154 Pci Jobs - Page 3

Cybersecurity Engineer + Analyst (Hybrid Chandigarh / Mohali) Infinity Healthcare Solutions, LLC is expanding its cybersecurity operations and is actively seeking a highly skilled and motivated Cybersecurity Engineer + Analyst to join our team. This role is designed for professionals who bring both deep technical engineering expertise and analytical skills to secure enterprise infrastructure, identify vulnerabilities, and respond to evolving cyber threats. This position will work at the intersection of IT security architecture, incident response, risk management, and compliance operations to ensure the security and integrity of our organizations data and systems. Key Responsibilities: Security Operations & Monitoring: Monitor infrastructure, networks, and cloud environments using SIEM tools (e.g., Splunk, Microsoft Sentinel) Identify, investigate, and respond to real-time alerts and security incidents Analyze logs and network traffic to detect anomalies and unauthorized activities Perform deep-dive forensic analysis and root cause investigations on security events Incident Response & Threat Management Lead and execute end-to-end incident response processes including containment, eradication, and recovery Maintain incident response playbooks, runbooks, and documentation for various threat scenarios Collaborate with cross-functional teams to remediate vulnerabilities and improve incident readiness Stay up to date with the latest threats, vulnerabilities, zero-day exploits, and malware campaigns Security Engineering & Hardening Manage and configure endpoint protection, firewalls, IDS/IPS, and other security controls Assist in the secure deployment and configuration of cloud environments (AWS, Azure, GCP) Evaluate and implement security tools and automation for risk mitigation Apply industry best practices to harden systems and reduce attack surfaces Governance, Risk & Compliance Perform routine risk assessments, internal security audits, and gap analysis Ensure adherence to regulatory and compliance standards: ISO 27001, NIST, SOC 2, GDPR Support internal and external audits by preparing documentation and evidence Develop and maintain security policies, procedures, and technical documentation IAM & Access Controls Manage Identity and Access Management (IAM), including user provisioning, role-based access, MFA Enforce least privilege and zero-trust principles across all systems and environments Required Qualifications: Bachelors degree in Cybersecurity, Computer Science, Information Technology, or a related field Minimum 3 years of hands-on experience in cybersecurity operations, security engineering, or threat analysis Proficient with SIEM, IDS/IPS, EDR, antivirus, and endpoint security platforms Solid understanding of network protocols, firewalls, routing, and segmentation Practical knowledge of security for cloud platforms (AWS, Azure, or GCP) Experience working with IAM, RBAC, MFA, VPNs, and secure access controls Strong documentation and reporting skills; ability to communicate technical issues clearly Preferred Skills & Tools: Familiarity with MITRE ATT&CK, CIS Controls, OWASP Top 10 Experience using tools such as Wireshark, Nmap, Nessus, CrowdStrike, Qualys Scripting or automation experience (e.g., PowerShell, Python, Bash) is a plus Familiarity with DevSecOps practices is desirable Preferred Certifications (Any): CEH Certified Ethical Hacker CompTIA Security+ CISSP Certified Information Systems Security Professional CISA, CISM, or other GIAC certifications Why Join Us: Opportunity to work in a security-first environment with global impact Collaborative, forward-thinking team culture Exposure to enterprise-grade cloud security architecture and compliance frameworks Career development.

The Identity and Access Management RBAC Analyst is responsible for the management, oversight, maintenance, testing, support and optimization of Synchronys identity governance and role based access control (RBAC). Synchrony leverages SailPoint Identity IQ to maintain Business Roles, IT Roles, entitlements and approval groups. This role will have the responsibility to ensure these roles and workgroups have complete and accurate information in accordance to regulatory and Synchrony standards. This role will be a critical member of Synchronys identity governance configuration management agile product team. Enforce RBAC policies and standards to ensure compliance with regulatory requirements and organizational security policies and standards. Identify, test and remediate any roles and workgroups configured in Synchronys SailPoint IdentityIQ not appropriately configured to ensure effective access control across Synchrony systems. Provide support for RBAC-related inquiries, troubleshooting access issues, and performing role modifications as needed. Identify, develop, test and deploy updates to roles, entitlements and workgroups in accordance to Synchrony standards and procedures. Map entitlements and permissions to appropriate roles based on job functions and organizational requirements. Partner with role and workgroups owners, IAM security administration team and IAM identity technologies team to ensure accurate and complete role and workgroup configurations. Ensure all role based access control (RBAC) job aids and end user guides are accurate, maintained and effectively communicated regularly. Provide training and education to end users and stakeholders on RBAC principles, best practices, and procedures. Provide coverage to respond, triage and resolve incidents and requests through Synchronys ServiceNow platform within SLA based on priority. Develop and maintain RBAC metrics reporting to drive consistent visibility to role and workgroup compliance. Actively participate as a critical member of the SIAM Configuration Management agile product team. Develop, prioritize and ensure timely execution of all agile stories as assigned by the VP, Identity Governance Configuration Process. Identify, propose and remediate process and technical gaps in Synchronys RBAC service. Minimum of 5 years of IT experience and at least 2 years of Identity Access Management Role Based Access Control (RBAC) experience. Minimum 2 years of role administration experience within SailPoint IdentityIQ systems. Must have working knowledge of Entitlements, IT Roles and Business Roles. Must have working experience managing ServiceNow requests and incidents, resolving tickets within SLA. Must have proven strong analytical and problem solving skills. Desired Characteristics: Working knowledge of Jira and SAFE agile framework. Strong oral and written communication skills. Strong interpersonal skills. Working knowledge of Microsoft Teams, SharePoint and Excel. Knowledge of security related regulatory standards including HIPAA, PCI, SOX, NIST. Good understanding of AWS and O365 environments. Working knowledge of Oracle Database and SQL.,

">Wipro Limited (NYSE: WIT, BSE: 507685, NSE: WIPRO) is a leading technology services and consulting company focused on building innovative solutions that address clients most complex digital transformation needs. Leveraging our holistic portfolio of capabilities in consulting, design, engineering, and operations, we help clients realize their > GRC Risk management Detailed JD: Seeking a highly motivated and detail-oriented IT Risk & Cybersecurity Specialist to join our team. The ideal candidate will be responsible for designing IT controls, conducting control testing and validation, assessing risks, managing issues, validating cybersecurity policies and standards, draft cybersecurity policies, procedures and standards. Key Responsibilities: IT Control Design:Develop IT controls inventory aligned with industry standards, regulatory requirements and clients security standards.Control Testing & Validation:Perform control testing and validation of IT and cybersecurity controls to ensure effectiveness and compliance.Risk Management, Risk Assessment & Issue Management:Develop strategies, frameworks for risk and issue management. Conduct risk assessments, identify control gaps, and manage remediation efforts.Cybersecurity standards validation:Review and validate cybersecurity policies, procedures, and standards against applications to ensure compliance.Stakeholder Engagement:Collaborate independently with client stakeholders to drive the initiatives.Audits and Assessments: Conduct audits against clients security standards and report the findings to the management Experience: 8 to 10 years min experience in Governance, Risk and Compliance. Skills: 1.Knowledge of relevant regulations (SOX, GDPR, DORA, PCI) and industry standards. 2.Ability to work independently and as part of a team. 3.Knowledge of risk management frameworks and methodologies (e.g.,, ISO 31000). 5.Knowledge of NIST-CSF, NIST 800-53 6.Strong analytical and problem-solving skills. 7.Excellent communication, interpersonal skills and presentation skills 8.Proficiency in Microsoft Office Suite (Excel, Word, PowerPoint). Mandatory Skills: GRC Consulting. Experience:8-10 Years.

Project description The project is focused on ensuring data privacy and compliance in the client environment by implementing and managing data masking solutions using the Delphix platform. This role involves collaboration with cross-functional teams to secure sensitive data while maintaining data integrity for development, testing, and analytics. Responsibilities Key Responsibilities Design and Implementation Develop and implement robust data masking solutions using the Delphix platform. Analyze data sets to identify sensitive information that requires masking. Create and maintain masking rules, algorithms, and templates for various data environments. Data Security & Compliance -Ensure sensitive data complies with regulatory requirements, such as GDPR, HIPAA, PCI-DSS, and CCPA. -Collaborate with security and compliance teams to establish masking policies and standards. Testing & Validation Conduct thorough testing to validate the effectiveness of masking solutions. Troubleshoot and resolve issues related to data masking processes. Collaboration & Support Work closely with database administrators, developers, and QA teams to integrate masking into workflows. Provide training and documentation on the Delphix platform and data masking techniques. Monitoring & Optimization Continuously monitor and optimize data masking performance. Stay updated on the latest trends and updates in data masking technologies. Skills Must have Required Skills and Qualifications -Bachelor's degree in Computer Science, Information Technology, or a related field. -10+ years of experience in mainframe environments with expertise of 1 year in Hogan applications. -Strong knowledge of COBOL, JCL, VSAM, DB2, and CICS. Knowledge of ---IMS is an added advantage. -Experience with Hogan modules such as IDS, CIS, or Loans. -Familiarity with banking processes and financial services. -Excellent problem-solving, debugging, and analytical skills. -Strong communication skills, with the ability to collaborate across technical and business teams. Nice to have Preferred Qualifications -Experience with mainframe modernization or migration projects. -Knowledge of automation tools for mainframe systems. -Familiarity with Agile and DevOps methodologies in a mainframe environment. -Certification in mainframe technologies and Hogan systems.

Date 27 Jun 2025 Location: Bangalore, KA, IN Company Alstom Req ID:486689 NETWORKS & LINKS The Selected candidate will work with a highly motivated team involved in development of complex embedded solutions. The candidate will join with our Bangalore development center and will travel to our platform development center located in Europe. The Ideal candidate will be part of Product Development team in Bangalore. OVERALL PURPOSE OF THE ROLE As a V&V Designer, you will deliver validation campaign in accordance to Test Plan and test Cases in its intended environment (real or simulated). You will interface with System, project, product, Quality and safety team to meet QCD commitments. RESPONSIBILITIES: Contribute to global V&V Strategy definition; provide elements necessary to build V&V Plan in collaboration with V&V Architect. Specify and design overall teststest architecture (test plan), test design (test cases) Prepare overall tests (tests sheets and tests scenario) Perform test sessionsrun test procedures, produce test reports and associated Change Requests If applicableperform customer acceptance tests, participate to site tests Specify, design, develop and validate test environment & tools (test bench, recording tools,simulated I/O, ) Perform investigations on defects detected on test bench or on site Contribute to workload estimation and align to scheduling. Manage V&V work products under configuration management according to Configuration Management Plan Ensure test traceability vs. requirements according to Requirements Management Pl Perform SW/SW and HW/SW integration, together with the HW architect; Prepare and perform SW requirements tests, SW/SW & SW/HW integration tests and verifications of his/her deliverables, prior to the ones formally performed by a dedicated V&V team (depending on Safety Integrity Level); BEHAVIORAL COMPETENCIES: Demonstrate excellent communication skills and able to guide, influence and convince others in a matrix organization Be Innovative and demonstrate to peers and implement in creation of Reference Libraries, reusable codes, and model based developments Demonstrate excellent communication skills and able to guide, influence and convince others in a matrix organization. Team Player with prior experience in working with European customer is not mandatory but preferable. TECHNICAL COMPETENCIES & EXPERIENCE 5+ years of experience in Verification and Validation of complex embedded systems. The successful candidate will be responsible for designing, developing and implementing software solutions to build complex embedded systems, and providing technical leadership within the Team. The ideal applicant will able to thrive in a highly collaborative workplace and actively engage in the development process spread across different geographical locations. Significant experience in delivery of design, analysis, development, testing and delivery. Rail industry background is highly desirable, alternatively similar industries can also be considered. Qualifications & Skills: EDUCATION Bachelor/Post Graduate in Engineering IT, CS, ECE & EEE or Equivalent Language Skills: ProgrammingC, C++, ADA, Scripting languages (Python,..) RT OS -Linux, VX Works, QNX NI Hardware or Equivalent(PXI, PCI, DAQ,RIO) Protocols TCP/IP, CAN Playwright or Selenium Web based testing Cybersecurity concepts Networking concepts StandardsCENELEC SIL4 / DO178A / DO178B Location for the roleTravelIf yes, how much (%)Bangalore, Contract Type/ Bonus (OPTIONAL)Full- Time An agile, inclusive and responsible culture is the foundation of our company where diverse people are offered excellent opportunities to grow, learn and advance in their careers. We are committed to encouraging our employees to reach their full potential, while valuing and respecting them as individuals. You dont need to be a train enthusiast to thrive with us. We guarantee that when you step onto one of our trains with your friends or family, youll be proud. If youre up for the challenge, wed love to hear from you! Important to note As a global business, were an equal-opportunity employer that celebrates diversity across the 63 countries we operate in. Were committed to creating an inclusive workplace for everyone.

Date 3 Jul 2025 Location: Bangalore, KA, IN Company Alstom Req ID:486690 NETWORKS & LINKS The Selected candidate will work with a highly motivated team involved in development of complex embedded solutions. The candidate will join with our Bangalore development center and will travel to our platform development center located in Europe. The Ideal candidate will be part of Product Development team in Bangalore. OVERALL PURPOSE OF THE ROLE As a V&V Architect, you will deliver validation campaign in accordance to Test Plan and test Cases in its intended environment (real or simulated). You will interface with System, project, product, Quality and safety team to meet QCD commitments. RESPONSIBILITIES: Contribute to global V&V Strategy definition; provide elements necessary to build V&V Plan in collaboration with V&V Architect. Specify and design overall teststest architecture (test plan), test design (test cases) Prepare overall tests (tests sheets and tests scenario) Perform test sessionsrun test procedures, produce test reports and associated Change Requests If applicableperform customer acceptance tests, participate to site tests Specify, design, develop and validate test environment & tools (test bench, recording tools,simulated I/O, ) Perform investigations on defects detected on test bench or on site Contribute to workload estimation and align to scheduling. Manage V&V work products under configuration management according to Configuration Management Plan Ensure test traceability vs. requirements according to Requirements Management Pl Perform SW/SW and HW/SW integration, together with the HW architect; Prepare and perform SW requirements tests, SW/SW & SW/HW integration tests and verifications of his/her deliverables, prior to the ones formally performed by a dedicated V&V team (depending on Safety Integrity Level); BEHAVIORAL COMPETENCIES: Demonstrate excellent communication skills and able to guide, influence and convince others in a matrix organization Be Innovative and demonstrate to peers and implement in creation of Reference Libraries, reusable codes, and model based developments Demonstrate excellent communication skills and able to guide, influence and convince others in a matrix organization. Team Player with prior experience in working with European customer is not mandatory but preferable. TECHNICAL COMPETENCIES & EXPERIENCE 12+ years of experience in Verification and Validation of complex embedded systems. Experienceprimarily on DevOps. The successful candidate will be responsible for designing, developing and implementing software solutions to build complex embedded systems, and providing technical leadership within the Team. The ideal applicant will able to thrive in a highly collaborative workplace and actively engage in the development process spread across different geographical locations. Significant experience in delivery of design, analysis, development, testing and delivery. Rail industry background is highly desirable, alternatively similar industries can also be considered. Qualifications & Skills: EDUCATION Bachelor/Post Graduate in Engineering IT, CS, ECE & EEE or Equivalent Language Skills: ProgrammingC, C++, ADA, Scripting languages (Python,..) RT OS -Linux, VX Works, QNX NI Hardware or Equivalent(PXI, PCI, DAQ,RIO) Protocols TCP/IP, CAN DevOps CI/CD development, maintaining and sustaining CI/CD frameworks Black-box software testing Automating software tests Proficient in Docker or Podman StandardsCENELEC SIL4 / DO178A / DO178B Location for the roleTravelIf yes, how much (%)Bangalore, Contract Type/ Bonus (OPTIONAL)Full- Time An agile, inclusive and responsible culture is the foundation of our company where diverse people are offered excellent opportunities to grow, learn and advance in their careers. We are committed to encouraging our employees to reach their full potential, while valuing and respecting them as individuals. You dont need to be a train enthusiast to thrive with us. We guarantee that when you step onto one of our trains with your friends or family, youll be proud. If youre up for the challenge, wed love to hear from you! Important to note As a global business, were an equal-opportunity employer that celebrates diversity across the 63 countries we operate in. Were committed to creating an inclusive workplace for everyone.

Location: Only Bangalore Contract Security Specialist SOC Position Overview: The Security Analyst works as part of the Security Operations Center (SOC). Successful candidates will be analytical, familiar with multiple security technologies, and provide initial response to security alerts. Responsibilities: Monitors, reviews and interprets security alerts and notifications and provides initial response, analysis and case management Perform mitigation steps to ensure appropriate security event handling and escalate as necessary Become proficient in a variety of security tools within our security suite Examples: A/V, IDS/IPS, NAC, NGFW, SIEM Provide general security knowledge and recommendations to SOC team Provide feedback to information security engineers and assist with security sensor tuning efforts Communicate with technical vulnerability management and incident response teams to validate security events Perform tasks related to security incident response, such as monitoring and discovery Basic Qualifications Information Security experience via work/school Excellent written and verbal communication skills with the ability to explain technical concepts Self-motivated individual who can follow and maintain procedures Attention to detail and motivated to deliver exceptional quality Critical thinking skills Preferred Qualifications: Vendor and industry certifications in security analysis such as Security+, SANS or GIAC Linux and Windows systems administration experience Knowledge of security industry standard frameworks Examples: NIST 800-53, PCI-DSS, FedRamp Scripting or programming experience Examples: PowerShell, Python, RegEx Basic Qualifications Information Security experience via work/school Excellent written and verbal communication skills with the ability to explain technical concepts Self-motivated individual who can follow and maintain procedures Attention to detail and motivated to deliver exceptional quality Critical thinking skills Preferred Qualifications: Vendor and industry certifications in security analysis such as Security+, SANS or GIAC Linux and Windows systems administration experience Knowledge of security industry standard frameworks Examples: NIST 800-53, PCI-DSS, FedRamp Scripting or programming experience Examples: PowerShell, Python, RegEx Mandatory Skills: Security Log Monitoring. Experience: 5-8 Years.

Your Impact As part of the Product Security team, you must have a strong understanding of information security processes across product development lifecycle including secure coding principle, static code / dynamic scanning, application penetration testing, container security, cloud security, supply chain security and threat modelling the applications. You should be familiar with the industry best practices for information security policies and product security. standards. You will have the opportunity to collaborate with the product stakeholders such as product development, cloud operation, system architects, security champions, Global Information Security on the Product security process and customer escalations/support What The Role Offers Please review the below write up and highlight for any corrects Strategic Planning: Align application security initiatives with business goals; refine Product Security processes and tools. Technical Leadership: Stay updated on the latest trends and advancements in application security and apply them to continually improve the organizations security program. Recommend mitigations for vulnerabilities; manage third-party and open-source software risk. Architecture and Design: Review application designs for security best practices. Design, enhance, and advocate for the threat modelling process. Conduct threat modelling and advise product teams on implementing appropriate security controls. Security Reviews: Conduct security assessments throughout the development lifecycle. Collaborate with development teams to remediate security vulnerabilities. Code Review and Analysis: Conduct code reviews and implement automated code analysis tools. Secure Development Practices: Enforce secure coding practices, train developers in secure coding. Incident Response/Customer Escalations: Lead incident response efforts related to application security incidents. Work with cross-functional teams to investigate and remediate security breaches. Policy and Standards: Develop and enforce application security policies; ensure compliance with industry standards. Security Testing: Oversee the implementation of security testing methodologies Conduct Penetration Testing activity for applications/systems Security Awareness: Promote security awareness across engineering; conduct training for development teams on Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST). Collaboration: Collaborate with cross-functional teams, including development, operations, GIS, etc., to integrate security into all aspects of the software development lifecycle and improve security maturity. Documentation and Reporting: Maintain comprehensive documentation of security processes/policies; produce maturity status reports for senior management. Generate reports and conduct peer reviews. Research and Innovation: Stay informed on emerging threats and vulnerabilities, and proactively implement innovative security solutions. Vendor and Tool Evaluation: Evaluate and recommend security tools/technologies; Manage vendor relationships What You Need To Succeed 5 - 8 years of experience with the relevant technologies Bachelors degree in engineering, computer science or equivalent is preferred Industry standard best practices on application security controls, requirements, features, and specifications Application security issues, weaknesses, vulnerabilities, threats, risks, and impacts of exploitation Familiarity with Security Standards and groups (OWASP, PCI, SANS, OSSTMM etc.) Strong vulnerability assessment experience of web, mobile and thick client applications, RESTful & JSON APIs, web servers, databases, and hosting environments (cloud, off-cloud, Containers) Strong experience in manual vulnerability assessment and penetration testing Hands on experience on Application Security tools such as Fortify, WebInspect, Burp, etc. Experience in planning, researching and developing security policies, standards and procedures in line with industry best practices A natural curiosity to learn how things work, and more importantly, how they can be made to work outside of their intended purposes, (i.e. the ethical hacker mentality) Preferably to have application security penetration testing related certifications, (e.g. GWAPT, OSWE, OSCP, GPEN, CPTE, CEH, GWEB, GCIH, etc.) Highly desirable to have general information security related certifications, (e.g. CISSP, CISM, GSEC, CCSP, etc.) Should have excellent team playing and collaborative skills, to work with multiple stake holders. Strong analytical, troubleshooting, writing, communication, and consultancy skills Possess a commitment to quality and a thorough approach to work.

Develop verification testbench components for chip/module level using System Verilog, C/C++. Use Verification methodologies (Object oriented, UVM etc) to develop extendable test-bench/test-cases environment. Define and execute detailed verification plan from spec working with architects, designers, system engineers. Write tests, Debug tests, automate regression scripts and regression environment. Incorporate code-coverage, functional coverage, assertions, cover-groups etc to achieve 100% verification completeness prior to tapeout. Organized and creative thinker, motivated, and independent learner who can multitask in a dynamic environment, able to create and implement new solutions where required. Excellent debugging skills in both SW and ASIC hardware. Must be good in building verification environments preferably using Verilog, System Verilog, UVM, C/C++/PLI etc. Proficiency in scripting language like Perl, Tcl/Tk, Shell is a definite plus. Experience with simulators like ncVerilog (Incisive), VCS, Eldo and debug tools like Verdi/Debussy. Good understanding of latest formal verification techniques, assertions, properties is a plus. Understanding or prior experience with Industry standard protocols like USB/SPI/SATA/Ethernet/DisplayPort/SRIO/DDR/PCIE/DDR4/LPDDR4/DFI etc is a definite plus. Understanding or Prior Experience in ARM/Tensillica Processor platforms is a definite plus. Good written and oral communication skills. Ability to clearly document plans.

About The Role Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Security Compliance Management Good to have skills : Security Architecture DesignMinimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :Seeking an experienced Security Architect/ Security Compliance Professional to lead and support the design, implementation, and maintenance of security governance, risk, and compliance (GRC) frameworks. This role ensures that the organization complies with industry standards and regulations such as ISO/IEC 27001, PCIDSS, NIST CSF, SOC 2, TISAX, and others. The candidate will work cross-functionally to manage audits, assess risks, and drive continuous improvement in the security posture of the organization. Your typical day will involve collaborating with various teams to document the implementation of cloud security controls and facilitating the transition to cloud security managed operations, ensuring that all security measures align with organizational standards and compliance requirements. You will also engage in continuous improvement initiatives to enhance the security posture of the organization. Roles & Responsibilities:Expected to perform independently and become an SME or manage a team of GRC professional. Required active participation/contribution in client discussions. Contribute in providing solutions to compliance related complex situations Conduct regular assessments of security framework based or cloud security controls to ensure compliance with established standards. Collaborate with cross-functional teams to identify and mitigate potential security risks. Professional & Technical Skills: Proficient in Information Security, Cyber Security and Governance, Risk, and Compliance (GRC).Has significant exposure to evolving landscape of security compliance requirementsLead and manage security compliance initiatives across the organization.Manage/ Conduct gap assessments and implement controls in alignment with compliance standards (e.g., ISO 27001, PCIDSS, NIST, SOC 2, GDPR and other relevant frameworks).Coordinate and support internal and external security audits, including evidence collection and remediation planning.Partner with business, IT, and legal teams to ensure compliance requirements are understood and implemented.Develop and maintain security policies, procedures, and documentation in line with regulatory needs.Monitor compliance status and prepare reports and metrics for leadership.Educate teams on compliance requirements and drive a culture of security awareness.Relevant certifications :ISO27001LA/LI, ISO3100 or CISA, CISM, CRISC, or equivalent. Additional Information:The candidate should have 6-8 years of relevant experience in Information Security Governance, Risk and Compliance (GRC).A 15 years of full time education is required.This position is based at our Gurgaon/ Bangalore and Other Accenture locations Qualification 15 years full time education

KPMG Advisory professionals provide advice and assistance to enable companies, intermediaries, and public sector bodies to mitigate risk, improve performance, and create value. KPMG firms provide a wide range of Risk Advisory and Financial Advisory Services that can help clients respond to immediate needs as well as put in place the strategies for the longer term. Role detail 4 to 8 years of experience in vendor/ supplier/ third party risk assessment Expertise in IT internal audit, Information Security/cybersecurity, IT SOX, Third Part Risk Assessment Reporting e.g., SOC1, SOC 2. Relevant expertise on CSA STAR requirements, ISO control, NIST Standards, PCI DSS and GDPR requirements. Experience in performing control testing, IT / infosec risk assessments. Knowledge of technical domains such as cloud security and application security. Certification: CISA, CISSP, CEH, ISO, PCI DSS, NIST.

Information Security Compliance Manager Location: Embassy Tech Village, Bangalore, India Experience: 5 – 7 Years Work Mode: Full-time, Work from Office About the Role: As an Information Security Compliance Manager at Swiggy, you will be a key driver in ensuring that our security, privacy, and regulatory compliance posture remains robust and aligned with industry standards. This role requires a hands-on candidate who can deliver compliance frameworks, manage compliance reviews and risk assessments, and collaborate across teams to embed security best practices in everyday business operations. You will work closely with internal stakeholders and external auditors to safeguard our environment and keep Swiggy compliant with applicable regulations and standards. What You’ll Do: Compliance Leadership & Program Management Lead and manage the organization’s information security and privacy compliance programs, including data protection, regulatory risk management, and compliance testing. Own remediation efforts, providing clear guidance and tracking to ensure timely closure of compliance gaps. Continuously assess and improve existing compliance policies, controls, and processes. Compliance Reporting & Risk Assessments Plan, coordinate, and execute internal compliance reviews and risk assessments aligned with ISO 27001, ISO 27701, PCI-DSS, and other relevant frameworks. Develop and maintain framework and tools that enable effective measurement of compliance maturity. Conduct security risk assessments and compliance checks across IT systems and business processes. Governance & Reporting Collect, analyze, and deliver detailed compliance reports to senior management and relevant stakeholders. Investigate and document compliance issues, security incidents, and audit findings. Facilitate cross-functional communication to ensure compliance risks are understood and mitigated. Training & Awareness Design and deliver information security and privacy training sessions for new employees and ongoing awareness campaigns for existing staff. Develop materials that clearly articulate compliance requirements and promote a culture of security. Operational Controls & Reviews Conduct periodic reviews of critical systems including Active Directory, HRMS, privileged access, firewall rules, and patch management controls. Collaborate with IT and business teams to ensure compliance-related controls are implemented and effective. Org Certifications & Audits Collaborate with external auditors and stakeholders to maintain org certifications and facilitate external audits What We’re Looking For: Qualifications & Experience: Graduate with 5 to 7 years in information security compliance, governance, risk management, or related roles. Hands-on experience with compliance standards and frameworks including ISO 27001, ISO 27701, PCI-DSS, and data privacy regulations. Proven track record of managing audit processes, compliance testing, and remediation programs. Experience collaborating across technical and business functions to embed compliance in organizational culture. Technical & Professional Skills: Strong knowledge of security frameworks and best practices (NIST, ISO, PCI-DSS, GDPR, etc.). Ability to interpret and apply regulatory requirements and industry standards. Excellent communication skills to present complex compliance topics clearly to diverse audiences. Strong project management skills with the ability to prioritize and drive multiple initiatives. Demonstrated leadership and negotiation skills to influence stakeholders and build consensus. Preferred Certifications: ISO 27001 Lead Auditor or Lead Implementer ISO 27701 Lead Auditor or Lead Implementer Certified Information Security Auditor (CISA) Certified Information Security Manager (CISM) CompTIA Security+ Nice to Have: Knowledge of ITIL processes, PCI-DSS specifics, and Personal Data Protection regulations. Familiarity with cloud security compliance (AWS, Azure, GCP). Experience with governance, risk, and compliance (GRC) tools and exposure to using AI. Visit our tech blogs to learn more about some the challenges we deal with: https://bytes.swiggy.com/the-swiggy-delivery-challenge-part-one-6a2abb4f82f6 https://bytes.swiggy.com/swiggy-distance-service-9868dcf613f4 https://bytes.swiggy.com/the-tech-that-brings-you-your-food-1a7926229886 We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, colour, religion, sex, disability status, or any other characteristic protected by the law.

The IBM Cloud Platform Compliance team is looking for a talented, innovative and enthusiastic software development manager that will support the team building automation to make our customers succeed. IBM Cloud Platform Compliance has a global cloud presence that continues to grow and expand its reach. Our automation engineering team is responsible for delivering compliance at scale for all IBM Cloud platform services. As a trusted platform, first-rate security, fail-safe reliability and exceptional quality is of the utmost importance.As an IBM Cloud Engineering Manager, you will specialize in ensuring the reliability, resiliency and security of our systems. Bringing a unique blend of knowledge and skills in both software and systems, you will play a key role in analyzing business needs, identifying and solving problems, guiding solutions, and developing a high-performing team of developers and Site Reliability Engineers. You will work in an agile, collaborative environment where we build, deploy, configure and maintain systems for IBM. Working closely with our worldwide teams, you will have a unique opportunity to gain first-hand knowledge of the latest technologies and be supported by a global team of IBMers to grow your own skills and develop your career. Key Responsibilities: Provide guidance, coaching, and support to team members to help them grow professionally and achieve their career goals Maintain a high-performance culture through timely goal setting, feedback and regular conversations with team members Drive a culture of continuous improvement within the development team, encouraging innovation, experimentation, and knowledge sharing Ensure that projects are completed on time, and meet quality standards, supporting the team by removing blockers to progress Monitor project progress, identify risks and issues, and take proactive measures to address them Act as a focal for senior management by providing regular updates on project status, milestones, and deliverables Help manage stakeholder relationships Promote Agile and Design Thinking processes to streamline development workflows and produce technical output that delights our customers Actively participate in organization initiatives and activities to support employee engagement Work in a global team collaborating with IBMers to share recommendations, solutions and ideas Required education Bachelor's Degree Preferred education Master's Degree Required technical and professional expertise 10+ years’ experience working in software development 4+ years’ experience leading a software development team ensuring that commitments are upheld, and stakeholders are well managed Sustained experience in coaching and mentoring technical employees Demonstrated ability to set expectations in others and balance priorities to achieve desired deliverables Passion towards driving and delivering automation solutions to large, complex problems Ability to think analytically and communicate rational plans to colleagues Proven ability to lead and drive collaboration across teams to achieve desired outcomes Excellent written and verbal communication skills Flexibility to work with team members in other time zones Preferred technical and professional experience Understanding of Agile and experience coaching teams adopting the methodology and values Held a prior management position with HR responsibilities for employees Understanding of Cloud/DevSecOps/SRE Experience in Design Thinking Familiarity with any major cloud provider Familiarity with Docker, Kubernetes/OpenShift Knowledge of IT compliance frameworks, e.g. SOC2, PCI, HIPAA

We are looking for a skilled professional with 1-3 years of experience in managing end-to-end ISO and PCI compliance processes to join our team in Chennai. About the Role: This is an in-person position that involves working closely with IT, security, and risk teams to ensure compliance excellence. The role is pivotal in conducting audits, reporting compliance metrics, and aligning compliance efforts with organizational objectives. Key Responsibilities: Manage ISO/PCI compliance processes end-to-end. Collaborate with IT, security, and risk teams to ensure adherence to standards. Conduct audits and provide actionable compliance reports. Monitor and maintain compliance with regulatory and internal standards. What Were Looking For: Proven experience in ISO and PCI compliance processes. Strong understanding of IT and security protocols. Excellent auditing and reporting skills. Effective communication and teamwork abilities.

Role Purpose The purpose of the role is to govern and manage the risk assessment, remediation and monitoring of information and technology process risks. Responsibilities Governance on risk and compliance performed by various technology and control functions. Managing the risk assessment, remediation and monitoring of information and technology process risks Serve as an internal risk consultant to the operating functions and business lines. Ensure process risk identification, assessment, quantification, reporting, communication, mitigation, and monitoring. Support implementation of information security policies as applicable Drive risk closure/ mitigation/ acceptance with stakeholders of business function and technology leaders Ensure periodic calendarized entitlement reviews are completed and risks are brought to an acceptable level. Working with various control functions to ensure all identified risks are tracked and mitigated. Working with the technology leaders to identify the control gaps. Work as a SME for risk and controls applicable to the operations performed by the function. Maintain strong working relationship with the stakeholders. Review and fine tune the policies and processes as per the industry best practices. Tracking of all identified risks by various control function and ensuring closure of the risks within the defined timelines. Prepare and maintain risk heat map and risk registers. Build the team and mentor the team members. Required Skill Excellent executive level communication skills Maintain strong working relationship with the team members and should be able to motivate the team members to achieve the goals and objective of the function Self-starter and decision maker with strong analytical skills Knowledge on following area with solid understanding of Risk Management Lifecycle Application Security Data Security Identity Access Management Cloud risk management Sound domain knowledge in risk assessment and treatment and exposure to standards such as ISO27001, PCI-DSS, NIST Control etc Knowledge and understanding of security incident response aspects is desirable Ability to negotiate with people for aligning towards closure of IT risks and issues Proficient in preparation of reports, dashboards, and documentation Should have high level knowledge and experience on Technology in general Performance Parameters Tracking and closure of risks and audit actions Ensure all risks and issues are tracked and updated on a weekly basis along with the closure timeline. Ensure all risks are tracked and closed within the defined timelines Ensure average aging of the open risks should not go beyond 30 days. Applications from people with disabilities are explicitly welcome.

IP/SOC Verification ,Design & Verification Failure Debugging Skills Verilog, System Verilog, & UVM Functional Coverage Development, & Coverage Closure PCIe, Ethernet, CXL, USB, CAN, LIN, FlexRay, AXI, AHB, APB Concepts in Digital Design

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : CyberArk Privileged Access Management Good to have skills : NAMinimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to document the implementation of cloud security controls and facilitate the transition to cloud security-managed operations, ensuring that all security measures align with organizational objectives and compliance standards. You will engage in discussions to refine security strategies and provide guidance on best practices, contributing to a secure and efficient cloud environment. Roles & Responsibilities:- Expected to be an SME.- Collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Provide solutions to problems for their immediate team and across multiple teams.- Develop and maintain comprehensive documentation of security architecture and frameworks.- Conduct regular assessments of cloud security controls to ensure effectiveness and compliance. Professional & Technical Skills: - Must To Have Skills: Proficiency in CyberArk Privileged Access Management.- Strong understanding of cloud security principles and best practices.- Experience with identity and access management solutions.- Familiarity with regulatory compliance frameworks such as GDPR, HIPAA, or PCI-DSS.- Ability to analyze security incidents and implement corrective actions. Additional Information:- The candidate should have minimum 5 years of experience in CyberArk Privileged Access Management.- This position is based at our Noida office.- A 15 years full time education is required. Qualification 15 years full time education

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : CyberArk Privileged Access Management Good to have skills : NAMinimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to document the implementation of cloud security controls and facilitating the transition to cloud security-managed operations. You will engage in discussions to align security strategies with organizational objectives, ensuring that all security measures are effectively integrated into the cloud environment. Your role will also require you to stay updated on the latest security trends and technologies to enhance the overall security posture of the organization. Roles & Responsibilities:- Expected to be an SME.- Collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Provide solutions to problems for their immediate team and across multiple teams.- Develop and maintain comprehensive documentation of security architecture and controls.- Conduct regular assessments and audits to ensure compliance with security policies and standards. Professional & Technical Skills: - Must To Have Skills: Proficiency in CyberArk Privileged Access Management.- Strong understanding of cloud security principles and best practices.- Experience with identity and access management solutions.- Familiarity with regulatory compliance frameworks such as GDPR, HIPAA, or PCI-DSS.- Ability to analyze and mitigate security risks in cloud environments. Additional Information:- The candidate should have minimum 5 years of experience in CyberArk Privileged Access Management.- This position is based at our Hyderabad office.- A 15 years full time education is required. Qualification 15 years full time education

About the Role This leadership position is pivotal within a global digital data business, contributing to the development of next-generation connectors, cable assemblies, and radio system components. Youll steer a specialized engineering team focused on Signal Integrity, guiding end-to-end product lifecycle activitiesfrom concept to high-volume manufacturing qualificationthrough rigorous design, simulation, and testing. This is more than managementit's strategic direction in a fast-evolving tech space where innovation and precision meet performance. Click to Apply - (https://forms.gle/fqb29wUvjNuV82C57) Responsibilities Strategic Leadership: Lead a globally distributed team of experienced SI engineers. Align design activities with organizational goals, customer expectations, and technical standards. Create and manage work plans, project schedules, budgets, and resource allocation. Technical Oversight: Define signal integrity performance parameters for innovative products. Guide complex simulations for multiple protocols: PCIe, USB, Ethernet, etc. Oversee connector design reviews using electromagnetic simulation tools and test validation data. Ensure adherence to qualification processes for high-speed connector interfaces and cable assemblies. Innovation & Execution: Integrate market trends and customer needs into technical roadmaps. Advocate a data-driven design culture through structured simulation reviews and continuous improvement. Lead advanced packaging and PCB layout exploration to support emerging high-speed protocols. Team Development: Build a cohesive, skilled team through talent assessments, structured onboarding, and continuous upskilling. Foster collaboration across geographies and functional disciplines (mechanical, process, materials, product). Provide clear coaching, feedback, and career development plans. Balance workloads and promote wellbeing through flexible, effective leadership. Key Technologies & Tools Signal Integrity Tools: Agilent ADS, Ansys HFSS, CST CAD Platforms: SpaceClaim, AutoCAD, Creo PCB Design: Altium, layout/fabrication validation Test Equipment: VNA, TDR, BERT Data Analysis: Statistical interpretation, tolerance modeling Simulation Interpretation: Channel modeling, S-parameter validation Ideal Candidate Profile 10+ years in electrical or RF design with progressive experience 3+ years of people management and cross-functional leadership Strong grasp of physical layer system architecture and packaging interfaces Skilled communicator able to present to technical and executive audiences Experienced in high-volume manufacturing qualification and risk analysis Proven success building high-performance teams with global collaboration

The Opportunity As a part of FICOs highly modern and innovative analytics and decision platform, the Cyber-Security Engineer will help shape the next generation security for FICOs Platform. You will address cutting edge security challenges in a highly automated, complex, cloud & microservices driven environments inclusive of design challenges and continuous delivery of security functionality and features to the FICO platform as well as the AI/ML capabilities used on top of the FICO platform." VP, Software Engineering . What Youll Contribute Secure the design of next generation FICO Platform, its capabilities and services. Support full-stack security architecture design from cloud infrastructure to application features for FICO customers. Work closely with product managers, architects and developers on the implementation of the security controls within products. Develop and maintain Kyverno policies for enforcing security controls in Kubernetes environments. Collaborate with platform, DevOps, and application teams to define and implement policy-as-code best practices. Contribute to automation efforts for policy deployment, validation, and reporting. Stay current with emerging threats, Kubernetes security features, and cloud-native security tools. Proof the security implementations within infrastructure & application deployment manifests and the CI/CD pipelines. Implement required controls and capabilities for the protection of FICO products and environments. Build & validate declarative threat models in continuous and automated manner. Prepare the product for compliance attestations and ensure adherence to best security practices. What Were Seeking 5+ years of experience in architecture, security reviews and requirement definition for complex product environments. Familiarity with industry regulations, frameworks, and practices. For example, PCI, ISO 27001, NIST, etc. Strong knowledge and hands-on experience with Kyverno and OPA/Gatekeeper (optional but a plus). Experience in threat modeling, code reviews, security testing, vulnerability detection, attacker exploit techniques, and methods for their remediation. Hands-on experience with programming languages, such asJava, Python, etc. Experience of deploying services and securing cloud environments, preferably AWS Experience of deploying and securing containers, container orchestration and mesh technologies (such as EKS, K8S, ISTIO). Ability to articulate complex architectural challenges with the business leadership and product management teams. Independently drive transformational security projects across teams and organizations. Experience with securing event streaming platforms like Kafka or Pulsar. Experience with ML/AI model security and adversarial techniques within the analytics domains. Hands-on experience with IaC (Such as Terraform, Cloudformation, Helm) and with CI/CD pipelines (such as Github, Jenkins, JFrog). Our Offer to You An inclusive culture strongly reflecting our core valuesAct Like an Owner, Delight Our Customers and Earn the Respect of Others. The opportunity to make an impact and develop professionally by leveraging your unique strengths and participating in valuable learning experiences. Highly competitive compensation, benefits and rewards programs that encourage you to bring your best every day and be recognized for doing so. An engaging, people-first work environment offering work/life balance, employee resource groups, and social events to promote interaction and camaraderie. Why Make a Move to FICO At FICO, you can develop your career with a leading organization in one of the fastest-growing fields in technology today Big Data analytics. Youll play a part in our commitment to help businesses use data to improve every choice they make, using advances in artificial intelligence, machine learning, optimization, and much more. FICO makes a real difference in the way businesses operate worldwide Credit Scoring FICO Scores are used by 90 of the top 100 US lenders. Fraud Detection and Security 4 billion payment cards globally are protected by FICO fraud systems. Lending 3/4 of US mortgages are approved using the FICO Score. Learn more about how you can fulfil your potential at

We are looking for a skilled Associate Process Manager to join our team at eClerx Services Ltd. The ideal candidate will have 6-9 years of experience in the IT Services & Consulting industry, with expertise in process management and improvement. Roles and Responsibility Manage and implement process improvements to increase efficiency and productivity. Develop and maintain process documentation and standard operating procedures. Collaborate with cross-functional teams to identify and resolve process issues. Analyze data and metrics to measure process performance and make informed decisions. Implement change management strategies to ensure successful process changes. Provide training and support to team members on new processes and procedures. Job Requirements Strong understanding of process management principles and methodologies. Excellent analytical and problem-solving skills with attention to detail. Ability to work effectively in a fast-paced environment and prioritize tasks. Strong communication and interpersonal skills with the ability to collaborate with stakeholders. Experience with process improvement tools and techniques, such as Lean or Six Sigma. Strong knowledge of industry-specific regulations and standards, such as HIPAA or PCI-DSS.

We are looking for a skilled Senior Process Manager to join our team at eClerx Services Ltd., with 6-9 years of experience in the IT Services & Consulting industry. The ideal candidate will have a strong background in process management and improvement, with excellent analytical and problem-solving skills. Roles and Responsibility Develop and implement process improvements to increase efficiency and productivity. Manage and maintain existing processes, ensuring they are up-to-date and compliant with industry standards. Collaborate with cross-functional teams to identify areas for improvement and develop solutions. Analyze data and metrics to measure process performance and make informed decisions. Implement change management strategies to ensure successful adoption of new processes. Provide training and support to team members on new processes and procedures. Job Requirements Strong understanding of process management principles and methodologies. Excellent analytical, problem-solving, and communication skills. Ability to work effectively in a fast-paced environment and prioritize multiple tasks. Experience with process improvement tools and techniques, such as Lean or Six Sigma. Strong leadership and team management skills, with the ability to motivate and guide team members. Familiarity with industry-specific regulations and standards, such as HIPAA or PCI-DSS.

Qualification: Bachelors degree in computer Science or IT higher-level qualification Perform 3rd-party audits and trainings according to ISO/IEC 27001, ISO 9001 & other IT specific standards/ frameworks Provide timely and accurate reviews of client’s corrective action and closure. Minimum 5+ years’ Experience in IT /Management system Implementation / certification and Minimum 2 years of profound experience in the field of information security. Great attitude, Analytical skills and communication skills. Preferred: IRCA Certified, ITIL Certified, CISA, CISM, CISSP, MCSE, MCSA and/or MBA Good understanding of relevant regulations and industry standards (e.g. ITIL Framework, FFIEC, SOX, COSO, COBIT, ITIL, ISO27001, PCI, HIPAA, HiTrust and GLBA), best practices and methodologies and the ability to apply these requirements to organizational internal control frameworks. Able to travel for business purpose(70-80%).

Qualification: Bachelors degree in computer Science or IT higher-level qualification Perform 3rd-party audits and trainings according to ISO/IEC 27001, ISO 9001 & other IT specific standards/ frameworks Provide timely and accurate reviews of client’s corrective action and closure. Minimum 5+ years’ Experience in IT /Management system Implementation / certification and Minimum 2 years of profound experience in the field of information security. Great attitude, Analytical skills and communication skills. Preferred: IRCA Certified, ITIL Certified, CISA, CISM, CISSP, MCSE, MCSA and/or MBA Good understanding of relevant regulations and industry standards (e.g. ITIL Framework, FFIEC, SOX, COSO, COBIT, ITIL, ISO27001, PCI, HIPAA, HiTrust and GLBA), best practices and methodologies and the ability to apply these requirements to organizational internal control frameworks. Able to travel for business purpose(70-80%).

The IZOT product line includes BMCs Intelligent Z Optimization & Transformation products, which help the worlds largest companies to monitor and manage their mainframe systems. The modernization of mainframe is the beating heart of our product line, and we achieve this goal by developing products that improve the developer experience, the mainframe integration, the speed of application development, the quality of the code and the applications security, while reducing operational costs and risks. We acquired several companies along We are looking for Application Security Engineer to take ownership of security testing for enterprise products deployed on mainframe environments. In this role, you will assess application-layer security risks, identify vulnerabilities in product implementations, and lead secure architecture reviews. The ideal candidate brings deep offensive security skills along with familiarity in testing applications running on or integrated with IBM mainframe systems. Primary Roles and Responsibilities: Conduct penetration testing and red teaming exercises targeting mainframe environments and the surrounding application ecosystem. Perform code-assisted and black-box penetration testing against enterprise applications/systems interacting with RACF, DB2, CICS, MQ, and related subsystems. Identify risks in authentication, authorization, data handling, and communications within mainframe-integrated products. Create threat models and guide product teams in mitigating high-impact vulnerabilities early in the SDLC. Drive remediation efforts through hands-on collaboration and secure design guidance. Author technical reports and deliver executive summaries tailored to various audiences. Stay current on vulnerabilities, exploits, and testing techniques relevant to legacy enterprise technologies and mainframe ecosystems. Assess common integration patterns (SOA, REST/JSON, MQ) for security risks. To ensure youre set up for success, you will bring the following skillset & experience: 3+ years of experience in penetration testing, with a specialization in systems/applications integrating with mainframe environments. Deep knowledge of mainframe communication protocols and security mechanisms. Demonstrated experience conducting red team-style assessments or advanced threat emulation on mainframe systems. Proficient in tools such as: Mainframe utilities: REXX, ISPF panels, NetView Security tools: Nmap, Burp Suite, Wireshark, custom scripts Strong scripting and automation skills (Python, REXX, Bash, or similar). Strong communication and leadership skills, with a proven ability to lead technical teams or projects. Experience producing board-level reports and presenting findings to stakeholders. Exposure to hybrid environments (mainframe to cloud integrations, modernization efforts). Familiarity with modern enterprise integration methods (REST, SOAP, MQ, FTP) that interface with mainframe services Whilst these are nice to have, our team can help you develop in the following skills: Industry certifications such as OSCP, OSCE, CRTP, GIAC GPEN, GXPN, or CISSP. Background in regulated industries such as banking, insurance, or government, where mainframes are core infrastructure. Knowledge of COBOL, PL/I, or other mainframe-centric programming languages. Experience with compliance standards like PCI-DSS, NIST, or SOX as they apply to mainframes.