328 Phishing Jobs - Page 6

Aurex Inc, is looking for a GRC consultant role. As an integral member of the GRC Implementation team, the responsibility of the GRC Consultant is to carry out the implementation of GRC system for our customers related to policy compliance, security requirements governance, as well as risk management. The ideal candidate will have knowledge of risk management, security and privacy practices and be an effective communicator, both written and verbal. Responsibilities Develop and participate in the implementation of client initiatives focused on the reduction of technology risk, governance, and compliance to policies and external regulatory compliance. Evaluating business and IT risks Developing IT security standards, procedures, and controls to manage risks. Improve client security positioning through process improvement, policy, automation, and the continuous evolution of capabilities. Evaluation of information security threats and their impact on clients' IT environment Supporting the Senior team members, assisting with the analysis of requirements and design of clients’ information security posture, as well as Legal, Regulatory, and Scheme security requirements. Supporting the senior team members in the delivery of work streams for clients in compliance standards such as PCI DSS, ISO27001, EU GDPR, and Bahrain PDPL and incident management disciplines. Performing and investigating internal and external information security risk and exception assessments. Assessing incidents, vulnerability management, scans, patching status, secure baselines, penetration test results, phishing, and social engineering tests and attacks. Documenting and reporting control failures and gaps to stakeholders. Provides remediation guidance and prepares management reports to track remediation activities. Staying current on best practices and technological advancements and acting as a technical resource for security assessment and regulatory compliance. Performing other related duties as assigned from time to time-based on the business requirements. Qualification 3- 5 years experience in IT Governance, Risk & Compliance Understanding of ISO 27001, PCI DSS, ITIL, ITSM, and COBIT standards preferred Experience with risk management principles and associated methodologies Ideally will have a CEH, CISSP, CISA, or CISM qualification. Proven ability to make sound pragmatic decisions and judgments under tight timelines. Strong interpersonal and influencing skills with the ability to influence and drive change in a collaborative way both internally and externally. Show more Show less

Title: Information Security Officer (for GRC and Awareness) Location: Mumbai/Pune Key Responsibilities Ensure effective implementation and continuous implementation of policies and procedures. Maintain and improve Governance, Risk, and Compliance (GRC) programs to stay aligned with legal, regulatory and contractual requirements. Regularly evaluate and enhance information security controls to address evolving business and threat landscapes. Lead ongoing information security training and awareness programs to strengthen organizational security culture. Facilitate collaboration with IT and other departments to integrate security measures into all business processes. Coordinate asset management, Business Impact Assessments and risk assessments to identify vulnerabilities and update mitigation strategies as necessary. Provide up-to-date security reports to the CISO and other stakeholders. Conduct third party risk assessments. Key tasks Review and update security policies and procedures to ensure they remain correct and easy to follow. Focus on refining the GRC framework for operational efficiency and compliance with current standards. Plan, coordinate and follow-up on risk activities and refine plans and strategies to mitigate identified risks efficiently. Develop and deliver engaging security training sessions and phishing simulations tailored to current security challenges. Conduct third party security review on suppliers. Work as a liaison for integrating security practices across departmental operations. Compile and communicate security performance, status reports and updates effectively to all relevant stakeholders. Plan, coordinate and follow-up on the management and implementation of security projects, ensuring alignment with organizational security goals. Required education, experience and job-related skills: Bachelor’s degree or higher in Information Security, Computer Science, or a related field. 5 years of experience in information security management or Cyber risk governance. Relevant security certifications (CISSP, CRISC, etc.) is an advantage. Project leadership and strong communication skills. Strong proficiency in English, both written and verbal. Experience working with various security frameworks and standards like CIS18, ISO27001 Experience in developing and conducting security training and awareness programs is an advantage. We Offer A forefront role in cybersecurity within the chemical industry. A dynamic and inclusive work environment emphasizing work-life balance. Opportunities for professional growth in a supportive and collaborative team setting. Join Us If you are passionate about security and eager to contribute to a high-performing team, apply now with your CV and cover letter in English. We encourage applicants from all backgrounds to join our diverse team. Sounds like a match? Welcome to apply! Click the ‘Apply for position’ button in the top-right corner and submit your application letter with a CV in English via our recruitment system. More About Hempel At Hempel, you'll join a team of passionate and motivated individuals and become part of a global family with over almost 7,000 colleagues around the world. We know that diversity brings strength to the workplace, and we're dedicated to making sure everyone feels valued and supported which shows in our collaborative work environment. With offices and production sites in 80+ countries, you'll get plenty of chances for international exposure and career advancement. Whether you're just starting out or ready to take your career to the next level, Hempel has something to offer. Get ready to be inspired by a company that truly cares about its employees and their professional growth. Come be a part of Hempel's mission to shape a brighter future with sustainable coating solutions and unleash your full potential! At Hempel, we are working together to shape a brighter future with sustainable coating solutions. We believe this is only possible with dedicated employees with diverse perspectives and backgrounds. Hempel is committed to creating an inclusive work environment and culture that embraces the diversity of our employees and the customers we serve, providing equal opportunity for all. Application due 2025-06-14 Seniority Level Mid-Senior level Job Functions Information Technology Industry Chemicals At Hempel, you’re welcomed to a global community of +7000 colleagues around the world. A workplace built on shared trust, mutual respect and support for each other. We’re on a mission to double our impact. To succeed, we need bright minds and team players. Which is why, from day one, your input, ideas and initiative are not only welcomed, but expected. In return, you will enjoy great opportunities for development in a growing global company – and be part of the solution by contributing to our global impact. At Hempel, we are committed to everyone feeling safe, valued and treated equally, in an environment where each employee can bring their authentic selves to work. We believe that inclusion is key to innovation and by bringing together the most diverse perspectives and talents, we can achieve great things, together. Show more Show less

Title: Information Security Officer (for GRC and Awareness) Location: Mumbai/Pune Key Responsibilities Ensure effective implementation and continuous implementation of policies and procedures. Maintain and improve Governance, Risk, and Compliance (GRC) programs to stay aligned with legal, regulatory and contractual requirements. Regularly evaluate and enhance information security controls to address evolving business and threat landscapes. Lead ongoing information security training and awareness programs to strengthen organizational security culture. Facilitate collaboration with IT and other departments to integrate security measures into all business processes. Coordinate asset management, Business Impact Assessments and risk assessments to identify vulnerabilities and update mitigation strategies as necessary. Provide up-to-date security reports to the CISO and other stakeholders. Conduct third party risk assessments. Key tasks Review and update security policies and procedures to ensure they remain correct and easy to follow. Focus on refining the GRC framework for operational efficiency and compliance with current standards. Plan, coordinate and follow-up on risk activities and refine plans and strategies to mitigate identified risks efficiently. Develop and deliver engaging security training sessions and phishing simulations tailored to current security challenges. Conduct third party security review on suppliers. Work as a liaison for integrating security practices across departmental operations. Compile and communicate security performance, status reports and updates effectively to all relevant stakeholders. Plan, coordinate and follow-up on the management and implementation of security projects, ensuring alignment with organizational security goals. Required education, experience and job-related skills: Bachelor’s degree or higher in Information Security, Computer Science, or a related field. 5 years of experience in information security management or Cyber risk governance. Relevant security certifications (CISSP, CRISC, etc.) is an advantage. Project leadership and strong communication skills. Strong proficiency in English, both written and verbal. Experience working with various security frameworks and standards like CIS18, ISO27001 Experience in developing and conducting security training and awareness programs is an advantage. We Offer A forefront role in cybersecurity within the chemical industry. A dynamic and inclusive work environment emphasizing work-life balance. Opportunities for professional growth in a supportive and collaborative team setting. Join Us If you are passionate about security and eager to contribute to a high-performing team, apply now with your CV and cover letter in English. We encourage applicants from all backgrounds to join our diverse team. Sounds like a match? Welcome to apply! Click the ‘Apply for position’ button in the top-right corner and submit your application letter with a CV in English via our recruitment system. More About Hempel At Hempel, you'll join a team of passionate and motivated individuals and become part of a global family with over almost 7,000 colleagues around the world. We know that diversity brings strength to the workplace, and we're dedicated to making sure everyone feels valued and supported which shows in our collaborative work environment. With offices and production sites in 80+ countries, you'll get plenty of chances for international exposure and career advancement. Whether you're just starting out or ready to take your career to the next level, Hempel has something to offer. Get ready to be inspired by a company that truly cares about its employees and their professional growth. Come be a part of Hempel's mission to shape a brighter future with sustainable coating solutions and unleash your full potential! At Hempel, we are working together to shape a brighter future with sustainable coating solutions. We believe this is only possible with dedicated employees with diverse perspectives and backgrounds. Hempel is committed to creating an inclusive work environment and culture that embraces the diversity of our employees and the customers we serve, providing equal opportunity for all. Application due 2025-06-14 Seniority Level Mid-Senior level Job Functions Information Technology Industry Chemicals At Hempel, you’re welcomed to a global community of +7000 colleagues around the world. A workplace built on shared trust, mutual respect and support for each other. We’re on a mission to double our impact. To succeed, we need bright minds and team players. Which is why, from day one, your input, ideas and initiative are not only welcomed, but expected. In return, you will enjoy great opportunities for development in a growing global company – and be part of the solution by contributing to our global impact. At Hempel, we are committed to everyone feeling safe, valued and treated equally, in an environment where each employee can bring their authentic selves to work. We believe that inclusion is key to innovation and by bringing together the most diverse perspectives and talents, we can achieve great things, together. Show more Show less

LivePerson (NASDAQ: LPSN) is the global leader in enterprise conversations. Hundreds of the world’s leading brands — including HSBC, Chipotle, and Virgin Media — use our award-winning Conversational Cloud platform to connect with millions of consumers. We power nearly a billion conversational interactions every month, providing a uniquely rich data set and safety tools to unlock the power of Conversational AI for better customer experiences. At LivePerson, we foster an inclusive workplace culture that encourages meaningful connection, collaboration, and innovation. Everyone is invited to ask questions, actively seek new ways to achieve success, and reach their full potential. We are continually looking for ways to improve our products and make things better. This means spotting opportunities, solving ambiguities, and seeking effective solutions to the problems our customers care about. Overview We are seeking a highly motivated and experienced Senior Collections Analyst to oversee a global portfolio of accounts and drive best-in-class collections and credit practices. The ideal candidate will have a strong background in collections, credit review and approvals, customer portals (Coupa, Ariba), and ERP systems such as Zuora, Salesforce, and NetSuite. This role requires a proactive, analytical professional with excellent communication skills, global client experience, and the ability to collaborate effectively across departments. In This Role You Will Need To Efficiently Interact with Global clients to collect balances on invoices. In depth knowledge of customer account aging analysis, credit and debit clearance, adherence to collection protocols needed. Maintain the account status as “standard” and resolve all disputes. Timely collect cash of customer accounts, assess credit worthiness, minimize bad debts and ensure contract compliance and/or recommend legal action. Manage the entire portfolio of accounts including delinquency, write-offs, credit memos, and additional interest. Conducts pre-sale credit risk evaluation, prepares recommendations, and makes credit approval recommendations on new accounts. Have good Understanding of Order documents/Purchase Order/ Quote and credit hold policy. Work with cross functions – Sales, Sales ops, tax, cash apps, legal, billing, OM. Identify the right Point of Contact to secure payments. Knowledge of escalation methodology, maintaining healthy business relationships with customers. Prepare reports and perform due diligence before performing any collection actions Team player who is dedicated to quality with continuous improvement target driven objectives. Knowledge of dunning procedures and collection tools and techniques. To be a competent and successful forerunner in this competitive environment - achieved through involvement, perseverance and commitment. Knowledge of SOX audits, collections reports, participation in projects and process improvements. Key Responsibilities Manage a global portfolio of customer accounts, ensuring timely collection of outstanding receivables. Adhere to and enforce established collections processes and procedures while proactively improving strategies and outcomes. Conduct credit reviews. Utilize and maintain data in systems including Zuora, Salesforce, and NetSuite for collections tracking, reporting, and analysis. Navigate and resolve collection issues through customer portals such as Coupa, Ariba, SAP, and Taulia. Have experience of uploading invoices into customer portals. Maintain accurate and up-to-date records of collection efforts, account statuses, and customer communications. Collaborate cross-functionally with Sales, Customer Success, Finance, and external points of contact to resolve disputes, billing issues, and promote timely payments. Provide detailed portfolio reporting and insights using Google Workspace, Microsoft Office, and internal databases. Act as a team player, supporting colleagues and contributing to a positive, collaborative work environment. Proactively identify risks and implement solutions to reduce DSO and bad debt exposure. Maintain a strong customer-focused approach while driving results and meeting collection KPIs. Your Qualifications Are Commerce / Management graduate or equivalent with 6 plus years of experience in same role or in Accounting/Finance Excellent verbal and written communication skills, with a professional and diplomatic approach to client interactions. (written and oral) Knowledge of billing procedures and collection techniques Strong analytical, organizational, and problem-solving skills; ability to work independently and make data-driven decisions Team-oriented, proactive, and able to take initiative to drive continuous process improvements Proficiency in Google Workspace (Sheets, Docs, Gmail) and Microsoft Office Suite (Excel, Word, Outlook). Experience in global account management and navigating international invoice and payment requirements SAP Knowledge. Systems – Zuora, SFDC, CRM, NetSuite Strong working knowledge of customer portals – Coupa, Ariba Preferred Qualifications Experience with SaaS billing models or subscription-based revenue environments. Background working in high-growth, fast-paced organizations with a global footprint Knowledge of cash application, billing, or order-to-cash processes is a plus. Benefits Health: Medical, Dental and Vision Time away: vacation and holidays Development: Generous tuition reimbursement and access to internal professional development resources. Equal opportunity employer Why You’ll Love Working Here As leaders in enterprise customer conversations, we celebrate diversity, empowering our team to forge impactful conversations globally. LivePerson is a place where uniqueness is embraced, growth is constant, and everyone is empowered to create their own success. And, we're very proud to have earned recognition from Fast Company, Newsweek, and BuiltIn for being a top innovative, beloved, and remote-friendly workplace. Belonging At LivePerson We are proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable laws, regulations and ordinances. We also consider qualified applicants with criminal histories, consistent with applicable federal, state, and local law. We are committed to the accessibility needs of applicants and employees. We provide reasonable accommodations to job applicants with physical or mental disabilities. Applicants with a disability who require reasonable accommodation for any part of the application or hiring process should inform their recruiting contact upon initial connection. The talent acquisition team at LivePerson has recently been notified of a phishing scam targeting candidates applying for our open roles. Scammers have been posing as hiring managers and recruiters in an effort to access candidates' personal and financial information. This phishing scam is not isolated to only LivePerson and has been documented in news articles and media outlets. Please note that any communication from our hiring teams at LivePerson regarding a job opportunity will only be made by a LivePerson employee with an @ liveperson.com email address. LivePerson does not ask for personal or financial information as part of our interview process, including but not limited to your social security number, online account passwords, credit card numbers, passport information and other related banking information. If you have any questions and or concerns, please feel free to contact recruiting-lp@liveperson.com Show more Show less

Responsibilities: Monitor systems, respond to incidents. Collaborate with teams on threat management strategies. Manage access control & encryption. Maintain compliance standards. Conduct regular security assessments. Office cab/shuttle Food allowance Health insurance Provident fund

Understanding of network defence principles, common attack vectors, and attacker techniques. Technical baseline skills and the ability to acquire in-depth knowledge of network and host security technologies Basic Linux/Windows OS knowledge, firewall rules and policy fundamentals. Excellent analytical and problem-solving skills. Strong work ethic and commitment to accomplish assigned tasks with a sense of urgency. Windows, Linux, Network Security, Phishing, Splunk, Malware

Company Profile Lennox (NYSE: LII) Driven by 130 years of legacy, HVAC and refrigeration success, Lennox provides our residential and commercial customers with industry-leading climate-control solutions. At Lennox, we win as a team, aiming for excellence and delivering innovative, sustainable products and services. Our culture guides us and creates a workplace where all employees feel heard and welcomed. Lennox is a global community that values each team member’s contributions and offers a supportive environment for career development. Come, stay, and grow with us. Job Description Monitor all the endpoint , Network , Cloud and application security incidents. As SOC team member , perform the basic investigation and all the security incidents and document the evidence. Performing Security controls health & Compliance check. Adhere to shift timings and provide uninterrupted 24/7 monitoring . Properly share shift handovers, updating the next shift on ongoing incidents and activities. Respond to all security incidents within a SLA period Resolve incidents assigned to the shift promptly and escalate to the Senior team when necessary. Work across all categories of incidents without limiting to specific types. Follow the incident handling as per the docum ented SOP . Complete and close all assigned task requests within SLA timelines. Attend weekly and monthly team meetings as mandatory. Qualifications OSINT : knowledge about open-source platforms for analyzing URL, IP Addresses , suspicious files. Email Analysis : Operating Systems: Basics of Linux and Windows, kernel concepts, and system differences. Networking: OSI model, TCP/IP, firewalls, VPNs, proxies, IP addressing, and subnetting. SIEM Tools: Basics of SIEM operations, alerts, and dashboards (e.g., Splunk). Authentication & Access Control: MFA, SSO, and password management best practices. Malware Protection: Antivirus strategies, malware analysis, phishing email analysis, and IOC gathering. Trending Cyber Attacks : update knowledge about the trending cyber-attacks & its attack patterns . Show more Show less

ABOUT TIDE At Tide, we are building a business management platform designed to save small businesses time and money. We provide our members with business accounts and related banking services, but also a comprehensive set of connected administrative solutions from invoicing to accounting. Launched in 2017, Tide is now used by over 1 million small businesses across the world and is available to UK, Indian and German SMEs. Headquartered in central London, with offices in Sofia, Hyderabad, Delhi, Berlin and Belgrade, Tide employs over 2,000 employees. Tide is rapidly growing, expanding into new products and markets and always looking for passionate and driven people. Join us in our mission to empower small businesses and help them save time and money. ABOUT THE TEAM: The Threat Detection & Response team in Tide focuses on protecting the company by building a robust detection and automation platform. We're proactive in our defense, constantly hacking ourselves to improve our security posture and staying ahead of emerging threats. Our goal is to make Tide resilient against the ever-evolving threat landscape. ABOUT THE ROLE: As a Threat Detection Engineer, you'll be: Implementing the strategic vision for threat detection, taking ownership of the detection and response life cycle. Hands-on with the SIEM; from creating log parsers for in-house web apps to visualizing data Looker dashboards. Creating security automations and playbooks to automate mundane tasks; from data enrichment to automatically removing phishing emails from employee mailboxes. We want you to run with the "anything is possible" mantra. Continuously hunting for sophisticated threats across our infrastructure, leveraging threat intelligence and innovative detection techniques to stay ahead of attackers. You'll monitor and respond to threats across AWS, GCP, internal applications, and employee endpoints (Windows, macOS). Responsible for ensuring good quality detections which align with our standards and best practices . Identifying opportunities to build or enhance internal tools that streamline threat detection processes, improve data visibility, and increase response efficiency. WHAT WE ARE LOOKING FOR: Strong knowledge with one of the following: Splunk, Chronicle, Panther. Strong understanding of modern attack and defense techniques which apply to Cloud (AWS, GCP), SaaS (such as Google Workspace and Okta) and desktop (Windows and macOS) environments. Passion for passing on knowledge to fellow colleagues. Hands-on attitude and the ability to drive solutions to completion. Strong experience in security automation, from writing scripts to creating end-to-end automated workflows. Familiarity with SOAR platforms and automating threat detection and response tasks. Excellent spoken and written communication skills. Experience with writing automation and scripts; bonus points if you have a repository to show-case your work. WHAT YOU'LL GET IN RETURN: Competitive salary Self & Family Health Insurance Term & Life Insurance OPD Benefits Mental wellbeing through Plumm Learning & Development Budget WFH Setup allowance 15 days of Privilege leaves 12 days of Casual leaves 12 days of Sick leaves 3 paid days off for volunteering or L&D activities Stock Options TIDEAN WAYS OF WORKING: At Tide, we champion a flexible workplace model that supports both in-person and remote work to cater to the specific needs of our different teams. While remote work is supported, we believe in the power of face-to-face interactions to foster team spirit and collaboration. Our offices are designed as hubs for innovation and team-building, where we encourage regular in-person gatherings to foster a strong sense of community. #LI-NN1 TIDE IS A PLACE FOR EVERYONE At Tide, we believe that we can only succeed if we let our differences enrich our culture. Our Tideans come from a variety of backgrounds and experience levels. We consider everyone irrespective of their ethnicity, religion, sexual orientation, gender identity, family or parental status, national origin, veteran, neurodiversity or differently-abled status. We celebrate diversity in our workforce as a cornerstone of our success. Our commitment to a broad spectrum of ideas and backgrounds is what enables us to build products that resonate with our members' diverse needs and lives. We are One Team and foster a transparent and inclusive environment, where everyone's voice is heard. At Tide, we thrive on diversity, embracing various backgrounds and experiences. We welcome all individuals regardless of ethnicity, religion, sexual orientation, gender identity, or disability. Our inclusive culture is key to our success, helping us build products that meet our members' diverse needs. We are One Team, committed to transparency and ensuring everyone's voice is heard. You personal data will be processed by Tide for recruitment purposes and in accordance with Tide's Recruitment Privacy Notice .

Phishing Email Analysis (SOC) Overview We are seeking a highly skilled Security Analyst with extensive experience in phishing email analysis to join our cybersecurity team. The ideal candidate will have a keen eye for detail, a strong understanding of email security protocols, and the ability to identify and mitigate phishing threats. This role is critical in ensuring the safety and security of our organization's digital communications. Responsibilities Analyze and investigate phishing emails to identify and assess potential threats. Develop and implement strategies to detect and prevent phishing attacks. Collaborate with IT and cybersecurity teams to enhance email security measures. Recommend training sessions for employees on phishing awareness and prevention. Monitor and report on phishing trends and provide actionable insights to improve security posture. Create and maintain documentation related to phishing incidents and response protocols. Stay up-to-date with the latest phishing techniques and cybersecurity threats. Respond to security incidents involving phishing emails and work to mitigate their impact. Qualifications Bachelor's degree in cybersecurity, computer science, or related field. Proven experience in phishing email analysis and threat mitigation. Familiarity with email security tools and technologies, specifically Microsoft Defender for email. Strong analytical and problem-solving skills. Excellent written and verbal communication skills. Ability to work well in a team environment. "We are an equal opportunity employer committed to fair and ethical hiring practices. We do not charge any fees or accept any form of payment from candidates at any stage of the recruitment process. If anyone claims to offer employment opportunities in our company in exchange for money or any other benefit, please treat it as fraudulent and report it immediately" Show more Show less

Job Description As a Cybersecurity Engineer, you will be responsible for designing, implementing, and maintaining security measures to protect the organization's computer systems, networks, and data from cyber threats. This role will involve a combination of technologies, processes, and practices designed to safeguard data, applications, and networks from threats like malware, phishing, and data breaches. Current Employees apply HERE Current Contingent Workers apply HERE Secondary Language(s) Job Description Senior Manager, Cybersecurity Engineering Cloud and App Security The Opportunity Based in Hyderabad, join a global healthcare biopharma company and be part of a 130- year legacy of success backed by ethical integrity, forward momentum, and an inspiring mission to achieve new milestones in global healthcare. Be part of an organisation driven by digital technology and data-backed approaches that support a diversified portfolio of prescription medicines, vaccines, and animal health products. Drive innovation and execution excellence. Be a part of a team with passion for using data, analytics, and insights to drive decision-making, and which creates custom software, allowing us to tackle some of the world's greatest health threats. Our Technology Centers focus on creating a space where teams can come together to deliver business solutions that save and improve lives. An integral part of our company’s IT operating model, Tech Centers are globally distributed locations where each IT division has employees to enable our digital transformation journey and drive business outcomes. These locations, in addition to the other sites, are essential to supporting our business and strategy. A focused group of leaders in each Tech Center helps to ensure we can manage and improve each location, from investing in growth, success, and well-being of our people, to making sure colleagues from each IT division feel a sense of belonging to managing critical emergencies. And together, we must leverage the strength of our team to collaborate globally to optimize connections and share best practices across the Tech Centers. Role Overview As a Cybersecurity Engineer, you will be responsible for designing, implementing, and maintaining security measures to protect the organization's computer systems, networks, and data from cyber threats. This role will involve a combination of technologies, processes, and practices designed to safeguard data, applications, and networks from threats like malware, phishing, and data breaches. You will be tasked with identifying vulnerabilities, supporting the response to incidents, and ensuring that security protocols and controls are adhered to. Your role is vital in safeguarding critical assets and ensuring compliance with legal and regulatory standards. What Will You Do In This Role Lead the development of enhanced cloud and application security control integrations and architectural best practices. Lead the development and implementation of product security policies and standards to ensure that application, cloud services and infrastructure meet organizational security requirements. Lead the maintenance and monitoring security tools and dashboards, ensuring that applications deployed in our environments adhere to organizational security standards and compliance requirements. Lead adoption of our security tools within other teams ensuring the inputs and outputs are fully integrated enabling a complete security function. Design, implement, test, document, and support integration of security tools and technologies in pipelines, Also, assist the product teams in related activities. Work closely with cross-functional Infrastructure teams on Automation and Orchestration. Create and document detailed designs for simple software applications or components. Apply agreed modelling techniques, standards, patterns, and tools. Work within a matrix organizational structure, reporting to both the functional manager and the project manager. What Should You Have Bachelors’ degree in Information Technology, Computer Science or any Technology stream. Working experience in cloud environments AWS must have and good to have Azure, or GCP. Understanding of OWASP Top 10 security risks and mitigation strategies, relevant NIST standards, and Zero Trust principles. Familiarity with programming/scripting languages like Python, Bash, Terraform, Ansible, JSON, PowerShell, or JavaScript for automating tasks. Familiarity with software development/delivery lifecycle and related technologies 7+ years of hands-on experience working with network protocols, firewalls, intrusion detection systems, encryption technologies, and endpoint security solutions. Proficiency in security tools in the areas of cloud, application, endpoint, network or identity, vulnerability scanners, and malware analysis platforms. Knowledge of authentication methods, identity management, and security access protocols (e.g., SSO, MFA, LDAP). Ideally AWS certified. Good interpersonal and communication skills (verbal and written). Relevant certifications (e.g., CISSP, CISM, CEH, CompTIA Security+) are often required or highly desirable. Proven record of delivering high-quality results. Product and customer-centric approach. Innovative thinking, experimental mindset. Our technology teams operate as business partners, proposing ideas and innovative solutions that enable new organizational capabilities. We collaborate internationally to deliver services and solutions that help everyone be more productive and enable innovation. Who We Are We are known as Merck & Co., Inc., Rahway, New Jersey, USA in the United States and Canada and MSD everywhere else. For more than a century, we have been inventing for life, bringing forward medicines and vaccines for many of the world's most challenging diseases. Today, our company continues to be at the forefront of research to deliver innovative health solutions and advance the prevention and treatment of diseases that threaten people and animals around the world. What We Look For Imagine getting up in the morning for a job as important as helping to save and improve lives around the world. Here, you have that opportunity. You can put your empathy, creativity, digital mastery, or scientific genius to work in collaboration with a diverse group of colleagues who pursue and bring hope to countless people who are battling some of the most challenging diseases of our time. Our team is constantly evolving, so if you are among the intellectually curious, join us—and start making your impact today. #HYDIT2025 Search Firm Representatives Please Read Carefully Merck & Co., Inc., Rahway, NJ, USA, also known as Merck Sharp & Dohme LLC, Rahway, NJ, USA, does not accept unsolicited assistance from search firms for employment opportunities. All CVs / resumes submitted by search firms to any employee at our company without a valid written search agreement in place for this position will be deemed the sole property of our company. No fee will be paid in the event a candidate is hired by our company as a result of an agency referral where no pre-existing agreement is in place. Where agency agreements are in place, introductions are position specific. Please, no phone calls or emails. Employee Status Regular Relocation VISA Sponsorship Travel Requirements Flexible Work Arrangements Hybrid Shift Valid Driving License Hazardous Material(s) Required Skills Design Applications, Information Security, Security Operations, SLA Management, Software Development, Software Development Life Cycle (SDLC), System Designs, Technical Advice, Vulnerability Scanning Preferred Skills Job Posting End Date 07/2/2025 A job posting is effective until 11 59 59PM on the day BEFORE the listed job posting end date. Please ensure you apply to a job posting no later than the day BEFORE the job posting end date. Requisition ID R335950 Show more Show less

Job Description Current Employees apply HERE Current Contingent Workers apply HERE Secondary Language(s) Job Description Manager, Cybersecurity Engineering Cloud and App Security The Opportunity Based in Hyderabad, join a global healthcare biopharma company and be part of a 130- year legacy of success backed by ethical integrity, forward momentum, and an inspiring mission to achieve new milestones in global healthcare. Be part of an organisation driven by digital technology and data-backed approaches that support a diversified portfolio of prescription medicines, vaccines, and animal health products. Drive innovation and execution excellence. Be a part of a team with passion for using data, analytics, and insights to drive decision-making, and which creates custom software, allowing us to tackle some of the world's greatest health threats. Our Technology Centers focus on creating a space where teams can come together to deliver business solutions that save and improve lives. An integral part of our company’s IT operating model, Tech Centers are globally distributed locations where each IT division has employees to enable our digital transformation journey and drive business outcomes. These locations, in addition to the other sites, are essential to supporting our business and strategy. A focused group of leaders in each Tech Center helps to ensure we can manage and improve each location, from investing in growth, success, and well-being of our people, to making sure colleagues from each IT division feel a sense of belonging to managing critical emergencies. And together, we must leverage the strength of our team to collaborate globally to optimize connections and share best practices across the Tech Centers. Role Overview As a Cybersecurity Engineer, you will be responsible for designing, implementing, and maintaining security measures to protect the organization's computer systems, networks, and data from cyber threats. This role will involve a combination of technologies, processes, and practices designed to safeguard data, applications, and networks from threats like malware, phishing, and data breaches. You will be tasked with identifying vulnerabilities, supporting the response to incidents, and ensuring that security protocols and controls are adhered to. Your role is vital in safeguarding critical assets and ensuring compliance with legal and regulatory standards. What Will You Do In This Role Contribute to the development of enhanced cloud and application security control integrations and architectural best practices. Contribute to the development and implementation of product security policies and standards to ensure that application, cloud services and infrastructure meet organizational security requirements. Help maintain and monitor security tools and dashboards, ensuring that applications deployed in our environments adhere to organizational security standards and compliance requirements. Identify and prioritize adoption of our security tools within other teams ensuring the inputs and outputs are fully integrated enabling a complete security function. Follow standard approaches and established design patterns to create new designs for systems or system components. Identify and resolve minor design issues. Assist in implementing and maintaining specific security controls as required by organisational policy and local risk assessments and contribute to identifying risks that arise from potential technical solution architectures. Monitor and log the actual service provided, compared to that required by service level agreements. Undertake low-complexity routine vulnerability assessments using automated and semi-automated tools and contribute to evaluating and documenting the scope of results. Design, implement, test, document, and support integration of security tools and technologies in pipelines, Also, assist the product teams in related activities. Assist in maintaining security infrastructure and performing system updates. Investigate minor security breaches in accordance with established procedures. Assist users in defining their access rights and privileges and perform non-standard operational security tasks. Resolve security events and operational security issues. Work closely with cross-functional Infrastructure teams on Automation and Orchestration. Create and document detailed designs for simple software applications or components. Apply agreed modelling techniques, standards, patterns, and tools. Work within a matrix organizational structure, reporting to both the functional manager and the project manager. What Should You Have Bachelors’ degree in Information Technology, Computer Science or any Technology stream. Working experience in cloud environments AWS must have and good to have Azure, or GCP. Understanding of OWASP Top 10 security risks and mitigation strategies, relevant NIST standards, and Zero Trust principles. Familiarity with programming/scripting languages like Python, Bash, Terraform, Ansible, JSON, PowerShell, or JavaScript for automating tasks. Familiarity with software development/delivery lifecycle and related technologies 3+ years of hands-on experience working with network protocols, firewalls, intrusion detection systems, encryption technologies, and endpoint security solutions. Proficiency in security tools in the areas of cloud, application, endpoint, network or identity, vulnerability scanners, and malware analysis platforms.. Knowledge of authentication methods, identity management, and security access protocols (e.g., SSO, MFA, LDAP). Ideally AWS certified. Good interpersonal and communication skills (verbal and written). Relevant certifications (e.g., CISSP, CISM, CEH, CompTIA Security+) are often required or highly desirable. Proven record of delivering high-quality results. Product and customer-centric approach. Innovative thinking, experimental mindset. Our technology teams operate as business partners, proposing ideas and innovative solutions that enable new organizational capabilities. We collaborate internationally to deliver services and solutions that help everyone be more productive and enable innovation. Who We Are We are known as Merck & Co., Inc., Rahway, New Jersey, USA in the United States and Canada and MSD everywhere else. For more than a century, we have been inventing for life, bringing forward medicines and vaccines for many of the world's most challenging diseases. Today, our company continues to be at the forefront of research to deliver innovative health solutions and advance the prevention and treatment of diseases that threaten people and animals around the world. What We Look For Imagine getting up in the morning for a job as important as helping to save and improve lives around the world. Here, you have that opportunity. You can put your empathy, creativity, digital mastery, or scientific genius to work in collaboration with a diverse group of colleagues who pursue and bring hope to countless people who are battling some of the most challenging diseases of our time. Our team is constantly evolving, so if you are among the intellectually curious, join us—and start making your impact today. #HYDIT2025 Search Firm Representatives Please Read Carefully Merck & Co., Inc., Rahway, NJ, USA, also known as Merck Sharp & Dohme LLC, Rahway, NJ, USA, does not accept unsolicited assistance from search firms for employment opportunities. All CVs / resumes submitted by search firms to any employee at our company without a valid written search agreement in place for this position will be deemed the sole property of our company. No fee will be paid in the event a candidate is hired by our company as a result of an agency referral where no pre-existing agreement is in place. Where agency agreements are in place, introductions are position specific. Please, no phone calls or emails. Employee Status Regular Relocation VISA Sponsorship Travel Requirements Flexible Work Arrangements Hybrid Shift Valid Driving License Hazardous Material(s) Required Skills Design Applications, Information Security, Security Operations, SLA Management, Software Development, Software Development Life Cycle (SDLC), System Designs, Technical Advice, Vulnerability Scanning Preferred Skills Job Posting End Date 07/2/2025 A job posting is effective until 11 59 59PM on the day BEFORE the listed job posting end date. Please ensure you apply to a job posting no later than the day BEFORE the job posting end date. Requisition ID R335935 Show more Show less

Job Description Associate Specialist, Cybersecurity Operations The Opportunity Based in Hyderabad, join a global healthcare biopharma company and be part of a 130- year legacy of success backed by ethical integrity, forward momentum, and an inspiring mission to achieve new milestones in global healthcare. Be part of an organisation driven by digital technology and data-backed approaches that support a diversified portfolio of prescription medicines, vaccines, and animal health products. Drive innovation and execution excellence. Be a part of a team with passion for using data, analytics, and insights to drive decision-making, and which creates custom software, allowing us to tackle some of the world's greatest health threats. Our Technology Centers focus on creating a space where teams can come together to deliver business solutions that save and improve lives. An integral part of our company’s IT operating model, Tech Centers are globally distributed locations where each IT division has employees to enable our digital transformation journey and drive business outcomes. These locations, in addition to the other sites, are essential to supporting our business and strategy. A focused group of leaders in each Tech Center helps to ensure we can manage and improve each location, from investing in growth, success, and well-being of our people, to making sure colleagues from each IT division feel a sense of belonging to managing critical emergencies. And together, we must leverage the strength of our team to collaborate globally to optimize connections and share best practices across the Tech Centers. Role Overview As a Cybersecurity Engineer, you will be responsible for designing, implementing, and maintaining security measures to protect the organization's computer systems, networks, and data from cyber threats. This role will involve a combination of technologies, processes, and practices designed to safeguard data, applications, and networks from threats like malware, phishing, and data breaches. You will be tasked with identifying vulnerabilities, supporting the response to incidents, and ensuring that security protocols and controls are adhered to. Your role is vital in safeguarding critical assets and ensuring compliance with legal and regulatory standards. What Will You Do In This Role Collaborate with product teams to enforce application security best practices, conduct reviews, perform scans and assist in threat modeling to identify and mitigate security risks throughout the development lifecycle. Contribute with penetration testing efforts to evaluate the security posture of applications and containers, providing detailed reports on findings and working with development teams to remediate identified issues. Collaborate to the oversight of security-related bugs and vulnerabilities using tracking systems. Help prioritize security issues based on risk and impact and ensuring that reported issues are triaged and addressed in a timely manner. Contribute to the creation and delivery of training materials for the workforce to raise awareness and increase adoption of application security best practices, cloud security best practices, including secure usage of cloud applications and availability of compensating controls. Help maintain and monitor security tools and dashboards, ensuring that applications deployed in our environments adhere to organizational security standards and compliance requirements. Follow standard approaches and established design patterns to create new designs for systems or system components. Identify and resolve minor design issues. Monitor and log the actual service provided, compared to that required by service level agreements. Assist in maintaining security infrastructure and performing system updates. Investigate minor security breaches in accordance with established procedures. Assist users in defining their access rights and privileges and perform non-standard operational security tasks. Resolve security events and operational security issues. Work closely with cross-functional Infrastructure teams on Automation and Orchestration. Create and document detailed designs for simple software applications or components. Apply agreed modelling techniques, standards, patterns, and tools. Work within a matrix organizational structure, reporting to both the functional manager and the project manager. What Should You Have Bachelors’ degree in Information Technology, Computer Science or any Technology stream. 3+ years of hands-on experience working with proficiency in security tools in the areas of cloud, application, endpoint, network or identity, vulnerability scanners, and malware analysis platforms. Understanding of OWASP Top 10 security risks and mitigation strategies, relevant NIST standards, and Zero Trust principles. Good to have experience in cloud environments AWS, Azure, or GCP. Familiarity with software development/delivery lifecycle and related technologies Familiarity with programming/scripting languages like Python, Bash, Terraform, Ansible, JSON, PowerShell, or JavaScript for automating tasks. Knowledge of authentication methods, identity management, and security access protocols (e.g., SSO, MFA, LDAP). Ideally AWS certified. Good interpersonal and communication skills (verbal and written). Relevant certifications (e.g., CISSP, CISM, CEH, CompTIA Security+) are often required or highly desirable. Proven record of delivering high-quality results. Product and customer-centric approach. Innovative thinking, experimental mindset. Our technology teams operate as business partners, proposing ideas and innovative solutions that enable new organizational capabilities. We collaborate internationally to deliver services and solutions that help everyone be more productive and enable innovation. Who We Are We are known as Merck & Co., Inc., Rahway, New Jersey, USA in the United States and Canada and MSD everywhere else. For more than a century, we have been inventing for life, bringing forward medicines and vaccines for many of the world's most challenging diseases. Today, our company continues to be at the forefront of research to deliver innovative health solutions and advance the prevention and treatment of diseases that threaten people and animals around the world. What We Look For Imagine getting up in the morning for a job as important as helping to save and improve lives around the world. Here, you have that opportunity. You can put your empathy, creativity, digital mastery, or scientific genius to work in collaboration with a diverse group of colleagues who pursue and bring hope to countless people who are battling some of the most challenging diseases of our time. Our team is constantly evolving, so if you are among the intellectually curious, join us—and start making your impact today. #HYDIT2025 Current Employees apply HERE Current Contingent Workers apply HERE Search Firm Representatives Please Read Carefully Merck & Co., Inc., Rahway, NJ, USA, also known as Merck Sharp & Dohme LLC, Rahway, NJ, USA, does not accept unsolicited assistance from search firms for employment opportunities. All CVs / resumes submitted by search firms to any employee at our company without a valid written search agreement in place for this position will be deemed the sole property of our company. No fee will be paid in the event a candidate is hired by our company as a result of an agency referral where no pre-existing agreement is in place. Where agency agreements are in place, introductions are position specific. Please, no phone calls or emails. Employee Status Regular Relocation VISA Sponsorship Travel Requirements Flexible Work Arrangements Hybrid Shift Valid Driving License Hazardous Material(s) Job Posting End Date 04/28/2025 A job posting is effective until 11 59 59PM on the day BEFORE the listed job posting end date. Please ensure you apply to a job posting no later than the day BEFORE the job posting end date. Requisition ID R341160 Show more Show less

Following are the details: ANZEN Technologies Private Limited stands as an unparalleled powerhouse, empowering organizations across industries with our visionary services, cutting-edge solutions, and ground-breaking services in the realm of Cyber Security, IT Governance, Risk Management, and Compliance. As your trusted partner, we offer a comprehensive suite of End-to-End security services and consultancy, tailored to safeguard critical infrastructure installations, elevate the standards of BFSI, eCommerce, IT/ITES, Pharmaceuticals, and an array of other sectors. Job Summary: We are seeking a skilled and passionate Red Team Security Consultant to join our cybersecurity team. The ideal candidate will specialize in simulating adversarial tactics, techniques, and procedures (TTPs) to identify vulnerabilities and improve the organization's security posture. This role involves performing advanced penetration tests, simulating real-world attacks, and working with teams to implement effective remediation strategies. Key Responsibilities: Plan, execute, and document Red Team exercises mimicking advanced threat actors for medium to large enterprises. Conduct network penetration testing (VAPT), system vulnerability assessments, and security configuration reviews. Perform manual security assessments for web applications, APIs, and client-server applications. Simulate sophisticated attack chains including lateral movement, privilege escalation, and data exfiltration. Develop and execute custom attack payloads using tools and scripts. Assess physical security controls and implement social engineering assessments when required. Create and maintain custom tools/scripts in languages like Python, Bash, or PowerShell. Utilize and adapt adversary emulation frameworks such as MITRE ATT&CK, Cobalt Strike, and Metasploit. Collaborate with Blue Teams to improve detection and response mechanisms through Purple Team engagements. Execute full-scope Red Team engagements, including phishing, social engineering, and network penetration. Simulate advanced hacking techniques and replicate adversary tactics to uncover security weaknesses. Develop, extend, or modify exploits, shellcode, or tools to simulate sophisticated attacks. Perform reverse engineering of malware (advantageous but not mandatory). Write clear and actionable reports outlining vulnerabilities, exploitation techniques, and remediation strategies. Stay updated on the latest cyber threats, attack methods, and emerging technologies. Qualification: BE/B. Tech/ MCA/ M. Sc. (IT/Computers) Skills : Excellent communication and collaboration skills. Red Teaming, VAPT, Application Security (Web/Mobile/API), Red Teaming and Application Security domains. Proficient in Application Security concepts, including OWASP Top 10 and OSSTMM. Experience with vulnerability scanning tools such as Burp Suite Pro, Nessus, OWASP ZAP, Kali Linux, Cobalt Strike, Caldera etc. Basic ability to write automation scripts (Bash or Python). Understanding of threat modelling and secure coding practices. Strong understanding of TTPs, threat modelling, and secure coding practices. Hands-on experience in Active Directory exploitation, phishing campaigns, and endpoint bypass techniques. Preferred Certificates : OSCP, CRTP, eWPTX, Security+, CREST, CRTO Job Location : Mumbai/Navi Mumbai Job Mode : Work from Office Need an immediate Joiner who may join by 15th June, 2025

Role: Cyber Awareness Specialist Location: PAN India (Remote) Duration: Contract Job Purpose: The Cyber Security Awareness Specialist plays a critical role in maturing client’s cyber security awareness program. The specialist is responsible for fostering a culture where Cybersecurity is embedded in their roles in protecting the client assets and information and integrating cybersecurity awareness into the client’s broader security strategy, ensuring a proactive and informed workforce that upholds the client’d commitment to data protection and risk management. Key Responsibilities include: Develop and deliver a Cybersecurity Training program. Plan and execute Cybersecurity Awareness Campaigns to promote cybersecurity. Advocate for cybersecurity policies and best practices. Monitor training effectiveness and report on progress Collaborate with stakeholders to foster a cybersecurity-conscious culture. Knowledge, Skills, and Experience: Essential knowledge: Have a minimum of 10 years of experience in cybersecurity awareness, training, or related roles preferably within the banking or financial services industry. Strong knowledge of cybersecurity principles, threats, and best practices. Excellent communication, presentation, and interpersonal skills. Proficiency in using tools for creating digital training materials (e.g., e-learning platforms, video editing software). Familiarity with phishing simulation tools, wargaming tools (e.g., Defender, Conductrr etc.) and methodologies. Experience managing relationships with senior and executives. Familiarity with information security technologies, risk, threat and vulnerability assessments, and security measures. Knowledge of information security regulatory and compliance requirements. Skills and Application Support in the development and implementation of comprehensive information security awareness program in alignment with the Information Security Group strategy. Oversees awareness program and ensuring key metrics are managed within risk appetite level. Strategic Insight: Cultivates an organizational culture inside that prioritizes and encourages proactive information security practices and continuous improvement across all departments. Integrate information security considerations into ISG strategies, recognizing the importance of information security in achieving ISG objectives and competitive advantage. Communicates the strategic value of Information Security and Data to executive leadership and key stakeholders, advocating for resources and support to strengthen the bank's capabilities. Key Competencies: Creativity and ability to craft engaging, informative materials for diverse audiences. Analytical skills to assess training effectiveness and identify risks. Strong organizational and project management skills. A proactive mindset and enthusiasm for fostering a culture of cybersecurity awareness. Professional certifications: CISA, CISM, CISSP, CRISC, ISO27001 LA/LI etc Show more Show less

Position: Cyber Security Expert Experience: 10-18 years Company: Confidential (FTE) Location: Delhi-NCR Budget: 30-35 LPA Certification Required: CISA/CISSP/CISM Cyber security expert: Client wants someone who has hand-on experience on below mentioned technologies. · Ensure that the Client IT systems are secure, efficient, and compliant with relevant regulations and industry standards. · Responsibility & Work Profile will include: Understanding the Project Requirements, Technical Specifications & Scope of work. Designing & Maintaining Security Compliant IT Infra Architecture & Systems. · Audits: Conducting thorough audits of IT systems, processes, and controls to identify weaknesses, vulnerabilities, and areas for improvement in Design. · Risk Assessment: Assessing the risk associated with IT systems and identifying potential threats to data integrity, confidentiality, and availability. · Compliance Management: Ensuring that IT systems and processes comply with relevant laws, regulations, and industry standards & all respective SoPs are security audited and compliant. · Support in preparation of ATP document, SoP document etc. · Security Management: Implementing and maintaining effective security measures to protect the DC-DR & Remote Site's IT assets from cyber threats, including malware, phishing, and unauthorized access & other types of cyber-attacks. Ensuring Security Controls w.r.t SoPs. · Controls Evaluation: Evaluating the effectiveness of existing IT controls and recommending enhancements or new controls to mitigate risks and improve security posture. · Report Generation: Preparing detailed audit reports documenting findings, recommendations, and remediation plans for management and stakeholders. · Training and Awareness: Providing training and awareness programs to educate employees about IT security best practices and compliance requirements. · Continuous Monitoring: Monitoring IT systems and processes continuously to detect and respond to security incidents and compliance breaches in a timely manner. · Collaboration: Collaborating with other departments, to address IT-related risks and compliance issues effectively. Support in VAPT. · Facilitate the smooth integration of additional planned security solutions (such as AntiAPT Solutions, HIDS/HIPS, ZTA etc), suggest the sufficient RU space & inputs for Racking Stacking design and Intelligent cabling for these futuristic requirements. · Overall, the position will play a crucial role in helping Client to maintain the integrity, confidentiality, and availability of their information systems while ensuring compliance with regulatory requirements and industry standards & best practices. Regards Kirti Rustagi hr1@raspl.com Show more Show less

Job Purpose • RBI Returns, RBI-RBS Tranche, CSITE submissions • RBI / CSITE and other regulatory audits • Aadhaar Compliance and Internal Capital Adequacy Assessment Process (ICAAP) submissions • Submissions for Information Security Committee (ISC), Risk Policy and Management Committee (RPMC), IT Apex Committee, IT Strategy Committee, Board meetings etc. • IS, CS Compliance & Governance related activities • Automation Initiatives Job Responsibilities(JR) Deliverables RBI Returns, RBI-RBS Tranche, CSITE Submissions 1. Quarterly RBI / CSITE returns 2. Quarterly RBI-RBS Tranche submissions 3. Monthly CSITE submissions 4. Ad-Hoc CSITE / RBI submissions 5. Incident reporting - RBI,CSITE, CERT-In etc. 6. Tracking and managing Digital Payment Security Controls (DPSC) related compliances. 7. Compliance towards the Advisories, Circulars and Alerts from RBI Classification - Confidential RBI / CSITE and other regulatory audits 1. Managing RBI / CSITE audits; timely collation and submission of compliances & tracking of open observations. 2. National Critical Information Infrastructure Protection Centre (NCIIPC) related requirements. 3. SEBI, NSDL, CDSL, NSE, and BSE related submissions. Aadhaar Compliance and Internal Capital Adequacy Assessment Process (ICAAP) submissions 1. Address Aadhaar related project / process change requirements. 2. Completion of the Aadhar audit as a mandatary requirement for UIDAI. 3. Tracking and monitoring the Aadhar related observations for closure. 4. Quarterly ICAAP submissions. Submissions for Information Security Committee (ISC), Risk Policy and Management Committee (RPMC), IT Apex Committee, IT Strategy Committee, Board meetings etc. 1. Convene and conduct Information Security Committee (ISC) meetings. Documentation and circulation / publication of the minutes of the meeting (MoM). Tracking and monitoring the actionable from the ISC meetings. 2. Timely submission of Notes / presentation deck for Risk Policy and Management Committee (RPMC), IT Apex Committee, IT Strategy Committee, Board meetings etc. Tracking and monitoring the actionable from these meetings. IS, CS Compliance & Governance related activities 1. Develop and periodic review of information security policies, processes, standards and guidelines. Oversee the approval and publication of these documents. 2. Assist in preparing and managing information security (IS) budget. 3. Drive and manage the awareness initiatives for the bank staff, Learning Management System (LMS) Classification - Confidential related course and content, Phishing Simulation (regulatory & internal) etc. 4. Assist in formulating InfoSec skill development & training strategy. Maintain relevant records. 5. Developing enterprise information security effectiveness criteria / metrics including for IT security tools on end points, servers, network. 6. Publish monthly executive metrics summary to senior management in the bank. 7. Point of contact (SPOC) for IT Governance related activities, IT Governance, Risk and Compliance (ITGRC) system management. 8. Managing Statutory, internal / external audits etc. 9. Management and execution of the annual ISG strategy. 10. IA Observations : Effective tracking and monitoring of the observations from the internal audits. Interactions with Internal Audit (IA) team for audit related activities. 11. Data Localization compliance : Guide the business teams for the RBI advisory on data localization. Coordinate with the business teams for arranging and reviewing the System Audit Report (SAR), System Audit Report Certificate (SARC) and Board Resolution / Approval. 12. Compliance towards the requirements of international branches of the bank : Onsite Supervisory Assessment, Half yearly submission of VAPT report etc. Automation Initiatives 1. Requisite guidance and implementation of automation initiatives. Classification - Confidential Educational Qualifications Key Skills • Bachelor’s Degree - IT / computers / electronics • MBA-IT with Compliance Certifications like CISA, CISM, CISSP, COBIT etc. • Risk management • Communication • Knowledge of ISO 27001 and 22301 • Knowledge of risk frameworks • Working with regulators • Knowledge of latest cybersecurity trends & industry best practices on information security in financial Industry. • Working knowledge of security products • Strong skills using Microsoft Office Suite (Word, Excel, Powerpoint) and collaboration tools like O365, Teams. Experience Required • Minimum experience in years : 12 to 15 yrs • Minimum 10 years of experience in managing IT and Information Security compliance management or conducting Information Security / IT audits, handling network security and data center security design, governance and implementation. • Exposure to banking preferable Major Stakeholders 1. Information Technology (IT) 2. Compliance 3. Retail Branch Banking Unit (RBCU) 4. Administration 5. Operations Risk (OR) 6. Credit Intelligence & Control (CIC) 7. Other Business teams Show more Show less

Why you'll LOVE Sagent: You could work anywhere. We know you are talented and looking for something inspiring and impactful. A place where you will make a difference and have a great time doing it! By choosing Sagent, you can be part of our mission to make loans and homeownership simpler and safer for all US consumers. Sagent powers servicers and consumers. You power Sagent! About the Opportunity: Sagent is seeking a Senior Threat Analyst to join a growing team responsible for securing next-generation, cloud-native financial technology systems. We are seeking a skilled and motivated Threat Analyst to join our growing team. This role offers the opportunity to work in a dynamic environment where your expertise will play a critical role identifying, analyzing, and mitigating security threats. You will be responsible for monitoring, analyzing, and responding to potential security incidents, performing in-depth security investigations, and executing regular threat hunting campaigns across the organization. If you are passionate about information security, possess a keen eye for detail, we encourage you to apply and be a part of our mission to safeguard our digital landscape. We'd love to hear from you if you have: Willingness to work outside of standard business hours during critical incidents. Prior experience administrating and securing IT systems or networks (~5+ years), preferably with both in public cloud environment(s) and physical data center location(s). Proven mastery of SQL-like query languages, and proficient in data manipulation and analysis techniques to extract actionable insights from large and complex cybersecurity datasets. Demonstrated ability to maintain collected demeanor under high-pressure security incident response scenarios. Proficiency of MITRE ATT&CK framework and its application to threat hunting campaign scenarios, as a bonus in hybrid cloud environments. Hands-on experience professionally administrating and securing both Windows and Unix/Linux operating systems, and common threats that each are susceptible to. Proven expertise in identifying, analyzing, and mitigating threats that could impact cloud-based and containerized workloads. Experience administrating cloud IaaS and PaaS infrastructure is a plus. Deep understanding of the OSI model and a wide range of common network protocols, enabling effective analysis, detection, and mitigation of security threats at various layers of the network stack. Extensive experience working within Security Information and Event Management (SIEM) platforms, especially building, and optimizing custom detection rules. Excellent communication skills with ability to effectively translate complex technical concepts and findings into clear and concise insights for non-technical stakeholders, fostering collaboration and informed decision-making across cross functional teams. Expertise of scripting languages such as Python (preferred), Bash scripting, or Powershell; prior experience using scripting to automate tasks. Extensive experience working with modern defense-in-depth security tools and technologies such as Intrusion Detection and Prevention (IDS/IPS), Endpoint Detection and Response (EDR) solutions, Cloud Native Application Protection Platform (CNAPP) and Web Application Firewalls (WAF) Enthusiasm for security automation and creative technical ability to identify time-saving or novel automation workflows. Proven understanding of common web-based attacks at runtime, such as those found OWASP Top 10, and how to respond/mitigate each from an operational standpoint. Extensive experience detecting and mitigating email-based threats, including phishing, malware, and spoofing, and as a bonus, hands-on experience in administering and configuring email security tools and protocols to safeguard against these threats. Thorough understanding of threat modeling concepts and methodologies, with the ability to identify compound attack vectors. Support the larger Information Security team & IT teams with security expertise and assistance as needed. 1 Perks! As a Sagent Associate, you will be eligible to participate in our benefit programs beginning on Day #1! We offer a comprehensive package including Remote/Hybrid workplace options, Group Medical Coverage, Group Personal Accidental, Group Term Life Insurance Benefits, Flexible Time Off, Food@Work, Career Pathing, Summer Fridays and much, much more! Why Sagent? Sagent is transforming the mortgage servicing industry by bringing the modern experience customers now expect from loan originations to loan servicing. Our platform lets customers manage their home-owing lives from anywhere while giving servicers lower costs, scale compliance and higher servicing values through full market cycles. Sagent is a joint venture that combines Fiserv Inc.'s decades of market-leading fintech expertise with Warburg Pincus' skill in growing technology companies. We hire innovators and doers to disrupt the last and most complex frontier of lending and housing. We're growing fast and need you to help shape our future. Sagent is an equal opportunity employer, and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status. Show more Show less

This role is for one of the Weekday's clients Min Experience: 2 years Location: Bengaluru, Chennai JobType: full-time We are seeking a highly skilled and motivated Technical Support Engineer to join our dynamic team. This role is crucial in providing expert-level technical assistance and ensuring seamless email security and authentication for our clients. You will be responsible for managing and resolving complex technical issues related to email security, DNS configurations, Google Workspace, Microsoft Exchange, DMARC, DKIM, SPF, and overall email authentication protocols . This position is ideal for individuals with a strong foundation in cybersecurity , email systems , and a passion for delivering exceptional support experiences. Requirements Key Responsibilities: Serve as the primary technical contact for clients, providing in-depth troubleshooting and resolution for email security issues, including spam filtering, phishing detection, and email delivery failures. Manage and troubleshoot DNS configurations, including A, MX, TXT, SPF, DKIM, and DMARC records, ensuring correct domain authentication and email flow. Advise clients on best practices for implementing email authentication protocols to enhance security and reduce email spoofing and phishing attacks. Support and administer Google Workspace and Microsoft Exchange environments, ensuring secure and efficient mail routing and delivery. Investigate and resolve issues related to email delivery, bounce-backs, and unauthorized access attempts, collaborating with internal teams and third-party vendors if necessary. Conduct root cause analysis for recurring issues and recommend long-term solutions to enhance system stability and email security posture. Assist clients in configuring, optimizing, and maintaining DMARC, DKIM, and SPF records to align with their security and deliverability goals. Work closely with cybersecurity teams to identify potential vulnerabilities and implement proactive security measures to safeguard email communications. Document issue resolutions, create knowledge base articles, and contribute to continuous improvement of support processes and tools. Stay updated with emerging threats, email security technologies, and industry best practices to provide proactive guidance to clients. Required Skills and Qualifications: 2-6 years of hands-on experience in technical support, preferably with a focus on email security, authentication protocols, and DNS management. Strong understanding of email authentication standards including DMARC, DKIM, SPF, and their implementation across diverse platforms. Solid experience with DNS configuration and troubleshooting. Proficiency with Google Workspace and Microsoft Exchange, including administration and support. Sound knowledge of cybersecurity concepts and practices, especially related to email systems. Excellent problem-solving skills with a focus on root cause analysis and long-term resolution. Strong interpersonal and communication skills, with the ability to explain technical issues to both technical and non-technical audiences. Proven ability to work in a fast-paced, collaborative environment with multiple priorities. Certifications in email security, Google Workspace, Microsoft Exchange, or cybersecurity are a plus Show more Show less

This role is for one of the Weekday's clients Min Experience: 2 years Location: Bengaluru, Chennai JobType: full-time We are seeking a highly skilled and motivated Technical Support Engineer to join our dynamic team. This role is crucial in providing expert-level technical assistance and ensuring seamless email security and authentication for our clients. You will be responsible for managing and resolving complex technical issues related to email security, DNS configurations, Google Workspace, Microsoft Exchange, DMARC, DKIM, SPF, and overall email authentication protocols . This position is ideal for individuals with a strong foundation in cybersecurity , email systems , and a passion for delivering exceptional support experiences. Requirements Key Responsibilities: Serve as the primary technical contact for clients, providing in-depth troubleshooting and resolution for email security issues, including spam filtering, phishing detection, and email delivery failures. Manage and troubleshoot DNS configurations, including A, MX, TXT, SPF, DKIM, and DMARC records, ensuring correct domain authentication and email flow. Advise clients on best practices for implementing email authentication protocols to enhance security and reduce email spoofing and phishing attacks. Support and administer Google Workspace and Microsoft Exchange environments, ensuring secure and efficient mail routing and delivery. Investigate and resolve issues related to email delivery, bounce-backs, and unauthorized access attempts, collaborating with internal teams and third-party vendors if necessary. Conduct root cause analysis for recurring issues and recommend long-term solutions to enhance system stability and email security posture. Assist clients in configuring, optimizing, and maintaining DMARC, DKIM, and SPF records to align with their security and deliverability goals. Work closely with cybersecurity teams to identify potential vulnerabilities and implement proactive security measures to safeguard email communications. Document issue resolutions, create knowledge base articles, and contribute to continuous improvement of support processes and tools. Stay updated with emerging threats, email security technologies, and industry best practices to provide proactive guidance to clients. Required Skills and Qualifications: 2-6 years of hands-on experience in technical support, preferably with a focus on email security, authentication protocols, and DNS management. Strong understanding of email authentication standards including DMARC, DKIM, SPF, and their implementation across diverse platforms. Solid experience with DNS configuration and troubleshooting. Proficiency with Google Workspace and Microsoft Exchange, including administration and support. Sound knowledge of cybersecurity concepts and practices, especially related to email systems. Excellent problem-solving skills with a focus on root cause analysis and long-term resolution. Strong interpersonal and communication skills, with the ability to explain technical issues to both technical and non-technical audiences. Proven ability to work in a fast-paced, collaborative environment with multiple priorities. Certifications in email security, Google Workspace, Microsoft Exchange, or cybersecurity are a plus Show more Show less

Who We Are Addepar is a global technology and data company that helps investment professionals provide the most informed, precise guidance for their clients. Hundreds of thousands of users have entrusted Addepar to empower smarter investment decisions and better advice over the last decade. With client presence in more than 50 countries, Addepar’s platform aggregates portfolio, market and client data for over $7 trillion in assets. Addepar’s open platform integrates with more than 100 software, data and services partners to deliver a complete solution for a wide range of firms and use cases. Addepar embraces a global flexible workforce model with offices in Silicon Valley, New York City, Salt Lake City, Chicago, London, Edinburgh, Pune, and Dubai. The Role We are seeking a versatile Senior Recruiter to join our global recruiting team and assist in our hiring efforts for various technical and non-technical positions. In this role, you will work closely with recruiters and hiring managers to identify and connect with premier talent, ensuring a diverse pipeline of candidates for Addepar's open roles. You will have strong experience in end to end recruitment lifecycle and sourcing and screening talent through various channels including, LinkedIn Recruiter, Greenhouse, social media, and open-source communities. If you're motivated, resourceful, and thrive in a fast-paced environment, we would love to hear from you. What You’ll Do Collaborate with hiring managers, recruiters, and sourcers to understand the hiring needs and job requirements for product, engineering, sales, data operations and services teams Provide innovative and scalable sourcing solutions to help drive a pipeline of talent to meet our hiring needs Leverage Greenhouse, LinkedIn, and other channels to source passive and active candidates at all levels (intern to senior) End to end recruiting experience right from getting the requirement upto getting the candidate onboarded. Maintain accurate and up-to-date data in the ATS, ensuring data integrity and compliance with internal processes and guidelines Partner with recruiters and coordinators to schedule interviews Stay up to date with industry trends, market insights, and talent acquisition best practices, sharing knowledge and recommendations with the recruiting team Who You Are Minimum 8+ years of recruiting experience with strong experience in end to end recruiting lifecycle Previous experience recruiting for technical and non-technical roles on a global scale with a focus on APAC (primarily India) You have a passion for connecting with professionals, and aligning them to jobs that fit their experience and motivation Have the ability to build deep relationships with candidates, hiring managers, and the broader recruiting team Excellent organizational skills, with the ability to manage multiple priorities at once, and meet deadlines in a fast-paced environment You enjoy solving problems, and have the ability to think creatively to identify top-tier talent You have deep knowledge of the regional and global talent market for technology and non-tech roles, along with the employment laws and regulations You know how to use data and market intelligence to influence the overall hiring strategy Must have experience with using modern ATS such as Greenhouse and other recruiting tools and sources Important Note - This role requires working from our Pune office 3 days a week (Hybrid work model) Our Values Act Like an Owner - Think and operate with intention, purpose and care. Own outcomes. Build Together - Collaborate to unlock the best solutions. Deliver lasting value. Champion Our Clients - Exceed client expectations. Our clients’ success is our success. Drive Innovation - Be bold and unconstrained in problem solving. Transform the industry. Embrace Learning - Engage our community to broaden our perspective. Bring a growth mindset. In addition to our core values, Addepar is proud to be an equal opportunity employer. We seek to bring together diverse ideas, experiences, skill sets, perspectives, backgrounds and identities to drive innovative solutions. We commit to promoting a welcoming environment where inclusion and belonging are held as a shared responsibility. We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation. PHISHING SCAM WARNING: Addepar is among several companies recently made aware of a phishing scam involving con artists posing as hiring managers recruiting via email, text and social media. The imposters are creating misleading email accounts, conducting remote “interviews,” and making fake job offers in order to collect personal and financial information from unsuspecting individuals. Please be aware that no job offers will be made from Addepar without a formal interview process. Additionally, Addepar will not ask you to purchase equipment or supplies as part of your onboarding process. If you have any questions, please reach out to TAinfo@addepar.com. Show more Show less

Close date: Thursday, 31 July 2025 Working pattern: Full time Contract Type: Permanent Location: Gurgaon (SEZ1) Department: 13 - 13 Security Description & Requirements: Bravura’s Commitment and Mission At Bravura Solutions, collaboration, diversity and excellence matter. We value your ideas, giving you room to be curious and innovate in an exciting, fast-paced, and flexible environment. We look for many different skills and abilities, as well as how you can add value to Bravura and our culture. As a Global FinTech market leader and ASX listed company, Bravura is a trusted partner to over 350 leading financial services clients, delivering wealth management technology and products. We invest significantly in our technology hubs and innovation labs, which inspire and drive our creative, future-focused mindset. We take pride in developing cutting-edge, digital first technology solutions that support our clients to achieve financial security and prosperity for their customers. Position Overview The Senior Information Security Officer is responsible for supporting the implementation and operation of the organisation's Information Security Management System (ISMS) within their region. This role will drive security risk management, policy compliance, audits (internal, external and client), training and awareness, supply chain risk, and support security operations in incident management. As a Managed Service Provider (MSP) and data processor for clients, the ISO will ensure that security controls align with client contractual obligations, regulatory requirements, and industry best practices. The ISO will work closely with global security leadership, regional stakeholders and clients to address both internal and client-specific security challenges. The position is within the Information Security team. Main activities will include but are not limited to: Responsibility Internal Audit & Assurance: Oversee the implementation and operations of the ISMS within the region. Ensure and support alignment with global security policies and regulatory requirements including ISO27001, SOC2 type II and PCI-DSS. Continuously assess and improve security controls and processes. Information Security Risk Management Identify, assess, and mitigate security risks. Maintain the risk register and track remediation activities. Provide risk-based guidance to business units, IT teams, and client-facing operations. Information Security Policy & Standards Ensure compliance with corporate security policies, frameworks, and client-specific security mandates. Develop and enforce security standards and client requirements. Input into periodic reviews and updates to security policies to align with evolving requirements. Information Security Audit & Compliance Lead and support internal and external security audits, ensuring timely remediation of findings. Provide security assurance to clients by responding to security questionnaires and participating in client audits. Coordinate with service delivery teams to meet client-specific obligations. Monitor and report on security posture, client security commitments, and compliance status. Information Security Training & Awareness Develop, support deliver security awareness programs Support phishing exercises and other training initiatives to enhance security culture. Collaborate with HR and other departments to ensure security education is embedded in employee onboarding and ongoing training. Supply Chain Risk Management Assess and manage security risks associated with third-party vendors and suppliers. Ensure that security requirements are included in vendor contracts and SLAs. Perform regular security assessments of critical suppliers, considering the impact on client services. Security Operations & Incident Management Support Assist in managing and responding to security incidents within the region, to ensure rapid containment and remediation. Work with the Security Operations team to protect both internal and client environments. Support post-incident reviews and contribute to continuous improvement in incident handling, including lessons learned for client operations. In addition to the above position-specific responsibilities, all employees are required to undertake any other reasonable duties and responsibilities within your capability and skills, when requested to do so. Qualifications and Experience Bachelor’s degree in Information Security, Computer Science, or related field (or equivalent experience). 5+ years of experience in an information security role, preferably with regional oversight in an MSP or data processing environment. Strong understanding of ISO27001, NIST, GDPR, and other security and data protection frameworks. Experience in security risk management, audits, compliance, and client security assurance. Knowledge of security operations, incident response, and managed security services. Familiarity with supply chain security and third-party risk management. Excellent communication and stakeholder management skills, with experience working with clients on security matters. Security certifications such as CISSP, CISM, or CRISC are preferred. Working at Bravura Our people are the heart of our business. We work hard to provide a rich employee experience and a robust framework for ongoing career development. Competitive salary and employee benefits scheme 2 paid volunteering days and a range of community-based initiatives to get involved in Parental (including secondary) leave policy Free meals and transport So, what’s next? We make hiring decisions based on your experience, skills and passion so even if you don’t match every listed skill or tick all the boxes, we’d still love to hear from you. Please note that interviews are primarily conducted virtually and if you require any reasonable adjustments or would like to note which pronouns you use, please let us know. All final applicants for this position will be asked to consent to a criminal record and background check. Please note that people with criminal records are not automatically barred from applying for this position. Each application will be considered on its merits. Youtube Video

Level Up Your Career with Zynga! At Zynga, we bring people together through the power of play. As a global leader in interactive entertainment and a proud label of Take-Two Interactive, our games have been downloaded over 6 billion times—connecting players in 175+ countries through fun, strategy, and a little friendly competition. From thrilling casino spins to epic strategy battles, mind-bending puzzles, and social word challenges, our diverse game portfolio has something for everyone. Fan-favorites and latest hits include FarmVille™, Words With Friends™, Zynga Poker™, Game of Thrones Slots Casino™, Wizard of Oz Slots™, Hit it Rich! Slots™, Wonka Slots™, Top Eleven™, Toon Blast™, Empires & Puzzles™, Merge Dragons!™, CSR Racing™, Harry Potter: Puzzles & Spells™, Match Factory™, and Color Block Jam™—plus many more! Founded in 2007 and headquartered in California, our teams span North America, Europe, and Asia, working together to craft unforgettable gaming experiences. Whether you're spinning, strategizing, matching, or competing, Zynga is where fun meets innovation—and where you can take your career to the next level. Join us and be part of the play! TBD We are seeking experienced and passionate engineers to join our collaborative and innovative team. Zynga’s mission is to “Connect the World through Games” by building a truly social experience that makes the world a better place. The ideal candidate needs to have a strong focus on building high-quality, maintainable software that has global impact. The Analytics Engineering team is responsible for all things data at Zynga. We own the full game and player data pipeline - from ingestion to storage to driving insights and analytics. As a Data Engineer, you will be responsible for the software design and development of quality services and products to support the Analytics needs of our games. In this role, you will be part of our Analytics Engineering group focusing on advanced technology developments for building scalable data infrastructure and end-to-end services which can be leveraged by the various games. We are a 120+ organization servicing 1500 others across 13 global locations. Your responsibilities will include Build and operate a multi PB-scale data platform. Design, code, and develop new features/fix bugs/enhancements to systems and data pipelines (ETLs) while adhering to the SLA. Identifying anomalies, inconsistencies in data sets and algorithms and flagging it to the relevant team and / or fixing the bugs in the data workflows where applicable. Follow the best engineering methodologies towards ensuring performance, reliability, scalability, and measurability. Collaborate effectively with teammates, contributing to an innovative environment of technical excellence. You will be a perfect fit if you have Bachelor’s degree in Computer Science, or a related technical discipline (or equivalent). 3+ years of strong data engineering design/development experience in building large-scale, distributed data platforms/products. Advanced coding expertise in SQL & Python/JVM-based language. Exposure to heterogeneous data storage systems like relational, NoSQL, in-memory etc. Knowledge of data modeling, lineage, data access and its governance. Proficient in AWS services like Redshift, Kinesis, Lambda, RDS, EKS/ECS etc. Exposure to open source software, frameworks and broader powerful technologies (Airflow, Kafka, DataHub etc). Shown ability to deliver work on time with attention to quality. Excellent written and spoken communication skills and ability to work optimally in a geographically distributed team environment. We encourage you to apply even if you don’t meet every single requirement. Your unique perspective and experience could be exactly what we’re looking for. We are proud to be an equal opportunity employer, which means we are committed to creating and celebrating diverse thoughts, cultures, and backgrounds throughout our organization. Employment with us is based on substantive ability, objective qualifications, and work ethic – not an individual’s race, creed, color, religion, sex or gender, gender identity or expression, sexual orientation, national origin or ancestry, alienage or citizenship status, physical or mental disability, pregnancy, age, genetic information, veteran status, marital status, status as a victim of domestic violence or sex offenses, reproductive health decision, or any other characteristics protected by applicable law. As an equal opportunity employer, we are committed to providing the necessary support and accommodation to qualified individuals with disabilities, health conditions, or impairments (subject to any local qualifying requirements) to ensure their full participation in the job application or interview process. Please contact us at accommodationrequest@zynga.com to request any accommodations or for support related to your application for an open position. Please be aware that Zynga does not conduct job interviews or make job offers over third-party messaging apps such as Telegram, WhatsApp, or others. Zynga also does not engage in any financial exchanges during the recruitment or onboarding process, and will never ask a candidate for their personal or financial information over an app or other unofficial chat channel. Any attempt to do so may be the result of a scamp or phishing attack, and you should not engage. Zynga’s in-house recruitment team will only contact individuals through their official Company email addresses (i.e., via a zynga.com, naturalmotion.com, smallgiantgames.com, themavens.com, gram.gs email domain).

Position Overview ABOUT APOLLO Apollo is a high-growth, global alternative asset manager. In our asset management business, we seek to provide our clients excess return at every point along the risk-reward spectrum from investment grade to private equity with a focus on three investing strategies: yield, hybrid, and equity. For more than three decades, our investing expertise across our fully integrated platform has served the financial return needs of our clients and provided businesses with innovative capital solutions for growth. Through Athene, our retirement services business, we specialize in helping clients achieve financial security by providing a suite of retirement savings products and acting as a solutions provider to institutions. Our patient, creative, and knowledgeable approach to investing aligns our clients, businesses we invest in, our employees, and the communities we impact, to expand opportunity and achieve positive outcomes. OUR PURPOSE AND CORE VALUES Our Clients Rely On Our Investment Acumen To Help Secure Their Future. We Must Never Lose Our Focus And Determination To Be The Best Investors And Most Trusted Partners On Their Behalf. We Strive To Be The leading provider of retirement income solutions to institutions, companies, and individuals. The leading provider of capital solutions to companies. Our breadth and scale enable us to deliver capital for even the largest projects – and our small firm mindset ensures we will be a thoughtful and dedicated partner to these organizations. We are committed to helping them build stronger businesses. A leading contributor to addressing some of the biggest issues facing the world today – such as energy transition, accelerating the adoption of new technologies, and social impact – where innovative approaches to investing can make a positive difference. We are building a unique firm of extraordinary colleagues who: Outperform expectations Challenge Convention Champion Opportunity Lead responsibly Drive collaboration As One Apollo team, we believe that doing great work and having fun go hand in hand, and we are proud of what we can achieve together. Our Benefits Apollo relies on its people to keep it a leader in alternative investment management, and the firm’s benefit programs are crafted to offer meaningful coverage for both you and your family. Please reach out to your Human Capital Business Partner for more detailed information on specific benefits. Position Overview Apollo’s Cybersecurity team is currently seeking an Associate Director of Cyber Services, to join our dynamic and distributed Cyber Security team. The team is responsible for protecting the environment from cyber risks, responding to threats, educating resources on cyber best practices, and running cyber controls. As Associate Director, Cyber Services, you will be the local leader of Cyber service-delivery and troubleshooting for Apollo users. The Associate Director, Cyber Services is also responsible for investigation of global business-centric data security alerts and an assortment of Cyber-internal and business-centric processes. The ideal candidate will have significant team leadership experience in both Cybersecurity and IT support, have a strong security background, and experience testing/validating security controls. The ideal candidate will also demonstrate problem-solving skills at both the technical and business level, with a clear penchant for offering solutions. You will work closely with other members of information security and information technology. You will participate in a 24x7 follow-to-sun model of cyber assistance for our corporate workforce. This is an exciting opportunity on a growing team that is scaling and investing in their people, process, and technology. This role requires working flexible hours when needed to support the cybersecurity mission at Apollo. The ideal candidate will have experience in all the above areas, management, and a demonstrated ability to work well with stakeholders from diverse backgrounds. If you are a candidate looking to be a part of a dynamic team, that continuously challenges itself, is committed to learning and improving, and passionate about cybersecurity, then this could be the right opportunity for you! Primary Responsibilities You will be expected to be an expert in troubleshooting cyber tools and finding acceptable workarounds that satisfy both cyber policies and standards as well as satisfy and support business needs. Join the cybersecurity leadership team representing in-region interests and execution. Serve as the local leader of the Cyber Defense team, with primary responsibility of ensuring in-region success of cyber initiatives and follow-the-sun support on investigations and incidents. Ensure our Cyber Defense controls are operating as expected Partner effectively with the global Client Services teams and act as the primary point of contact for stakeholders and business users regarding cyber security matters. Deliver the highest level of client service with professionalism and promote Cyber’s brand. Oversee Data Security and Insider Threat initiatives, ensuring the protection of sensitive information. Monitor Data Protection and Insider Threat systems for alerts and follow-up effectively to mitigate risk in a timely and careful manner. Conduct and manage insider threat investigations, identifying and mitigating potential risks. Support business users with technical issues related to cyber defense tools, including SSL decryption, firewalls, and troubleshooting security-related problems. Create effective and efficient procedures for global Cyber Services teams to follow. Collaborate with global cyber security teams to align local practices with organizational standards. Exhibit exceptional leadership skills in building and developing team members; cultivate strong teams focused on innovation, agile delivery, and compliance. Drive continuous improvement of governance and controls within the Cyber Defense organization, including capturing evolving metrics and developing processes that leverage cyber tools. Stay updated on the latest cyber threats and trends to proactively address potential vulnerabilities. Qualifications & Experience Bachelor’s degree in computer science, Information Technology, or related field. Professional Certifications such as CISSP, CISM, CEH, GCIH, GCIA, GSOC a plus experience Required: 5-8 years of experience in Enterprise Cybersecurity, or with a reputed Services / consulting firm offering security operations consulting or equivalent public sector experience 5-8 years of experience as a successful team manager, including both a service queue and project work. Extensive experience communicating with internal and external business stakeholders. Experience engaging in a 24x7 operational environment. Experience in Data Protection: discovery, classification, labelling, and policy enforcement. Experience implementing, supporting, and tuning Cyber Security technical controls, such as host firewalls, URL filtering, endpoint detection, NGAV, IPS system, email security, anti-phishing controls. Experience with SQL and scripting (such as PowerShell and Python). Results oriented and the ability to manage multiple tasks and deadlines with attention to detail. Strong communication and self-management skills, especially reporting across time zones. Apollo provides equal employment opportunities regardless of age, disability, gender reassignment, marital or civil partner status, pregnancy or maternity, race, colour, nationality, ethnic or national origin, religion or belief, veteran status, gender/sex or sexual orientation, or any other criterion or circumstance protected by applicable law, ordinance, or regulation. The above criteria are intended to be used as a guide only – candidates who do not meet all the above criteria may still be considered if they are deemed to have relevant experience/ equivalent levels of skill or knowledge to fulfil the requirements of the role. Any job offer will be conditional upon and subject to satisfactory reference and background screening checks, all necessary corporate and regulatory approvals or certifications as required from time to time, and entering into definitive contractual documentation satisfactory to Apollo. Show more Show less

As part of our offensive security team, you’ll work with cutting-edge tools, innovative techniques, and an experienced team to challenge the status quo and strengthen the digital landscape. Key Responsibilities - Execute full-scope Red Team engagements, including phishing, social engineering, and network penetration. Simulate advanced hacking techniques and replicate adversary tactics to uncover security weaknesses. Work closely with Blue Teams in Purple Team exercises to enhance detection and response capabilities. Develop, extend, or modify exploits, shellcode, or tools to simulate sophisticated attacks. Perform reverse engineering of malware (advantageous but not mandatory). Write clear and actionable reports outlining vulnerabilities, exploitation techniques, and remediation strategies. Stay updated on the latest cyber threats, attack methods, and emerging technologies. Required Skills & Experience - Deep understanding and extensive experience in penetration testing methodologies and tools. Strong technical knowledge of various technologies and the ability to quickly learn and adapt to new ones. A passion for learning new technologies and breaking them apart is essential. Expertise in Active Directory attacks and defenses. Proficiency with tools such as Metasploit, Cobalt Strike, BloodHound, and similar offensive security frameworks. Knowledge of hacking methods and frameworks like MITRE ATT&CK. Strong scripting skills (Python, PowerShell, Bash) and experience in manual exploitation techniques. Certifications such as OSCP, OSEP, CRTO , or equivalent are highly valued. What We Offer Competitive salary and benefits package. Exciting projects that challenge your skills and creativity. A collaborative environment where you’ll learn and grow alongside top talent. Access to cutting-edge tools and resources to stay ahead in the cybersecurity field. Opportunities to shape the future of offensive security and contribute to meaningful projects. Location Onsite/Workfrom Office. In special case Remote Why Join SecureLayer7? At SecureLayer7, you’re not just an employee—you’re part of a team that thrives on solving tough challenges, exploring the unknown, and making an impact. If you’re excited about breaking systems to make them stronger and securing the future of technology, we’d love to have you onboard. Job Types: Full-time, Permanent Pay: ₹300,000.00 - ₹2,000,000.00 per year Work Location: In person

Job Title: Security L3 Engineer /Network Security engineer Location: Mumbai Airoli Overview: We are seeking a highly skilled and experienced Security L3 Engineer to join our team. This individual will be responsible for managing, troubleshooting, and optimizing security infrastructure across various technologies, ensuring the security of our network and data. The ideal candidate will have extensive hands-on experience with firewalls, IDS/IPS, proxies, WAF, and email gateways, specifically with Palo Alto, Juniper SRX, Fortigate, McAfee, Zscaler, Akamai, and Cisco Ironport. Key Responsibilities: Firewall Management: Configure, manage, and troubleshoot Palo Alto, Juniper SRX, and Fortigate firewalls to ensure optimal security configurations, rule sets, and access control policies. Perform regular firewall audits, identify security vulnerabilities, and provide recommendations for improvements. IDS/IPS Management: Monitor and manage McAfee IDS/IPS systems for intrusion detection and prevention. Analyze and respond to security alerts, ensuring timely incident response and escalation where necessary. Proxy Management: Configure and maintain McAfee and Zscaler proxy solutions to monitor and secure internet traffic. Troubleshoot proxy-related issues and ensure that web traffic is being securely filtered according to company policies. WAF Management: Administer and optimize Akamai Web Application Firewall (WAF) to protect web applications from threats and vulnerabilities. Conduct performance tuning and ensure continuous protection for applications against evolving threats. Email Gateway Security: Manage and maintain Cisco Ironport email gateway for email security, including spam filtering, malware detection, and preventing phishing attacks. Monitor email traffic, troubleshoot security issues, and ensure compliance with email security best practices. Security Incident Management: Respond to and investigate security incidents, conducting root cause analysis and ensuring effective remediation steps are taken. Work closely with internal teams and external vendors to mitigate any security threats. Security Policy and Procedure Development: Assist in the development and enforcement of security policies, procedures, and best practices across the organization. Ensure that security policies and procedures are updated in accordance with industry standards and regulations. Collaboration and Reporting: Collaborate with cross-functional teams to ensure seamless security operations and compliance. Prepare and present security reports to senior management, highlighting critical issues and recommending solutions. Mentoring and Support: Provide guidance and mentoring to junior team members, sharing best practices and knowledge in security management. Act as an escalation point for complex security issues and provide advanced troubleshooting support. Qualifications and Skills: Experience: At least 5 years of hands-on experience working with security technologies, specifically Palo Alto Firewalls, Juniper SRX, Fortigate, McAfee IDS/IPS, McAfee/Zscaler Proxy, Akamai WAF, and Cisco Ironport. Experience in managing complex network security infrastructure and ensuring its proper functioning. Certifications: Palo Alto Networks Certified Network Security Engineer (PCNSE) (preferred). Certified Information Systems Security Professional (CISSP) or equivalent (preferred). Any relevant certifications for McAfee, Zscaler, Akamai, Juniper, Fortigate, and Cisco Ironport (highly desirable). Technical Skills: In-depth knowledge of network security protocols and technologies. Strong understanding of firewall configurations, IDS/IPS systems, email security, web application firewalls, and proxy solutions. Expertise in incident management, vulnerability analysis, and security monitoring tools. Strong troubleshooting and analytical skills. Soft Skills: Excellent communication and interpersonal skills, with the ability to collaborate effectively with both technical and non-technical teams. Strong organizational and time management skills, with the ability to handle multiple priorities and meet deadlines. Technologies: Technologies Product Firewall Palo Alto Juniper SRX Fortigate VPN CISCO FIREPOWER / ASA DDoS Arbor DNS Security Cisco Umbrella NAC Cisco ISE Firewall Analyzer AlgoSec IDS/IPS McAfee Proxy McAfee / Zscaler Adv. Threat Protection FireEye WAF Akamai Email Gateway Cisco Ironport Certifications required – PCNSA/PCNSE JNCIA/JNCIP Security ZIA-A/ZIA-P -Zscaler Internet Access Show more Show less