703 Phishing Jobs - Page 22

Company Profile: Lennox (NYSE: LII) Driven by 130 years of legacy, HVAC and refrigeration success, Lennox provides our residential and commercial customers with industry-leading climate-control solutions. At Lennox, we win as a team, aiming for excellence and delivering innovative, sustainable products and services. Our culture guides us and creates a workplace where all employees feel heard and welcomed. Lennox is a global community that values each team member’s contributions and offers a supportive environment for career development. Come, stay, and grow with us. Job Description: Monitor all the endpoint , Network , Cloud and application security incidents. As SOC team member , perform the basic investigation and all the security incidents and document the evidence. Performing Security controls health & Compliance check. Adhere to shift timings and provide uninterrupted 24/7 monitoring. Properly share shift handovers, updating the next shift on ongoing incidents and activities. Respond to all security incidents within a SLA period Resolve incidents assigned to the shift promptly and escalate to the Senior team when necessary. Work across all categories of incidents without limiting to specific types. Follow the incident handling as per the documented SOP. Complete and close all assigned task requests within SLA timelines. Attend weekly and monthly team meetings as mandatory. Qualifications: OSINT : knowledge about open-source platforms for analyzing URL, IP Addresses , suspicious files. Email Analysis : Operating Systems: Basics of Linux and Windows, kernel concepts, and system differences. Networking: OSI model, TCP/IP, firewalls, VPNs, proxies, IP addressing, and subnetting. SIEM Tools: Basics of SIEM operations, alerts, and dashboards (e.g., Splunk). Authentication & Access Control: MFA, SSO, and password management best practices. Malware Protection: Antivirus strategies, malware analysis, phishing email analysis, and IOC gathering. Trending Cyber Attacks : update knowledge about the trending cyber-attacks & its attack patterns .

Location : Remote/Hybrid – India Experience : 2+ years About the Role : We are looking for a sharp and hands-on Machine Learning Engineer to own the design, training, and optimization of our phishing and malware detection models. Your work will directly impact the core detection capabilities of the platform. Key Responsibilities : Build and fine-tune models for detecting phishing, impersonation, and malware Implement Deep Neural Networks (DNN) , XGBoost , and transformer-based models (BERT) Extract email metadata and textual features for supervised learning Maintain scalable model inference pipelines compatible with real-time systems Continuously improve model accuracy through feedback loops and sample injection Required Skillset : Proficient in Python for ML (Pandas, NumPy, scikit-learn, PyTorch or TensorFlow) Experience with DNN , BERT , and XGBoost model training and optimization Familiarity with NLP preprocessing and feature engineering techniques Experience with deploying models into production environments Comfort with Git and collaborative engineering workflows Qualities We Value : Analytical and detail-oriented problem solver Proactive learner with a passion for security or NLP Smart, self-driven, and ready to own key components independently Show more Show less

Job Description As a Cybersecurity Engineer, you will be responsible for designing, implementing, and maintaining security measures to protect the organization's computer systems, networks, and data from cyber threats. This role will involve a combination of technologies, processes, and practices designed to safeguard data, applications, and networks from threats like malware, phishing, and data breaches. Current Employees apply HERE Current Contingent Workers apply HERE Secondary Language(s) Job Description Senior Manager, Cybersecurity Engineering Cloud and App Security The Opportunity Based in Hyderabad, join a global healthcare biopharma company and be part of a 130- year legacy of success backed by ethical integrity, forward momentum, and an inspiring mission to achieve new milestones in global healthcare. Be part of an organisation driven by digital technology and data-backed approaches that support a diversified portfolio of prescription medicines, vaccines, and animal health products. Drive innovation and execution excellence. Be a part of a team with passion for using data, analytics, and insights to drive decision-making, and which creates custom software, allowing us to tackle some of the world's greatest health threats. Our Technology Centers focus on creating a space where teams can come together to deliver business solutions that save and improve lives. An integral part of our company’s IT operating model, Tech Centers are globally distributed locations where each IT division has employees to enable our digital transformation journey and drive business outcomes. These locations, in addition to the other sites, are essential to supporting our business and strategy. A focused group of leaders in each Tech Center helps to ensure we can manage and improve each location, from investing in growth, success, and well-being of our people, to making sure colleagues from each IT division feel a sense of belonging to managing critical emergencies. And together, we must leverage the strength of our team to collaborate globally to optimize connections and share best practices across the Tech Centers. Role Overview As a Cybersecurity Engineer, you will be responsible for designing, implementing, and maintaining security measures to protect the organization's computer systems, networks, and data from cyber threats. This role will involve a combination of technologies, processes, and practices designed to safeguard data, applications, and networks from threats like malware, phishing, and data breaches. You will be tasked with identifying vulnerabilities, supporting the response to incidents, and ensuring that security protocols and controls are adhered to. Your role is vital in safeguarding critical assets and ensuring compliance with legal and regulatory standards. What Will You Do In This Role Lead the development of enhanced cloud and application security control integrations and architectural best practices. Lead the development and implementation of product security policies and standards to ensure that application, cloud services and infrastructure meet organizational security requirements. Lead the maintenance and monitoring security tools and dashboards, ensuring that applications deployed in our environments adhere to organizational security standards and compliance requirements. Lead adoption of our security tools within other teams ensuring the inputs and outputs are fully integrated enabling a complete security function. Design, implement, test, document, and support integration of security tools and technologies in pipelines, Also, assist the product teams in related activities. Work closely with cross-functional Infrastructure teams on Automation and Orchestration. Create and document detailed designs for simple software applications or components. Apply agreed modelling techniques, standards, patterns, and tools. Work within a matrix organizational structure, reporting to both the functional manager and the project manager. What Should You Have Bachelors’ degree in Information Technology, Computer Science or any Technology stream. Working experience in cloud environments AWS must have and good to have Azure, or GCP. Understanding of OWASP Top 10 security risks and mitigation strategies, relevant NIST standards, and Zero Trust principles. Familiarity with programming/scripting languages like Python, Bash, Terraform, Ansible, JSON, PowerShell, or JavaScript for automating tasks. Familiarity with software development/delivery lifecycle and related technologies 7+ years of hands-on experience working with network protocols, firewalls, intrusion detection systems, encryption technologies, and endpoint security solutions. Proficiency in security tools in the areas of cloud, application, endpoint, network or identity, vulnerability scanners, and malware analysis platforms. Knowledge of authentication methods, identity management, and security access protocols (e.g., SSO, MFA, LDAP). Ideally AWS certified. Good interpersonal and communication skills (verbal and written). Relevant certifications (e.g., CISSP, CISM, CEH, CompTIA Security+) are often required or highly desirable. Proven record of delivering high-quality results. Product and customer-centric approach. Innovative thinking, experimental mindset. Our technology teams operate as business partners, proposing ideas and innovative solutions that enable new organizational capabilities. We collaborate internationally to deliver services and solutions that help everyone be more productive and enable innovation. Who We Are We are known as Merck & Co., Inc., Rahway, New Jersey, USA in the United States and Canada and MSD everywhere else. For more than a century, we have been inventing for life, bringing forward medicines and vaccines for many of the world's most challenging diseases. Today, our company continues to be at the forefront of research to deliver innovative health solutions and advance the prevention and treatment of diseases that threaten people and animals around the world. What We Look For Imagine getting up in the morning for a job as important as helping to save and improve lives around the world. Here, you have that opportunity. You can put your empathy, creativity, digital mastery, or scientific genius to work in collaboration with a diverse group of colleagues who pursue and bring hope to countless people who are battling some of the most challenging diseases of our time. Our team is constantly evolving, so if you are among the intellectually curious, join us—and start making your impact today. #HYDIT2025 Search Firm Representatives Please Read Carefully Merck & Co., Inc., Rahway, NJ, USA, also known as Merck Sharp & Dohme LLC, Rahway, NJ, USA, does not accept unsolicited assistance from search firms for employment opportunities. All CVs / resumes submitted by search firms to any employee at our company without a valid written search agreement in place for this position will be deemed the sole property of our company. No fee will be paid in the event a candidate is hired by our company as a result of an agency referral where no pre-existing agreement is in place. Where agency agreements are in place, introductions are position specific. Please, no phone calls or emails. Employee Status Regular Relocation VISA Sponsorship Travel Requirements Flexible Work Arrangements Hybrid Shift Valid Driving License Hazardous Material(s) Required Skills Design Applications, Information Security, Security Operations, SLA Management, Software Development, Software Development Life Cycle (SDLC), System Designs, Technical Advice, Vulnerability Scanning Preferred Skills Job Posting End Date 07/2/2025 A job posting is effective until 11 59 59PM on the day BEFORE the listed job posting end date. Please ensure you apply to a job posting no later than the day BEFORE the job posting end date. Requisition ID R335954 Show more Show less

Job Description Current Employees apply HERE Current Contingent Workers apply HERE Secondary Language(s) Job Description Manager, Cybersecurity Engineering Cloud and App Security The Opportunity Based in Hyderabad, join a global healthcare biopharma company and be part of a 130- year legacy of success backed by ethical integrity, forward momentum, and an inspiring mission to achieve new milestones in global healthcare. Be part of an organisation driven by digital technology and data-backed approaches that support a diversified portfolio of prescription medicines, vaccines, and animal health products. Drive innovation and execution excellence. Be a part of a team with passion for using data, analytics, and insights to drive decision-making, and which creates custom software, allowing us to tackle some of the world's greatest health threats. Our Technology Centers focus on creating a space where teams can come together to deliver business solutions that save and improve lives. An integral part of our company’s IT operating model, Tech Centers are globally distributed locations where each IT division has employees to enable our digital transformation journey and drive business outcomes. These locations, in addition to the other sites, are essential to supporting our business and strategy. A focused group of leaders in each Tech Center helps to ensure we can manage and improve each location, from investing in growth, success, and well-being of our people, to making sure colleagues from each IT division feel a sense of belonging to managing critical emergencies. And together, we must leverage the strength of our team to collaborate globally to optimize connections and share best practices across the Tech Centers. Role Overview As a Cybersecurity Engineer, you will be responsible for designing, implementing, and maintaining security measures to protect the organization's computer systems, networks, and data from cyber threats. This role will involve a combination of technologies, processes, and practices designed to safeguard data, applications, and networks from threats like malware, phishing, and data breaches. You will be tasked with identifying vulnerabilities, supporting the response to incidents, and ensuring that security protocols and controls are adhered to. Your role is vital in safeguarding critical assets and ensuring compliance with legal and regulatory standards. What Will You Do In This Role Contribute to the development of enhanced cloud and application security control integrations and architectural best practices. Contribute to the development and implementation of product security policies and standards to ensure that application, cloud services and infrastructure meet organizational security requirements. Help maintain and monitor security tools and dashboards, ensuring that applications deployed in our environments adhere to organizational security standards and compliance requirements. Identify and prioritize adoption of our security tools within other teams ensuring the inputs and outputs are fully integrated enabling a complete security function. Follow standard approaches and established design patterns to create new designs for systems or system components. Identify and resolve minor design issues. Assist in implementing and maintaining specific security controls as required by organisational policy and local risk assessments and contribute to identifying risks that arise from potential technical solution architectures. Monitor and log the actual service provided, compared to that required by service level agreements. Undertake low-complexity routine vulnerability assessments using automated and semi-automated tools and contribute to evaluating and documenting the scope of results. Design, implement, test, document, and support integration of security tools and technologies in pipelines, Also, assist the product teams in related activities. Assist in maintaining security infrastructure and performing system updates. Investigate minor security breaches in accordance with established procedures. Assist users in defining their access rights and privileges and perform non-standard operational security tasks. Resolve security events and operational security issues. Work closely with cross-functional Infrastructure teams on Automation and Orchestration. Create and document detailed designs for simple software applications or components. Apply agreed modelling techniques, standards, patterns, and tools. Work within a matrix organizational structure, reporting to both the functional manager and the project manager. What Should You Have Bachelors’ degree in Information Technology, Computer Science or any Technology stream. Working experience in cloud environments AWS must have and good to have Azure, or GCP. Understanding of OWASP Top 10 security risks and mitigation strategies, relevant NIST standards, and Zero Trust principles. Familiarity with programming/scripting languages like Python, Bash, Terraform, Ansible, JSON, PowerShell, or JavaScript for automating tasks. Familiarity with software development/delivery lifecycle and related technologies 3+ years of hands-on experience working with network protocols, firewalls, intrusion detection systems, encryption technologies, and endpoint security solutions. Proficiency in security tools in the areas of cloud, application, endpoint, network or identity, vulnerability scanners, and malware analysis platforms.. Knowledge of authentication methods, identity management, and security access protocols (e.g., SSO, MFA, LDAP). Ideally AWS certified. Good interpersonal and communication skills (verbal and written). Relevant certifications (e.g., CISSP, CISM, CEH, CompTIA Security+) are often required or highly desirable. Proven record of delivering high-quality results. Product and customer-centric approach. Innovative thinking, experimental mindset. Our technology teams operate as business partners, proposing ideas and innovative solutions that enable new organizational capabilities. We collaborate internationally to deliver services and solutions that help everyone be more productive and enable innovation. Who We Are We are known as Merck & Co., Inc., Rahway, New Jersey, USA in the United States and Canada and MSD everywhere else. For more than a century, we have been inventing for life, bringing forward medicines and vaccines for many of the world's most challenging diseases. Today, our company continues to be at the forefront of research to deliver innovative health solutions and advance the prevention and treatment of diseases that threaten people and animals around the world. What We Look For Imagine getting up in the morning for a job as important as helping to save and improve lives around the world. Here, you have that opportunity. You can put your empathy, creativity, digital mastery, or scientific genius to work in collaboration with a diverse group of colleagues who pursue and bring hope to countless people who are battling some of the most challenging diseases of our time. Our team is constantly evolving, so if you are among the intellectually curious, join us—and start making your impact today. #HYDIT2025 Search Firm Representatives Please Read Carefully Merck & Co., Inc., Rahway, NJ, USA, also known as Merck Sharp & Dohme LLC, Rahway, NJ, USA, does not accept unsolicited assistance from search firms for employment opportunities. All CVs / resumes submitted by search firms to any employee at our company without a valid written search agreement in place for this position will be deemed the sole property of our company. No fee will be paid in the event a candidate is hired by our company as a result of an agency referral where no pre-existing agreement is in place. Where agency agreements are in place, introductions are position specific. Please, no phone calls or emails. Employee Status Regular Relocation VISA Sponsorship Travel Requirements Flexible Work Arrangements Not Applicable Shift Valid Driving License Hazardous Material(s) Required Skills Design Applications, Information Security, Security Operations, SLA Management, Software Development, Software Development Life Cycle (SDLC), System Designs, Technical Advice, Vulnerability Scanning Preferred Skills Job Posting End Date 06/23/2025 A job posting is effective until 11 59 59PM on the day BEFORE the listed job posting end date. Please ensure you apply to a job posting no later than the day BEFORE the job posting end date. Requisition ID R335941 Show more Show less

Job Description Manager, Cybersecurity Engineering Cloud and App Security The Opportunity Based in Hyderabad, join a global healthcare biopharma company and be part of a 130- year legacy of success backed by ethical integrity, forward momentum, and an inspiring mission to achieve new milestones in global healthcare. Be part of an organisation driven by digital technology and data-backed approaches that support a diversified portfolio of prescription medicines, vaccines, and animal health products. Drive innovation and execution excellence. Be a part of a team with passion for using data, analytics, and insights to drive decision-making, and which creates custom software, allowing us to tackle some of the world's greatest health threats. Our Technology Centers focus on creating a space where teams can come together to deliver business solutions that save and improve lives. An integral part of our company’s IT operating model, Tech Centers are globally distributed locations where each IT division has employees to enable our digital transformation journey and drive business outcomes. These locations, in addition to the other sites, are essential to supporting our business and strategy. A focused group of leaders in each Tech Center helps to ensure we can manage and improve each location, from investing in growth, success, and well-being of our people, to making sure colleagues from each IT division feel a sense of belonging to managing critical emergencies. And together, we must leverage the strength of our team to collaborate globally to optimize connections and share best practices across the Tech Centers. Role Overview As a Cybersecurity Engineer, you will be responsible for designing, implementing, and maintaining security measures to protect the organization's computer systems, networks, and data from cyber threats. This role will involve a combination of technologies, processes, and practices designed to safeguard data, applications, and networks from threats like malware, phishing, and data breaches. You will be tasked with identifying vulnerabilities, supporting the response to incidents, and ensuring that security protocols and controls are adhered to. Your role is vital in safeguarding critical assets and ensuring compliance with legal and regulatory standards. What Will You Do In This Role Contribute to the development of enhanced cloud and application security control integrations and architectural best practices. Contribute to the development and implementation of product security policies and standards to ensure that application, cloud services and infrastructure meet organizational security requirements. Help maintain and monitor security tools and dashboards, ensuring that applications deployed in our environments adhere to organizational security standards and compliance requirements. Identify and prioritize adoption of our security tools within other teams ensuring the inputs and outputs are fully integrated enabling a complete security function. Follow standard approaches and established design patterns to create new designs for systems or system components. Identify and resolve minor design issues. Assist in implementing and maintaining specific security controls as required by organisational policy and local risk assessments and contribute to identifying risks that arise from potential technical solution architectures. Monitor and log the actual service provided, compared to that required by service level agreements. Undertake low-complexity routine vulnerability assessments using automated and semi-automated tools and contribute to evaluating and documenting the scope of results. Design, implement, test, document, and support integration of security tools and technologies in pipelines, Also, assist the product teams in related activities. Assist in maintaining security infrastructure and performing system updates. Investigate minor security breaches in accordance with established procedures. Assist users in defining their access rights and privileges and perform non-standard operational security tasks. Resolve security events and operational security issues. Work closely with cross-functional Infrastructure teams on Automation and Orchestration. Create and document detailed designs for simple software applications or components. Apply agreed modelling techniques, standards, patterns, and tools. Work within a matrix organizational structure, reporting to both the functional manager and the project manager. What Should You Have Bachelors’ degree in Information Technology, Computer Science or any Technology stream. Working experience in cloud environments AWS must have and good to have Azure, or GCP. Understanding of OWASP security risks and mitigation strategies, relevant NIST standards, and Zero Trust principles. Familiarity with programming/scripting languages like Python, Bash, Terraform, Ansible, JSON, PowerShell, or JavaScript for automating tasks. Familiarity with software development/delivery lifecycle and related technologies 3+ years of hands-on experience working with network protocols, firewalls, intrusion detection systems, encryption technologies, and endpoint security solutions. Proficiency in security tools in the areas of cloud, application, endpoint, network or identity, vulnerability scanners, and malware analysis platforms.. Knowledge of authentication methods, identity management, and security access protocols (e.g., SSO, MFA, LDAP). Ideally AWS certified. Good interpersonal and communication skills (verbal and written). Relevant certifications (e.g., CISSP, CISM, CEH, CompTIA Security+) are often required or highly desirable. Proven record of delivering high-quality results. Product and customer-centric approach. Innovative thinking, experimental mindset. Our technology teams operate as business partners, proposing ideas and innovative solutions that enable new organizational capabilities. We collaborate internationally to deliver services and solutions that help everyone be more productive and enable innovation. Who We Are We are known as Merck & Co., Inc., Rahway, New Jersey, USA in the United States and Canada and MSD everywhere else. For more than a century, we have been inventing for life, bringing forward medicines and vaccines for many of the world's most challenging diseases. Today, our company continues to be at the forefront of research to deliver innovative health solutions and advance the prevention and treatment of diseases that threaten people and animals around the world. What We Look For Imagine getting up in the morning for a job as important as helping to save and improve lives around the world. Here, you have that opportunity. You can put your empathy, creativity, digital mastery, or scientific genius to work in collaboration with a diverse group of colleagues who pursue and bring hope to countless people who are battling some of the most challenging diseases of our time. Our team is constantly evolving, so if you are among the intellectually curious, join us—and start making your impact today. #HYDIT2025 Current Employees apply HERE Current Contingent Workers apply HERE Search Firm Representatives Please Read Carefully Merck & Co., Inc., Rahway, NJ, USA, also known as Merck Sharp & Dohme LLC, Rahway, NJ, USA, does not accept unsolicited assistance from search firms for employment opportunities. All CVs / resumes submitted by search firms to any employee at our company without a valid written search agreement in place for this position will be deemed the sole property of our company. No fee will be paid in the event a candidate is hired by our company as a result of an agency referral where no pre-existing agreement is in place. Where agency agreements are in place, introductions are position specific. Please, no phone calls or emails. Employee Status Regular Relocation VISA Sponsorship Travel Requirements Flexible Work Arrangements Hybrid Shift Valid Driving License Hazardous Material(s) Required Skills Design Applications, Information Security, Security Operations, SLA Management, Software Development, Software Development Life Cycle (SDLC), System Designs, Technical Advice, Vulnerability Scanning Preferred Skills Job Posting End Date 06/23/2025 A job posting is effective until 11 59 59PM on the day BEFORE the listed job posting end date. Please ensure you apply to a job posting no later than the day BEFORE the job posting end date. Requisition ID R342299 Show more Show less

Job Description Associate Specialist, Cybersecurity Operations The Opportunity Based in Hyderabad, join a global healthcare biopharma company and be part of a 130- year legacy of success backed by ethical integrity, forward momentum, and an inspiring mission to achieve new milestones in global healthcare. Be part of an organisation driven by digital technology and data-backed approaches that support a diversified portfolio of prescription medicines, vaccines, and animal health products. Drive innovation and execution excellence. Be a part of a team with passion for using data, analytics, and insights to drive decision-making, and which creates custom software, allowing us to tackle some of the world's greatest health threats. Our Technology Centers focus on creating a space where teams can come together to deliver business solutions that save and improve lives. An integral part of our company’s IT operating model, Tech Centers are globally distributed locations where each IT division has employees to enable our digital transformation journey and drive business outcomes. These locations, in addition to the other sites, are essential to supporting our business and strategy. A focused group of leaders in each Tech Center helps to ensure we can manage and improve each location, from investing in growth, success, and well-being of our people, to making sure colleagues from each IT division feel a sense of belonging to managing critical emergencies. And together, we must leverage the strength of our team to collaborate globally to optimize connections and share best practices across the Tech Centers. Role Overview As a Cybersecurity Engineer, you will be responsible for designing, implementing, and maintaining security measures to protect the organization's computer systems, networks, and data from cyber threats. This role will involve a combination of technologies, processes, and practices designed to safeguard data, applications, and networks from threats like malware, phishing, and data breaches. You will be tasked with identifying vulnerabilities, supporting the response to incidents, and ensuring that security protocols and controls are adhered to. Your role is vital in safeguarding critical assets and ensuring compliance with legal and regulatory standards. What Will You Do In This Role Collaborate with product teams to enforce application security best practices, conduct reviews, perform scans and assist in threat modeling to identify and mitigate security risks throughout the development lifecycle. Contribute with penetration testing efforts to evaluate the security posture of applications and containers, providing detailed reports on findings and working with development teams to remediate identified issues. Collaborate to the oversight of security-related bugs and vulnerabilities using tracking systems. Help prioritize security issues based on risk and impact and ensuring that reported issues are triaged and addressed in a timely manner. Contribute to the creation and delivery of training materials for the workforce to raise awareness and increase adoption of application security best practices, cloud security best practices, including secure usage of cloud applications and availability of compensating controls. Help maintain and monitor security tools and dashboards, ensuring that applications deployed in our environments adhere to organizational security standards and compliance requirements. Follow standard approaches and established design patterns to create new designs for systems or system components. Identify and resolve minor design issues. Monitor and log the actual service provided, compared to that required by service level agreements. Assist in maintaining security infrastructure and performing system updates. Investigate minor security breaches in accordance with established procedures. Assist users in defining their access rights and privileges and perform non-standard operational security tasks. Resolve security events and operational security issues. Work closely with cross-functional Infrastructure teams on Automation and Orchestration. Create and document detailed designs for simple software applications or components. Apply agreed modelling techniques, standards, patterns, and tools. Work within a matrix organizational structure, reporting to both the functional manager and the project manager. What Should You Have Bachelors’ degree in Information Technology, Computer Science or any Technology stream. 3-4 years of hands-on experience in security tools in the areas of cloud, application, endpoint, network or identity, vulnerability scanners, and malware analysis platforms. Understanding of OWASP Top 10 security risks and mitigation strategies, relevant NIST standards, and Zero Trust principles. Preferred working in any cloud environments AWS, Azure, or GCP. Familiarity with software development/delivery lifecycle and related technologies Familiarity with programming/scripting languages like Python, Bash, Terraform, Ansible, JSON, PowerShell, or JavaScript for automating tasks. Knowledge of authentication methods, identity management, and security access protocols (e.g., SSO, MFA, LDAP). Ideally AWS certified. Good interpersonal and communication skills (verbal and written). Relevant certifications (e.g., CISSP, CISM, CEH, CompTIA Security+) are often required or highly desirable. Proven record of delivering high-quality results. Product and customer-centric approach. Innovative thinking, experimental mindset. Our technology teams operate as business partners, proposing ideas and innovative solutions that enable new organizational capabilities. We collaborate internationally to deliver services and solutions that help everyone be more productive and enable innovation. Who We Are We are known as Merck & Co., Inc., Rahway, New Jersey, USA in the United States and Canada and MSD everywhere else. For more than a century, we have been inventing for life, bringing forward medicines and vaccines for many of the world's most challenging diseases. Today, our company continues to be at the forefront of research to deliver innovative health solutions and advance the prevention and treatment of diseases that threaten people and animals around the world. What We Look For Imagine getting up in the morning for a job as important as helping to save and improve lives around the world. Here, you have that opportunity. You can put your empathy, creativity, digital mastery, or scientific genius to work in collaboration with a diverse group of colleagues who pursue and bring hope to countless people who are battling some of the most challenging diseases of our time. Our team is constantly evolving, so if you are among the intellectually curious, join us—and start making your impact today. #HYDIT2025 Current Employees apply HERE Current Contingent Workers apply HERE Search Firm Representatives Please Read Carefully Merck & Co., Inc., Rahway, NJ, USA, also known as Merck Sharp & Dohme LLC, Rahway, NJ, USA, does not accept unsolicited assistance from search firms for employment opportunities. All CVs / resumes submitted by search firms to any employee at our company without a valid written search agreement in place for this position will be deemed the sole property of our company. No fee will be paid in the event a candidate is hired by our company as a result of an agency referral where no pre-existing agreement is in place. Where agency agreements are in place, introductions are position specific. Please, no phone calls or emails. Employee Status Regular Relocation VISA Sponsorship Travel Requirements Flexible Work Arrangements Hybrid Shift Valid Driving License Hazardous Material(s) Job Posting End Date 04/28/2025 A job posting is effective until 11 59 59PM on the day BEFORE the listed job posting end date. Please ensure you apply to a job posting no later than the day BEFORE the job posting end date. Requisition ID R341157 Show more Show less

Aurex Inc, is looking for a GRC consultant role. As an integral member of the GRC Implementation team, the responsibility of the GRC Consultant is to carry out the implementation of GRC system for our customers related to policy compliance, security requirements governance, as well as risk management. The ideal candidate will have knowledge of risk management, security and privacy practices and be an effective communicator, both written and verbal. Responsibilities Develop and participate in the implementation of client initiatives focused on the reduction of technology risk, governance, and compliance to policies and external regulatory compliance. Evaluating business and IT risks Developing IT security standards, procedures, and controls to manage risks. Improve client security positioning through process improvement, policy, automation, and the continuous evolution of capabilities. Evaluation of information security threats and their impact on clients' IT environment Supporting the Senior team members, assisting with the analysis of requirements and design of clients’ information security posture, as well as Legal, Regulatory, and Scheme security requirements. Supporting the senior team members in the delivery of work streams for clients in compliance standards such as PCI DSS, ISO27001, EU GDPR, and Bahrain PDPL and incident management disciplines. Performing and investigating internal and external information security risk and exception assessments. Assessing incidents, vulnerability management, scans, patching status, secure baselines, penetration test results, phishing, and social engineering tests and attacks. Documenting and reporting control failures and gaps to stakeholders. Provides remediation guidance and prepares management reports to track remediation activities. Staying current on best practices and technological advancements and acting as a technical resource for security assessment and regulatory compliance. Performing other related duties as assigned from time to time-based on the business requirements. Qualification 3- 5 years experience in IT Governance, Risk & Compliance Understanding of ISO 27001, PCI DSS, ITIL, ITSM, and COBIT standards preferred Experience with risk management principles and associated methodologies Ideally will have a CEH, CISSP, CISA, or CISM qualification. Proven ability to make sound pragmatic decisions and judgments under tight timelines. Strong interpersonal and influencing skills with the ability to influence and drive change in a collaborative way both internally and externally. Show more Show less

Title: Information Security Officer (for GRC and Awareness) Location: Mumbai/Pune Key Responsibilities Ensure effective implementation and continuous implementation of policies and procedures. Maintain and improve Governance, Risk, and Compliance (GRC) programs to stay aligned with legal, regulatory and contractual requirements. Regularly evaluate and enhance information security controls to address evolving business and threat landscapes. Lead ongoing information security training and awareness programs to strengthen organizational security culture. Facilitate collaboration with IT and other departments to integrate security measures into all business processes. Coordinate asset management, Business Impact Assessments and risk assessments to identify vulnerabilities and update mitigation strategies as necessary. Provide up-to-date security reports to the CISO and other stakeholders. Conduct third party risk assessments. Key tasks Review and update security policies and procedures to ensure they remain correct and easy to follow. Focus on refining the GRC framework for operational efficiency and compliance with current standards. Plan, coordinate and follow-up on risk activities and refine plans and strategies to mitigate identified risks efficiently. Develop and deliver engaging security training sessions and phishing simulations tailored to current security challenges. Conduct third party security review on suppliers. Work as a liaison for integrating security practices across departmental operations. Compile and communicate security performance, status reports and updates effectively to all relevant stakeholders. Plan, coordinate and follow-up on the management and implementation of security projects, ensuring alignment with organizational security goals. Required education, experience and job-related skills: Bachelor’s degree or higher in Information Security, Computer Science, or a related field. 5 years of experience in information security management or Cyber risk governance. Relevant security certifications (CISSP, CRISC, etc.) is an advantage. Project leadership and strong communication skills. Strong proficiency in English, both written and verbal. Experience working with various security frameworks and standards like CIS18, ISO27001 Experience in developing and conducting security training and awareness programs is an advantage. We Offer A forefront role in cybersecurity within the chemical industry. A dynamic and inclusive work environment emphasizing work-life balance. Opportunities for professional growth in a supportive and collaborative team setting. Join Us If you are passionate about security and eager to contribute to a high-performing team, apply now with your CV and cover letter in English. We encourage applicants from all backgrounds to join our diverse team. Sounds like a match? Welcome to apply! Click the ‘Apply for position’ button in the top-right corner and submit your application letter with a CV in English via our recruitment system. More About Hempel At Hempel, you'll join a team of passionate and motivated individuals and become part of a global family with over almost 7,000 colleagues around the world. We know that diversity brings strength to the workplace, and we're dedicated to making sure everyone feels valued and supported which shows in our collaborative work environment. With offices and production sites in 80+ countries, you'll get plenty of chances for international exposure and career advancement. Whether you're just starting out or ready to take your career to the next level, Hempel has something to offer. Get ready to be inspired by a company that truly cares about its employees and their professional growth. Come be a part of Hempel's mission to shape a brighter future with sustainable coating solutions and unleash your full potential! At Hempel, we are working together to shape a brighter future with sustainable coating solutions. We believe this is only possible with dedicated employees with diverse perspectives and backgrounds. Hempel is committed to creating an inclusive work environment and culture that embraces the diversity of our employees and the customers we serve, providing equal opportunity for all. Application due 2025-06-14 Seniority Level Mid-Senior level Job Functions Information Technology Industry Chemicals At Hempel, you’re welcomed to a global community of +7000 colleagues around the world. A workplace built on shared trust, mutual respect and support for each other. We’re on a mission to double our impact. To succeed, we need bright minds and team players. Which is why, from day one, your input, ideas and initiative are not only welcomed, but expected. In return, you will enjoy great opportunities for development in a growing global company – and be part of the solution by contributing to our global impact. At Hempel, we are committed to everyone feeling safe, valued and treated equally, in an environment where each employee can bring their authentic selves to work. We believe that inclusion is key to innovation and by bringing together the most diverse perspectives and talents, we can achieve great things, together. Show more Show less

Title: Information Security Officer (for GRC and Awareness) Location: Mumbai/Pune Key Responsibilities Ensure effective implementation and continuous implementation of policies and procedures. Maintain and improve Governance, Risk, and Compliance (GRC) programs to stay aligned with legal, regulatory and contractual requirements. Regularly evaluate and enhance information security controls to address evolving business and threat landscapes. Lead ongoing information security training and awareness programs to strengthen organizational security culture. Facilitate collaboration with IT and other departments to integrate security measures into all business processes. Coordinate asset management, Business Impact Assessments and risk assessments to identify vulnerabilities and update mitigation strategies as necessary. Provide up-to-date security reports to the CISO and other stakeholders. Conduct third party risk assessments. Key tasks Review and update security policies and procedures to ensure they remain correct and easy to follow. Focus on refining the GRC framework for operational efficiency and compliance with current standards. Plan, coordinate and follow-up on risk activities and refine plans and strategies to mitigate identified risks efficiently. Develop and deliver engaging security training sessions and phishing simulations tailored to current security challenges. Conduct third party security review on suppliers. Work as a liaison for integrating security practices across departmental operations. Compile and communicate security performance, status reports and updates effectively to all relevant stakeholders. Plan, coordinate and follow-up on the management and implementation of security projects, ensuring alignment with organizational security goals. Required education, experience and job-related skills: Bachelor’s degree or higher in Information Security, Computer Science, or a related field. 5 years of experience in information security management or Cyber risk governance. Relevant security certifications (CISSP, CRISC, etc.) is an advantage. Project leadership and strong communication skills. Strong proficiency in English, both written and verbal. Experience working with various security frameworks and standards like CIS18, ISO27001 Experience in developing and conducting security training and awareness programs is an advantage. We Offer A forefront role in cybersecurity within the chemical industry. A dynamic and inclusive work environment emphasizing work-life balance. Opportunities for professional growth in a supportive and collaborative team setting. Join Us If you are passionate about security and eager to contribute to a high-performing team, apply now with your CV and cover letter in English. We encourage applicants from all backgrounds to join our diverse team. Sounds like a match? Welcome to apply! Click the ‘Apply for position’ button in the top-right corner and submit your application letter with a CV in English via our recruitment system. More About Hempel At Hempel, you'll join a team of passionate and motivated individuals and become part of a global family with over almost 7,000 colleagues around the world. We know that diversity brings strength to the workplace, and we're dedicated to making sure everyone feels valued and supported which shows in our collaborative work environment. With offices and production sites in 80+ countries, you'll get plenty of chances for international exposure and career advancement. Whether you're just starting out or ready to take your career to the next level, Hempel has something to offer. Get ready to be inspired by a company that truly cares about its employees and their professional growth. Come be a part of Hempel's mission to shape a brighter future with sustainable coating solutions and unleash your full potential! At Hempel, we are working together to shape a brighter future with sustainable coating solutions. We believe this is only possible with dedicated employees with diverse perspectives and backgrounds. Hempel is committed to creating an inclusive work environment and culture that embraces the diversity of our employees and the customers we serve, providing equal opportunity for all. Application due 2025-06-14 Seniority Level Mid-Senior level Job Functions Information Technology Industry Chemicals At Hempel, you’re welcomed to a global community of +7000 colleagues around the world. A workplace built on shared trust, mutual respect and support for each other. We’re on a mission to double our impact. To succeed, we need bright minds and team players. Which is why, from day one, your input, ideas and initiative are not only welcomed, but expected. In return, you will enjoy great opportunities for development in a growing global company – and be part of the solution by contributing to our global impact. At Hempel, we are committed to everyone feeling safe, valued and treated equally, in an environment where each employee can bring their authentic selves to work. We believe that inclusion is key to innovation and by bringing together the most diverse perspectives and talents, we can achieve great things, together. Show more Show less

LivePerson (NASDAQ: LPSN) is the global leader in enterprise conversations. Hundreds of the world’s leading brands — including HSBC, Chipotle, and Virgin Media — use our award-winning Conversational Cloud platform to connect with millions of consumers. We power nearly a billion conversational interactions every month, providing a uniquely rich data set and safety tools to unlock the power of Conversational AI for better customer experiences. At LivePerson, we foster an inclusive workplace culture that encourages meaningful connection, collaboration, and innovation. Everyone is invited to ask questions, actively seek new ways to achieve success, and reach their full potential. We are continually looking for ways to improve our products and make things better. This means spotting opportunities, solving ambiguities, and seeking effective solutions to the problems our customers care about. Overview We are seeking a highly motivated and experienced Senior Collections Analyst to oversee a global portfolio of accounts and drive best-in-class collections and credit practices. The ideal candidate will have a strong background in collections, credit review and approvals, customer portals (Coupa, Ariba), and ERP systems such as Zuora, Salesforce, and NetSuite. This role requires a proactive, analytical professional with excellent communication skills, global client experience, and the ability to collaborate effectively across departments. In This Role You Will Need To Efficiently Interact with Global clients to collect balances on invoices. In depth knowledge of customer account aging analysis, credit and debit clearance, adherence to collection protocols needed. Maintain the account status as “standard” and resolve all disputes. Timely collect cash of customer accounts, assess credit worthiness, minimize bad debts and ensure contract compliance and/or recommend legal action. Manage the entire portfolio of accounts including delinquency, write-offs, credit memos, and additional interest. Conducts pre-sale credit risk evaluation, prepares recommendations, and makes credit approval recommendations on new accounts. Have good Understanding of Order documents/Purchase Order/ Quote and credit hold policy. Work with cross functions – Sales, Sales ops, tax, cash apps, legal, billing, OM. Identify the right Point of Contact to secure payments. Knowledge of escalation methodology, maintaining healthy business relationships with customers. Prepare reports and perform due diligence before performing any collection actions Team player who is dedicated to quality with continuous improvement target driven objectives. Knowledge of dunning procedures and collection tools and techniques. To be a competent and successful forerunner in this competitive environment - achieved through involvement, perseverance and commitment. Knowledge of SOX audits, collections reports, participation in projects and process improvements. Key Responsibilities Manage a global portfolio of customer accounts, ensuring timely collection of outstanding receivables. Adhere to and enforce established collections processes and procedures while proactively improving strategies and outcomes. Conduct credit reviews. Utilize and maintain data in systems including Zuora, Salesforce, and NetSuite for collections tracking, reporting, and analysis. Navigate and resolve collection issues through customer portals such as Coupa, Ariba, SAP, and Taulia. Have experience of uploading invoices into customer portals. Maintain accurate and up-to-date records of collection efforts, account statuses, and customer communications. Collaborate cross-functionally with Sales, Customer Success, Finance, and external points of contact to resolve disputes, billing issues, and promote timely payments. Provide detailed portfolio reporting and insights using Google Workspace, Microsoft Office, and internal databases. Act as a team player, supporting colleagues and contributing to a positive, collaborative work environment. Proactively identify risks and implement solutions to reduce DSO and bad debt exposure. Maintain a strong customer-focused approach while driving results and meeting collection KPIs. Your Qualifications Are Commerce / Management graduate or equivalent with 6 plus years of experience in same role or in Accounting/Finance Excellent verbal and written communication skills, with a professional and diplomatic approach to client interactions. (written and oral) Knowledge of billing procedures and collection techniques Strong analytical, organizational, and problem-solving skills; ability to work independently and make data-driven decisions Team-oriented, proactive, and able to take initiative to drive continuous process improvements Proficiency in Google Workspace (Sheets, Docs, Gmail) and Microsoft Office Suite (Excel, Word, Outlook). Experience in global account management and navigating international invoice and payment requirements SAP Knowledge. Systems – Zuora, SFDC, CRM, NetSuite Strong working knowledge of customer portals – Coupa, Ariba Preferred Qualifications Experience with SaaS billing models or subscription-based revenue environments. Background working in high-growth, fast-paced organizations with a global footprint Knowledge of cash application, billing, or order-to-cash processes is a plus. Benefits Health: Medical, Dental and Vision Time away: vacation and holidays Development: Generous tuition reimbursement and access to internal professional development resources. Equal opportunity employer Why You’ll Love Working Here As leaders in enterprise customer conversations, we celebrate diversity, empowering our team to forge impactful conversations globally. LivePerson is a place where uniqueness is embraced, growth is constant, and everyone is empowered to create their own success. And, we're very proud to have earned recognition from Fast Company, Newsweek, and BuiltIn for being a top innovative, beloved, and remote-friendly workplace. Belonging At LivePerson We are proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable laws, regulations and ordinances. We also consider qualified applicants with criminal histories, consistent with applicable federal, state, and local law. We are committed to the accessibility needs of applicants and employees. We provide reasonable accommodations to job applicants with physical or mental disabilities. Applicants with a disability who require reasonable accommodation for any part of the application or hiring process should inform their recruiting contact upon initial connection. The talent acquisition team at LivePerson has recently been notified of a phishing scam targeting candidates applying for our open roles. Scammers have been posing as hiring managers and recruiters in an effort to access candidates' personal and financial information. This phishing scam is not isolated to only LivePerson and has been documented in news articles and media outlets. Please note that any communication from our hiring teams at LivePerson regarding a job opportunity will only be made by a LivePerson employee with an @ liveperson.com email address. LivePerson does not ask for personal or financial information as part of our interview process, including but not limited to your social security number, online account passwords, credit card numbers, passport information and other related banking information. If you have any questions and or concerns, please feel free to contact recruiting-lp@liveperson.com Show more Show less

Responsibilities: Monitor systems, respond to incidents. Collaborate with teams on threat management strategies. Manage access control & encryption. Maintain compliance standards. Conduct regular security assessments. Office cab/shuttle Food allowance Health insurance Provident fund

Understanding of network defence principles, common attack vectors, and attacker techniques. Technical baseline skills and the ability to acquire in-depth knowledge of network and host security technologies Basic Linux/Windows OS knowledge, firewall rules and policy fundamentals. Excellent analytical and problem-solving skills. Strong work ethic and commitment to accomplish assigned tasks with a sense of urgency. Windows, Linux, Network Security, Phishing, Splunk, Malware

Company Profile Lennox (NYSE: LII) Driven by 130 years of legacy, HVAC and refrigeration success, Lennox provides our residential and commercial customers with industry-leading climate-control solutions. At Lennox, we win as a team, aiming for excellence and delivering innovative, sustainable products and services. Our culture guides us and creates a workplace where all employees feel heard and welcomed. Lennox is a global community that values each team member’s contributions and offers a supportive environment for career development. Come, stay, and grow with us. Job Description Monitor all the endpoint , Network , Cloud and application security incidents. As SOC team member , perform the basic investigation and all the security incidents and document the evidence. Performing Security controls health & Compliance check. Adhere to shift timings and provide uninterrupted 24/7 monitoring . Properly share shift handovers, updating the next shift on ongoing incidents and activities. Respond to all security incidents within a SLA period Resolve incidents assigned to the shift promptly and escalate to the Senior team when necessary. Work across all categories of incidents without limiting to specific types. Follow the incident handling as per the docum ented SOP . Complete and close all assigned task requests within SLA timelines. Attend weekly and monthly team meetings as mandatory. Qualifications OSINT : knowledge about open-source platforms for analyzing URL, IP Addresses , suspicious files. Email Analysis : Operating Systems: Basics of Linux and Windows, kernel concepts, and system differences. Networking: OSI model, TCP/IP, firewalls, VPNs, proxies, IP addressing, and subnetting. SIEM Tools: Basics of SIEM operations, alerts, and dashboards (e.g., Splunk). Authentication & Access Control: MFA, SSO, and password management best practices. Malware Protection: Antivirus strategies, malware analysis, phishing email analysis, and IOC gathering. Trending Cyber Attacks : update knowledge about the trending cyber-attacks & its attack patterns . Show more Show less

ABOUT TIDE At Tide, we are building a business management platform designed to save small businesses time and money. We provide our members with business accounts and related banking services, but also a comprehensive set of connected administrative solutions from invoicing to accounting. Launched in 2017, Tide is now used by over 1 million small businesses across the world and is available to UK, Indian and German SMEs. Headquartered in central London, with offices in Sofia, Hyderabad, Delhi, Berlin and Belgrade, Tide employs over 2,000 employees. Tide is rapidly growing, expanding into new products and markets and always looking for passionate and driven people. Join us in our mission to empower small businesses and help them save time and money. ABOUT THE TEAM: The Threat Detection & Response team in Tide focuses on protecting the company by building a robust detection and automation platform. We're proactive in our defense, constantly hacking ourselves to improve our security posture and staying ahead of emerging threats. Our goal is to make Tide resilient against the ever-evolving threat landscape. ABOUT THE ROLE: As a Threat Detection Engineer, you'll be: Implementing the strategic vision for threat detection, taking ownership of the detection and response life cycle. Hands-on with the SIEM; from creating log parsers for in-house web apps to visualizing data Looker dashboards. Creating security automations and playbooks to automate mundane tasks; from data enrichment to automatically removing phishing emails from employee mailboxes. We want you to run with the "anything is possible" mantra. Continuously hunting for sophisticated threats across our infrastructure, leveraging threat intelligence and innovative detection techniques to stay ahead of attackers. You'll monitor and respond to threats across AWS, GCP, internal applications, and employee endpoints (Windows, macOS). Responsible for ensuring good quality detections which align with our standards and best practices . Identifying opportunities to build or enhance internal tools that streamline threat detection processes, improve data visibility, and increase response efficiency. WHAT WE ARE LOOKING FOR: Strong knowledge with one of the following: Splunk, Chronicle, Panther. Strong understanding of modern attack and defense techniques which apply to Cloud (AWS, GCP), SaaS (such as Google Workspace and Okta) and desktop (Windows and macOS) environments. Passion for passing on knowledge to fellow colleagues. Hands-on attitude and the ability to drive solutions to completion. Strong experience in security automation, from writing scripts to creating end-to-end automated workflows. Familiarity with SOAR platforms and automating threat detection and response tasks. Excellent spoken and written communication skills. Experience with writing automation and scripts; bonus points if you have a repository to show-case your work. WHAT YOU'LL GET IN RETURN: Competitive salary Self & Family Health Insurance Term & Life Insurance OPD Benefits Mental wellbeing through Plumm Learning & Development Budget WFH Setup allowance 15 days of Privilege leaves 12 days of Casual leaves 12 days of Sick leaves 3 paid days off for volunteering or L&D activities Stock Options TIDEAN WAYS OF WORKING: At Tide, we champion a flexible workplace model that supports both in-person and remote work to cater to the specific needs of our different teams. While remote work is supported, we believe in the power of face-to-face interactions to foster team spirit and collaboration. Our offices are designed as hubs for innovation and team-building, where we encourage regular in-person gatherings to foster a strong sense of community. #LI-NN1 TIDE IS A PLACE FOR EVERYONE At Tide, we believe that we can only succeed if we let our differences enrich our culture. Our Tideans come from a variety of backgrounds and experience levels. We consider everyone irrespective of their ethnicity, religion, sexual orientation, gender identity, family or parental status, national origin, veteran, neurodiversity or differently-abled status. We celebrate diversity in our workforce as a cornerstone of our success. Our commitment to a broad spectrum of ideas and backgrounds is what enables us to build products that resonate with our members' diverse needs and lives. We are One Team and foster a transparent and inclusive environment, where everyone's voice is heard. At Tide, we thrive on diversity, embracing various backgrounds and experiences. We welcome all individuals regardless of ethnicity, religion, sexual orientation, gender identity, or disability. Our inclusive culture is key to our success, helping us build products that meet our members' diverse needs. We are One Team, committed to transparency and ensuring everyone's voice is heard. You personal data will be processed by Tide for recruitment purposes and in accordance with Tide's Recruitment Privacy Notice .

Phishing Email Analysis (SOC) Overview We are seeking a highly skilled Security Analyst with extensive experience in phishing email analysis to join our cybersecurity team. The ideal candidate will have a keen eye for detail, a strong understanding of email security protocols, and the ability to identify and mitigate phishing threats. This role is critical in ensuring the safety and security of our organization's digital communications. Responsibilities Analyze and investigate phishing emails to identify and assess potential threats. Develop and implement strategies to detect and prevent phishing attacks. Collaborate with IT and cybersecurity teams to enhance email security measures. Recommend training sessions for employees on phishing awareness and prevention. Monitor and report on phishing trends and provide actionable insights to improve security posture. Create and maintain documentation related to phishing incidents and response protocols. Stay up-to-date with the latest phishing techniques and cybersecurity threats. Respond to security incidents involving phishing emails and work to mitigate their impact. Qualifications Bachelor's degree in cybersecurity, computer science, or related field. Proven experience in phishing email analysis and threat mitigation. Familiarity with email security tools and technologies, specifically Microsoft Defender for email. Strong analytical and problem-solving skills. Excellent written and verbal communication skills. Ability to work well in a team environment. "We are an equal opportunity employer committed to fair and ethical hiring practices. We do not charge any fees or accept any form of payment from candidates at any stage of the recruitment process. If anyone claims to offer employment opportunities in our company in exchange for money or any other benefit, please treat it as fraudulent and report it immediately" Show more Show less

Job Description As a Cybersecurity Engineer, you will be responsible for designing, implementing, and maintaining security measures to protect the organization's computer systems, networks, and data from cyber threats. This role will involve a combination of technologies, processes, and practices designed to safeguard data, applications, and networks from threats like malware, phishing, and data breaches. Current Employees apply HERE Current Contingent Workers apply HERE Secondary Language(s) Job Description Senior Manager, Cybersecurity Engineering Cloud and App Security The Opportunity Based in Hyderabad, join a global healthcare biopharma company and be part of a 130- year legacy of success backed by ethical integrity, forward momentum, and an inspiring mission to achieve new milestones in global healthcare. Be part of an organisation driven by digital technology and data-backed approaches that support a diversified portfolio of prescription medicines, vaccines, and animal health products. Drive innovation and execution excellence. Be a part of a team with passion for using data, analytics, and insights to drive decision-making, and which creates custom software, allowing us to tackle some of the world's greatest health threats. Our Technology Centers focus on creating a space where teams can come together to deliver business solutions that save and improve lives. An integral part of our company’s IT operating model, Tech Centers are globally distributed locations where each IT division has employees to enable our digital transformation journey and drive business outcomes. These locations, in addition to the other sites, are essential to supporting our business and strategy. A focused group of leaders in each Tech Center helps to ensure we can manage and improve each location, from investing in growth, success, and well-being of our people, to making sure colleagues from each IT division feel a sense of belonging to managing critical emergencies. And together, we must leverage the strength of our team to collaborate globally to optimize connections and share best practices across the Tech Centers. Role Overview As a Cybersecurity Engineer, you will be responsible for designing, implementing, and maintaining security measures to protect the organization's computer systems, networks, and data from cyber threats. This role will involve a combination of technologies, processes, and practices designed to safeguard data, applications, and networks from threats like malware, phishing, and data breaches. You will be tasked with identifying vulnerabilities, supporting the response to incidents, and ensuring that security protocols and controls are adhered to. Your role is vital in safeguarding critical assets and ensuring compliance with legal and regulatory standards. What Will You Do In This Role Lead the development of enhanced cloud and application security control integrations and architectural best practices. Lead the development and implementation of product security policies and standards to ensure that application, cloud services and infrastructure meet organizational security requirements. Lead the maintenance and monitoring security tools and dashboards, ensuring that applications deployed in our environments adhere to organizational security standards and compliance requirements. Lead adoption of our security tools within other teams ensuring the inputs and outputs are fully integrated enabling a complete security function. Design, implement, test, document, and support integration of security tools and technologies in pipelines, Also, assist the product teams in related activities. Work closely with cross-functional Infrastructure teams on Automation and Orchestration. Create and document detailed designs for simple software applications or components. Apply agreed modelling techniques, standards, patterns, and tools. Work within a matrix organizational structure, reporting to both the functional manager and the project manager. What Should You Have Bachelors’ degree in Information Technology, Computer Science or any Technology stream. Working experience in cloud environments AWS must have and good to have Azure, or GCP. Understanding of OWASP Top 10 security risks and mitigation strategies, relevant NIST standards, and Zero Trust principles. Familiarity with programming/scripting languages like Python, Bash, Terraform, Ansible, JSON, PowerShell, or JavaScript for automating tasks. Familiarity with software development/delivery lifecycle and related technologies 7+ years of hands-on experience working with network protocols, firewalls, intrusion detection systems, encryption technologies, and endpoint security solutions. Proficiency in security tools in the areas of cloud, application, endpoint, network or identity, vulnerability scanners, and malware analysis platforms. Knowledge of authentication methods, identity management, and security access protocols (e.g., SSO, MFA, LDAP). Ideally AWS certified. Good interpersonal and communication skills (verbal and written). Relevant certifications (e.g., CISSP, CISM, CEH, CompTIA Security+) are often required or highly desirable. Proven record of delivering high-quality results. Product and customer-centric approach. Innovative thinking, experimental mindset. Our technology teams operate as business partners, proposing ideas and innovative solutions that enable new organizational capabilities. We collaborate internationally to deliver services and solutions that help everyone be more productive and enable innovation. Who We Are We are known as Merck & Co., Inc., Rahway, New Jersey, USA in the United States and Canada and MSD everywhere else. For more than a century, we have been inventing for life, bringing forward medicines and vaccines for many of the world's most challenging diseases. Today, our company continues to be at the forefront of research to deliver innovative health solutions and advance the prevention and treatment of diseases that threaten people and animals around the world. What We Look For Imagine getting up in the morning for a job as important as helping to save and improve lives around the world. Here, you have that opportunity. You can put your empathy, creativity, digital mastery, or scientific genius to work in collaboration with a diverse group of colleagues who pursue and bring hope to countless people who are battling some of the most challenging diseases of our time. Our team is constantly evolving, so if you are among the intellectually curious, join us—and start making your impact today. #HYDIT2025 Search Firm Representatives Please Read Carefully Merck & Co., Inc., Rahway, NJ, USA, also known as Merck Sharp & Dohme LLC, Rahway, NJ, USA, does not accept unsolicited assistance from search firms for employment opportunities. All CVs / resumes submitted by search firms to any employee at our company without a valid written search agreement in place for this position will be deemed the sole property of our company. No fee will be paid in the event a candidate is hired by our company as a result of an agency referral where no pre-existing agreement is in place. Where agency agreements are in place, introductions are position specific. Please, no phone calls or emails. Employee Status Regular Relocation VISA Sponsorship Travel Requirements Flexible Work Arrangements Hybrid Shift Valid Driving License Hazardous Material(s) Required Skills Design Applications, Information Security, Security Operations, SLA Management, Software Development, Software Development Life Cycle (SDLC), System Designs, Technical Advice, Vulnerability Scanning Preferred Skills Job Posting End Date 07/2/2025 A job posting is effective until 11 59 59PM on the day BEFORE the listed job posting end date. Please ensure you apply to a job posting no later than the day BEFORE the job posting end date. Requisition ID R335950 Show more Show less

Job Description Current Employees apply HERE Current Contingent Workers apply HERE Secondary Language(s) Job Description Manager, Cybersecurity Engineering Cloud and App Security The Opportunity Based in Hyderabad, join a global healthcare biopharma company and be part of a 130- year legacy of success backed by ethical integrity, forward momentum, and an inspiring mission to achieve new milestones in global healthcare. Be part of an organisation driven by digital technology and data-backed approaches that support a diversified portfolio of prescription medicines, vaccines, and animal health products. Drive innovation and execution excellence. Be a part of a team with passion for using data, analytics, and insights to drive decision-making, and which creates custom software, allowing us to tackle some of the world's greatest health threats. Our Technology Centers focus on creating a space where teams can come together to deliver business solutions that save and improve lives. An integral part of our company’s IT operating model, Tech Centers are globally distributed locations where each IT division has employees to enable our digital transformation journey and drive business outcomes. These locations, in addition to the other sites, are essential to supporting our business and strategy. A focused group of leaders in each Tech Center helps to ensure we can manage and improve each location, from investing in growth, success, and well-being of our people, to making sure colleagues from each IT division feel a sense of belonging to managing critical emergencies. And together, we must leverage the strength of our team to collaborate globally to optimize connections and share best practices across the Tech Centers. Role Overview As a Cybersecurity Engineer, you will be responsible for designing, implementing, and maintaining security measures to protect the organization's computer systems, networks, and data from cyber threats. This role will involve a combination of technologies, processes, and practices designed to safeguard data, applications, and networks from threats like malware, phishing, and data breaches. You will be tasked with identifying vulnerabilities, supporting the response to incidents, and ensuring that security protocols and controls are adhered to. Your role is vital in safeguarding critical assets and ensuring compliance with legal and regulatory standards. What Will You Do In This Role Contribute to the development of enhanced cloud and application security control integrations and architectural best practices. Contribute to the development and implementation of product security policies and standards to ensure that application, cloud services and infrastructure meet organizational security requirements. Help maintain and monitor security tools and dashboards, ensuring that applications deployed in our environments adhere to organizational security standards and compliance requirements. Identify and prioritize adoption of our security tools within other teams ensuring the inputs and outputs are fully integrated enabling a complete security function. Follow standard approaches and established design patterns to create new designs for systems or system components. Identify and resolve minor design issues. Assist in implementing and maintaining specific security controls as required by organisational policy and local risk assessments and contribute to identifying risks that arise from potential technical solution architectures. Monitor and log the actual service provided, compared to that required by service level agreements. Undertake low-complexity routine vulnerability assessments using automated and semi-automated tools and contribute to evaluating and documenting the scope of results. Design, implement, test, document, and support integration of security tools and technologies in pipelines, Also, assist the product teams in related activities. Assist in maintaining security infrastructure and performing system updates. Investigate minor security breaches in accordance with established procedures. Assist users in defining their access rights and privileges and perform non-standard operational security tasks. Resolve security events and operational security issues. Work closely with cross-functional Infrastructure teams on Automation and Orchestration. Create and document detailed designs for simple software applications or components. Apply agreed modelling techniques, standards, patterns, and tools. Work within a matrix organizational structure, reporting to both the functional manager and the project manager. What Should You Have Bachelors’ degree in Information Technology, Computer Science or any Technology stream. Working experience in cloud environments AWS must have and good to have Azure, or GCP. Understanding of OWASP Top 10 security risks and mitigation strategies, relevant NIST standards, and Zero Trust principles. Familiarity with programming/scripting languages like Python, Bash, Terraform, Ansible, JSON, PowerShell, or JavaScript for automating tasks. Familiarity with software development/delivery lifecycle and related technologies 3+ years of hands-on experience working with network protocols, firewalls, intrusion detection systems, encryption technologies, and endpoint security solutions. Proficiency in security tools in the areas of cloud, application, endpoint, network or identity, vulnerability scanners, and malware analysis platforms.. Knowledge of authentication methods, identity management, and security access protocols (e.g., SSO, MFA, LDAP). Ideally AWS certified. Good interpersonal and communication skills (verbal and written). Relevant certifications (e.g., CISSP, CISM, CEH, CompTIA Security+) are often required or highly desirable. Proven record of delivering high-quality results. Product and customer-centric approach. Innovative thinking, experimental mindset. Our technology teams operate as business partners, proposing ideas and innovative solutions that enable new organizational capabilities. We collaborate internationally to deliver services and solutions that help everyone be more productive and enable innovation. Who We Are We are known as Merck & Co., Inc., Rahway, New Jersey, USA in the United States and Canada and MSD everywhere else. For more than a century, we have been inventing for life, bringing forward medicines and vaccines for many of the world's most challenging diseases. Today, our company continues to be at the forefront of research to deliver innovative health solutions and advance the prevention and treatment of diseases that threaten people and animals around the world. What We Look For Imagine getting up in the morning for a job as important as helping to save and improve lives around the world. Here, you have that opportunity. You can put your empathy, creativity, digital mastery, or scientific genius to work in collaboration with a diverse group of colleagues who pursue and bring hope to countless people who are battling some of the most challenging diseases of our time. Our team is constantly evolving, so if you are among the intellectually curious, join us—and start making your impact today. #HYDIT2025 Search Firm Representatives Please Read Carefully Merck & Co., Inc., Rahway, NJ, USA, also known as Merck Sharp & Dohme LLC, Rahway, NJ, USA, does not accept unsolicited assistance from search firms for employment opportunities. All CVs / resumes submitted by search firms to any employee at our company without a valid written search agreement in place for this position will be deemed the sole property of our company. No fee will be paid in the event a candidate is hired by our company as a result of an agency referral where no pre-existing agreement is in place. Where agency agreements are in place, introductions are position specific. Please, no phone calls or emails. Employee Status Regular Relocation VISA Sponsorship Travel Requirements Flexible Work Arrangements Hybrid Shift Valid Driving License Hazardous Material(s) Required Skills Design Applications, Information Security, Security Operations, SLA Management, Software Development, Software Development Life Cycle (SDLC), System Designs, Technical Advice, Vulnerability Scanning Preferred Skills Job Posting End Date 07/2/2025 A job posting is effective until 11 59 59PM on the day BEFORE the listed job posting end date. Please ensure you apply to a job posting no later than the day BEFORE the job posting end date. Requisition ID R335935 Show more Show less

Job Description Associate Specialist, Cybersecurity Operations The Opportunity Based in Hyderabad, join a global healthcare biopharma company and be part of a 130- year legacy of success backed by ethical integrity, forward momentum, and an inspiring mission to achieve new milestones in global healthcare. Be part of an organisation driven by digital technology and data-backed approaches that support a diversified portfolio of prescription medicines, vaccines, and animal health products. Drive innovation and execution excellence. Be a part of a team with passion for using data, analytics, and insights to drive decision-making, and which creates custom software, allowing us to tackle some of the world's greatest health threats. Our Technology Centers focus on creating a space where teams can come together to deliver business solutions that save and improve lives. An integral part of our company’s IT operating model, Tech Centers are globally distributed locations where each IT division has employees to enable our digital transformation journey and drive business outcomes. These locations, in addition to the other sites, are essential to supporting our business and strategy. A focused group of leaders in each Tech Center helps to ensure we can manage and improve each location, from investing in growth, success, and well-being of our people, to making sure colleagues from each IT division feel a sense of belonging to managing critical emergencies. And together, we must leverage the strength of our team to collaborate globally to optimize connections and share best practices across the Tech Centers. Role Overview As a Cybersecurity Engineer, you will be responsible for designing, implementing, and maintaining security measures to protect the organization's computer systems, networks, and data from cyber threats. This role will involve a combination of technologies, processes, and practices designed to safeguard data, applications, and networks from threats like malware, phishing, and data breaches. You will be tasked with identifying vulnerabilities, supporting the response to incidents, and ensuring that security protocols and controls are adhered to. Your role is vital in safeguarding critical assets and ensuring compliance with legal and regulatory standards. What Will You Do In This Role Collaborate with product teams to enforce application security best practices, conduct reviews, perform scans and assist in threat modeling to identify and mitigate security risks throughout the development lifecycle. Contribute with penetration testing efforts to evaluate the security posture of applications and containers, providing detailed reports on findings and working with development teams to remediate identified issues. Collaborate to the oversight of security-related bugs and vulnerabilities using tracking systems. Help prioritize security issues based on risk and impact and ensuring that reported issues are triaged and addressed in a timely manner. Contribute to the creation and delivery of training materials for the workforce to raise awareness and increase adoption of application security best practices, cloud security best practices, including secure usage of cloud applications and availability of compensating controls. Help maintain and monitor security tools and dashboards, ensuring that applications deployed in our environments adhere to organizational security standards and compliance requirements. Follow standard approaches and established design patterns to create new designs for systems or system components. Identify and resolve minor design issues. Monitor and log the actual service provided, compared to that required by service level agreements. Assist in maintaining security infrastructure and performing system updates. Investigate minor security breaches in accordance with established procedures. Assist users in defining their access rights and privileges and perform non-standard operational security tasks. Resolve security events and operational security issues. Work closely with cross-functional Infrastructure teams on Automation and Orchestration. Create and document detailed designs for simple software applications or components. Apply agreed modelling techniques, standards, patterns, and tools. Work within a matrix organizational structure, reporting to both the functional manager and the project manager. What Should You Have Bachelors’ degree in Information Technology, Computer Science or any Technology stream. 3+ years of hands-on experience working with proficiency in security tools in the areas of cloud, application, endpoint, network or identity, vulnerability scanners, and malware analysis platforms. Understanding of OWASP Top 10 security risks and mitigation strategies, relevant NIST standards, and Zero Trust principles. Good to have experience in cloud environments AWS, Azure, or GCP. Familiarity with software development/delivery lifecycle and related technologies Familiarity with programming/scripting languages like Python, Bash, Terraform, Ansible, JSON, PowerShell, or JavaScript for automating tasks. Knowledge of authentication methods, identity management, and security access protocols (e.g., SSO, MFA, LDAP). Ideally AWS certified. Good interpersonal and communication skills (verbal and written). Relevant certifications (e.g., CISSP, CISM, CEH, CompTIA Security+) are often required or highly desirable. Proven record of delivering high-quality results. Product and customer-centric approach. Innovative thinking, experimental mindset. Our technology teams operate as business partners, proposing ideas and innovative solutions that enable new organizational capabilities. We collaborate internationally to deliver services and solutions that help everyone be more productive and enable innovation. Who We Are We are known as Merck & Co., Inc., Rahway, New Jersey, USA in the United States and Canada and MSD everywhere else. For more than a century, we have been inventing for life, bringing forward medicines and vaccines for many of the world's most challenging diseases. Today, our company continues to be at the forefront of research to deliver innovative health solutions and advance the prevention and treatment of diseases that threaten people and animals around the world. What We Look For Imagine getting up in the morning for a job as important as helping to save and improve lives around the world. Here, you have that opportunity. You can put your empathy, creativity, digital mastery, or scientific genius to work in collaboration with a diverse group of colleagues who pursue and bring hope to countless people who are battling some of the most challenging diseases of our time. Our team is constantly evolving, so if you are among the intellectually curious, join us—and start making your impact today. #HYDIT2025 Current Employees apply HERE Current Contingent Workers apply HERE Search Firm Representatives Please Read Carefully Merck & Co., Inc., Rahway, NJ, USA, also known as Merck Sharp & Dohme LLC, Rahway, NJ, USA, does not accept unsolicited assistance from search firms for employment opportunities. All CVs / resumes submitted by search firms to any employee at our company without a valid written search agreement in place for this position will be deemed the sole property of our company. No fee will be paid in the event a candidate is hired by our company as a result of an agency referral where no pre-existing agreement is in place. Where agency agreements are in place, introductions are position specific. Please, no phone calls or emails. Employee Status Regular Relocation VISA Sponsorship Travel Requirements Flexible Work Arrangements Hybrid Shift Valid Driving License Hazardous Material(s) Job Posting End Date 04/28/2025 A job posting is effective until 11 59 59PM on the day BEFORE the listed job posting end date. Please ensure you apply to a job posting no later than the day BEFORE the job posting end date. Requisition ID R341160 Show more Show less

Following are the details: ANZEN Technologies Private Limited stands as an unparalleled powerhouse, empowering organizations across industries with our visionary services, cutting-edge solutions, and ground-breaking services in the realm of Cyber Security, IT Governance, Risk Management, and Compliance. As your trusted partner, we offer a comprehensive suite of End-to-End security services and consultancy, tailored to safeguard critical infrastructure installations, elevate the standards of BFSI, eCommerce, IT/ITES, Pharmaceuticals, and an array of other sectors. Job Summary: We are seeking a skilled and passionate Red Team Security Consultant to join our cybersecurity team. The ideal candidate will specialize in simulating adversarial tactics, techniques, and procedures (TTPs) to identify vulnerabilities and improve the organization's security posture. This role involves performing advanced penetration tests, simulating real-world attacks, and working with teams to implement effective remediation strategies. Key Responsibilities: Plan, execute, and document Red Team exercises mimicking advanced threat actors for medium to large enterprises. Conduct network penetration testing (VAPT), system vulnerability assessments, and security configuration reviews. Perform manual security assessments for web applications, APIs, and client-server applications. Simulate sophisticated attack chains including lateral movement, privilege escalation, and data exfiltration. Develop and execute custom attack payloads using tools and scripts. Assess physical security controls and implement social engineering assessments when required. Create and maintain custom tools/scripts in languages like Python, Bash, or PowerShell. Utilize and adapt adversary emulation frameworks such as MITRE ATT&CK, Cobalt Strike, and Metasploit. Collaborate with Blue Teams to improve detection and response mechanisms through Purple Team engagements. Execute full-scope Red Team engagements, including phishing, social engineering, and network penetration. Simulate advanced hacking techniques and replicate adversary tactics to uncover security weaknesses. Develop, extend, or modify exploits, shellcode, or tools to simulate sophisticated attacks. Perform reverse engineering of malware (advantageous but not mandatory). Write clear and actionable reports outlining vulnerabilities, exploitation techniques, and remediation strategies. Stay updated on the latest cyber threats, attack methods, and emerging technologies. Qualification: BE/B. Tech/ MCA/ M. Sc. (IT/Computers) Skills : Excellent communication and collaboration skills. Red Teaming, VAPT, Application Security (Web/Mobile/API), Red Teaming and Application Security domains. Proficient in Application Security concepts, including OWASP Top 10 and OSSTMM. Experience with vulnerability scanning tools such as Burp Suite Pro, Nessus, OWASP ZAP, Kali Linux, Cobalt Strike, Caldera etc. Basic ability to write automation scripts (Bash or Python). Understanding of threat modelling and secure coding practices. Strong understanding of TTPs, threat modelling, and secure coding practices. Hands-on experience in Active Directory exploitation, phishing campaigns, and endpoint bypass techniques. Preferred Certificates : OSCP, CRTP, eWPTX, Security+, CREST, CRTO Job Location : Mumbai/Navi Mumbai Job Mode : Work from Office Need an immediate Joiner who may join by 15th June, 2025

Role: Cyber Awareness Specialist Location: PAN India (Remote) Duration: Contract Job Purpose: The Cyber Security Awareness Specialist plays a critical role in maturing client’s cyber security awareness program. The specialist is responsible for fostering a culture where Cybersecurity is embedded in their roles in protecting the client assets and information and integrating cybersecurity awareness into the client’s broader security strategy, ensuring a proactive and informed workforce that upholds the client’d commitment to data protection and risk management. Key Responsibilities include: Develop and deliver a Cybersecurity Training program. Plan and execute Cybersecurity Awareness Campaigns to promote cybersecurity. Advocate for cybersecurity policies and best practices. Monitor training effectiveness and report on progress Collaborate with stakeholders to foster a cybersecurity-conscious culture. Knowledge, Skills, and Experience: Essential knowledge: Have a minimum of 10 years of experience in cybersecurity awareness, training, or related roles preferably within the banking or financial services industry. Strong knowledge of cybersecurity principles, threats, and best practices. Excellent communication, presentation, and interpersonal skills. Proficiency in using tools for creating digital training materials (e.g., e-learning platforms, video editing software). Familiarity with phishing simulation tools, wargaming tools (e.g., Defender, Conductrr etc.) and methodologies. Experience managing relationships with senior and executives. Familiarity with information security technologies, risk, threat and vulnerability assessments, and security measures. Knowledge of information security regulatory and compliance requirements. Skills and Application Support in the development and implementation of comprehensive information security awareness program in alignment with the Information Security Group strategy. Oversees awareness program and ensuring key metrics are managed within risk appetite level. Strategic Insight: Cultivates an organizational culture inside that prioritizes and encourages proactive information security practices and continuous improvement across all departments. Integrate information security considerations into ISG strategies, recognizing the importance of information security in achieving ISG objectives and competitive advantage. Communicates the strategic value of Information Security and Data to executive leadership and key stakeholders, advocating for resources and support to strengthen the bank's capabilities. Key Competencies: Creativity and ability to craft engaging, informative materials for diverse audiences. Analytical skills to assess training effectiveness and identify risks. Strong organizational and project management skills. A proactive mindset and enthusiasm for fostering a culture of cybersecurity awareness. Professional certifications: CISA, CISM, CISSP, CRISC, ISO27001 LA/LI etc Show more Show less

Position: Cyber Security Expert Experience: 10-18 years Company: Confidential (FTE) Location: Delhi-NCR Budget: 30-35 LPA Certification Required: CISA/CISSP/CISM Cyber security expert: Client wants someone who has hand-on experience on below mentioned technologies. · Ensure that the Client IT systems are secure, efficient, and compliant with relevant regulations and industry standards. · Responsibility & Work Profile will include: Understanding the Project Requirements, Technical Specifications & Scope of work. Designing & Maintaining Security Compliant IT Infra Architecture & Systems. · Audits: Conducting thorough audits of IT systems, processes, and controls to identify weaknesses, vulnerabilities, and areas for improvement in Design. · Risk Assessment: Assessing the risk associated with IT systems and identifying potential threats to data integrity, confidentiality, and availability. · Compliance Management: Ensuring that IT systems and processes comply with relevant laws, regulations, and industry standards & all respective SoPs are security audited and compliant. · Support in preparation of ATP document, SoP document etc. · Security Management: Implementing and maintaining effective security measures to protect the DC-DR & Remote Site's IT assets from cyber threats, including malware, phishing, and unauthorized access & other types of cyber-attacks. Ensuring Security Controls w.r.t SoPs. · Controls Evaluation: Evaluating the effectiveness of existing IT controls and recommending enhancements or new controls to mitigate risks and improve security posture. · Report Generation: Preparing detailed audit reports documenting findings, recommendations, and remediation plans for management and stakeholders. · Training and Awareness: Providing training and awareness programs to educate employees about IT security best practices and compliance requirements. · Continuous Monitoring: Monitoring IT systems and processes continuously to detect and respond to security incidents and compliance breaches in a timely manner. · Collaboration: Collaborating with other departments, to address IT-related risks and compliance issues effectively. Support in VAPT. · Facilitate the smooth integration of additional planned security solutions (such as AntiAPT Solutions, HIDS/HIPS, ZTA etc), suggest the sufficient RU space & inputs for Racking Stacking design and Intelligent cabling for these futuristic requirements. · Overall, the position will play a crucial role in helping Client to maintain the integrity, confidentiality, and availability of their information systems while ensuring compliance with regulatory requirements and industry standards & best practices. Regards Kirti Rustagi hr1@raspl.com Show more Show less

Job Purpose • RBI Returns, RBI-RBS Tranche, CSITE submissions • RBI / CSITE and other regulatory audits • Aadhaar Compliance and Internal Capital Adequacy Assessment Process (ICAAP) submissions • Submissions for Information Security Committee (ISC), Risk Policy and Management Committee (RPMC), IT Apex Committee, IT Strategy Committee, Board meetings etc. • IS, CS Compliance & Governance related activities • Automation Initiatives Job Responsibilities(JR) Deliverables RBI Returns, RBI-RBS Tranche, CSITE Submissions 1. Quarterly RBI / CSITE returns 2. Quarterly RBI-RBS Tranche submissions 3. Monthly CSITE submissions 4. Ad-Hoc CSITE / RBI submissions 5. Incident reporting - RBI,CSITE, CERT-In etc. 6. Tracking and managing Digital Payment Security Controls (DPSC) related compliances. 7. Compliance towards the Advisories, Circulars and Alerts from RBI Classification - Confidential RBI / CSITE and other regulatory audits 1. Managing RBI / CSITE audits; timely collation and submission of compliances & tracking of open observations. 2. National Critical Information Infrastructure Protection Centre (NCIIPC) related requirements. 3. SEBI, NSDL, CDSL, NSE, and BSE related submissions. Aadhaar Compliance and Internal Capital Adequacy Assessment Process (ICAAP) submissions 1. Address Aadhaar related project / process change requirements. 2. Completion of the Aadhar audit as a mandatary requirement for UIDAI. 3. Tracking and monitoring the Aadhar related observations for closure. 4. Quarterly ICAAP submissions. Submissions for Information Security Committee (ISC), Risk Policy and Management Committee (RPMC), IT Apex Committee, IT Strategy Committee, Board meetings etc. 1. Convene and conduct Information Security Committee (ISC) meetings. Documentation and circulation / publication of the minutes of the meeting (MoM). Tracking and monitoring the actionable from the ISC meetings. 2. Timely submission of Notes / presentation deck for Risk Policy and Management Committee (RPMC), IT Apex Committee, IT Strategy Committee, Board meetings etc. Tracking and monitoring the actionable from these meetings. IS, CS Compliance & Governance related activities 1. Develop and periodic review of information security policies, processes, standards and guidelines. Oversee the approval and publication of these documents. 2. Assist in preparing and managing information security (IS) budget. 3. Drive and manage the awareness initiatives for the bank staff, Learning Management System (LMS) Classification - Confidential related course and content, Phishing Simulation (regulatory & internal) etc. 4. Assist in formulating InfoSec skill development & training strategy. Maintain relevant records. 5. Developing enterprise information security effectiveness criteria / metrics including for IT security tools on end points, servers, network. 6. Publish monthly executive metrics summary to senior management in the bank. 7. Point of contact (SPOC) for IT Governance related activities, IT Governance, Risk and Compliance (ITGRC) system management. 8. Managing Statutory, internal / external audits etc. 9. Management and execution of the annual ISG strategy. 10. IA Observations : Effective tracking and monitoring of the observations from the internal audits. Interactions with Internal Audit (IA) team for audit related activities. 11. Data Localization compliance : Guide the business teams for the RBI advisory on data localization. Coordinate with the business teams for arranging and reviewing the System Audit Report (SAR), System Audit Report Certificate (SARC) and Board Resolution / Approval. 12. Compliance towards the requirements of international branches of the bank : Onsite Supervisory Assessment, Half yearly submission of VAPT report etc. Automation Initiatives 1. Requisite guidance and implementation of automation initiatives. Classification - Confidential Educational Qualifications Key Skills • Bachelor’s Degree - IT / computers / electronics • MBA-IT with Compliance Certifications like CISA, CISM, CISSP, COBIT etc. • Risk management • Communication • Knowledge of ISO 27001 and 22301 • Knowledge of risk frameworks • Working with regulators • Knowledge of latest cybersecurity trends & industry best practices on information security in financial Industry. • Working knowledge of security products • Strong skills using Microsoft Office Suite (Word, Excel, Powerpoint) and collaboration tools like O365, Teams. Experience Required • Minimum experience in years : 12 to 15 yrs • Minimum 10 years of experience in managing IT and Information Security compliance management or conducting Information Security / IT audits, handling network security and data center security design, governance and implementation. • Exposure to banking preferable Major Stakeholders 1. Information Technology (IT) 2. Compliance 3. Retail Branch Banking Unit (RBCU) 4. Administration 5. Operations Risk (OR) 6. Credit Intelligence & Control (CIC) 7. Other Business teams Show more Show less

Why you'll LOVE Sagent: You could work anywhere. We know you are talented and looking for something inspiring and impactful. A place where you will make a difference and have a great time doing it! By choosing Sagent, you can be part of our mission to make loans and homeownership simpler and safer for all US consumers. Sagent powers servicers and consumers. You power Sagent! About the Opportunity: Sagent is seeking a Senior Threat Analyst to join a growing team responsible for securing next-generation, cloud-native financial technology systems. We are seeking a skilled and motivated Threat Analyst to join our growing team. This role offers the opportunity to work in a dynamic environment where your expertise will play a critical role identifying, analyzing, and mitigating security threats. You will be responsible for monitoring, analyzing, and responding to potential security incidents, performing in-depth security investigations, and executing regular threat hunting campaigns across the organization. If you are passionate about information security, possess a keen eye for detail, we encourage you to apply and be a part of our mission to safeguard our digital landscape. We'd love to hear from you if you have: Willingness to work outside of standard business hours during critical incidents. Prior experience administrating and securing IT systems or networks (~5+ years), preferably with both in public cloud environment(s) and physical data center location(s). Proven mastery of SQL-like query languages, and proficient in data manipulation and analysis techniques to extract actionable insights from large and complex cybersecurity datasets. Demonstrated ability to maintain collected demeanor under high-pressure security incident response scenarios. Proficiency of MITRE ATT&CK framework and its application to threat hunting campaign scenarios, as a bonus in hybrid cloud environments. Hands-on experience professionally administrating and securing both Windows and Unix/Linux operating systems, and common threats that each are susceptible to. Proven expertise in identifying, analyzing, and mitigating threats that could impact cloud-based and containerized workloads. Experience administrating cloud IaaS and PaaS infrastructure is a plus. Deep understanding of the OSI model and a wide range of common network protocols, enabling effective analysis, detection, and mitigation of security threats at various layers of the network stack. Extensive experience working within Security Information and Event Management (SIEM) platforms, especially building, and optimizing custom detection rules. Excellent communication skills with ability to effectively translate complex technical concepts and findings into clear and concise insights for non-technical stakeholders, fostering collaboration and informed decision-making across cross functional teams. Expertise of scripting languages such as Python (preferred), Bash scripting, or Powershell; prior experience using scripting to automate tasks. Extensive experience working with modern defense-in-depth security tools and technologies such as Intrusion Detection and Prevention (IDS/IPS), Endpoint Detection and Response (EDR) solutions, Cloud Native Application Protection Platform (CNAPP) and Web Application Firewalls (WAF) Enthusiasm for security automation and creative technical ability to identify time-saving or novel automation workflows. Proven understanding of common web-based attacks at runtime, such as those found OWASP Top 10, and how to respond/mitigate each from an operational standpoint. Extensive experience detecting and mitigating email-based threats, including phishing, malware, and spoofing, and as a bonus, hands-on experience in administering and configuring email security tools and protocols to safeguard against these threats. Thorough understanding of threat modeling concepts and methodologies, with the ability to identify compound attack vectors. Support the larger Information Security team & IT teams with security expertise and assistance as needed. 1 Perks! As a Sagent Associate, you will be eligible to participate in our benefit programs beginning on Day #1! We offer a comprehensive package including Remote/Hybrid workplace options, Group Medical Coverage, Group Personal Accidental, Group Term Life Insurance Benefits, Flexible Time Off, Food@Work, Career Pathing, Summer Fridays and much, much more! Why Sagent? Sagent is transforming the mortgage servicing industry by bringing the modern experience customers now expect from loan originations to loan servicing. Our platform lets customers manage their home-owing lives from anywhere while giving servicers lower costs, scale compliance and higher servicing values through full market cycles. Sagent is a joint venture that combines Fiserv Inc.'s decades of market-leading fintech expertise with Warburg Pincus' skill in growing technology companies. We hire innovators and doers to disrupt the last and most complex frontier of lending and housing. We're growing fast and need you to help shape our future. Sagent is an equal opportunity employer, and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status. Show more Show less

This role is for one of the Weekday's clients Min Experience: 2 years Location: Bengaluru, Chennai JobType: full-time We are seeking a highly skilled and motivated Technical Support Engineer to join our dynamic team. This role is crucial in providing expert-level technical assistance and ensuring seamless email security and authentication for our clients. You will be responsible for managing and resolving complex technical issues related to email security, DNS configurations, Google Workspace, Microsoft Exchange, DMARC, DKIM, SPF, and overall email authentication protocols . This position is ideal for individuals with a strong foundation in cybersecurity , email systems , and a passion for delivering exceptional support experiences. Requirements Key Responsibilities: Serve as the primary technical contact for clients, providing in-depth troubleshooting and resolution for email security issues, including spam filtering, phishing detection, and email delivery failures. Manage and troubleshoot DNS configurations, including A, MX, TXT, SPF, DKIM, and DMARC records, ensuring correct domain authentication and email flow. Advise clients on best practices for implementing email authentication protocols to enhance security and reduce email spoofing and phishing attacks. Support and administer Google Workspace and Microsoft Exchange environments, ensuring secure and efficient mail routing and delivery. Investigate and resolve issues related to email delivery, bounce-backs, and unauthorized access attempts, collaborating with internal teams and third-party vendors if necessary. Conduct root cause analysis for recurring issues and recommend long-term solutions to enhance system stability and email security posture. Assist clients in configuring, optimizing, and maintaining DMARC, DKIM, and SPF records to align with their security and deliverability goals. Work closely with cybersecurity teams to identify potential vulnerabilities and implement proactive security measures to safeguard email communications. Document issue resolutions, create knowledge base articles, and contribute to continuous improvement of support processes and tools. Stay updated with emerging threats, email security technologies, and industry best practices to provide proactive guidance to clients. Required Skills and Qualifications: 2-6 years of hands-on experience in technical support, preferably with a focus on email security, authentication protocols, and DNS management. Strong understanding of email authentication standards including DMARC, DKIM, SPF, and their implementation across diverse platforms. Solid experience with DNS configuration and troubleshooting. Proficiency with Google Workspace and Microsoft Exchange, including administration and support. Sound knowledge of cybersecurity concepts and practices, especially related to email systems. Excellent problem-solving skills with a focus on root cause analysis and long-term resolution. Strong interpersonal and communication skills, with the ability to explain technical issues to both technical and non-technical audiences. Proven ability to work in a fast-paced, collaborative environment with multiple priorities. Certifications in email security, Google Workspace, Microsoft Exchange, or cybersecurity are a plus Show more Show less

This role is for one of the Weekday's clients Min Experience: 2 years Location: Bengaluru, Chennai JobType: full-time We are seeking a highly skilled and motivated Technical Support Engineer to join our dynamic team. This role is crucial in providing expert-level technical assistance and ensuring seamless email security and authentication for our clients. You will be responsible for managing and resolving complex technical issues related to email security, DNS configurations, Google Workspace, Microsoft Exchange, DMARC, DKIM, SPF, and overall email authentication protocols . This position is ideal for individuals with a strong foundation in cybersecurity , email systems , and a passion for delivering exceptional support experiences. Requirements Key Responsibilities: Serve as the primary technical contact for clients, providing in-depth troubleshooting and resolution for email security issues, including spam filtering, phishing detection, and email delivery failures. Manage and troubleshoot DNS configurations, including A, MX, TXT, SPF, DKIM, and DMARC records, ensuring correct domain authentication and email flow. Advise clients on best practices for implementing email authentication protocols to enhance security and reduce email spoofing and phishing attacks. Support and administer Google Workspace and Microsoft Exchange environments, ensuring secure and efficient mail routing and delivery. Investigate and resolve issues related to email delivery, bounce-backs, and unauthorized access attempts, collaborating with internal teams and third-party vendors if necessary. Conduct root cause analysis for recurring issues and recommend long-term solutions to enhance system stability and email security posture. Assist clients in configuring, optimizing, and maintaining DMARC, DKIM, and SPF records to align with their security and deliverability goals. Work closely with cybersecurity teams to identify potential vulnerabilities and implement proactive security measures to safeguard email communications. Document issue resolutions, create knowledge base articles, and contribute to continuous improvement of support processes and tools. Stay updated with emerging threats, email security technologies, and industry best practices to provide proactive guidance to clients. Required Skills and Qualifications: 2-6 years of hands-on experience in technical support, preferably with a focus on email security, authentication protocols, and DNS management. Strong understanding of email authentication standards including DMARC, DKIM, SPF, and their implementation across diverse platforms. Solid experience with DNS configuration and troubleshooting. Proficiency with Google Workspace and Microsoft Exchange, including administration and support. Sound knowledge of cybersecurity concepts and practices, especially related to email systems. Excellent problem-solving skills with a focus on root cause analysis and long-term resolution. Strong interpersonal and communication skills, with the ability to explain technical issues to both technical and non-technical audiences. Proven ability to work in a fast-paced, collaborative environment with multiple priorities. Certifications in email security, Google Workspace, Microsoft Exchange, or cybersecurity are a plus Show more Show less