1535 Penetration Testing Jobs - Page 4

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Ping Identity Good to have skills : NAMinimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to assess security needs, documenting the implementation of cloud security controls, and overseeing the transition to cloud security-managed operations. You will engage in strategic discussions to align security measures with organizational objectives, ensuring a robust security posture in the cloud environment. Roles & Responsibilities:- Expected to be an SME.- Collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Provide solutions to problems for their immediate team and across multiple teams.- Facilitate training sessions to enhance team knowledge and skills in cloud security.- Monitor and evaluate the effectiveness of implemented security measures and recommend improvements. Professional & Technical Skills: - Must To Have Skills: Proficiency in Ping Identity.- Good To Have Skills: Experience with cloud security frameworks and compliance standards.- Strong understanding of identity and access management principles.- Experience with security architecture design and implementation.- Familiarity with risk assessment methodologies and security best practices. Additional Information:- The candidate should have minimum 5 years of experience in Ping Identity.- This position is based at our Noida office.- A 15 years full time education is required. Qualification 15 years full time education

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Integrated Security Risk Management Good to have skills : Security Architecture DesignMinimum 3 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to assess security needs, documenting security controls, and transitioning to cloud security-managed operations, all while ensuring compliance with industry standards and best practices. Roles & Responsibilities:- Expected to perform independently and become an SME.- Required active participation/contribution in team discussions.- Contribute in providing solutions to work related problems.- Engage in continuous learning to stay updated with the latest security trends and technologies.- Assist in the development of security policies and procedures to enhance organizational security posture. Professional & Technical Skills: - Must To Have Skills: Proficiency in Integrated Security Risk Management.- Good To Have Skills: Experience with Security Architecture Design.- Strong understanding of risk assessment methodologies and frameworks.- Experience in implementing security controls in cloud environments.- Familiarity with compliance standards such as ISO 27001, NIST, and GDPR. Additional Information:- The candidate should have minimum 3 years of experience in Integrated Security Risk Management.- This position is based at our Noida office.- A 15 years full time education is required. Qualification 15 years full time education

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : CyberArk Privileged Access Management Good to have skills : NAMinimum 7.5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to assess security needs, documenting the implementation of cloud security controls, and transitioning to cloud security-managed operations. You will engage in discussions to refine security strategies and ensure compliance with industry standards, all while adapting to the evolving landscape of cloud technologies and security threats. Roles & Responsibilities:- Expected to be an SME.- Collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Provide solutions to problems for their immediate team and across multiple teams.- Facilitate training sessions to enhance team knowledge and skills in cloud security.- Evaluate and recommend new security technologies and practices to improve overall security posture. Professional & Technical Skills: - Must To Have Skills: Proficiency in CyberArk Privileged Access Management.- Good To Have Skills: Experience with cloud security frameworks and compliance standards.- Strong understanding of identity and access management principles.- Experience with risk assessment and mitigation strategies.- Familiarity with security incident response and management. Additional Information:- The candidate should have minimum 7.5 years of experience in CyberArk Privileged Access Management.- This position is based at our Noida office.- A 15 years full time education is required. Qualification 15 years full time education

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : SailPoint IdentityNow Good to have skills : NAMinimum 7.5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to assess security needs, documenting security controls, and overseeing the transition to cloud security-managed operations. You will engage in strategic discussions to align security measures with organizational objectives, ensuring a robust security posture in the cloud environment. Roles & Responsibilities:- Expected to be an SME.- Collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Provide solutions to problems for their immediate team and across multiple teams.- Facilitate training sessions to enhance team knowledge and skills.- Monitor and evaluate the effectiveness of implemented security measures. Professional & Technical Skills: - Must To Have Skills: Proficiency in SailPoint IdentityNow.- Strong understanding of cloud security principles and practices.- Experience with identity governance and administration solutions.- Familiarity with regulatory compliance frameworks related to cloud security.- Ability to design and implement security architectures for cloud environments. Additional Information:- The candidate should have minimum 7.5 years of experience in SailPoint IdentityNow.- This position is based at our Bengaluru office.- A 15 years full time education is required. Qualification 15 years full time education

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : SailPoint IdentityNow Good to have skills : NAMinimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to document the implementation of cloud security controls and facilitate the transition to cloud security-managed operations, ensuring that all security measures align with organizational objectives and compliance standards. You will engage in strategic discussions to enhance security protocols and contribute to the overall security posture of the organization. Roles & Responsibilities:- Expected to be an SME.- Collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Provide solutions to problems for their immediate team and across multiple teams.- Develop and maintain comprehensive documentation of security architecture and frameworks.- Conduct regular assessments of security controls to ensure effectiveness and compliance. Professional & Technical Skills: - Must To Have Skills: Proficiency in SailPoint IdentityNow.- Strong understanding of cloud security principles and best practices.- Experience with identity and access management solutions.- Familiarity with regulatory compliance standards such as GDPR and HIPAA.- Ability to analyze and mitigate security risks in cloud environments. Additional Information:- The candidate should have minimum 5 years of experience in SailPoint IdentityNow.- This position is based at our Noida office.- A 15 years full time education is required. Qualification 15 years full time education

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Identity and Access Management (IAM) Operations Good to have skills : Microsoft Azure Active DirectoryMinimum 2 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to document the implementation of cloud security controls and facilitate the transition to cloud security-managed operations, ensuring that all security measures align with organizational standards and best practices. You will also engage in discussions to refine security strategies and address any emerging challenges in the cloud environment, contributing to a secure and efficient operational landscape. Roles & Responsibilities:- Expected to perform independently and become an SME.- Required active participation/contribution in team discussions.- Contribute in providing solutions to work related problems.- Assist in the development and maintenance of security policies and procedures to ensure compliance with industry standards.- Evaluate and recommend security technologies and tools to enhance the cloud security posture. Professional & Technical Skills: - Must To Have Skills: Proficiency in Identity and Access Management (IAM) Operations.- Good To Have Skills: Experience with Microsoft Azure Active Directory.- Strong understanding of cloud security principles and best practices.- Experience in implementing security controls in cloud environments.- Familiarity with risk assessment methodologies and security frameworks. Additional Information:- The candidate should have minimum 2 years of experience in Identity and Access Management (IAM) Operations.- This position is based at our Bengaluru office.- A 15 years full time education is required. Qualification 15 years full time education

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Zscaler Architecture Good to have skills : NAMinimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to assess security needs, documenting the implementation of cloud security controls, and transitioning to cloud security-managed operations. You will engage in discussions to refine security strategies and ensure that the architecture aligns with organizational objectives, while also addressing any emerging security challenges that may arise throughout the day. Roles & Responsibilities:- Expected to be an SME.- Collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Provide solutions to problems for their immediate team and across multiple teams.- Facilitate training sessions to enhance team knowledge and skills in cloud security.- Continuously evaluate and improve the cloud security framework based on industry best practices. Professional & Technical Skills: - Must To Have Skills: Proficiency in Zscaler Architecture.- Strong understanding of cloud security principles and frameworks.- Experience with security compliance standards and regulations.- Ability to design and implement security solutions in cloud environments.- Familiarity with risk assessment methodologies and threat modeling. Additional Information:- The candidate should have minimum 5 years of experience in Zscaler Architecture.- This position is based at our Pune office.- A 15 years full time education is required. Qualification 15 years full time education

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Security Architecture Design Good to have skills : NAMinimum 7.5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to assess security needs, documenting security controls, and transitioning to cloud security-managed operations, all while ensuring compliance with industry standards and best practices. You will engage in discussions to refine security strategies and provide guidance on implementing effective security measures across the organization. Roles & Responsibilities:- Expected to be an SME.- Collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Provide solutions to problems for their immediate team and across multiple teams.- Facilitate training sessions to enhance team knowledge on security practices.- Evaluate emerging security technologies and recommend improvements to existing frameworks. Professional & Technical Skills: - Must To Have Skills: Proficiency in Security Architecture Design.- Strong understanding of cloud security principles and frameworks.- Experience with risk assessment and management methodologies.- Knowledge of compliance standards such as ISO 27001, NIST, and GDPR.- Familiarity with security tools and technologies for threat detection and response. Additional Information:- The candidate should have minimum 7.5 years of experience in Security Architecture Design.- This position is based in Chennai.- A 15 years full time education is required. Qualification 15 years full time education

Job Description CyberSecOn is looking for a talented and dedicated Cyber Security Analyst who can work remotely. A Cyber Security Analyst is responsible for maintaining the security and integrity of data. The security analyst must possess knowledge of every aspect of information security to protect company assets from evolving threat vectors.The main responsibilities will include: Monitor and investigate security events and alerts from various sources, such as logs, network traffic, threat intelligence, and user reports. Conduct proactive and reactive threat hunting campaigns to uncover hidden or emerging threats on the cloud environment. Perform root cause analysis and incident response to contain and remediate cloud abuse incidents. Document and communicate findings, recommendations, and lessons learned to relevant stakeholders and management. Develop and update cloud abuse detection rules, indicators, and signatures. Research and stay updated on the latest cloud abuse trends, tactics, techniques, and procedures (TTPs) of threat actors. Provide guidance and training to other security teams and cloud users on best practices and standards for cloud security. Manage multiple client environment cyber security infrastructure and applications. Knowledge of ServiceNow, Zoho desk, Jira/Confluence, etc. Perform vulnerability risk reviews using Qualys, Rapid7 and/or Tenable. Responsible for managing and improving the defined patch management & configuration review process and activities. Proactively manage applications, infrastructure security & network risks; ensuring security infrastructure aligns with companys compliance requirements. Skills & Experience: 4 years + years of experience in a security analyst role, preferably in a SOC environment. Good knowledge on security analyst, engineering, and project management experience Experience in client management for security projects. Knowledge and hands-on experience with SIEM technologies such as Microsoft Sentinel, Rapid7 Insight IDR, Wazuh, etc. Create play books and automation on Microsoft sentinel is desirable. Strong experience in Virtualisation, Cloud (Azure, AWS, other service providers) design, configuration, and management. Ability to manage priorities, perform multiple tasks and work under dynamic environment and tight deadlines. Ability to perform vulnerability assessments, penetration testing using manual testing techniques, scripts, commercial and open-source tools. Experience and ability to perform Phishing campaign and/or similar social engineering exercise. Subject matter expert in one or multiple areas as Windows, Unix, Linux OS. Vendor or Security specific certifications is preferred. Demonstrated analytical, conceptual and problem-solving skills. Ability to work effectively with limited supervision on multiple concurrent operational activities. Ability to communicate effectively via email, report, procedures in a professional and succinct manner. Preferred : Candidates who can join immediately or within 15 days.

The Role Description: Designated position will be a part of India Managed Security Services Organization. The individual will be required to lead AppSec and Vulnerability Management business function and will be responsible for conducting security assessment, Penetration testing of IT/Cloud and OT infrastructure, application security assessment of hosted applications and DevSecOps support for new applications throughout their lifecycle to identify potential vulnerabilities, suggest mitigation strategies, and support the customers/ partners in implementing these strategies. This included project management, service delivery and quality assurance, customer management, relationship with vendors & technology partners. Key General Responsibilities: Lead and drive the AppSec & Vulnerability management function and service delivery by new projects acquisition, project delivery through execution & operations support Strong leadership skills with the ability to lead department and manage functional teams Build and grow the competency through hiring and developing the current team Provide strong technical leadership to the delivery team, partners and customers Results-oriented and ability to think big can work backward from customers needs Project Management, Service Management, Customer handling, Quality assurance Highly effective communicator and demonstrated ability to work cross-functionally, with a track record of delivering results and demonstrating strong ownership People management and accountable for hiring, talent development, performance management, succession planning, coaching to direct reports, and engagement for the teams Excellent communication and interpersonal skills, with the ability to influence and engage stakeholders at all levels within the organization and with customers, partners/vendors Support sales strategy to meet agreed business revenue through pre-sales & appropriate solutions Identify and grow new opportunities with existing customer and ensure customer satisfaction and retention Key Technical Responsibilities: As Technical leader, drive future strategy around Threat intelligence, security architecture reviews, vulnerability management, security configuration, DevSecOps and application security Perform manual/automation internal and external vulnerability assessments in IT/Cloud and OT Perform security control assessment and vulnerability assessments in OT environment Perform Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), and Interactive Application Security Testing (IAST) to identify vulnerabilities in software applications Conduct Vulnerability Assessment and Penetration Testing (VAPT) in Web, Android and API Perform Gray Box and/or Penetration testing on WEB, API and Mobile Device (Android) Complete project work with quality and within deadlines as required, complete the analysis and draw comprehensive conclusions, making appropriate recommendations and mitigation plan Communicate technical impact and business risk to a non-technical audience after the project Provide expert advice on the selection and implementation of appropriate Security Assessment / Testing software and tools Implement and manage DevSecOps by utilizing Software Assurance Maturity Model (SAMM) to evaluate and improve the security of software development processes Follow security standards and frameworks, and implement best practices methodologies Work closely with product development teams to ensure secure coding practices are followed Educate customers, technical team, application developers about Emerging threat and vulnerability, application security to raise awareness and build a Security Champion program General Experience Requirement for the role: Having 8+ years of experience in the leading and managing Threat & Vulnerability competency, projects and customer engagements Having 6-8 years of core hands-on experience in fields of cyber-Security, security standards, best practices, vulnerability assessments, web application testing, network and mobile application assessment, and penetration testing 1-2 years of experience in enterprise security management, security products/solution integration/security operations, with good understanding of Network and system security concepts and standards, security best practices Experience building and leading and managing security teams with experience in Cyber security practices, AppSec, threat intelligence, vulnerability management, penetration testing, infrastructure security assessment Excellent Project Management, Service Management and customer handling skills Possess excellent written, presentation and verbal communication skills necessary for team coordination, helping partners, and service discussions along with organizational skills Good analytical skills with an ability to think outside the box to solve highly technical problems Ability to work effectively with clients, management, staff members, vendors, and consultants Good interpersonal skills to interact and collaborate with senior management stakeholders such as IT, Network and Security and CIO/ CTO/ business leadership teams Ability to work calmly with patience in high pressure situations in a dynamic environment Education and Certification preferred for the role: BTech/B.E. in CSE/IT/CSA/ECE MCA/ MTech/MS in CSE/IT/CSA/Electronics Any of the security certifications such as CEH, CHFI, ECSA, OSCP, GPEN, CISSP/CISM/CISA Technical Skills that are Key to this role: Strong background in Network/Infrastructure Vulnerability Assessment and Penetration Testing Good understanding of security vulnerabilities, OWASP Top 10 vulnerabilities, Enterprise security architecture, standards, relevant best practices and frameworks Extensive expertise in Web, API, Android Mobile Apps, and AWS/Azure Cloud Security, Experience with software penetration testing, architectural risk assessment, threat modeling, static code analysis and secure code review on WEB, API and Android mobile applications Web Application Penetration Testing: Strong experience in assessing web applications for security vulnerabilities using tools such as Burp Suite, OWASP ZAP, or similar. Mobile Application Penetration Testing: Proficiency in evaluating the security of mobile applications on Android platforms, including reverse engineering and code analysis. Cloud Security: In-depth knowledge of cloud security best practices, including experience with AWS/ Azure Cloud Platform, and the ability to configure security controls and monitor for cloud-based threats, with experience in AWS/Azure cloud security assessments. API Security: Expertise in assessing the security of APIs, including authentication, authorization, and data protection. Web Application and Mobile Apps security assessment in accordance with the OWASP standards. Vulnerability Assessment includes analysis of bugs in various applications on various domains by using both manual and Automation tools. Familiarity with security in DevOps and continuous integration/continuous deployment (CI/CD) pipelines. Experience of working on Windows and Linux with Good understanding of operating system internals (Windows, Linux and Mobile OS (Android) and app development (especially mobile) Should be familiar with common compliance requirements like GDPR, PCI-DSS, ISO 27001 Experience with mobile Open Web Application Security Project (OWASP) standards and testing checklist. Should be able to configure automated scanners (such as Login sequence, manually exploring critical flaws, Policy customization, scan throttling, etc) to perform successful scans. Assessment of scanner results and intelligently identifying false positives from the scan results. Flaws like, Authentication (session management) testing, CSRF, business logic testing which are not detected by an automated scanner must be identified using manual testing. Understanding of the workflow of the application and identifying the entry points to detect possible vulnerabilities.Hands-on experience with popular security tools NMAP, Nessus, Burp Suite, Nessus, Netsparker, Metasploit, OWASP ZAP. Familiar with Agile process and development tools (Jira, Confluence, Bitbucket, Git, Maven, Jenkins, etc

Conduct comprehensive penetration testing of networks, web applications, mobile applications, and other systems to identify security vulnerabilities. Perform vulnerability assessments and provide detailed recommendations for remediation. Knowledge of OT-ICS Security standards, including ISA/IEC 62443, NIST 800-82, NERC-CIP, MITRE ATT&CK etc. Strong knowledge of common security vulnerabilities, attack vectors, threat modelling and exploitation techniques. Proficiency in using penetration testing tools and frameworks such as Nessus, Burp Suite, Nmap, and other ethical hacking tools. Strong understanding of network protocols, network and application security architectures, and common vulnerabilities (e.g., OWASP Top Ten). Prepare detailed reports of findings, including risk analysis and recommended mitigations, and present these findings to stakeholders. Stay current with emerging security threats, vulnerabilities, and technology trends, and apply this knowledge to improve our security posture. Understanding of component/system architectures in IT and OT environments. Understanding and evaluation of security testing methods. Knowledge of typical industrial protocols (e.g., Modbus, Profinet, OPC, DNP3.0, CAN) Excellent communication skills, with the ability to clearly articulate technical findings and recommendations to both technical and non-technical audiences Source code review for control flow and security flaws IEC 62443 Standard plus at least one of: ISO/IEC 27001 IEC 61508 NIST CSF IEC 61162-460:2024 Proficient in developing VAPT documentation and methodologies specifically aligned with IEC 61162-460:2024 for maritime navigation and radiocommunication equipment cybersecurity. Automotive Vehicle Testing Support Skilled in providing cybersecurity testing support for automotive vehicles , including VAPT of ECUs and in-vehicle networks , threat modeling , and ensuring compliance with industry standards like ISO/SAE 21434. Roles and Responsibilities Min. one professional certification such as Certified Ethical Hacker (CEH), ISA/IEC 62443, OSCP or certified Penetration Tester preferred. Min 2–5 years of experience performing security testing on Industrial control system components like IOT devices, PLCs, SCADA, IIOT devices etc. Familiarity with operating systems (Windows, Linux) and their security features. Excellent problem-solving skills and the ability to think critically to identify and address security issues. Strong verbal and written communication skills, with the ability to document and present technical information to both technical and non-technical audiences. Perform and report on penetration testing of systems, including cloud, NIST 800-53 CA-8 security control and using methodologies that may include, NIST SP 800-115, IEC 62243, PTES, and Information Systems Security Assessment Framework (ISSAF). Develop and maintain up-to-date knowledge of security testing tools and techniques. Contribute to the development and maintenance of security testing methodologies and procedures. Team Collaboration and Training Collaborate with other members of the security team to develop and maintain security policies, procedures, and standards

As a Senior Consultant in the Cyber Security department located in Gurugram, you will be responsible for various tasks and possess a range of skills and experiences. Your role will involve working on programming languages used for storing and processing raw data, having knowledge of operating systems such as Windows, macOS, Linux, UNIX, and other OSs, conducting penetration testing, understanding ethical hacking and coding practices, mastering advanced persistent threat management, ensuring firewall safety and management, utilizing encryption techniques and capabilities, conducting compliance assessments, and working with frameworks like COBIT and ITIL. You should have at least 5 years of relevant experience in cybersecurity, IT systems operation, and IT solutions development and maintenance. You must be well-versed in configuring and troubleshooting vulnerability management platforms like Tenable or Qualys, as well as patch management control platforms such as Microsoft MECM/SCCM. Experience in supporting patch management, vulnerability management, or configuration management programs is crucial, along with troubleshooting patch deployment and installation through log analysis and investigation. Your expertise should include knowledge of OWASP top 10 and other network security frameworks, hands-on experience in VAPT for application and network security, skills in configuration review, policy review, hardening of systems and networks, endpoint review, application code review, and testing tools. You should possess excellent communication and analytical skills to interact with clients directly, experience in Mobile AppSEC for Android and iOS, API testing, willingness to travel, good presentation and report-making skills, research knowledge in cyber security for consulting and customizing services, and hands-on working knowledge of tools like Burp, Nessus, Nmap, Qualys, Acunetix, Metasploit, and other relevant tools. Additionally, you should have knowledge of SIEM/SOAR, DLP, EDR/EPP, Firewall/IPS, Web Servers, and basic scripting knowledge in any language would be advantageous. Your role will also involve being willing to travel and actively participating in pre-sales activities, ensuring the highest level of security for clients and their systems.,

You will be joining BMC, where trust is not just a word but a way of life. As an award-winning, equal opportunity, and culturally diverse organization, we are dedicated to making a positive impact on the community every day. At BMC, we prioritize work-life balance, allowing you to excel in your role while maintaining your personal priorities. Your achievements will be celebrated, and you will be supported by a team that inspires, motivates, and uplifts you. The IZOT product line at BMC focuses on Intelligent Z Optimization & Transformation products, assisting major companies in monitoring and managing their mainframe systems. We are committed to modernizing mainframe systems by enhancing developer experience, mainframe integration, application development speed, code quality, and application security. Through continuous innovation and growth, we strive to provide cutting-edge solutions to our clients. We are currently seeking a skilled Manager - Product Security to lead a team of penetration testers supporting BMC's IZOT product line. In this role, you will oversee offensive security assessments for mainframe-based solutions and modern application ecosystems. Your responsibilities will include managing security testing, red teaming, vulnerability analysis, and secure architecture reviews. You will play a crucial role in setting strategic goals, driving security initiatives, and promoting secure-by-design practices throughout product development. To excel in this position, you should possess the following qualifications and experience: - Bachelor's or master's degree in computer science, Information Security, or a related field. - 8+ years of experience in cybersecurity roles, with at least 3 years in a technical leadership or management capacity. - Proven track record in leading or conducting penetration testing on mainframe and modern platforms. - Hands-on experience in performing red team-style assessments or advanced threat emulation on mainframe and modern systems. - Proficiency in tools such as REXX, ISPF, JCL, Nmap, Burp Suite, Wireshark, and scripting languages like Python, REXX, Bash. - Ability to deliver technical and executive-level security reports and communicate effectively with cross-functional teams. - Familiarity with hybrid environments, modern enterprise integration methods, and board-level reporting. At BMC, we value our employees and foster a culture where each individual is recognized for their unique contributions. If you are passionate about joining our team and feel aligned with our values, we encourage you to apply, even if you have taken a career break. We believe in diversity and inclusion, and we welcome talented individuals from all backgrounds. Please note that the salary provided is just one aspect of BMC's comprehensive compensation package, which may include additional benefits based on your location and performance. We are committed to fair and transparent compensation practices to ensure our employees are valued and rewarded appropriately.,

As an IT Security Senior Analyst, you will be responsible for performing penetration testing (PT), SAST, and articulating findings in an easily comprehensible manner to asset owners. Collaborative skills are essential for this role. Your key responsibilities will include building a Secure Development Lifecycle (SDLC) by embedding SAST, SCA, DAST, and penetration testing into the development pipeline. You will conduct penetration testing of various component types such as web applications, APIs, mobile applications (iOS + Android), and infrastructure (server + network). Additionally, you will run SAST & DAST scans, analyze tool results, provide remediation support, and review open-source components. It will be your responsibility to assess, report, and close identified vulnerabilities and validate issues as part of the responsible disclosure program. You will be required to provide status reports to the PT Service owner and other stakeholders related to key metrics, risk indicators, trending, and compliance. Furthermore, you will analyze security assessment results and threat feeds to appropriately react to security weaknesses or vulnerabilities. Supporting the Automation of Vulnerability Management program to achieve efficiency and effectiveness, as well as configuring and maintaining regular and ad-hoc vulnerability scans using SAST & DAST tools against internal and external applications are also part of your role. To be successful in this position, you should have a minimum of 1.5 years of experience in performing penetration testing of web applications, APIs, mobile applications (iOS + Android), and infrastructure (server + network). Experience working with SAST & DAST programs, developing and communicating SDLC processes, and performing manual source code reviews is required. Proficiency in using tools like Burp Suite and exposure to platforms such as Veracode, Acunetix, Kali Linux, and Android Studio (AVD) are preferred. A good understanding of Windows, Linux, Active Directory, and networking protocols is also necessary.,

As a Junior IT Security Engineer at Staff4Me, you will have the opportunity to contribute to the company's information security efforts while working under the guidance of senior team members. Your responsibilities will include assisting in the implementation of security controls, monitoring systems for potential threats, and participating in incident response efforts. You will also collaborate with cross-functional teams to address security risks and stay updated on emerging threats and trends in information security. Your key responsibilities will include: - Assisting in implementing and maintaining security controls to protect information systems and data. - Monitoring security systems and tools for potential threats and vulnerabilities. - Participating in vulnerability assessments and penetration testing activities. - Contributing to incident response efforts, including investigation and containment of security incidents. - Collaborating with cross-functional teams to address identified security risks. - Staying up-to-date with emerging threats and trends in information security. - Supporting security awareness initiatives and providing guidance to employees on security best practices. - Assisting in maintaining documentation of security systems, processes, and procedures. To be successful in this role, you should have: - A Bachelor's degree in Computer Science, Information Technology, or a related field. - 1+ years of experience in IT security or a related field. - Knowledge of information security principles and best practices. - Familiarity with security technologies, such as firewalls, antivirus, and intrusion detection systems. - Basic understanding of network protocols, operating systems, and cloud platforms. - Strong analytical and problem-solving skills. - Excellent attention to detail and ability to follow procedures. - Good communication and interpersonal skills. - Security certifications such as Security+, CEH, or equivalent are a plus.,

As an Automotive Cybersecurity Engineer, your primary responsibility will be to assess and enhance the security of connected vehicles. This involves conducting advanced penetration testing, wireless and hardware exploitation, and embedded system analysis. By evaluating vehicle communication systems, infotainment platforms, and remote entry mechanisms, you will identify vulnerabilities that could potentially compromise vehicle safety, privacy, and overall functionality. This role is ideal for cybersecurity professionals who are passionate about automotive technologies, embedded interfaces, and threat simulation. You will be tasked with various responsibilities including: - Performing Security Testing of In-Vehicle Systems by assessing vehicle internal networks, analyzing infotainment systems for privacy concerns, and simulating remote and physical attack vectors. - Evaluating Embedded & Wireless Communication Interfaces, such as Bluetooth, Wi-Fi, and RF-based protocols, and testing for privilege escalation and data interception. - Reverse Engineering Vehicle Architectures by understanding circuit-level data flows, analyzing firmware and physical ports, and utilizing diagnostic tools for testing. - Identifying Vulnerabilities and Recommending Mitigation strategies by documenting test findings, working with internal teams and OEMs, and contributing to testing methodologies improvement. - Staying Aligned with Industry Standards by ensuring compliance with national and international automotive cybersecurity standards and staying updated on emerging vehicle technologies and cyber threat landscapes. To be eligible for this role, you should have a Bachelor's degree in electrical/electronics, computer science, cybersecurity, or a related discipline. Additionally, you should possess technical skills including knowledge of vehicle networking protocols, experience with CAN analysis tools, familiarity with Android-based systems, wireless exploitation, and circuit and system-level debugging. A minimum of 4 years of experience in penetration testing, embedded security, or automotive security assessment is required. Desired eligibility criteria include exposure to AIS 189 or ISO/SAE 21434 frameworks, participation in hardware-based CTFs or red teaming, familiarity with relevant tools and certifications, and the ability to work in lab environments and travel for on-site testing engagements. Travel may be required across the country for project execution, monitoring, and coordination with geographically distributed teams. Communication skills are essential, and applicants are expected to submit a cover letter summarizing their experience along with a resume and the latest passport-size photograph.,

As a Platform and Network Security Expert at ANDREW in Bangalore, Karnataka, you will play a crucial role in enhancing security measures for DAS and RAN products. Your responsibilities will include designing and defining security policies, architecting secure environments, and ensuring compliance with telecom security standards and customer requirements. You will collaborate with internal and external stakeholders, engage in security testing, and develop tools to automate security monitoring and vulnerability management. To be successful in this role, you should have a Bachelor's or Master's degree in Telecommunications, Computer Science, Cybersecurity/Information security, along with 10+ years of experience in the Telecommunications and Cellular industry. Expertise in mobile network security principles, knowledge of O-RAN architecture, cloud security, and security frameworks is essential. Proficiency in security testing tools, Linux security, and scripting is also required. Strong communication and collaboration skills are key for interfacing with centralized security teams and development stakeholders. Certifications such as CISSP, CEH, GICSP, or vendor-specific security certifications are a plus. Experience with AI/ML-based threat detection, 3GPP standards, and telco cloud environments will excite us. Join ANDREW, part of the Amphenol family, and be a part of our legacy of over 85 years in wireless innovation. We offer exciting career opportunities, a supportive work environment, and the chance to make a positive impact within a global organization. Visit our website at https://www.andrew.com to learn more about us.,

Roles and Responsibilities can take corporate and classroom regular training batches of students and professionals Desired Candidate Profile CEHv12, NPT, WAPT, Linux, Cyber Security, Ethical Hacking Perks and Benefits 2 Lac to 6 Lacs

Be a part of our success story. Launch offers talented and motivated people the opportunity to do the best work of their lives in a dynamic and growing company. Through competitive salaries, outstanding benefits, internal advancement opportunities, and recognized community involvement, you will have the chance to create a career you can be proud of. Your new trajectory starts here at Launch. Job Summary: We are seeking a Security Analyst for one of our internal projects. Role: Security Analyst Location: Hyderabad Shift timings: Overlapping US hours (6AM EST to 3:00 PM EST) Years of experience: 4+ Years of experience Job Responsibilities: Analyze vulnerability reporting, pen testing results and security related issues Document remediation tasks and requirements for devOps, developers, and security engineers to remediate Mandatory Skills: 4+ years of Security Analyst Experience Microsoft Azure Pen-testing result interpretation Translating security reports and vulnerabilities into documented requirements for remediation Strong Documentation skills We are Navigators in the Age of Transformation: We use sophisticated technology to transform clients into the digital age, but our top priority is our positive impact on human experience. We ease anxiety and fear around digital transformation and replace it with opportunity. Launch IT is an equal opportunity employer and considers applicants for all positions without regard to race, color, religion or belief, sex, age, national origin, citizenship status, marital status, military/veteran status, genetic information, sexual orientation, gender identity, physical or mental disability or any other characteristic protected by applicable laws. Launch IT is committed to creating a dynamic work environment that values diversity and inclusion, respect and integrity, customer focus, and innovation.

You lead the way with the right backing from Team Amex. Join a global and diverse community with an unwavering commitment to back customers, communities, and colleagues. At American Express, you will grow personally and professionally with unique career journeys supported by benefits and programs. As part of Team Amex, you will be recognized for your contributions, leadership, and impact, contributing to the company's success while upholding company values. Together, we strive to provide the world's best customer experience with integrity, inclusivity, and a sense of belonging. In this role, you will be responsible for contacting clients with overdue accounts to secure settlements and prevent future overdues. Key responsibilities include ensuring PCI DSS compliance, conducting vulnerability assessments and penetration testing, reporting findings and recommendations, collaborating for compliance and security, and staying updated on the latest security threats. Specific tasks include network scanning, application testing, and detailed reporting for stakeholders. Skills and qualifications required include a Bachelor's Degree in Computer Science or related field, 10+ years of experience in cybersecurity penetration testing, understanding of PCI DSS requirements, proficiency in network protocols and web application technologies, knowledge of security vulnerabilities, and clear communication of technical findings. Certifications such as CEH or OSCP are beneficial. American Express offers competitive salaries, bonus incentives, support for financial well-being, comprehensive benefits, flexible working models, paid parental leave, access to wellness centers, counseling support, and career development opportunities. Employment is subject to background verification. Join Team Amex and let's lead the way together.,

As a Security Testing professional, you will be responsible for conducting application security assessments with 3-6 years of experience. This includes tasks such as Architecture and Design review, Code Review utilizing tools like CheckMarx, Penetration testing (Ethical Hacking), and Vendor Risk Assessment. You must possess a strong working knowledge of key security technologies such as Static Application Security Testing (SAST) and Dynamic Application Security Testing (DAST). Your role will involve running and analyzing security Penetration testing to identify security vulnerabilities and recommend appropriate countermeasures for security enhancements. It is essential to have a solid understanding of protocols like HTTP, HTTPS, SSL, TLS, and SFTP to effectively carry out your responsibilities. If you have the requisite experience and skills in security testing, this opportunity in Gurgaon awaits your application. Join a dynamic team where your expertise will be valued, and your contributions will play a vital role in ensuring the security integrity of the applications under assessment.,

Join our diverse team as we embark on our roadmap to strengthen Macquarie's security posture. You will collaborate with a team of security professionals to deliver complex offensive security engagements and contribute to Macquarie's security practices at both tactical and strategic levels. At Macquarie, our advantage is bringing together diverse people and empowering them to shape all kinds of possibilities. We are a global financial services group operating in 31 markets and with 56 years of unbroken profitability. You'll be part of a friendly and supportive team where everyone - no matter what role - contributes ideas and drives outcomes. You will be responsible for executing penetration tests, evaluating findings, reporting results, providing remediation advice, and improving security testing processes. Additionally, you will contribute to Macquarie's security practices at both tactical and strategic levels. What You Offer: - Strong hands-on experience of 9 to 13 years in either security testing or software development. - A solid theoretical background in offensive security subjects, such as web application security, mobile security, and infrastructure security (including cloud and containers) and thick client application. - A willingness to learn, discover, and apply the latest offensive security tactics, techniques, and procedures. - The ability to perform thorough analyses and strive to identify the root causes behind vulnerabilities. - The ability to effectively convey technical insights to both technical and non-technical audiences, including C-level executives, through written and verbal communication. - Practical certifications such as BSCP, CBBH, CPTS, OSCP, or OSWE are considered an advantage. We love hearing from anyone inspired to build a better future with us, if you're excited about the role or working at Macquarie we encourage you to apply. Macquarie employees can access a wide range of benefits which, depending on eligibility criteria, include: - Hybrid and flexible working arrangements - One wellbeing leave day per year - Up to 20 weeks paid parental leave as well as benefits to support you as you transition to life as a working parent - Paid volunteer leave and donation matching - Other benefits to support your physical, mental and financial wellbeing - Access a wide range of learning and development opportunities Technology enables every aspect of Macquarie, for our people, our customers, and our communities. We're a global team that is passionate about accelerating the digital enterprise, connecting people and data, building platforms and applications, and designing tomorrow's technology solutions.,

Acceldata is revolutionizing the way companies observe their data by offering comprehensive insights into various key aspects of data, data pipelines, and data infrastructure. Our platform empowers data teams to effectively manage products by ensuring data quality, preventing failures, and controlling costs. We are currently seeking a highly skilled and motivated Security Engineer to join our Infra and Security team. In this role, you will be responsible for vulnerability management across our SaaS and on-premise product stacks, driving both remediation and validation efforts. Your key responsibilities will include identifying, prioritizing, and managing security vulnerabilities, collaborating with product and engineering teams for timely remediation, conducting penetration testing, and integrating security tools for SAST and DAST to proactively secure our applications and infrastructure. The ideal candidate will have proven experience in vulnerability management in both SaaS and on-prem environments, hands-on experience with security testing tools like OWASP ZAP and Burp Suite, familiarity with common vulnerability scanning tools and techniques, a strong understanding of SAST and DAST concepts, tools, and workflows, knowledge of common security standards and frameworks, and the ability to read, understand, and remediate application code or configurations. Excellent problem-solving and communication skills are also essential for this role. At Acceldata, we value mentorship, growth, and provide benefits such as ESOPs, medical and life insurance, paid maternity and parental leave, corporate Uber program, and learning and development support. We are a fast-growing company driven by strong work ethics, high standards of excellence, and a spirit of collaboration. Our goal is to create a healthy work environment that fosters teamwork, innovation, commitment, and accountability. If you are looking to be part of a dynamic team that is redefining data observability for enterprise data systems, then Acceldata is the place for you. Join us in solving complex data problems at scale and be part of a company that values innovation, teamwork, and individual excellence. With a SaaS product embraced by global customers, Acceldata offers a unique opportunity to work on cutting-edge solutions that address challenges such as scaling, performance issues, cost overruns, and data quality problems.,

The Product Security Architect role entails providing application and system-level security expertise and guidance to IA products as a part of the global product security community. This position involves supporting product security activities aligned with the Secure Development Lifecycle process across Aero products. Your responsibilities will include leading efforts with development teams to manage product risk and implement suitable security controls, integrating top-notch security requirements into product and service offerings, offering architecture and best practices guidance for building secure Honeywell products, and supporting various product security process activities such as threat modeling, security requirements, security reviews, vulnerability assessments, and risk management for IA applications. It is crucial to possess a background in product architecture and development along with experience in the Secure software development lifecycle. Additionally, you should have an understanding of security by design principles, architecture-level security concepts, and a current knowledge of security threats and techniques for exploiting vulnerabilities. You will play a pivotal role in mentoring and training the engineering development community, promoting the adoption of the shift-security-to-left practice, and leading new initiatives that enhance SDL processes and procedures. Qualifications: - Bachelors degree or equivalent work experience in Cyber Security or Information Technology - 6+ years of experience in Cyber Security - Strong interpersonal skills for facilitating diverse groups, negotiating priorities, and resolving conflicts - Knowledge of secure software development lifecycle - Basic Applied Cryptography knowledge including encryption algorithms, Public Key Infrastructure (PKI), Secure boot, and Open-source risk management - Proficiency in Microsoft threat modeling tool and reviewing vulnerability assessments - Background in product architecture and development - Software engineering or development experience - Knowledge of penetration testing - Familiarity with security regulations and standards - Understanding of Agile software development practices Preferred Qualifications: - Understanding DevsecOps and familiarity with CI/CD pipelines and security tooling - Information Security accreditation (CISSP/CSSLP or similar certifications) - Experience with security tools like SD Elements, BlackDuck Hub, Microsoft Threat modeling tool, SAST (Coverity, SonarQube), DAST (Burp, ZAP, AppSpider), Fuzzing, and continuous monitoring tools About Us: Honeywell assists organizations in addressing complex challenges in automation, aviation, and energy transition. As a trusted partner, we deliver actionable solutions and innovations through our Aerospace Technologies, Building Automation, Energy and Sustainability Solutions, and Industrial Automation business segments, empowered by our Honeywell Forge software, to create a smarter, safer, and more sustainable world.,

At EY, you will have the opportunity to shape your future with confidence by joining a globally connected powerhouse of diverse teams. As part of our highly successful Cyber Security team, we are currently seeking Security Architects with varying levels of experience. Whether you are considering a career change now or in the future, we invite you to connect with us and explore this exciting opportunity to contribute to building a better working world. As a Security Architect at EY, you will play a crucial role in leading the implementation of security solutions for our clients. You will work alongside an international team of specialists to address complex information security needs and enhance our clients" business resilience. Your responsibilities will include designing security solutions, developing security policies and guidelines, evaluating existing security controls, and collaborating with stakeholders to ensure effective security measures are in place. To excel in this role, you must possess expert-level knowledge in technical IT security domains such as infrastructure, networks, databases, security monitoring, and cloud security. Additionally, you should have experience in assessing solution architectures for security issues, managing multiple stakeholders, and implementing security vulnerability remediation strategies. Industry certifications such as CISSP, CISA, CISM, and experience in areas like Cyber Threat Management, Identity & Access Management, and Data Protection will be advantageous. To qualify for this role, you should have 8-10 years of professional experience in cyber security consulting, strong project management skills, and advanced communication abilities. While technical skills are essential, we value candidates who demonstrate strong interpersonal skills, relationship-building capabilities, and a commitment to delivering excellence in client service. Joining EY offers you the opportunity to work on inspiring projects, receive support and coaching from engaging colleagues, and develop new skills to progress your career. You will be part of a diverse and interdisciplinary environment that promotes knowledge exchange and emphasizes high quality in all endeavors. At EY, you will have the freedom and flexibility to shape your role in a way that suits you best, supported by a culture that values individual growth and personal development. If you are looking to be part of a market-leading team of professionals, collaborate with leading businesses globally, and contribute to building a better working world, we invite you to explore the exciting opportunities available at EY.,