application tools to perform security tests: AppScan, NetsSparker, Acunetix, Checkmarx, Veracode, BurpSuite, OWASP ZAP, Kali Linux, or equivalent. Minimum three (3) years of performing manual penetration testing and code review against web apps, mobile apps, and APIs Minimum three (3) years of working with technical and non-technical audiences in reporting results and leading remediation conversations. Preferred one year of experience in development of web applications and/or APIs. Should be able to identify and work with new tools / technologies to plug and play on client projects as needed to solve the problem at hand. One or more major ethical hacking certifications not required but preferred; GWAPT, CREST, OSCP, OSWE, OSWA
Posted 1 month ago
8 - 10 years
10 - 15 Lacs
Hyderabad
Work from Office
Senior Manager, Penetration Testing & Red Teaming What you will do Let’s do this. Let’s change the world. In this vital role has a strong focus on ensuring the organization's infrastructure, applications, and systems are secure from external and internal threats. As a senior-level position, this role involves not only hands-on penetration testing but also overseeing teams, setting testing strategies, and working closely with other security and engineering teams to implement long-term security improvements. The ideal candidate has in-depth knowledge of cybersecurity practices, experience in complex security assessment practices and strong leadership skills. Roles & Responsibilities: Develop and implement the penetration testing strategy in alignment with Amgen’s security framework. Champion a proactive security culture, integrating offensive security principles into Amgen’s broader risk management program. Lead, mentor, and develop a team of penetration testers, fostering a culture of innovation and continuous learning. Provide coaching and training to enhance the team’s technical and strategic capabilities. Build and maintain a high-performance security team, ensuring strong succession planning and career development opportunities. Oversee complex penetration testing engagements, ensuring high-quality execution and impactful reporting. Establish standard methodologies and frameworks for offensive security testing, risk assessment, and mitigation strategies. Ensure penetration testing methodologies align with industry standards (e.g., PTES, OWASP, MITRE ATT&CK). Serve as a trusted advisor to security, engineering, and executive leadership teams on cybersecurity risks and offensive security findings. Advocate for secure development practices and influence secure-by-design principles across engineering teams. Communicate technical security risks in business terms to executive collaborators and senior leadership. Define and enforce security testing policies, methodologies, and compliance requirements. Drive initiatives to enhance security automation and continuous testing frameworks. Ensure penetration testing efforts contribute to regulatory compliance (e.g., ISO 27001, NIST). What we expect of you We are all different, yet we all use our unique contributions to serve patients. Basic Qualifications: Master’s degree and 8 to 10 years of experience in Computer Science, Cybersecurity or Information Systems related field OR Bachelor’s degree and 10 to 14 years of experience in Computer Science, Cybersecurity or Information Systems related field OR Diploma and 14 to 18 years of experience in Computer Science, Cybersecurity or Information Systems related field Must-Have Skills: Proven experience in leading and managing high-performing security teams. Strong ability to influence senior collaborators and drive security adoption across an organization. Ability to translate technical security risks into business-aligned security strategies. Experience building and managing enterprise-wide penetration testing programs. Demonstrated ability to foster a culture of innovation, learning, and collaboration within security teams. Technical & Security Skills Deep knowledge of penetration testing frameworks and methodologies (e.g., OWASP, NIST, MITRE ATT&CK, PTES). Strong understanding of web application, cloud, and infrastructure security vulnerabilities. Experience with security tools such as Burp Suite, OWASP ZAP, Metasploit, Kali Linux. Familiarity with secure coding principles, threat modeling, and adversary simulation. Professional Certifications (please mention if the certification is preferred or mandatory for the role): PreferredOSCP, OSWE, OSWA, eWPTX, GWAPT, GXPN PreferredCISSP Preferred Qualifications: Soft Skills: Excellent analytical and troubleshooting skills Strong verbal and written communication skills Ability to work effectively with global, virtual teams High degree of initiative and self-motivation Ability to manage multiple priorities successfully Team oriented, with a focus on achieving team goals Strong presentation and public speaking skills What you can expect of us As we work to develop treatments that take care of others, we also work to care for your professional and personal growth and well-being. From our competitive benefits to our collaborative culture, we’ll support your journey every step of the way. In addition to the base salary, Amgen offers competitive and comprehensive Total Rewards Plans that are aligned with local industry standards. Apply now and make a lasting impact with the Amgen team. careers.amgen.com As an organization dedicated to improving the quality of life for people around the world, Amgen fosters an inclusive environment of diverse, ethical, committed and highly accomplished people who respect each other and live the Amgen values to continue advancing science to serve patients. Together, we compete in the fight against serious disease. Amgen is an Equal Opportunity employer and will consider all qualified applicants for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, disability status, or any other basis protected by applicable law. We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.
Posted 1 month ago
2 - 5 years
3 - 7 Lacs
Hyderabad
Work from Office
ABOUT AMGEN Amgen harnesses the best of biology and technology to fight the world’s toughest diseases, and make people’s lives easier, fuller and longer. We discover, develop, manufacture and deliver innovative medicines to help millions of patients. Amgen helped establish the biotechnology industry more than 40 years ago and remains on the cutting-edge of innovation, using technology and human genetic data to push beyond what’s known today. ABOUT THE ROLE Role Description This role has a strong focus on ensuring the organization's infrastructure, applications, and systems are secure from external and internal threats . T his role is responsible for conducting authorized security tests on IT infrastructure to evaluate the strength of its systems against potential cyberattacks. A variety of automated tools and manual techniques are leveraged to simulate real-world attacks. The penetration tester then works with the organization to prioritize , remediate and report on identified issues, strengthening the overall security posture. Roles & Responsibilities Perform security testing (e.g., penetration testing, code reviews) and ensure continuous security monitoring across the organization’s IT landscape. Identify vulnerabilities in networks, systems, applications, and infrastructure through hands-on penetration testing. Attempt to exploit discovered vulnerabilities to demonstrate their impact and prove their existence (e.g., retrieving sensitive data, elevating user privileges, or gaining access to admin functionality). Perform assessments on web applications, cloud environments, and network infrastructure. Use automated tools and manual techniques to identify security weaknesses. Conduct advanced post-exploitation tasks to simulate real-world attack scenarios. Work with third-party security vendors for audits, product testing, and external assessments when required . Use automated tools (e.g., Burp Suite, OWASP ZAP, or Acunetix ) to identify common vulnerabilities such as SQL Injection, Cross-Site Scripting (XSS), Cross-Site Request Forgery (CSRF), and others. Document identified vulnerabilities in detail, explaining how they were found, their severity, and their potential impact. Include proof-of-concept (PoC) for critical vulnerabilities. Offer actionable, practical solutions for fixing the vulnerabilities , such as secure coding practices, configuration changes, or security controls. Use risk-based prioritization, categorizing issues by their severity and business impact (e.g., high, medium, low) to help the organization focus on the most critical issues. Continuously learn about the latest vulnerabilities, exploits, and security trends. Present the findings to stakeholders, security teams, and management, explaining the business risk and potential impacts of the vulnerabilities discovered. Familiarity with industry standards and compliance requirements (e.g., PCI-DSS, NIST, ISO 27001) and their relevance to penetration testing. Basic Qualifications and Experience Master’s degree with a 1 - 2 years of experience in Computer Science, Cybersecurity or Information Systems related field OR Bachelor’s degree with 2 - 4 years of experience in Computer Science, Cybersecurity or Information Systems related field OR Diploma with 4 - 6 years of experience in Computer Science, Cybersecurity or Information Systems related field Functional Skills: Must-Have Skills: Strong knowledge of common vulnerabilities (e.g., OWASP Top 10, SANS Top 25), network protocols, encryption standards, application security and common penetration testing method ologies (ISSAF, OSSTMM, PTES) . Familiarity with tools like Burp Suite, OWASP ZAP and Metasploit. A deep understanding of web application architecture, databases, and authentication mechanisms. Ability to think critically and creatively when testing and attempting to exploit vulnerabilities. Good-to-Have Skills: Experience with threat intelligence and incorporating emerging threats into penetration testing practices Proficiency in scripting and automation (e.g., Python, Bash) is a plus Professional Certifications Preferred eJPT , eCPPT , eWPT , OSCP, OSWA , GWAPT Soft Skills: Strong analytical and troubleshooting skills Strong verbal and written communication skills Ability to work effectively with global, virtual teams High degree of initiative and self-motivation Team oriented, with a focus on achieving team goals Strong presentation and public speaking skills EQUAL OPPORTUNITY STATEMENT Amgen is an Equal Opportunity employer and will consider you without regard to your race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, or disability status. We will ensure that individuals with disabilities are provided with reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request an accommodation . Apply now for a career that defies imagination Objects in your future are closer than they appear. Join us. careers.amgen.com As an organization dedicated to improving the quality of life for people around the world, Amgen fosters an inclusive environment of diverse, ethical, committed and highly accomplished people who respect each other and live the Amgen values to continue advancing science to serve patients. Together, we compete in the fight against serious disease. Amgen is an Equal Opportunity employer and will consider all qualified applicants for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, disability status, or any other basis protected by applicable law. We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.
Posted 1 month ago
7 - 9 years
37 - 40 Lacs
Ahmedabad, Bengaluru, Mumbai (All Areas)
Work from Office
Dear Candidate, We are hiring a Penetration Tester to simulate attacks and discover security vulnerabilities in critical systems. Perfect for professionals skilled in offensive security techniques. Key Responsibilities: Conduct penetration tests on web, mobile, and network systems Document vulnerabilities and remediation recommendations Develop exploits and custom testing tools Collaborate with developers to address findings Required Skills & Qualifications: Proficiency with penetration testing tools (Burp Suite, Metasploit, Nmap) Strong understanding of application and network security Experience writing exploit scripts (Python, Bash) Bonus: OSCP, OSWE, or CEH certification Soft Skills: Strong troubleshooting and problem-solving skills. Ability to work independently and in a team. Excellent communication and documentation skills. Note: If interested, please share your updated resume and preferred time for a discussion. If shortlisted, our HR team will contact you. Kandi Srinivasa Reddy Delivery Manager Integra Technologies
Posted 1 month ago
10 - 20 years
1 - 6 Lacs
Bengaluru
Work from Office
SUMMARY Job Role: Senior Product Owner with Security Expertise Location: PAN INDIA Years of Experience : 10+ Years Any project-specific Prerequisite skills (Must have) Seeking a Senior Product Owner with a strong background in security, requiring over 6 years of experience as a Product Owner and a total of 10+ years’ experience. Detailed JD * Collaborate with cross-functional teams to understand client and team requirements Communicate project status and challenges with team members Engage with external stakeholders and Product Owners to analyze and incorporate feedback into the service/function provided Prioritize product backlog items based on business value, time required, and creation order Evaluate opportunities and potential risks associated with suggestions Advocate the benefits of recommendations and address any uncertainties Support staff and teams in implementing changes and resolving issues Draft user stories based on requirements Coordinate with developers to ensure clear understanding of project requirements Assist development team in understanding business aspects Develop and maintain deep understanding of security architecture and secure software development practices Implement security solutions, including data security, compliance, and incident response Utilize security frameworks and tools such as OAuth, SAML, OpenID Connect, JWT, and LDAP Work with cloud security services like AWS IAM, Azure AD, and Google Cloud IAM, with preference for AWS experience, including AWS Cognito and AVP Implement methodologies and tools like DevSecOps, CICD, SRE, and security testing tools (e.g. OWASP ZAP, Burp Suite, SonarQube) Ensure compliance with security standards and regulations (e.g. GDPR, HIPAA, PCIDSS) Requirements Requirements: Proven experience as a Product Owner with a focus on security Strong understanding of security architecture and secure software development practices Experience with cloud security services, such as AWS IAM, Azure AD, and Google Cloud IAM Familiarity with security frameworks and tools, including OAuth, SAML, OpenID Connect, JWT, and LDAP Knowledge of security compliance standards and regulations, such as GDPR, HIPAA, and PCIDSS Experience with DevSecOps, CICD, SRE, and security testing tools (e.g. OWASP ZAP, Burp Suite, SonarQube)
Posted 1 month ago
Upload Resume
Drag or click to upload
Your data is secure with us, protected by advanced encryption.
Browse through a variety of job opportunities tailored to your skills and preferences. Filter by location, experience, salary, and more to find your perfect fit.
Accenture
36723 Jobs | Dublin
Wipro
11788 Jobs | Bengaluru
EY
8277 Jobs | London
IBM
6362 Jobs | Armonk
Amazon
6322 Jobs | Seattle,WA
Oracle
5543 Jobs | Redwood City
Capgemini
5131 Jobs | Paris,France
Uplers
4724 Jobs | Ahmedabad
Infosys
4329 Jobs | Bangalore,Karnataka
Accenture in India
4290 Jobs | Dublin 2