1535 Penetration Testing Jobs - Page 2

Key Responsibilities Incident Response and Management: Lead the incident response process, including identification, containment, eradication, and recovery. Analyze and respond to complex security incidents and breaches. Conduct post-incident analysis and develop reports with recommendations to prevent future incidents. Security Monitoring and Analysis: Oversee the continuous monitoring of security alerts and events. Analyze logs and data from various sources (e.g., SIEM, firewalls, EDR, IDS/IPS) to identify suspicious activity. Perform advanced threat hunting and forensic analysis. Vulnerability Management: Conduct regular vulnerability assessments. Identify, prioritize, and remediate security vulnerabilities in systems and applications. Collaborate with IT and development teams to implement security patches and updates. Security Architecture and Engineering: Design and implement security solutions to protect the organization's networks, systems, and data. Develop and maintain security policies, standards, and procedures. Evaluate and recommend new security technologies and tools. Compliance and Risk Management: Ensure compliance with relevant regulatory requirements and industry standards (e.g., ISO 27001, NIST). Perform risk assessments and develop mitigation strategies. Document and maintain security controls and frameworks.Required Skills and Qualifications Technical Expertise: Advanced knowledge of cybersecurity principles, techniques, and technologies. Proficiency in using security tools such as SIEM, IDS/IPS, firewalls, and endpoint protection solutions. Experience with vulnerability management, penetration testing, and forensic analysis. Experience: Minimum of 7-10 years of experience in cybersecurity, with at least 2-3 years in an L3 or senior role. Proven track record of handling complex security incidents and leading incident response efforts. Experience in designing and implementing security architectures and solutions. Certifications: Relevant certifications such as CISSP, CISM, CEH, GIAC, or equivalent are highly desirable. Analytical and Problem-Solving Skills: Strong analytical skills with the ability to identify and mitigate security threats. Excellent problem-solving skills and the ability to think critically under pressure. Communication and Collaboration: Strong communication skills, both written and verbal. Ability to collaborate effectively with cross-functional teams and stakeholders.Preferred Skills and Qualifications Experience with cloud security (e.g., AWS, Azure, Google Cloud). Knowledge of scripting and automation tools (e.g., Python, PowerShell). Familiarity with regulatory requirements and standards (e.g., GDPR, HIPAA).

You are a detail-oriented and experienced IT Specialist responsible for managing Microsoft O365 and Azure environments, implementing RBAC, conducting BCP drills, and leading cybersecurity efforts. Reporting to the IT Head, you will ensure the reliability, scalability, and optimal performance of O365 and Azure environments. Your responsibilities include implementing RBAC policies for secure access control, monitoring system performance, and resolving issues promptly. Additionally, you will plan and execute BCP drills, maintain detailed documentation for audit compliance, and collaborate with stakeholders to review and update continuity plans regularly. In terms of cybersecurity, you will assist in developing and enforcing policies, lead incident management efforts, conduct security audits, and implement training programs to enhance cybersecurity awareness among employees. You will also conduct tests on IT systems to ensure compliance with audit requirements, collaborate with auditors to address findings, and keep documentation updated. The qualifications for this role include a Bachelor's degree in Computer Science or a related field, relevant certifications, and at least 10 years of experience in IT infrastructure management, including O365 and Azure. Strong expertise in O365 and Azure administration, RBAC implementation, troubleshooting skills, and excellent communication abilities are essential for this role. The company you will be working for, International Asset Reconstruction Company (IARC), is a pioneer in distressed debt resolution in India. Committed to excellence, IARC offers a conducive working environment and growth opportunities. Your role at IARC will contribute to the company's continued success and growth in managing distressed debt and retail portfolios.,

As an Application Security professional, you will play a crucial role in safeguarding the solutions by analyzing their design and identifying potential security threats. Your expertise in threat modeling methodologies such as STRIDE and DREAD will enable you to recommend appropriate mitigations for the identified threats. Furthermore, you will be responsible for providing Secure Software Development Lifecycle (SDL) Training, where you will communicate security concepts effectively to developers and deliver engaging training sessions. Your proficiency in manual code review techniques and familiarity with automated code analysis tools like SAST and SCA will be essential in identifying vulnerabilities and interpreting code review results. In addition, your hands-on experience with security testing tools like Burp Suite and knowledge of security testing methodologies will help you identify and exploit common web application vulnerabilities. You will also be involved in vulnerability scanning and analysis using tools such as Nessus and Qualys, where your ability to analyze scan results, filter out false positives, and prioritize remediation actions will be critical. Your technology-specific knowledge of Microsoft .NET technologies, Identity protocols like OpenID Connect and OAuth 2.0, and cloud technologies, particularly Microsoft Azure, will be beneficial in addressing security implications. A deep understanding of web security fundamentals, including HTTP, HTML, JavaScript, and databases, along with knowledge of common web application vulnerabilities (e.g., OWASP Top 10) and web security mitigations and best practices, will be required in this role. Additionally, your basic penetration testing skills, understanding of penetration testing methodologies and tools, and ability to report findings and recommend remediation actions will be valuable assets. To excel in this role, you should stay up-to-date with the latest security trends, vulnerabilities, and mitigation strategies. Active participation in the security community to maintain current knowledge will be essential to ensure the security posture of applications remains robust. Your skills in threat modeling, penetration testing, code review, Burp Suite, OWASP, and Nessus will be instrumental in fulfilling the responsibilities of this role effectively.,

picoNETS is seeking a Linux Customization & Security Expert to join their team at the Onsite Thane, Greater Mumbai location. Accommodation will be provided for the selected candidate. As a Linux Customization & Security Expert, you will be responsible for working with Linux Ubuntu 24.04, creating custom Linux builds, and implementing security measures to harden the Linux OS. Your role will involve securing the system at BIOS, kernel, and user levels, as well as securing various packages, browsers, and other software components. Additionally, you will be involved in security and penetration testing, CIS benchmarking, and kernel & file system programming. The ideal candidate should have 10 years or more of experience in the field, with proficiency in Linux operating systems and security protocols. You should have a track record of implementing and maintaining security measures for Linux systems, along with knowledge of network security, firewalls, and intrusion detection/prevention systems. An understanding of cybersecurity best practices and principles is essential, as well as experience in developing and deploying integration software. Certifications in Linux security such as CompTIA Linux+ or Red Hat Certified Engineer are considered a plus. The ability to independently lead software customization projects is also a key requirement for this role.,

As a Security Admin Engineer at Luminar Technologies, you will play a crucial role in designing, building, monitoring, and enforcing the security infrastructure of a rapidly growing US public company. Your responsibilities will revolve around ensuring the security, confidentiality, integrity, and availability of company data and systems. Collaborating with various functions within the organization, you will be at the forefront of designing security solutions to protect information from threats, ensuring business continuity, and regulatory compliance. A key aspect of your role will involve designing and implementing a Unified Security and Observability Platform (USOP) architecture, including forwarders, indexers, and search heads, to cater to the company's security and operational needs. You will configure and manage USOP applications, develop data ingestion strategies, and create dashboards, reports, and alerts to facilitate security monitoring and incident response. Additionally, you will design and implement architectures like UEM, MDM, CNAPP, EDR, and ZTNA to meet security and operational requirements, ensuring the secure monitoring and control of all endpoints. Your expertise will be crucial in analyzing security incidents, identifying vulnerabilities, and recommending strategies to enhance the company's security posture. Furthermore, you will collaborate with cross-functional teams to mitigate security risks, deploy and configure security tools, and maintain security policies, procedures, and standards in compliance with regulations and best practices. Staying abreast of the latest security trends and technologies, you will continuously assess and improve the company's security posture while providing 24x7 support for critical security incidents as part of an on-call rotation. To qualify for this role, you should possess a Bachelor's Degree in computer science, cybersecurity, or a related discipline, along with at least 7 years of relevant work experience. Your technical proficiency in designing and maintaining enterprise-level security infrastructure, knowledge of security concepts and principles, and familiarity with industry standards and regulatory requirements will be essential. Strong problem-solving skills, attention to detail, self-motivation, and excellent communication skills are also key attributes for success in this position. Preferred qualifications include advanced experience in security engineering roles, knowledge of advanced security tools and automation, familiarity with agile methodologies, and experience in Automotive, Finance, or High-Tech industries. Experience with autonomous vehicles or connected cars would be an added advantage, highlighting your potential to excel in this dynamic and innovative environment at Luminar Technologies.,

As an experienced Project Manager/coordinator, you will be responsible for overseeing web, mobile, and infrastructure penetration testing activities. Your role will involve managing projects by collaborating with third-party penetration test providers and internal teams to ensure the security and integrity of systems. Working within Finastra's Threat & Vulnerability Management team, you will play a crucial part in administering and enhancing the company's Penetration Testing program to prevent cyber-attacks and protect both the company and its clients from vulnerabilities. Your key responsibilities and deliverables will include: - Coordinating and overseeing advanced penetration testing activities, including network, web application, and mobile application testing. - Serving as the primary point of contact between third-party penetration testers and internal teams, facilitating communication and providing regular updates to stakeholders. - Planning, prioritizing, and managing multiple penetration testing projects simultaneously to ensure timely delivery of high-quality results within budget constraints. - Recording findings in a centralized repository for review, prioritization, and remediation tracking. - Ensuring compliance with industry standards, regulations, and best practices and preparing detailed penetration testing reports with findings, analysis, and recommendations. - Establishing, tracking, and reporting penetration testing metrics periodically and utilizing reporting tools to create insightful reports on outcomes and risk assessments. - Acting as the primary contact and relationship manager for third-party penetration testing providers to ensure successful execution and adherence to service level agreements. - Driving initiatives to enhance the effectiveness and efficiency of penetration testing processes, methodologies, and tools while staying informed about the latest cybersecurity threats and attack techniques. - Demonstrating proven experience in project management in the field of information security and intermediate knowledge of security principles and the ITIL framework. To excel in this role, you should have a minimum of five years of experience in cybersecurity with a specific focus on penetration testing. Additionally, you should possess strong technical proficiency in network security, web application security, mobile security, and social engineering, along with a good understanding of Software Development Life Cycle (SDLC) best practices. Excellent verbal and written English communication skills are essential for effective interaction with technical, business, and other stakeholders at all levels of the organization. Furthermore, your ability to manage multiple projects simultaneously under tight deadlines, coupled with superior analytical and problem-solving abilities, will be key to assessing complex security issues, prioritizing tasks, and developing practical solutions. Continuous learning and professional development in the field of cybersecurity are also crucial for success in this role. Desired qualifications include a Bachelor's degree in Computer Science, Computer/Data Systems Management, or a related field, along with a Project Management Professional (PMP) certification. Proficiency in Power BI and reporting skills would be beneficial for this position.,

As a Security Engineer at Pluang based in Gurgaon, you will play a crucial role in enhancing the investment experience for users by ensuring state-of-the-art security and reliability of the platform. Your responsibilities will include collaborating with software engineering teams, defining security requirements, participating in architecture discussions, and maintaining a vulnerability management program to identify security risks across various systems. Your expertise will be utilized in designing and developing automated solutions for security processes, implementing perimeter security measures, application security practices, cloud security controls, and threat detection mechanisms. Additionally, you will support compliance and regulatory requirements, work with third parties to enhance information security governance, and contribute to security projects as necessary. Required qualifications for this role include a minimum of 3 years of experience in Vulnerability Assessment & Penetration Testing for web and mobile applications, as well as infrastructure. You should be familiar with threat detection tools such as EDR and WAF, possess experience with cloud-based microservice architectures, and have conducted application security reviews and code analysis. Collaboration with product managers and software engineering teams to enhance security throughout the software development lifecycle is also essential. Desirable skills for this position include experience in a fast-paced environment, implementing SAST and DAST technologies, and working with Container Security. Pluang offers an attractive compensation package, opportunities for career growth, a healthy work environment, and policies promoting work-life balance and team building. Join Pluang to be part of a team that aims to empower millennials to achieve financial freedom through a diverse range of investment options. With a focus on providing access to financial products in a simple and inclusive manner, Pluang utilizes robust technology to facilitate financial investments with high returns. As an affiliate of PG Berjangka with a trading license from Bappebti, Pluang is committed to making financial markets accessible to individuals from all backgrounds.,

As a Senior Associate / Manager in the cyber security domain, you will be required to have a B.E / B.Tech/ M.CA/M.Sc (IT/CSE) or equivalent with 6-8 years of experience. Your role will involve utilizing your strong technical background in networking/system administration, security administration & testing, as well as hands-on experience in IT security auditing, vulnerability assessment, and penetration testing. You should possess in-depth knowledge of TCP/IP, Networking technologies, LAN Switching, IP Routing, and WAN protocols. An understanding of Data Center architectures and the three pillars of data center infrastructure is essential. Additionally, you should have experience in Perl, Python, Bash, or C Configuration and Security of Operating Systems such as Windows, HP-UX, Linux, Solaris, AIX, etc. Your responsibilities will include working with major networking and security solutions like Next Gen Firewalls, UTMs, IPSs, AFW, VPN, DDoS, Antivirus, Patch Management, DLP, IAM, SIEM, and SOC management tools. You will need to follow best practices in cyber security and adhere to security standards such as NISPG guidelines, NSCS prescribed security audit guidelines, CERT-In guidelines, and more. Furthermore, you should be proficient in security testing techniques like threat modeling, vulnerability scanning, penetration testing, social engineering, wireless penetration testing, and password cracking. Experience in utilizing commercial network and application Security tools and open-source tools is required. Possessing certifications like CEH, GPEN, OSCP, CISSP, CISA, CISM, or equivalent will be an added advantage. Strong leadership, communication skills, and the ability to write quality reports are essential for this role. In your role, you will define the scope of security audit, assess assets, analyze and test client IT environments, perform Internet penetration testing, network architecture reviews, and other security testing tasks. You will provide remediation recommendations and suggestions to enhance the security of IT infrastructure. Collaboration with clients and internal teams to meet client expectations and ensure compliance with high-quality standards will also be part of your responsibilities. This is a full-time position located in Hyderabad.,

At EY, you'll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we're counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. We are looking for an expert in Android application development with solid foundation in enterprise and commercial applications, interested in building highly performant mobile apps with Jetpack and Kotlin. Your primary focus will be on leading a team, proposing reference architectures, creating estimates, and giving inputs to client proposals. You will also lead the development of user interface and reusable components. You will ensure that these components and the overall application are robust and easy to maintain. A commitment to collaborative problem solving, sophisticated expandable design, and quality product is important. **Responsibilities:** - Developing new user interface using Jetpack compose - Networking Libraries and integration with third-party frameworks - Building reusable components and libraries for future use - Translating designs and wireframes into high quality code - Ability to optimize the code through the use of instruments or various techniques of memory profiling - Guiding the team to follow best industry practices to deliver clean code while keeping performance in check - Fostering teamwork and leading by example - People and Stakeholder management by close interaction with clients and internal stakeholders **Experience:** - 6+ years experience in Android native application development with Jetpack compose and Kotlin - Excellent UI/UX and architecture skills - Ability to transform the design into code quickly - Experience in unit testing and ensuring the developed code passes the quality gate from Sonar - Experience in identifying code quality issues during code reviews - JSON, REST and Web Services, low energy peripheral devices integration - Experience in setting up continuous integration processes and automated unit/UI testing - Jira, git or other tools **Must have skills:** - In-depth knowledge in Kotlin and Jetpack compose - Expertise in Retrofit, Volley, RoomDB, SharedPreferences, Hilt, Dagger, Co-routines - Understanding and implementing accessibility - Ability to Perform concurrency and performance testing - Ability to organize large-scale front-end mobile application codebases using common mobile design patterns such as MVVM, MVC or Viper - Understanding and working in Snapshot testing - In-depth understanding of layouts - Understanding of interactive application development paradigms, GUI, memory management, file I/O, network & socket programming, concurrency, and multi-threading - Developing cutting-edge functional modules that will be integrated across our application - Experience in code versioning tools such as Git or SVN - Understanding and Implementation of SOLID principles in an Android Application - Staying abreast of latest Android platform features and proposing the evolution of the application to take advantage of the same - Experience with two-way data synchronization between client and server database for applications that support offline capability - Unit-testing code for robustness, including edge cases, usability, and general reliability - Continuously discovering, evaluating, and implementing new technologies to maximize development efficiency - Experience in implementing security policies - Experience in automation, CI/CD, and Unit testing frameworks - Ability to analyze crash logs and provide fixes - Ability to write code that passes multiple quality gates from Checkmarx, MobSF, Sonar, etc., - Good knowledge of fixing quality issues from Checkmarx and fixing issues from Penetration Testing **Nice to have skills:** - AWS/Azure or any cloud exposure - SSO, LDAP, OAuth, SSL integration - Experience in emerging technologies such as IoT, AI/ML, etc. - Awareness of enterprise Mobile Application Management (MAM)/Mobile Device Management (MDM) frameworks such as Microsoft Intune, Citrix Endpoint Management will be a plus - More advanced data handlers such as WebSockets and Offline mobile applications - Awareness of Enterprise mobile applications and data protection policies and methods would be a plus EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people, and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform, and operate. Working across assurance, consulting, law, strategy, tax, and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.,

Cisco Meraki, a division of Cisco Networking, is a cloud-managed IT company and leader in cloud-controlled Wi-Fi, routing, and security. Our intuitive platform enables organizations of all sizes to deliver customer and employee experiences at scale. To provide best-in-class technologies to our customers, we've created an unrivaled company culture for our employees. One where diverse backgrounds, perspectives, and experiences shape our work and fuel our evolution. The culture is collaborative, flexible, inclusive, and provides employees with the autonomy to develop technology that's accessible and secure for everyone. The modern world runs on the internet, and the internet cannot exist without its underlying infrastructure. Meraki makes setting up, running, and maintaining that infrastructure easier than it has ever been before. Meraki enables connectivity everywhere from neighborhood cafes to education institutions to global hospitality groups operating thousands of sites. We are passionate about building real products that our customers love. As a member of our firmware security team, you will have a substantial impact on the security of millions of Meraki users all around the world. Our device firmware is built on Linux and open-source software. We work individually and in small teams to release several new products each year. As a product security engineer, you will: - Implement and maintain SecDevOps practices throughout the entire Secure Development Lifecycle (SDL). - Build and maintain automated security testing frameworks, including static analysis, dynamic analysis, and fuzz testing. - Implement and run secure CI/CD pipelines, incorporating security checks and controls at each stage. - Collaborate with product engineering teams to implement security-by-design principles and ensure consistency to SDL practices. - Develop and maintain security metrics to measure and improve SDL efficiency. - Monitor and triage incoming product security issues from our public bug bounty program. - Mentor and train development teams on SecDevOps best practices and tools. You are an ideal fit for this role if you have: - 5+ years of experience in software or firmware security, with a focus on SecDevOps and Secure Development Lifecycle implementation. - Deep knowledge of Linux and embedded systems security with a strong growth mindset. - Strong programming skills in languages such as Python, Go, or Ruby, with experience in C/C++ for embedded systems. - Experienced knowledge of embedded systems development concepts, including cross-platform development and build tools (GNU toolchain, OpenWrt, buildroot, Yocto), bootloaders (U-Boot, coreboot, UEFI), kernel configuration, device drivers, device trees. - Experience implementing and running security tools such as SAST, DAST, SCA, and container security solutions. Bonus points for: - Experience with agile development methodology. - Experience with fuzzing, penetration testing, or static analysis. - Knowledge of AI and machine learning concepts, with experience applying them to security problems. At Cisco Meraki, we're redefining the status quo with the power of diversity, inclusion, and collaboration. When we connect different perspectives, we can pursue new possibilities, inspire innovation, and release the full potential of our people. We're building an employee experience that includes appreciation, belonging, growth, and purpose for everyone.,

The need for cybersecurity professionals is never-ending, the world needs really skilled and ethical hackers. We provide opportunities to make you more skilled! Here at CyberSapiens, we always look for enthusiastic individuals who are keen on their skills & interests. This way our crowd is something that makes you enjoy your work. Join us to explore yourself, as it is in your growth that we grow. We are looking for candidates interested in the hacking field for performing vulnerability assessments and penetration testing on websites and applications (any platform) and recommending remediations accordingly. Required Skills: Knowledge of Cyber Security concepts and/or a related certification. Experience: 0-1 (Freshers are welcome). If you are interested in this position, please share your updated resume at sales@cybersapiens.co to apply or send it to click@cybersapiens.in for consideration.,

At BMC, trust is not just a word - it's a way of life! We are an award-winning, equal opportunity, culturally diverse, and fun place to be. Giving back to the community drives us to be better every single day. Our work environment allows you to balance your priorities, as we believe that you will bring your best every day. We will champion your wins and shout them from the rooftops. Your peers will inspire, drive, support you, and make you laugh out loud! BMC Software is currently seeking a motivated and skilled individual to join the Product Security Group in a senior technical position. The successful candidate will be responsible for engaging with various product teams on security architecture reviews, SaaS security, and penetration testing. As a penetration tester, you will play a crucial role in safeguarding an organization's digital assets and information by proactively identifying and addressing security weaknesses. This role requires a high level of technical expertise, ethical conduct, and a commitment to continuous improvement in the field of cybersecurity. **Roles And Responsibilities:** - Conduct thorough vulnerability assessments of applications and systems using various tools and techniques. - Execute penetration tests to simulate real-world cyberattacks, identifying weaknesses and vulnerabilities. - Provide expert guidance on application security best practices. - Research and develop new penetration testing methodologies, tools, and techniques. **Qualifications & Skills:** - 2+ years of experience in product security (web, mobile, API, cloud, infrastructure, and container security) or equivalent skillset. - Penetration testing experience is essential; prior participation in bug bounty programs is a plus. - Proficiency with hacking tools and penetration testing frameworks (e.g., Metasploit, Burp Suite, Nmap, Wireshark). - Expertise in web application security testing, including knowledge of OWASP Top Ten vulnerabilities. - Experience identifying and assessing vulnerabilities such as SQL injection, XSS, CSRF, and more. - Proficiency in exploiting vulnerabilities to gain unauthorized access and assess attack impact. - Understanding of vulnerability scoring systems (e.g., CVSS) for prioritizing findings. - Ability to think creatively and analytically to identify and exploit vulnerabilities. - Strong problem-solving skills when encountering unexpected challenges during testing. - Excellent verbal and written communication skills for conveying technical details to both technical and non-technical stakeholders. - Meticulous attention to detail in documenting findings and creating reports. - Effective time management skills to meet project deadlines and testing schedules. - High level of integrity and professionalism, with the ability to work under pressure while maintaining confidentiality. **Preferred Skills:** - Hands-on technical experience with cloud security solutions for leading cloud service providers (e.g., AWS). - Experience with secure code review (SAST) tools for languages such as C/C++, Java, and Python, and relevant frameworks. BMC's culture is built around its people. With over 6000 brilliant minds working together across the globe, you won't be known just by your employee number, but for your true authentic self. If you are unsure if you meet the qualifications of this role but are deeply excited about BMC and this team, we still encourage you to apply! We want to attract talents from diverse backgrounds and experiences to ensure we face the world together with the best ideas.,

We are looking for a highly skilled and experienced Security Analyst I to join our team at SteerLean, an IT Services & Consulting company. The ideal candidate will have 1-3 years of experience in the field. Roles and Responsibility Conduct thorough risk assessments and vulnerability testing to identify potential security threats. Develop and implement comprehensive security strategies to mitigate identified risks. Collaborate with cross-functional teams to ensure seamless integration of security measures. Monitor and analyze security event logs to detect anomalies and respond promptly to incidents. Stay up-to-date with emerging trends and technologies in cybersecurity. Provide expert guidance on security best practices to internal stakeholders. Job Requirements Strong understanding of security principles, including threat analysis and risk management. Proficiency in security tools such as firewalls, intrusion detection systems, and antivirus software. Excellent analytical and problem-solving skills, with attention to detail and the ability to work under pressure. Effective communication and collaboration skills, with the ability to work with diverse teams. Ability to adapt to changing priorities and deadlines in a fast-paced environment. Strong knowledge of industry standards and regulations related to security, such as HIPAA or PCI-DSS.

Cyber security instructor, SOC operations, Bug bounty operations, Network Security, Python Scripting, Security Consulting, Training Delivery, Student Mentorship, Assessment and Evaluation

Min 4–7-year experience performing security testing on Industrial control system components like PLC’s, SCADA, IIOT devices etc. Proven experience in conducting penetration tests, vulnerability assessments, and security audits across diverse environments. Knowledge of OT-ICS Security standards, including ISA/IEC 62443, NIST 800-82, NERC-CIP etc. Strong knowledge of common security vulnerabilities, attack vectors, threat modelling and exploitation techniques. Proficiency in using penetration testing tools and frameworks such as Nessus, Burp Suite, Nmap, and other ethical hacking tools. Understanding of component/system architectures in OT environments. Understanding and evaluation of security testing methods. Knowledge of typical industrial protocols (e.g., Modbus, Profinet, OPC, DNP3.0, CAN) Excellent communication skills, with the ability to clearly articulate technical findings and recommendations to both technical and non-technical audiences Roles and Responsibilities Handle the training delivery for IEC 62443 topics and OT security Handle the OT security project delivery and AUdits

We are looking for a highly skilled and experienced Cyber Security Sales professional to join our team at Franchise Alpha. The ideal candidate will have a strong background in sales and management consulting, with excellent communication skills. Roles and Responsibility Develop and implement effective sales strategies to drive business growth. Build and maintain strong relationships with clients and stakeholders. Conduct market research and analyze industry trends to identify new business opportunities. Collaborate with cross-functional teams to develop and launch new products and services. Provide exceptional customer service and support to existing clients. Identify and pursue new business leads and opportunities. Job Requirements Proven experience in sales and management consulting, preferably in the cyber security industry. Excellent communication and interpersonal skills. Strong analytical and problem-solving skills. Ability to work in a fast-paced environment and meet deadlines. Strong negotiation and closing skills. Experience working with clients and stakeholders at all levels.

Job Title: Talent Acquisition Specialist Company : Techdefence Labs Solutions Ltd. Location: Ahmedabad Department: Human Resources Job Type: Full-Time, Onsite About Techdefence: Techdefence is a leading cybersecurity solutions provider specializing in offensive and defensive security, AI-powered threat intelligence, and enterprise security frameworks. Our comprehensive services and product portfolio cater to global enterprises, government agencies, and critical infrastructure, ensuring proactive protection against cyber threats. With a strong R&D focus, Techdefence delivers cutting-edge security solutions in the areas of cloud security, network security, application security, penetration testing, SOC solutions, and managed security services. Our expertise in cyber resilience, risk management, and compliance frameworks (ISO 27001, NIST, GDPR, PCI-DSS, etc.) positions us as a trusted partner for organizations worldwide. Role Overview: We are seeking a dynamic and experienced Talent Acquisition Specialist to join our HR team. The ideal candidate should have a strong background in hiring for the Cybersecurity domain, with a deep understanding of niche skill sets such as SOC, SIEM, Threat Intelligence, Penetration Testing, Cloud Security, and more. This role requires a proactive recruiter with strong networking abilities and a proven track record of identifying and hiring top cybersecurity talent. Key Responsibilities: Contribute to employee engagement initiatives and internal HR communications Manage end-to-end recruitment cycle for cybersecurity roles (junior to leadership level). Understand job requirements from hiring managers and translate them into effective sourcing strategies. Source, screen, and evaluate potential candidates using various sourcing tools like Naukri, LinkedIn, GitHub, etc. Build and maintain a strong pipeline of qualified cybersecurity professionals. Develop and maintain relationships with cybersecurity communities, colleges, and relevant industry groups. Coordinate and schedule interviews, gather feedback, and ensure a smooth recruitment process. Ensure an excellent candidate experience throughout the hiring process. Maintain recruitment metrics, dashboards, and reports for analysis and process improvements. Stay updated on cybersecurity hiring trends and skill demands. Qualifications & Skills: Bachelor s/Master s degree in Human Resources, IT, or related field. 3-6 years of experience in IT/technical recruitment with at least 2 years focused on cybersecurity hiring. Familiarity with cybersecurity roles and tools such as SOC, SIEM (Splunk, QRadar, etc.), EDR, vulnerability assessment, etc. Hands-on experience with applicant tracking systems (ATS) and HRMS tools. Excellent communication and interpersonal skills. Ability to work in a fast-paced environment with multiple open roles. Strong analytical and organizational skills. Preferred Skills: Technical background or certifications in HR/Recruitment or basic cybersecurity (added advantage). Experience hiring for global or remote cybersecurity roles. Existing cybersecurity talent network is a plus.

About The Role : Job Title- I&A On-boarding Information Security Analyst, Associate Location- Pune, India Role Description: As I&A On-boarding Information Security Analyst you will be part of Access Lifecycle On-boarding global family which includes access management for application end user recertification On-boarding, user access for request & approval, user provision On-boarding and Functional Taxonomy SoD On-boarding & maintenance as well as IDAHO (Access concept) SME as central DB services. Deutsche Bank is looking for bright and open-minded individuals to support Business Identity & Access Services within Access Lifecycle Solution On-boarding team for application end user request & approval as well as end user access provision central service On-boarding. A key success factor of the Access Lifecycle Solution On-boarding team is the quick understanding of complex application set ups for Identity & Access Management and support Information Security Officer (ISO) and IT Application Owner (ITAO) along end-to-end central solution On-boarding process across DB. You will gain insights into the complete Identity & Access Management lifecycle as you will learn about the roles and entitlements and their set up, segregation of duties, application authentication and authorization process. What well offer you 100% reimbursement under childcare assistance benefit (gender neutral) Sponsorship for Industry relevant certifications and education Accident and Term life Insurance Your key responsibilities As I&A On-boarding Information Security Analyst you will be responsible to perform On-boarding assessments if an IT asset is applicable for end user application access for request & approval and business requirement gathering (based on existing KOP ID Admin procedures) to identify, how future user provisioning (ID Admin via automated connector or manual, centrally or decentral managed) will be set up between central request & approval platform and to be on-boarded application in adhering to Information Security (IS) internal and regulatory requirements. Efficiently engage, manage, and influence the main stakeholders, along with application On-boarding process including Information Security Officer, IT Application Owner, Engineering and Operations teams Provide process improvement inputs to various stakeholders involved. Proactively seek ways to improve upon existing practices and processes. Display insight and ability in identifying issues and develop successful solutions. Report and escalate potential risks to the management to help avoid / minimize the impact. Work with multiple, distributed teams (across different locations) Support develops key operational procedures where necessary and ensure adherence to all such defined policies. Comfortable with associated disciplines of Security Policy and Governance in banking domain Very good presentation and communication skills allowing to communicate with our stakeholders. A structured and methodological way of working with the objective to deliver high quality results. Supports tough people decisions to ensure people performance is aligned with organization imperatives and needs. Addresses individual performance issues, where necessary, to drive for high performance. Pro-active and flexible working approach, Team spirit Your skills and experience Minimum 5 years working experience in Identity & Access Management, Governance, Risk and Control related topics. Team management experience Basic knowledge and/or willingness to work with industry best practices and frameworks like ISO27001, NIST, CSA CCM, COBIT, ITIL Good business analyses knowledge of system design, development, implementation, and user support principles and practices Knowledge of IT Service Management or IT Governance or IT Delivery Management or IT Project Management or IT Delivery background or IT Security Knowledge on Database Systems, application interactions and server operating systems Excellent Excel knowledge Competencies: Self-motivated and flexibility to work autonomously in virtual and multicultural teams. Good communication skills (both written and verbal), fluent in English (written/verbal) Good analytical skills and problem-solving abilities Pro-active and flexible working approach A structured and methodological way of working with the objective to deliver high quality results. Flexible mindset with an eye for detail and continuous improvement Good understanding in business related information Being flexible, open minded, able to share information, transfer knowledge and expertise to stakeholders and other team members. How well support you . . . .

Inovalon was founded in 1998 on the belief that technology, and data specifically, would empower the transformation of the entire healthcare ecosystem for the better, improving both outcomes and economics. At Inovalon, we believe that when our customers are successful in their missions, healthcare improves. Therefore, we focus on empowering them with data-driven solutions. And the momentum is building. Together, as ONE Inovalon, we are a united force delivering solutions that address healthcare s greatest needs. Through our mission-based culture of inclusion and innovation, our organization brings value not just to our customers, but to the millions of patients and members they serve. Overview: The Security Engineer L3 is responsible for the engineering and configuration of the security tools in the environment. Responds to situations where first-line product support has failed to isolate or fix problems in malfunctioning equipment or software. Reports design, reliability, and maintenance problems or bugs to design engineering/software engineering. Duties and Responsibilities: Third Level troubleshooting of security device issues. Risk Analysis and mitigation planning Curation and assessment of vulnerability data (across multiple platforms/tools) from a manual penetration perspective, to focus on true exploitation. Conducting focused research when not deployed on an active project. Provide consultative guidance to customers on findings identified clearly and actionable in writing and verbally. Architecture Security Analysis and Threat Modeling as required. Help develop tooling deployment and relevant scanning configurations to enhance practical testing processes Operate in the wider organization to drive risk reduction goals and in the continuous improvement of vulnerability related services Typical security testing activities: Software/Web Application/Web Services penetration testing Network penetration Testing Mobile Application Penetration Testing Thick Client Penetration Testing Adhere to all confidentiality and HIPAA requirements as outlined within Inovalon s Operating Policies and Procedures in all ways and at all times concerning any aspect of the data handled or services rendered in the undertaking of the position. Job Requirements: Minimum 3+ years of experience in the information security field. Minimum 1-2 years of experience in a Security Engineer role or relevant experience. Knowledge of one or more programming languages (Java, Python, Golang, etc). Demonstrated experience in the monitoring, analysis and triage of security events in a high volume and fast paced environment. Experience with Cyber Security tools including, but no limited to: SourceFire, Crowdstrike, Forcepoint (Websense), McAfee EPO, AMP, Gemalto, Microsoft E5, Tenable. Hands on Experience in at least 2 Cloud technologies ( AWS/Azure/GCP). Ability to effectively communicate across all levels of the organization. Knowledge of industry regulatory and compliance requirements, such as HIPAA, PCI-DSS, NIST, HITRUST. Education: Bachelor of Science in a technical discipline or equivalent experience required. Bachelor of Science in a cybersecurity discipline or a Masters in an engineering or technical discipline with cybersecurity coursework preferred. Physical Demands and Work Environment: Sedentary work (i.e. sitting for long periods of time); Exerting up to 10 pounds of force occasionally and/or negligible amount of force; Frequently or constantly to lift, carry push, pull or otherwise move objects and repetitive motions; Subject to inside environmental conditions; and Travel for this position will include less than 5% locally usually for training purposes. If you don t meet every qualification listed but are excited about our mission and the work described, we encourage you to apply . Inovalon is most interested in finding the best candidate for the job , and you may be just the right person for this or other roles. By embracing inclusion , we enhance our work environment and drive business success. Inovalon strives to provide equal opportunit ies to the communities where we operate and to our clients and everyone whom we serve. We endeavor to create a culture of inclusion in which our associates feel empowered to bring their full, authentic selves to work and pursue their professional goals in an equitable setting. We understand that by fostering this type of culture, and welcoming different perspectives, we generate innovation and growth. Inovalon is proud to be an equal opportunity workplace . We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity or v eteran status. We also consider qualified applicants regardless of criminal histories, consistent with legal requirement. To review the legal requirements, including all labor law posters, please visit this link To review the California Consumer Privacy Statement: Disclosures for California Residents, please visit this link

About Us Diligent is the AI leader in governance, risk and compliance (GRC) SaaS solutions, helping more than 1 million users and 700,000 board members to clarify risk and elevate governance. The Diligent One Platform gives practitioners, the C-Suite and the board a consolidated view of their entire GRC practice so they can more effectively manage risk, build greater resilience and make better decisions, faster. At Diligent, were building the future with people who think boldly and move fast. Whether youre designing systems that leverage large language models or part of a team reimaging workflows with AI, youll help us unlock entirely new ways of working and thinking. Curiosity is in our DNA, we look for individuals willing to ask the big questions and experiment fearlessly - those who embrace change not as a challenge, but as an opportunity. The future belongs to those who keep learning, and we are building it together. At Diligent, you re not just building the future - you re an agent of positive change, joining a global community on a mission to make an impact. Learn more at diligent.com or follow us on LinkedIn and Facebook The Principal Application Security Engineer will be a key member of the Security group at Diligent, working in close partnership with Software Development, Site Reliability Engineering, and Product Management. This individual will serve as the technical leader and subject matter expert, driving the Application Security program with a primary focus on Vulnerability Management for Diligent s Board management and GRC platform. The Application Security team s mission is to support secure software development by defining and enforcing best practices, maintaining security tools and processes, and ensuring vulnerabilities are identified, prioritized, and remediated according to company standards. The ideal candidate will have a strong background in software development, security engineering, or DevOps, coupled with deep security expertise and a demonstrated ability to influence and lead in dynamic global environments. Key Responsibilities Design, implement, and lead the Vulnerability Management program, ensuring vulnerabilities (across infrastructure and applications) are continuously identified, risk assessed, and remediated in alignment with Diligent s Vulnerability Management Standard and timelines. Provide technical leadership and mentorship to application security engineers and other stakeholders involved in secure software development. Drive collaboration with Engineering to ensure timely application of security patches and mitigation of vulnerabilities, including clear escalation paths, exception management, and compliance reporting. Influence engineering practices and culture by developing and advocating secure coding standards, response runbooks, and risk-based remediation guidance. Serve as a primary escalation point for complex vulnerability management issues and customer or audit inquiries related to application security. Participate actively in risk evaluation, prioritization, remediation planning, and exception handling processes for high-risk vulnerabilities. Liaising with cross-functional partners to strengthen overall security posture. Required Experience and Skills Bachelor s degree in Computer Science or related discipline Minimum 10 years of professional experience in application design, development, and security for web and mobile applications. Excellent knowledge of security concepts related to Internet technologies, architectures, and protocols, as well as application software security concepts. This includes extensive experience in mitigating vulnerabilities Deep understanding of vulnerability management frameworks and security best practices (e.g., asset inventory, vulnerability assessment and scanning, patch management, risk/timeline evaluation, remediation, and exception handling). Proven experience designing, implementing, and refining vulnerability lifecycle processes, including asset inventory management, vulnerability identification, risk validation, prioritization, remediation tracking, verification, and exception handling. Advanced communication skills, with demonstrated ability to coordinate across engineering, operations, risk management, audit, compliance, and executive teams to ensure timely vulnerability remediation and alignment with business objectives. Development experience in one or more of: .NET, Javascript, C#, and/or mobile application frameworks. Professional certification in Application Security or Penetration Testing (e.g., CISSP, CSSLP, GSSP-x, CEH, GPEN, GWAPT, GMOB, Security+). Familiarity with security standards and frameworks relevant to SaaS and cloud (e.g., ISO, NIST, CSA). Preferred Experience and Skills Demonstrated leadership in application security, including helping set strategic direction, influencing day-to-day practices, assigning technical priorities, and fostering a collaborative, high-performing environment. Experience developing and presenting program metrics, dashboards, and risk reports to both technical and non-technical stakeholders, utilizing tools such as JIRA, ServiceNow, or other workflow management solutions. What Diligent Offers You Creativity is ingrained in our culture. We are innovative collaborators by nature. We thrive in exploring how things can be differently both in our internal processes and to help our clients We care about our people. Diligent offers a flexible work environment, global days of service, comprehensive health benefits, meeting free days, generous time off policy and wellness programs to name a few We have teams all over the world . We may be headquartered in New York City, but we have office hubs in Washington D.C., Vancouver, London, Galway, Budapest, Munich, Bengaluru, Singapore, and Sydney. Diversity is important to us. Growing, maintaining and promoting a diverse team is a top priority for us. We foster and encourage diversity through our Employee Resource Groups and provide access to resources and education to support the education of our team, facilitate dialogue, and foster understanding. Diligent created the modern governance movement. Our world-changing idea is to empower leaders with the technology, insights and connections they need to drive greater impact and accountability to lead with purpose. Our employees are passionate, smart, and creative people who not only want to help build the software company of the future, but who want to make the world a more sustainable, equitable and better place. Headquartered in New York, Diligent has offices in Washington D.C., London, Galway, Budapest, Vancouver, Bengaluru, Munich, Singapore and Sydney. To foster strong collaboration and connection, this role will follow a hybrid work model. If you are within a commuting distance to one of our Diligent office locations, you will be expected to work onsite at least 50% of the time. We believe that in-person engagement helps drive innovation, teamwork, and a strong sense of community. We are a drug free workplace. Diligent is proud to be an equal opportunity employer. We do not discriminate based on race, color, religious creed, sex, national origin, ancestry, citizenship status, pregnancy, childbirth, physical disability, mental disability, age, military status, protected veteran status, marital status, registered domestic partner or civil union status, gender (including sex stereotyping and gender identity or expression), medical condition (including, but not limited to, cancer related or HIV/AIDS related), genetic information, or sexual orientation in accordance with applicable federal, state and local laws. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. See also Diligents EEO Policy and Know Your Rights . We are committed to providing reasonable accommodations for qualified individuals with disabilities and disabled veterans in our job application procedures. . To all recruitment agencies: Diligent does not accept unsolicited agency resumes. Please do not forward resumes to our jobs alias, Diligent employees or any other organization location. Diligent is not responsible for any fees related to unsolicited resumes.

We are looking for a skilled Security Engineer IV to join our team at SteerLean, an IT Services & Consulting company. The ideal candidate will have 4 years of experience in the field. Roles and Responsibility Design and implement secure network architectures to protect against cyber threats. Develop and enforce security policies and procedures to ensure compliance with industry standards. Conduct vulnerability assessments and penetration testing to identify potential weaknesses. Collaborate with cross-functional teams to integrate security into all aspects of the business. Develop and maintain incident response plans and disaster recovery procedures. Stay up-to-date with emerging trends and technologies in cybersecurity. Job Requirements Bachelor's degree in Computer Science, Information Technology, or related field. Proven experience in designing and implementing secure network architectures. Strong understanding of security protocols and technologies such as firewalls, intrusion detection systems, and encryption. Experience with vulnerability assessment tools and penetration testing methodologies. Excellent problem-solving skills and attention to detail. Ability to work collaboratively in a fast-paced environment.

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : SailPoint IdentityIQ Good to have skills : NA Educational Qualification : 15 years full time education Summary :As an Application Developer, you will engage in the design, construction, and configuration of applications tailored to fulfill specific business processes and application requirements. Your typical day will involve collaborating with team members to understand project needs, developing innovative solutions, and ensuring that applications function seamlessly to support organizational goals. You will also participate in testing and troubleshooting to enhance application performance and user experience, contributing to a dynamic and collaborative work environment. Roles & Responsibilities:- Expected to perform independently and become an SME.- Required active participation/contribution in team discussions.- Contribute in providing solutions to work related problems.- Assist in the documentation of application processes and workflows.- Engage in continuous learning to stay updated with industry trends and technologies. Professional & Technical Skills: - Must To Have Skills: Proficiency in SailPoint IdentityIQ.- Strong understanding of identity governance and administration.- Experience with application integration and API management.- Familiarity with security protocols and compliance standards.- Ability to troubleshoot and resolve application issues effectively. Additional Information:- The candidate should have minimum 3 years of experience in SailPoint IdentityIQ.- This position is based at our Bengaluru office.- A 15 years full time education is required. Qualification 15 years full time education

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : CyberArk Privileged Access Management Good to have skills : NA Educational Qualification : 15 years full time education Summary :As an Application Developer, you will design, build, and configure applications to meet business process and application requirements. A typical day involves collaborating with various teams to understand their needs, developing solutions that align with business objectives, and ensuring that applications are optimized for performance and usability. You will also engage in problem-solving activities, providing support and enhancements to existing applications while ensuring that all development aligns with best practices and organizational standards. Roles & Responsibilities:- Expected to be an SME.- Collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Provide solutions to problems for their immediate team and across multiple teams.- Facilitate knowledge sharing sessions to enhance team capabilities.- Monitor project progress and ensure timely delivery of application features. Professional & Technical Skills: - Must To Have Skills: Proficiency in CyberArk Privileged Access Management.- Strong understanding of application development methodologies.- Experience with security protocols and best practices in application development.- Familiarity with integration techniques for various applications.- Ability to troubleshoot and resolve application issues efficiently. Additional Information:- The candidate should have minimum 7.5 years of experience in CyberArk Privileged Access Management.- This position is based at our Mumbai office.- A 15 years full time education is required. Qualification 15 years full time education

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : SailPoint IdentityIQ Good to have skills : NA Educational Qualification : 15 years full time education Summary :As an Application Developer, you will design, build, and configure applications to meet business process and application requirements. A typical day involves collaborating with various teams to understand their needs, developing solutions, and ensuring that applications function seamlessly within the existing infrastructure. You will engage in problem-solving activities, contribute to key decisions, and manage the development process to deliver high-quality applications that align with business objectives. Roles & Responsibilities:- Expected to be an SME.- Collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Provide solutions to problems for their immediate team and across multiple teams.- Facilitate knowledge sharing sessions to enhance team capabilities.- Monitor project progress and ensure timely delivery of application features. Professional & Technical Skills: - Must To Have Skills: Proficiency in SailPoint IdentityIQ.- Good To Have Skills: Experience with identity governance and administration.- Strong understanding of application development methodologies.- Experience with integration of identity management solutions.- Familiarity with security protocols and compliance standards. Additional Information:- The candidate should have minimum 7.5 years of experience in SailPoint IdentityIQ.- This position is based at our Bengaluru office.- A 15 years full time education is required. Qualification 15 years full time education

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : CyberArk Privileged Access Management Good to have skills : NA Educational Qualification : 15 years full time education Summary :As an Application Developer, you will engage in the design, construction, and configuration of applications tailored to fulfill specific business processes and application requirements. Your typical day will involve collaborating with team members to understand project needs, developing innovative solutions, and ensuring that applications are optimized for performance and usability. You will also participate in testing and debugging processes to ensure the applications function as intended, contributing to the overall success of the projects you are involved in. Roles & Responsibilities:- Expected to perform independently and become an SME.- Required active participation/contribution in team discussions.- Contribute in providing solutions to work related problems.- Assist in the documentation of application processes and workflows.- Engage in continuous learning to stay updated with the latest technologies and best practices. Professional & Technical Skills: - Must To Have Skills: Proficiency in CyberArk Privileged Access Management.- Strong understanding of application development methodologies.- Experience with software development life cycle and agile practices.- Familiarity with security protocols and best practices in application development.- Ability to troubleshoot and resolve application issues efficiently. Additional Information:- The candidate should have minimum 2 years of experience in CyberArk Privileged Access Management.- This position is based at our Coimbatore office.- A 15 years full time education is required. Qualification 15 years full time education