682 Qualys Jobs - Page 26

Come work at a place where innovation and teamwork come together to support the most exciting missions in the world! Job Description Rapidly evolving and advanced cyber threats require a radical transformation in the security market to meet customer needs and protect organizations. This is now a C-level and Board topic in many organizations. Qualys is leading this transformation with 100% SaaS based solutions. With over 3 Billion annual scans, +50 Global F100 brands and over 8,800 customers, Qualys is the life-blood of many organizations. The Qualys Cloud Platform specializes in providing a holistic view of the security vulnerabilities to an organization before they can be exploited. The Qualys brand is trusted by Microsoft, Dow Jones, Daimler, Facebook, GE, Home Depot and many others. Description: We are seeking a talented Senior Software Engineer to work on Qualys’ next-generation Platform & Middleware. Working with a team of engineers and architects, you will be responsible for prototyping, designing, developing and supporting a highly scalable SaaS based cloud security platform. This is a great opportunity to be an integral part of a team building Qualys’ next generation microservices based technology platform processing over a 100 million transactions and terabytes of data per day, leverage open source technologies, and work on challenging and business-impacting projects Responsibilities: Co-develop Qualys’ best-in-class next-generation platform and middleware products Create high-performance APIs, libraries and microservices that scale to meet/exceed the demands of processing over a 100 million transactions and terabytes of data per day Research, evaluate and adopt next generation technologies Produce high quality software following good architecture and design principles that you and your team will find easy to work with in the future Requirements: 3+ years as a hands-on engineer developing SaaS based software products and solutions for service oriented deployments in public (AWS, Azure, Rackspace, etc.) or private clouds. Have built scalable SaaS platforms utilizing microservices/distributed systems architecture using: RESTful API's consumed by internal and external partners Messaging middleware using JMS, AMQP, Kafka, NATS, etc. In-memory caching using Redis, Memcached, etc. Strong Java programming skills including object oriented design, prototyping, development, testing, profiling, etc. Knowledge of JVM concepts like garbage collection, heap, stack, profiling, class loading, etc. Understand data structures and algorithms Expertise with RDBMS systems (preferably Oracle) Experience with NoSQL databases (preferably Cassandra) Bachelors/Masters/Doctorate in Computer Science or equivalent Bonus Points if you have: Built a technology platform from the ground up Developed search based applications using Elasticsearch or Solr Worked with Angular.js, React, D3.js or other JavaScript frameworks Show more Show less

Come work at a place where innovation and teamwork come together to support the most exciting missions in the world! You will get to team up with incredibly talented and highly motivated engineers and architects innovating the next generation of Qualys Technology Platform processing over one hundred million transactions and terabytes of data per day. As a part of this team, you will be working in a fast-paced environment prototyping, designing, developing, and supporting a highly scalable SaaS-based cloud security platform. We leverage open-source technologies to solve challenging problems aligned with the enterprise security business needs You will be working on groundbreaking ideas and innovations which will be translated into products as features or new products themselves. Responsibilities Research, prototype and develop solutions to innovate and improve Qualys’ technology platform. Research and develop cloud native solutions across available public clouds e.g. AWS, AZURE, GCP, OCI etc. Design and implement distributed, scalable, high-performance micro service-based applications Produce high-quality software with a scalable architecture and design principles Write unit/integration tests for your code Document your code, design and provide solutions Requisite Qualifications Strong problem solving, analytical and communication skills Excellent programming and designing skills in Java with minimum 4+ years of professional experience developing applications using Spring Boot / micro-services. Good understanding of relational databases and/or NoSQL DB, preferably Cassandra, Elasticsearch Professional experience working on indexing technology like Elastic Search and caching technologies like Redis or Memcached Good understanding of data structures and algorithms, application design. Professional experience developing software using micro services oriented architecture. Prefered Qualifications Hands on knowledge of public cloud providers like AWS/Azure/GCP/OCI Bachelor or Masters degree in Computer Science Professional experience with Jenkins, and Kubernetes Experience with stream processing technologies like Apache Flink Show more Show less

Come work at a place where innovation and teamwork come together to support the most exciting missions in the world! Job Description Rapidly evolving and advanced cyber threats require a radical transformation in the security market to meet customer needs and protect organizations. This is now a C-level and Board topic in many organizations. Qualys is leading this transformation with 100% SaaS based solutions. With over 3 Billion annual scans, +50 Global F100 brands and over 8,800 customers, Qualys is the life-blood of many organizations. The Qualys Cloud Platform specializes in providing a holistic view of the security vulnerabilities to an organization before they can be exploited. The Qualys brand is trusted by Microsoft, Dow Jones, Daimler, Facebook, GE, Home Depot and many others. Description: We are seeking a talented Senior Software Engineer to work on Qualys’ next-generation Platform & Middleware. Working with a team of engineers and architects, you will be responsible for prototyping, designing, developing and supporting a highly scalable SaaS based cloud security platform. This is a great opportunity to be an integral part of a team building Qualys’ next generation microservices based technology platform processing over a 100 million transactions and terabytes of data per day, leverage open source technologies, and work on challenging and business-impacting projects Responsibilities: Co-develop Qualys’ best-in-class next-generation platform and middleware products Create high-performance APIs, libraries and microservices that scale to meet/exceed the demands of processing over a 100 million transactions and terabytes of data per day Research, evaluate and adopt next generation technologies Produce high quality software following good architecture and design principles that you and your team will find easy to work with in the future Requirements: 5+ years as a hands-on engineer developing SaaS based software products and solutions for service oriented deployments in public (AWS, Azure, Rackspace, etc.) or private clouds. Have built scalable SaaS platforms utilizing microservices/distributed systems architecture using: RESTful API's consumed by internal and external partners Messaging middleware using JMS, AMQP, Kafka, NATS, etc. In-memory caching using Redis, Memcached, etc. Strong Java programming skills including object oriented design, prototyping, development, testing, profiling, etc. Knowledge of JVM concepts like garbage collection, heap, stack, profiling, class loading, etc. Understand data structures and algorithms Expertise with RDBMS systems (preferably Oracle) Experience with NoSQL databases (preferably Cassandra) Bachelors/Masters/Doctorate in Computer Science or equivalent Bonus Points if you have: Built a technology platform from the ground up Developed search based applications using Elasticsearch or Solr Worked with Angular.js, React, D3.js or other JavaScript frameworks Show more Show less

Come work at a place where innovation and teamwork come together to support the most exciting missions in the world! We are seeking a talented Senior Software Engineer to work on Qualys’ next-generation Platform & Middleware. Working with a team of engineers and architects, you will be responsible for prototyping, designing, developing and supporting a highly scalable SaaS based cloud security platform. This is a great opportunity to be an integral part of a team building Qualys’ next generation microservices based technology platform processing over a 100 million transactions and terabytes of data per day, leverage open source technologies, and work on challenging and business-impacting projects. Responsibilities Co-develop Qualys’ best-in-class next-generation platform and middleware products Create high-performance APIs, libraries and microservices that scale to meet/exceed the demands of processing over a 100 million transactions and terabytes of data per day Research, evaluate and adopt next generation technologies Produce high quality software following good architecture and design principles that you and your team will find easy to work with in the future Requirements 6 years as a hands-on engineer developing SaaS based software products and solutions for service-oriented deployments in public (AWS, Azure, Rackspace, etc.) or private clouds. Have built scalable SaaS platforms utilizing microservices/distributed systems architecture using: RESTful API's consumed by internal and external partners Messaging middleware using JMS, Kafka etc. In-memory caching using Redis, Memcached, etc. Strong Java programming skills including object oriented design, prototyping, development, testing, profiling, etc. Understand data structures and algorithms Expertise with RDBMS systems (preferably Oracle) Experience with NoSQL databases (preferably Cassandra) Knowledge of Docker, Kubernetes, Jenkins and related CI/CD tools Bachelors/Masters/Doctorate in Computer Science or equivalent Show more Show less

Come work at a place where innovation and teamwork come together to support the most exciting missions in the world! About The Job We are seeking a talented Senior Software Engineer to work on Qualy's next-generation security product. Working with a team of engineers and architects, you will be responsible for prototyping, designing, developing, and supporting a highly scalable SaaS-based cloud security product. You will get to team up with incredibly talented and highly motivated engineers and architects innovating on product processing over millions of transactions and terabytes of data per day. Responsibilities Research, prototype, and develop solutions to innovate and improve Qualys' security products. Co-develop Qualy's best-in-class next-generation SaaS application. Create high-performance APIs, libraries, and microservices that scale to meet/exceed the demands of processing over millions of transactions and terabytes of data per day. Produce high-quality software following good architecture and design principles that you and your team will find easy to work with in the future. Research, evaluate, and adopt next-generation technologies. Designing and implementing microservices that use the Spring boot framework. Requisite Qualifications Excellent programming and designing skills with 4-7 years of hands-on experience in Java back-end development and skills with Spring-boot framework. Messaging middleware using Kafka . In-memory caching using Redis, Memcached, etc. Strong Java programming skills including object-oriented design, prototyping, development, testing, profiling, etc. Understand data structures and algorithms Expertise with RDBMS systems (preferably Oracle) Experience with NoSQL databases (preferably Cassandra) Knowledge of Docker, Kubernetes, Jenkins, and related CI/CD tools Desired Qualifications Bachelors/Masters in Computer Science or equivalent Show more Show less

Come work at a place where innovation and teamwork come together to support the most exciting missions in the world! Brief Description: This position is for Senior Software Engineer for working on an exciting project developing container security solutions. This opening provides you a chance to create a significant impact on a new product offering from Qualys. Full Description: We are seeking a talented C++/Golang Sr developer to work on exciting project enabling Qualys' security solutions. Working with a team of engineers and architects, you will be responsible for prototyping, designing, developing and supporting a highly scalable SaaS based security offerings. What are we looking for in terms of hard skills: Bachelors/Masters in Computer Science or equivalent 5+ years of hands-on experience developing software products and solutions Excellent programming and designing skills in C++/Golang on Windows Platform Should be well versed with Containers, Kubernetes and different runtimes. Should be well versed with the process of Container Image creation (multistage build understanding is highly desirable) Good experience with Windows internals Skills including design, prototype, development, test, performance profiling, etc. Hands-on with development tools like GIT, JIRA, Jenkins, etc. What are we looking for in terms of soft skills: Takes complete ownership for successful delivery of the products, components, modules and features assigned. Demonstrated high quality focus, and demonstrable scenarios of Test-Driven Development. Must have experience developing complex software projects with multiple features and short release cycles. Excellent verbal and written communications skills. Self-driven requires minimal supervision to work. Team player with a “can do” attitude yet modest and humble attitude when it comes to collaborating within team and across other teams. Uncompromising attitude when it comes to quality and help raise bar of product, team members and hence overall engineering organization. Having knowledge of Ansible, CoreOS, Kubernetes and distributed systems would be added advantage. Show more Show less

Come work at a place where innovation and teamwork come together to support the most exciting missions in the world! We are seeking a talented Senior Software Engineer to develop features for our EDR Product. Working with a team of engineers and architects, you will be responsible for prototyping, designing, developing, and supporting a highly scalable SaaS based EDR product. This is a great opportunity to be an integral part of a team building Qualys’ next generation Micro-Services based technology platform and work on challenging and business-impacting projects. Responsibilities: You will be designing and developing EDR Product in the cloud. You will be building highly scalable microservices and data processing pipelines. You will be working on Java based microservices with clean, extensible code adopting suited design principles and patterns. You will be responsible to design, develop, maintain products to process events and serve REST APIs. Researching and implementing for code design, adoption of new technologies and skills. Qualifications: Bachelors/Masters/Doctorate in Computer Science or equivalent 5+ years of experience with Java 8. 3+ years of experience in Spring/Spring-Boot, microservices 2+ years of experience in Kafka Hands on experience on Spring Boot, Hibernate. Strong logical skills for code design and implementation. Writing high-performance, reliable, and maintainable code. Experience in designing streaming applications, developing, and delivering scalable solutions. Good knowledge of SQL, advanced data structures, design patterns, object-oriented principles. Should be well versed with Java 8. Good to have: Experience in Docker, Kubernetes. Experience in NO-SQL databases like Elastic Search, Cassandra etc. Experience in stream processing with Kafka and related open-source tools/technologies. Experience in Apache Flink, Siddhi queries. Knowledge of Security log sources. Show more Show less

Come work at a place where innovation and teamwork come together to support the most exciting missions in the world! SaaS-based cloud security product. Responsibilities Research, prototype, and develop solutions to innovate and improve Qualys' security products. Co-develop Qualy's best-in-class next-generation SaaS application. Create high-performance APIs, libraries, and microservices. Produce high-quality software following good architecture and design principles that you and your team will find easy to work with in the future. Research, evaluate, and adopt next-generation technologies. Designing and implementing microservices that use the Spring boot framework. Requisite Qualifications Must have: Excellent programming and designing skills with 5+ years of hands-on experience in Java back-end development and skills with Spring-boot framework. Strong Java programming skills including object-oriented design, prototyping, development, etc. Understand data structures and algorithms Good to have: Ability and skill to debug & solve complex issues in a high-performing environment Messaging middleware using Kafka . In-memory caching using Redis, Memcached, etc. Expertise with RDBMS systems (preferably Oracle) Knowledge of Docker, Kubernetes, Jenkins, and related CI/CD tools Show more Show less

Come work at a place where innovation and teamwork come together to support the most exciting missions in the world! About The Job Come work at a place where innovation and teamwork come together to support the most exciting missions in the world! About Us: Qualys is the leading provider of information security and compliance cloud solutions. We are seeking a talented Software Engineer to join our team and contribute to the development of cutting-edge software solutions. Requirements: 5-7 years of experience in full-stack development with expertise in front-end and back-end technologies. Proficiency in React Js, Redux, HTML, CSS. Proficiency in JavaScript concepts like closure, prototypal inheritance, promises, callbacks, hoisting. Experience working with Docker, Kubernetes will be added advantage. Experience in Java will be a advantage Excellent problem-solving skills and ability to think critically. Strong communication and collaboration skills. Ability to work effectively in a fast-paced and dynamic environment. Responsibilities: Design, develop, and maintain high-quality software applications. Collaborate with cross-functional teams to define, design, and ship new features. Implement and maintain scalable and efficient front-end and back-end architectures. Write clean, efficient, and maintainable code while adhering to coding standards and best practices. Participate in code reviews, debugging, and troubleshooting to ensure quality and performance. Show more Show less

Come work at a place where innovation and teamwork come together to support the most exciting missions in the world! Brief Description: Senior Software development engineer for Network security product Full Job Description: We invite you to be part of motivated and agile Qualys engineering team responsible for developing high-end Cloud based Security Solutions. This opening is your chance to work in the rapidly expanding field of computer security, in a company with excellent customer ratings and outstanding growth rates. In this position you will be working on network security solutions to deliver cutting edge products. This position is for our fastest growing R&D center in Pune, India, which is part of multi-continent engineering team. Responsibilities: Contribute to the design and development of the appliance stack. Develop understanding of the product functionality, it’s use cases, it’s architecture by interacting with team members by reading and comprehending written code. Study and decipher documentation needed to accomplish tasks at hand viz standards, RFCs and protocol specifications, network topologies, networking fundamentals ( Tcp/Ip stack, switches, routers, networking protocols, firewalls), Linux platform fundamentals, virtualization, deep packet inspection etc. Debug issues in the product reported by internal QA teams or in production by customers and suggest solutions. Document the design and test plans as part of development activities. Communicate with other team members, including with the QA team and collaborate as required. Qualifications: Must Have: Degree in Computer Science/Electronics/Instrumentation. 3-6 years software development or testing experience in Networking Systems. Ability to write as well as comprehend written code in C/C++ and/or Python programs. Passion to build a career in embedded systems, networking as applicable to Network Security Systems. Good academic record. Good reading and comprehension skills to be able to read technical literature of Network Security products and make inferences. Ability to operate Linux and Windows Operating System commands and related applications. Good written and verbal communication skills. Client Server Programming knowledge. Additional skills that are good to have: Good debugging skills, ability to inspects packet captures Understanding of Linux boot loaders, grub, kernel compilation and networking stack internals, TCP/IP knowledge Knowledge of one or more protocols used in Network Security systems - eg. Radius, Diameter, LDAP, DHCP, ARP, DNS. Knowledge of VPN, AAA, ACL, VLAN technologies. Working knowledge of deployment of Virtual Machines such as Vmware. Good understanding of Database concepts and good working knowledge with Oracle/PLSQL/Postgres. Excellent analytical and program solving skills, excellent written and oral communication, self-starter and highly motivated. Work in a dynamic environment and ability to adapt quickly to changes. Show more Show less

Description Perform security penetration testing and vulnerability assessment for web and Micro services applications. Able to identify pre-requisites of the test environment , plan, and prioritizes the vulnerabilities based on application architecture and functionality Able to identify the combination of different vulnerability while execution of test scenarios/test cases Good knowledge of automation to be used for security testing. Strong understanding of cloud security practices in environments like AWS, Azure, or GCP. Proven experience in identifying and exploiting business logic and framework related vulnerabilities Vast experience in removing false positives, analyzing dynamic scan web inspect, ZAP reports Knowledge of Secure SDLC and Security standards like OWASP, CWE Provide expert advice and recommendation to the application development team Extensive experience in addressing WEB and API application security issues Strong knowledge of Application Security throughout the SDLC Penetration testing skills including the use of security assessment and hacker tools; e.g. ZAP, ZAP Docker, Qualys ssllabs , SSLYZE, Metasploit etc. Strong knowledge in OWASP TOP 10 vulnerability standards Strong experience in cloud technologies especially in Azure Familiarity with DevSecOps principles and practices, including CI/CD pipeline integration and container security. Requirements Perform security penetration testing and vulnerability assessment for web and Micro services applications. Able to identify pre-requisites of the test environment , plan, and prioritizes the vulnerabilities based on application architecture and functionality Able to identify the combination of different vulnerability while execution of test scenarios/test cases Good knowledge of automation to be used for security testing. Strong understanding of cloud security practices in environments like AWS, Azure, or GCP. Proven experience in identifying and exploiting business logic and framework related vulnerabilities Vast experience in removing false positives, analyzing dynamic scan web inspect, ZAP reports Knowledge of Secure SDLC and Security standards like OWASP, CWE Provide expert advice and recommendation to the application development team Extensive experience in addressing WEB and API application security issues Strong knowledge of Application Security throughout the SDLC Penetration testing skills including the use of security assessment and hacker tools; e.g. ZAP, ZAP Docker, Qualys ssllabs , SSLYZE, Metasploit etc. Strong knowledge in OWASP TOP 10 vulnerability standards Strong experience in cloud technologies especially in Azure Familiarity with DevSecOps principles and practices, including CI/CD pipeline integration and container security. Job responsibilities Perform security penetration testing and vulnerability assessment for web and Micro services applications. Able to identify pre-requisites of the test environment , plan, and prioritizes the vulnerabilities based on application architecture and functionality Able to identify the combination of different vulnerability while execution of test scenarios/test cases Good knowledge of automation to be used for security testing. Strong understanding of cloud security practices in environments like AWS, Azure, or GCP. Proven experience in identifying and exploiting business logic and framework related vulnerabilities Vast experience in removing false positives, analyzing dynamic scan web inspect, ZAP reports Knowledge of Secure SDLC and Security standards like OWASP, CWE Provide expert advice and recommendation to the application development team Extensive experience in addressing WEB and API application security issues Strong knowledge of Application Security throughout the SDLC Penetration testing skills including the use of security assessment and hacker tools; e.g. ZAP, ZAP Docker, Qualys ssllabs , SSLYZE, Metasploit etc. Strong knowledge in OWASP TOP 10 vulnerability standards Strong experience in cloud technologies especially in Azure Familiarity with DevSecOps principles and practices, including CI/CD pipeline integration and container security. What we offer Culture of caring. At GlobalLogic, we prioritize a culture of caring. Across every region and department, at every level, we consistently put people first. From day one, you’ll experience an inclusive culture of acceptance and belonging, where you’ll have the chance to build meaningful connections with collaborative teammates, supportive managers, and compassionate leaders. Learning and development. We are committed to your continuous learning and development. You’ll learn and grow daily in an environment with many opportunities to try new things, sharpen your skills, and advance your career at GlobalLogic. With our Career Navigator tool as just one example, GlobalLogic offers a rich array of programs, training curricula, and hands-on opportunities to grow personally and professionally. Interesting & meaningful work. GlobalLogic is known for engineering impact for and with clients around the world. As part of our team, you’ll have the chance to work on projects that matter. Each is a unique opportunity to engage your curiosity and creative problem-solving skills as you help clients reimagine what’s possible and bring new solutions to market. In the process, you’ll have the privilege of working on some of the most cutting-edge and impactful solutions shaping the world today. Balance and flexibility. We believe in the importance of balance and flexibility. With many functional career areas, roles, and work arrangements, you can explore ways of achieving the perfect balance between your work and life. Your life extends beyond the office, and we always do our best to help you integrate and balance the best of work and life, having fun along the way! High-trust organization. We are a high-trust organization where integrity is key. By joining GlobalLogic, you’re placing your trust in a safe, reliable, and ethical global company. Integrity and trust are a cornerstone of our value proposition to our employees and clients. You will find truthfulness, candor, and integrity in everything we do. About GlobalLogic GlobalLogic, a Hitachi Group Company, is a trusted digital engineering partner to the world’s largest and most forward-thinking companies. Since 2000, we’ve been at the forefront of the digital revolution – helping create some of the most innovative and widely used digital products and experiences. Today we continue to collaborate with clients in transforming businesses and redefining industries through intelligent products, platforms, and services. Show more Show less

Line of Service Advisory Industry/Sector FS X-Sector Specialism Risk Management Level Associate Job Description & Summary A career within Cybersecurity and Privacy services, will provide you with the opportunity to help our clients implement an effective cybersecurity programme that protects against threats, propels transformation, and drives growth. As companies pivot toward a digital business model, exponentially more data is generated and shared among organisations, partners and customers. We play an integral role in helping our clients ensure they are protected by developing transformation strategies focused on security, efficiently integrate and manage new or existing technology systems to deliver continuous operational improvements and increase their cybersecurity investment, and detect, respond, and remediate threats. Why PWC At PwC, you will be part of a vibrant community of solvers that leads with trust and creates distinctive outcomes for our clients and communities. This purpose-led and values-driven work, powered by technology in an environment that drives innovation, will enable you to make a tangible impact in the real world. We reward your contributions, support your wellbeing, and offer inclusive benefits, flexibility programmes and mentorship that will help you thrive in work and life. Together, we grow, learn, care, collaborate, and create a future of infinite experiences for each other. Learn more about us. At PwC, we believe in providing equal employment opportunities, without any discrimination on the grounds of gender, ethnic background, age, disability, marital status, sexual orientation, pregnancy, gender identity or expression, religion or other beliefs, perceived differences and status protected by law. We strive to create an environment where each one of our people can bring their true selves and contribute to their personal growth and the firm’s growth. To enable this, we have zero tolerance for any discrimination and harassment based on the above considerations. " Job Description & Summary: Job Description & Summary: We are seeking a highly skilled and experienced Cybersecurity/Risk Consulting Senior Associate to join our Risk Consulting team. As a Cybersecurity Senior Associate, you will be responsible for leading and managing a team of consultants to deliver high-quality cybersecurity and risk management services to our clients. Responsibilities Key Responsibilities: Good interpersonal skills (written and oral communication) and ability to articulate complex issues Ability to communicate technical information clearly and concisely, commensurate with the audience Conceptual thinking and communication skills — the ability to conceptualize complex business and technical requirements into comprehensible models and templates. Good communicator (written and verbal) and listener. Must be a team player and motivated self-starter with ability to work independently with limited supervision. Must be assertive, methodical and detail oriented Technical Experience: Experience in Web and Mobile Application Security Testing, Vulnerability Assessment and Penetration testing Analyze scan reports and suggest remediation / mitigation plan for security vulnerabilities Should be aware of tools like Qualys, HP Fortify, IBM Appscan, Burpsuite, Kali Linux suite of tools Expertise in mobile apps reverse engineering and in-depth knowledge of Android and iOS ecosystems. Knowledge of industry standard tools for mobile pentest. Thorough understanding of OWASP Top 10 vulnerabilities and their mitigations. Knowledge of Network Security technology in areas of Firewall, IPS, VPN, Gateway security solutions (proxy, web filtering) Conduct penetration test and launch exploits using Nessus, Metaspoilt, kali linux penetration testing distribution tools sets Conduct Vulnerability Assessments of Network Devices using various open source and commercial tools Map out a network, discover ports and services running on the different exposed network and security devices Research and maintain proficiency in computer network exploitation, tools, techniques, countermeasures, and trends in computer network vulnerabilities, data hiding, network security, and encryption. In-depth understanding on Common Vulnerability Exposure (CVE)/ CERT advisory database. Broad background of networks, operating systems (Window, Unix, Linux), firewalls and security engineering concepts. Knowledge of scripting languages (Perl, Python, Shell etc) will be added advantage Knowledge of Open-Source Security Testing Methodology Manual (OSSTMM) Mandatory Skill Sets CEH, ECSA, LPT (any one) Preferred Skill Sets OSCP, OSWE Years Of Experience Required 2-10 Years Education Qualification B.Tech Education (if blank, degree and/or field of study not specified) Degrees/Field of Study required: Master of Business Administration, Bachelor of Engineering Degrees/Field Of Study Preferred Certifications (if blank, certifications not specified) Required Skills Optional Skills Accepting Feedback, Accepting Feedback, Active Listening, Agile Methodology, Azure Data Factory, Communication, Cybersecurity, Cybersecurity Framework, Cybersecurity Policy, Cybersecurity Requirements, Cybersecurity Strategy, Emotional Regulation, Empathy, Encryption Technologies, Inclusion, Intellectual Curiosity, Managed Services, Optimism, Privacy Compliance, Regulatory Response, Security Architecture, Security Compliance Management, Security Control, Security Incident Management, Security Monitoring {+ 3 more} Desired Languages (If blank, desired languages not specified) Travel Requirements Not Specified Available for Work Visa Sponsorship? No Government Clearance Required? No Job Posting End Date Show more Show less

ECI is the leading global provider of managed services, cybersecurity, and business transformation for mid-market financial services organizations across the globe. From its unmatched range of services, ECI provides stability, security and improved business performance, freeing clients from technology concerns and enabling them to focus on running their businesses. More than 1,000 customers worldwide with over $3 trillion of assets under management put their trust in ECI. At ECI, we believe success is driven by passion and purpose. Our passion for technology is only surpassed by our commitment to empowering our employees around the world . The Opportunity: ECI has an exciting opportunity for a Senior Systems Escalation Engineer , who specializes in PowerShell scripting, Linux Bash scripting, and server/workstation troubleshooting. The ideal candidate will also take a proactive approach in addressing vulnerabilities across Windows and Linux environments, crafting and implementing remediation plans to ensure system security. This is an onsite role. What you will do: Key Responsibilities: Scripting and Automation: Develop, maintain, and optimize PowerShell scripts for Windows environments and Bash scripts for Linux systems to automate administrative and operational tasks. Troubleshooting: Diagnosing and resolve complex issues related to server and workstation patching, ensuring minimal downtime and quick recovery. Provide advanced-level technical support for both Windows and Linux systems. Vulnerability Management: Perform vulnerability assessments across Windows and Linux platforms to identify security risks. Create and implement vulnerability remediation plans to address identified risks promptly and effectively. Collaborate with IT and security teams to track remediation progress and ensure compliance with organizational policies. Patch Management: Analyze, test, and deploy patches for servers and workstations, addressing both functional and security requirements. Establish best practices for patching processes to reduce system vulnerabilities and enhance performance. Documentation: Prepare detailed documentation, including scripts, troubleshooting guides, vulnerability reports, and remediation action plans. Who you are: 7+ years of relevant experience in scripting, troubleshooting, and vulnerability remediation. Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field (or equivalent work experience). Strong experience in PowerShell and Bash scripting for automation and troubleshooting purposes. In-depth knowledge of Windows and Linux systems, including server and workstation environments. Expertise in vulnerability assessment methodologies and tools (e.g., Nessus, Qualys, OpenVAS). Experience with patch management tools and techniques in enterprise environments. Ability to analyze system logs and provide actionable insights for remediation. Bonus points if you have: Excellent communication skills to work with cross-functional teams and present findings to stakeholders. ECI’s culture is all about connection - connection with our clients, our technology and most importantly with each other. In addition to working with an amazing team around the world, ECI also offers a competitive compensation package and so much more! If you believe you would be a great fit and are ready for your best job ever, we would like to hear from you! Love Your Job, Share Your Technology Passion, Create Your Future Here! Show more Show less

ECI is the leading global provider of managed services, cybersecurity, and business transformation for mid-market financial services organizations across the globe. From its unmatched range of services, ECI provides stability, security and improved business performance, freeing clients from technology concerns and enabling them to focus on running their businesses. More than 1,000 customers worldwide with over $3 trillion of assets under management put their trust in ECI. At ECI, we believe success is driven by passion and purpose. Our passion for technology is only surpassed by our commitment to empowering our employees around the world . The Opportunity: ECI is looking for a Network Compliance Engineer to join our Network Engineering Department within a dynamic (MSP) environment. This role is critical in ensuring that both internal and client network infrastructures adhere to industry regulations, security policies, and best practices. You will collaborate with network engineers, security teams, and clients to implement and maintain network compliance frameworks, ensuring secure, reliable, and scalable network environments. As a Network Compliance Engineer, you will be responsible for performing assessments, audits, and remediation efforts, ensuring networks are compliant with relevant regulatory standards such as SOC 2, PCI-DSS, HIPAA, NIST , and other industry-specific requirements. This is an onsite role. What you will do: Ensure Compliance: Conduct regular compliance assessments for internal and client network infrastructure, ensuring they meet industry standards (SOC 2, HIPAA, PCI-DSS, NIST, ISO 27001) and internal security policies. Documentation & Reporting: Develop and maintain network compliance documentation, including risk assessments, configuration baselines, security policy compliance, and audit evidence for clients. Audits & Reviews: Perform network audits to verify compliance with established network security policies, best practices, and relevant industry regulations. Collaboration: Work closely with network engineers and security teams to design, implement, and maintain compliant network solutions for client environments. Remediation & Gap Analysis: Identify and track compliance gaps or vulnerabilities within client networks, and work to remediate those issues with network engineering teams. Compliance Monitoring: Use network monitoring tools (e.g., SolarWinds, PRTG) to continuously assess network configurations and activities for compliance and security risks. Client Interaction: Serve as a compliance advisor for clients, guiding them on how to align their network infrastructures with regulatory and security requirements. Incident Response: Support the incident response process when network-related compliance breaches or security incidents are detected, ensuring corrective actions are implemented. Training & Awareness: Educate and train internal teams and clients on compliance best practices, network security policies, and regulatory requirements. Continuous Improvement: Stay up to date with industry trends, evolving regulations, and emerging threats, integrating those insights into compliance strategies. Who you are: Bachelor’s degree in Information Technology, Network Engineering, Cybersecurity, or a related field (or equivalent work experience). 3+ years of experience in network engineering or network compliance, preferably in an MSP environment. Solid understanding of network protocols, including TCP/IP, VLANs, VPNs, firewalls, NAT, and routing (OSPF, BGP). Hands-on experience with firewall technologies (e.g., Fortinet, Cisco ASA, Palo Alto) and network monitoring tools (e.g., SolarWinds, PRTG, Auvik). Familiarity with industry standards and regulations like SOC 2, HIPAA, PCI-DSS, NIST, and ISO 27001. Strong analytical skills with the ability to assess and resolve network compliance issues. Excellent written and verbal communication skills, particularly for documentation and client-facing interactions. Bonus points if you have: Certifications such as CompTIA Security+, CCNA Security, CISSP, CISA, PCNSE, or Fortinet NSE. Experience with cloud networking, including AWS or Azure compliance standards. Exposure to SIEM tools (e.g., Splunk, LogRhythm) and vulnerability management tools (e.g., Nessus, Qualys). Familiarity with MSP platforms like ConnectWise, Datto, N-Able, or Autotask. Ability to work with cross-functional teams (e.g., security, DevOps, IT) to enforce security policies. ECI’s culture is all about connection – connection with our clients, our technology and most importantly with each other. In addition to working with an amazing team around the world, ECI also offers a competitive compensation package and so much more! If you believe you would be a great fit and are ready for your best job ever, we would like to hear from you! Love Your Job, Share Your Technology Passion, Create Your Future Here! Show more Show less

Come work at a place where innovation and teamwork come together to support the most exciting missions in the world! We are seeking a talented Lead Software Engineer to work on Qualy's next-generation security product. Working with a team of engineers and architects, you will be responsible for prototyping, designing, developing, and supporting a highly scalable SaaS-based cloud security product. You will get to team up with incredibly talented and highly motivated engineers and architects innovating on product processing over millions of transactions and terabytes of data per day. Responsibilities Research, prototype, and develop solutions to innovate and improve Qualys' security products. Co-develop Qualy's best-in-class next-generation SaaS application. Create high-performance APIs, libraries, and microservices that scale to meet/exceed the demands of processing over millions of transactions and terabytes of data per day. Produce high-quality software following good architecture and design principles that you and your team will find easy to work with in the future. Research, evaluate, and adopt next-generation technologies. Designing and implementing microservices that use the Spring boot framework. Act as a technical mentor to the team and guide team members Review code and set best practices for design, coding, and unit testing Lead product modules independently and collaborate with multiple stakeholders Requisite Qualifications Excellent programming and designing skills with 8+ years of hands-on experience in Java back-end development and skills with Spring-boot framework. Messaging middleware using Kafka . In-memory caching using Redis, Memcached, etc. Strong Java programming skills including object-oriented design, prototyping, development, testing, profiling, etc. Understand data structures and algorithms Expertise with RDBMS systems (preferably Oracle) Experience with NoSQL databases (preferably Cassandra) Knowledge of Docker, Kubernetes, Jenkins, and related CI/CD tools Ability and skill to debug & solve complex issues in a high-performing environment Desired Qualifications Bachelors/Masters in Computer Science or equivalent Show more Show less

Job Title: Senior SOC Analyst (SIEM, Threat Hunting & Incident Response) Department: Cybersecurity & IT Risk Management Reports To: CISO / Director – Cybersecurity & GRC Location: Manesar, Haryana (On-site at Client Location) Employer: VVNT SEQUOR, Noida Summary: VVNT SEQUOR is hiring a Senior SOC Analyst to strengthen the cybersecurity posture of a leading client in Manesar, Haryana. This is a full-time on-site role requiring deep hands-on expertise in threat detection, incident response, SIEM management, and vulnerability assessments. As a senior member of the Security Operations Center (SOC), you will lead advanced threat-hunting efforts, optimize detection logic, and ensure rapid response to cybersecurity events. Your key responsibilities will include: Leading 24x7 SOC operations , threat monitoring, triage, and escalations using tools like ArcSight, Splunk, and ELK . Creating and fine-tuning correlation rules , dashboards, and playbooks to enhance detection capabilities. Executing proactive threat hunting using MITRE ATT&CK , EDR telemetry, threat intel feeds, and custom threat models. Coordinating and leading incident response , performing forensic investigations using CHFI methodologies , memory analysis, and endpoint data. Performing and overseeing Vulnerability Assessment & Penetration Testing (VAPT) using Nessus, Qualys, OpenVAS, Metasploit , and Burp Suite . Managing EDR and SOAR platforms , integrating automated responses and threat intelligence feeds. Administering and securing firewalls (FortiGate, Palo Alto), WAFs, IDS/IPS, and Anti-DDoS infrastructure. Maintaining compliance with ISO 27001, NIST CSF, and internal security baselines , conducting regular audits and patch validations. Documenting Root Cause Analyses (RCA) , incident timelines, and post-incident review reports. Leading security awareness programs (e.g., KnowBe4) and mentoring junior analysts. We are looking for someone with: Bachelor's degree in Cybersecurity, Information Security, or related field. 7–9 years of SOC and cybersecurity operations experience. Strong knowledge of SIEMs (e.g., ArcSight, Splunk), EDRs (CrowdStrike, SentinelOne) , and log correlation techniques . Proven skills in threat analysis, IOC handling, malware analysis , and incident lifecycle management . Working experience with security automation (SOAR) and scripting (e.g., Python, PowerShell) for response actions. Solid understanding of MITRE ATT&CK, NIST 800-61, OWASP Top 10 , and compliance mandates . Proven experience in writing technical incident reports, security playbooks, and conducting RCA. Bonus points for: Certifications like CEH, CHFI, Security+, GCIA, GCFA, Splunk Certified Analyst, PCNSE . Experience with Tripwire SCM, KnowBe4 , or cloud-native security tools (AWS GuardDuty, Azure Sentinel). Exposure to OT/ICS security , manufacturing, or automotive environments. Familiarity with Purple Teaming, Red Team/Blue Team drills , and Threat Intelligence Platforms (TIPs) . Why join VVNT SEQUOR? Lead and influence real-time SOC strategies for a mission-critical enterprise. Gain hands-on experience with top-tier cybersecurity technologies and threat landscapes. Subsidized Cab and Lunch facilities at client site. Work in a client-focused, innovation-driven cybersecurity environment. To Apply: Please submit your resume along with the cover letter to chaitali@vvntsequor.in or parveen.arora@vvntsequor.in Also, you can connect over WhatsApp +91-9891810196 or +91-8802801739 IMPORTANT: Do mention clearly to Job Role that you are applying for along with your Last Salary Drawn information as well as your Earliest Joining Date in your covering letter or email. Show more Show less

Come work at a place where innovation and teamwork come together to support the most exciting missions in the world! Qualys is looking for a UX writer, who will be responsible for customer delight! You are an advocate for Qualys design, shaping product experiences by creating useful, meaningful text that helps users to complete tasks. You help to set the vision for content and drive cohesive product narratives across platform. As a UX writer, your portfolio of work demonstrates content that simplifies and beautifies the overall user experience. You work with people in a variety of UX design-related jobs including UX researchers, product managers, engineers. You regularly use empathy, logic and data to inform content choices and recommendations that include the right words and sometimes complementary data and images. You use your gift for language to design intuitive, delightful product experiences that help users accomplish their goals. Responsibilities: Writing UI text: Crafting the words that guide users through an interface, including button labels, error messages, onboarding flows, and confirmation dialogs. Creating and maintaining style guides: Establishing voice, tone, and terminology standards that ensure consistency across a product or organization. Participating in UX research: Working closely with UX researchers to conduct usability studies, analyze how users interact with content, and refine messaging based on insights. Collaborating with product teams: Partnering with UX designers, product managers, and engineers to ensure content aligns with the overall design and user experience. Optimizing accessibility: Ensuring text is inclusive and readable for all users, including those using assistive technologies. Testing and iterating content: Conducting A/B tests, gathering user feedback, and continuously refining content to improve usability. Writing for conversational interfaces: Creating chatbot scripts, voice assistant responses, and AI-driven customer interactions. Contributing to AI model training: Assisting in training AI-powered features by refining system prompts, structuring training datasets, and ensuring AI-generated content aligns with UX writing best practices. Qualifications: Bachelor's degree in English, Journalism, Communication, Literature, Business, Marketing, a related field, or equivalent practical experience. 4+ years of experience in writing, editorial, marketing, UX writing for web and mobile platforms. Experience on UX-focused product writing and shaping content for multi-disciplinary projects. Portfolio highlighting UX-focused writing samples and style guidelines. Knowledge of cyber security domain Show more Show less

Make an impact with NTT DATA Join a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion – it’s a place where you can grow, belong and thrive. Your day at NTT DATA The Security Platform Engineer is a seasoned subject matter expert, responsible for facilitating problem resolution and mentoring for the overall Global Data Centers Office of Information Security (GDC-OIS) team. This role performs important tasks specialized at threat hunting, Crowdstrike, Network Security and other operational security tasks such as performance and availability monitoring, log monitoring, security incident detection and response, security event reporting, and content maintenance (tuning). The Security Platform Engineer is responsible for detecting and monitoring escalated threats and suspicious activity affecting the organization's technology domain (servers, networks, appliances and all infrastructure supporting production applications for the enterprise, as well as development environments). Key Responsibilities What you'll be doing Works as part of a 24/7 global team in IT/OT environment. ICS and SCADA knowledge preferred. Administers the organization's security tools to gather security logs from the environment and performs lifecycle management, including break-fix, patching, and live updates. Performs security incident handling and response from various vectors, including endpoint protection, enterprise detection and response tools, attack analysis, malware analysis, network forensics, and computer forensics. Conducts vulnerability assessments using automated scanning tools and manual techniques to identify security vulnerabilities in systems, networks, applications, and infrastructure components. Analyzes scan results, prioritizes vulnerabilities based on severity, impact, and exploitability, and provides detailed remediation recommendations to system owners, administrators, and IT teams. Monitors security alerts and maintains awareness of new threats and vulnerabilities to identify potential risks. Reads reports, makes risk assessments, works to detect the source of attacks, and tests current defenses against threats. Collaborates to develop practical mitigation strategies, configuration changes, and patch management processes to address identified vulnerabilities. Identifies opportunities to make automations that will help the incident response team. Ensures usage of knowledge articles in incident diagnosis and resolution and assists with updating as required. Investigates causes of incidents, seeks resolution, and escalates unresolved incidents, following up until resolved. Provides service recovery following the resolution of incidents and documents and closes resolved incidents according to agreed procedures. Maintains knowledge of specific , provides detailed advice regarding their application, and ensures efficient and comprehensive resolution of incidents. Logs all incidents in a timely manner with the required level of detail and cooperates with all stakeholders, including client IT environments, vendors, and carriers, to expedite diagnosis of errors and problems and identify a resolution. Analyzes data from various sources, including network traffic, email logs, malware files, web server logs, and DNS records, to identify potential risks and improve security measures Leads projects, self-starter, and performs any other related task as required. KNOWLEDGE & ATTRIBUTES Seasoned working knowledge on implementation and monitoring of any SIEM or security tools/technologies. ICS and SCADA knowledge preferred Seasoned knowledge on security architecture, worked across different security technologies. Customer service orientated and pro-active thinking. Problem solver who is highly driven and self-organized. Great attention to detail. Good analytical and logical thinking. Excellent spoken and written communication skills. Team leader with the ability to work well with others and in group with colleagues and stakeholders. Academic Qualifications & Certifications Bachelor's degree or equivalent in Information Technology or related field. Relevant level of Security certifications such as CySA+, PenTest+, CCSP, GCIH, OSCP, etc. preferred. Relevant level of IT certifications such as GRID, GICSP, AZ-500, SC-200, etc. will be added advantage. Required Experience Seasoned experience in Security technologies like (SIEM, PAM, IAM, PenTest, Threat Hunting, Firewall, Proxy etc.) preferably within a global IT services organization. Prior experience of working into Security Operation centers of a Data Center will be an added advantage. ICS and SCADA knowledge preferred. Seasoned experience in technical support to clients. Seasoned experience in diagnosis and troubleshooting. Seasoned experience providing remote support in Security Technologies. Seasoned experience in SOC/CSIRT Operations. Seasoned experience in handling security incidents end to end. Seasoned experience in Security Engineering. Knowledge on networking, Windows, Linux and security concepts. Seasoned experience in configuring/managing security controls such as RBAC, IAM, Zero Trust, UTM, Proxy, SOAR, etc.. Knowledge on log collection mechanism such as Syslog, Log file, DB API. Knowledge in security architecture. Prior experience of working on platforms like Crowd strike, Qualys, Palo Alto, Splunk, QRADAR, Cisco, VMWare and Ubuntu Physical Requirements Primarily sitting with some walking, standing, and bending. Able to hear and speak into a telephone. Close visual work on a computer terminal. Dexterity of hands and fingers to operate any required to operate computer keyboard, mouse, and other technical instruments. Work Conditions & Other Requirements This position is expected to be Hybrid for the foreseeable future with an occasional need to be onsite in a shared work environment. Must be comfortable with flexible working schedules across regions and their standard Time zones other than the base location. (US, EMEA & APAC) Extensive daily usage of workstation or computer. Must be comfortable working in a highly critical, fast paced environment with shifting priorities. Some domestic and/or international travel required, up to 25% of time. Perform work from a remote location with stable internet connection. Workplace type: Hybrid Working About NTT DATA NTT DATA is a $30+ billion trusted global innovator of business and technology services. We serve 75% of the Fortune Global 100 and are committed to helping clients innovate, optimize and transform for long-term success. We invest over $3.6 billion each year in R&D to help organizations and society move confidently and sustainably into the digital future. As a Global Top Employer, we have diverse experts in more than 50 countries and a robust partner ecosystem of established and start-up companies. Our services include business and technology consulting, data and artificial intelligence, industry solutions, as well as the development, implementation and management of applications, infrastructure, and connectivity. We are also one of the leading providers of digital and AI infrastructure in the world. NTT DATA is part of NTT Group and headquartered in Tokyo. Equal Opportunity Employer NTT DATA is proud to be an Equal Opportunity Employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment. We do not discriminate based on age, race, colour, gender, sexual orientation, religion, nationality, disability, pregnancy, marital status, veteran status, or any other protected category. Join our growing global team and accelerate your career with us. Apply today. Show more Show less

Line of Service Advisory Industry/Sector Not Applicable Specialism Risk Management Level Associate Job Description & Summary At PwC, our people in cybersecurity focus on protecting organisations from cyber threats through advanced technologies and strategies. They work to identify vulnerabilities, develop secure systems, and provide proactive solutions to safeguard sensitive data. In threat intelligence and vulnerability management at PwC, you will focus on identifying and analysing potential threats to an organisation's security, as well as managing vulnerabilities to prevent cyber attacks. You will play a crucial role in safeguarding sensitive information and enabling the resilience of digital infrastructure. Why PWC At PwC, you will be part of a vibrant community of solvers that leads with trust and creates distinctive outcomes for our clients and communities. This purpose-led and values-driven work, powered by technology in an environment that drives innovation, will enable you to make a tangible impact in the real world. We reward your contributions, support your wellbeing, and offer inclusive benefits, flexibility programmes and mentorship that will help you thrive in work and life. Together, we grow, learn, care, collaborate, and create a future of infinite experiences for each other. Learn more about us. At PwC, we believe in providing equal employment opportunities, without any discrimination on the grounds of gender, ethnic background, age, disability, marital status, sexual orientation, pregnancy, gender identity or expression, religion or other beliefs, perceived differences and status protected by law. We strive to create an environment where each one of our people can bring their true selves and contribute to their personal growth and the firm’s growth. To enable this, we have zero tolerance for any discrimination and harassment based on the above considerations. Job Description & Summary: In-depth knowledge and hands-on experience in VAPT , including: Web Application Vulnerability Assessment & Penetration Testing, Mobile Application Vulnerability Assessment & Penetration Testing , API and Network Penetration Testing, Cloud Security, Network Security, SOC Monitoring and Incident management. Responsibilities Vulnerability Assessment and Penetration Testing (VA/PT) Conduct VAPT Program Management including Remediation and Closure Management Conduct secure configuration review Conduct/ Manage Secure Code review Conduct/ Manage API secure testing Conduct/ Manage VA/PT for new web/ app development Conduct/ Manage Application Security Conduct/ Manage Red Teaming Conduct/ Manage DevSec/DevSecOps Conduct/ Manage Patch Management Mandatory Skill Sets VAPT In-depth knowledge of security issues, exploitation techniques and remediation measures. Hands-on Experience in Vulnerability Assessments & Penetration Testing (Automated + Manual) on business critical assets ( IP,Web,Mobile,API and AWS) Hands-on experience with well-known security tools BurpSuite, Nessus, Nmap, Accunetix, Metasploit Netsparker, Qualys etc Understanding of web application security vulnerabilities (OWASP Top 10), including XSS, SQL injection, CSRF, and others. Strong knowledge of network security concepts, firewalls, VPNs, IDS/IPS, and TCP/IP protocols. Familiarity with mobile security vulnerabilities in iOS and Android platforms, including reverse engineering, mobile app testing, and OWASP Mobile Security Project. Strong written and verbal communication skills for delivering clear, concise security reports and presenting findings to stakeholders. Preferred Skill Sets Strong organizational, teamwork, multitasking & time management skills. Outstanding communication abilities. Ability to effectively communicate the required recommendations. Years Of Experience Required 4+ Years Education Qualification Minimum Qualification: BE/ BTech Education (if blank, degree and/or field of study not specified) Degrees/Field of Study required: Bachelor of Technology, Bachelor of Engineering Degrees/Field Of Study Preferred Certifications (if blank, certifications not specified) Required Skills Burp Suite, Nessus Vulnerability Scanner, Structured Query Language (SQL) Optional Skills Teamwork Desired Languages (If blank, desired languages not specified) Travel Requirements Not Specified Available for Work Visa Sponsorship? No Government Clearance Required? No Job Posting End Date Show more Show less

At EY, you’ll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we’re counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. Cybersecurity Solution Architect Today’s world is fueled by vast amounts of information. Data is more valuable than ever before. Protecting data and information systems is central to doing business, and everyone in EY Information Security has a critical role to play. Join a global team of over 900 people who collaborate to support the business of EY by protecting EY and client information assets! Our Information Security professionals enable EY to work securely and deliver secure products and services, as well as detect and quickly respond to security events as they happen. Together, the efforts of our dedicated team help protect the EY brand and build client trust. Within Information Security we blend risk strategy, digital identity, cyber defense, application security and technology solutions as we consider the entre security lifecycle. You will join a team of hardworking, security-focused individuals dedicated to supporting, protecting, and enabling the business through innovative, secure solutions that provide speed to market and business value. The opportunity The Security Technology Services (STS) group is a division of Information Security that ensures secure access to systems and information for more than 390,000 people in over 150 countries. A Cybersecurity Architect on the STS team is responsible for turning strategic plans into reality by producing architectural designs, leading the development of solutions, and offering security advice to project teams. This person will also oversee experimental projects to determine the best technology choices for integration into EY's infrastructure. Your Key Responsibilities Connect with key stakeholders, cybersecurity experts, and operational teams within the information security department to help create security solutions that work well on a large scale. Collaborate with Enterprise Architects to make sure solutions are in line with the company's long-term goals, follow design guidelines, and contribute to the direction of projects when necessary. Turn business requirements into technical specifications for solutions, considering risks, dependencies, costs, and the overall risk of the technical solution. Lead the technical side of evaluating and choosing technologies through Requests for Information (RFI) and Requests for Proposal (RFP), which includes: Defining the criteria that will influence technology choices and solution development. Gather and summarize technology research and recommendations for leaders to make decisions. Oversee experimental projects, designs, and the actual building of solutions from an architectural standpoint. Create and update artifacts that describe solution architecture to guide the planning, design, and implementation of the chosen solution. Keep up with the latest in the industry, research thoroughly, and continuously learn about new security technologies. Share expertise with project teams, governance groups, and other audiences as required. Build and keep a network of contacts from different IT and security organizations. Create standards for security technology. Travel requirements Skills And Attributes For Success Proficient in leading the development and direction of solution architecture. Knowledgeable in security protection technologies, particularly those from Checkpoint, Zscaler, Entra Intra Internet Access and Azure Firewall Extensive experience in Network Protection, including Cloud Secure Web Gateways (CSWG), Zero Trust Network Access (ZTNA), Intrusion Prevention Systems (IPS), Network Detection and Response (NDR), and Network Access Control (NAC). Successfully directed enterprise projects involving complex network technologies such as Next-Generation Firewalls, Expressroute, Secure Access Service Edge (SASE), ZPA and ZIA. Skilled in Network solutions and infrastructure platforms, including Azure Networking/Network Security Groups (NSG), Azure Firewall, SASE, Software-Defined Wide Area Network (SD-WAN), Wide Area Network (WAN), Local Area Network (LAN), management/monitoring tools, Domain Name System (DNS), and wireless technologies. Exposure to Cybersecurity capabilities Vulnerability management, Qualys, Sentinel, Defender XDR, Vulnerability Management and SOAR Experience in building and maintaining client-service relationships, with an understanding of the importance of internal customers. Excellent communication and presentation skills, capable of effectively conveying information to executive leadership. Sensitivity to the perspective of various audiences, both technical and non-technical. Experience in creating security architecture documentation, such as vision statements and Solution Architecture (SA) Design documents. Well versed in common Information Security practices and the CISSP domains Able to identify opportunities for Cybersecurity transformation or enhancements To qualify for the role, you must have Degree in Computer Science, Engineering or equivalent work experience 12+ years of experience in the Information Technology field 2+ years of senior architecture experience, exposure to enterprise architecture teams. 3+ years working with network protection technologies Ideally, you’ll also have Security certification such as CISSP, CCIE or CISM TOGAF and/or SABSA architecture framework SANS Certifications including: GSEC, ECSA, ECSP What We Look For Deep critical thinking skills demonstrating analytical and systematic approach to problem solving Experience working in a global virtual environment Excellent written & verbal communication skills, including preparation & delivery of presentations Good judgment, tact, and decision-making ability Ability to understand and integrate cultural differences and motives and to work with cross cultural teams. Ability to deal with ambiguity and change, and exercise appropriate time management to meet objectives Ability to work autonomously but also within a team environment where necessary What We Offer As part of this role, you will work in a highly coordinated, globally diverse team with the opportunity and tools to grow, develop and drive your career forward. Here, you can combine global opportunity with flexible working. The EY benefits package goes above and beyond too, focusing on your physical, emotional, financial, and social well-being. Your recruiter can talk to you about the benefits available in your country. Here’s a snapshot of what we offer: Continuous learning: You will develop the mindset and skills to navigate whatever comes next. Success as defined by you: We will provide the tools and flexibility, so you can make a significant impact, your way. Transformative leadership: We will give you the insights, coaching and confidence to be the leader the world needs. Diverse and inclusive culture: You will be accepted for who you are and empowered to use your voice to help others find theirs. EY | Building a better working world EY exists to build a better working world, helping to create long-term value for clients, people and society and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform and operate. Working across assurance, consulting, law, strategy, tax and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today. Show more Show less

Job description Role Overview : The Application Security Senior Engineer will play a crucial role in safeguarding our applications and digital assets against security threats. With a primary focus on Vulnerability Assessment and Penetration Testing (VAPT), the role involves identifying, assessing, and mitigating security vulnerabilities across our application portfolio. This position requires a proactive mindset, strong technical skills, and the ability to collaborate effectively with cross-functional teams and support the security projects. Key Responsibilities : 1. Vulnerability Assessment and Penetration Testing (VAPT): - Conduct comprehensive security assessments of applications using industry-standard tools and techniques. - Perform manual testing and automated scans to identify vulnerabilities such as OWASP Top 10, SQL injection, XSS, CSRF, etc. - Analyze and interpret assessment findings, providing clear and actionable recommendations to development teams. - Support the security gating process with timely security assessment and reporting. - Provide guidance and assistance on secure software development life cycle. - Track identified vulnerabilities through to resolution, collaborating closely with development teams to ensure timely mitigation. - Provide detailed vulnerability reports and metrics to stakeholders, including risk assessments and remediation progress. 2. Support for Security Projects: - Actively participate in security projects and initiatives, providing expertise and guidance on application security best practices. - Perform Security Architecture review for existing and new security projects and guide on security best practices. - Collaborate with architects and developers to integrate security into the SDLC (Secure Development Life Cycle) and CI/CD pipelines. 3. Incident Response and Support: - Assist in incident response activities related to application security incidents. - Contribute to root cause analysis and lessons learned sessions to improve incident handling and prevention strategies. 4. Security Awareness and Training: - Develop and deliver training sessions on secure coding practices and application security awareness. - Promote a culture of security within the organization, advocating for continuous improvement and adherence to security policies. Requirements: Bachelors degree in Computer Science/Information Technology, or a related field. Minimum of 5 years of experience in application security, with a focus on VAPT and secure development practices. Proven experience with security assessment tools such as Burp Suite, Qualys, Nessus, etc. Strong understanding of web application architecture, including front-end, back-end, and APIs. Solid knowledge of OWASP guidelines and best practices for secure coding. Certifications such as CISSP, CEH, OSCP, or similar are preferred. Excellent communication skills with the ability to articulate technical concepts to non-technical stakeholders. Strong analytical and problem-solving skills, with attention to detail. Why join us? Impactful Work: Play a pivotal role in safeguarding Tanla's assets, data, and reputation in the industry. Tremendous Growth Opportunities: Be part of a rapidly growing company in the telecom and CPaaS space, with opportunities for professional development. Innovative Environment: Work alongside a world-class team in a challenging and fun environment, where innovation is celebrated. Tanla is an equal opportunity employer. We champion diversity and are committed to creating an inclusive environment for all employees. www.tanla.com Show more Show less

Come work at a place where innovation and teamwork come together to support the most exciting missions in the world! Job Description Come work at a place where innovation and teamwork come together to support the most exciting missions in the world! We invite you to be part of motivated and agile Qualys engineering team responsible for developing high-end Cloud based Security Solutions. This opening is your chance to work in the rapidly expanding field of computer security, in a company with excellent customer ratings and outstanding growth rates. In this position you will be testing product for quality and performance, building utilities for automated functionality testing, and utilize advanced testing methodologies to deliver cutting edge products. This position is for our fastest growing R&D center in Pune, India, which is part of multi-continent engineering team. Responsibilities: Proficient in Performance testing tools like JMeter Manage for planning and creating automated performance tests, executing tests, and results to measure performance, scalability, stability and reliability. Expertise in Test Planning, Test Estimation, Test Strategy, Work Load Design, Test Cases Design, Test Environment Setup, Test Data Setup, Defect Management. Experience in Application Monitoring Tools like AppDynamics. Experience in Applications like ElasticSearch, OpenSearch, Grafana, Kafka. Hands-on experience in writing and executing performance test scenarios for complex systems. Hands-on experience with performance test simulations, performance analysis, performance tuning, performance monitoring in a microservices environment Perform analysis of performance issues in Pre-production and/or Production environments. Hands- on experience in analyzing the performance results - Capture/Analyze/Interpret technical data - performance metrics from application, database, OS, and Network. Demonstrated ability to capture key metrics, create accurate status reports and effectively communicate to the stake holders. Experience in Cloud (AWS / Azure) environment, Docker/Kubernetes. Analyze the CPU Utilization, Memory usage, Network usage, Garbage Collection to verify the performance of the applications. Identifying memory leakage, connection issues & Bottleneck problem in the application. Generate performance graphs, session reports, and other related documentation required for validation and analysis. Publish results and provide appropriate signoff. Prepare detailed status reports, and monitoring of all defects and issues. Good understanding of basic DB tuning, application server tuning and common issues around performance and scalability. Strong problem-solving skills and very good communication and time management skills. Qualifications: Degree in Computer Science or equivalent 5+ years of work experience in the field of software testing and test automation of multi-tier Enterprise and/or Cloud, SaaS applications Good experience in web applications user interface and RESTful web services testing both at functional and non-functional level Knowledge of Java programming that could be used in automation frameworks Experience in writing automation tools/framework (Selenium, JMeter) Understanding of XML, XSD, JSON, REST and SOAP and demonstrated experience with web services APIs Good understanding of computer networks and networking concepts Working knowledge of SQL Databases, like Oracle Good exposure to Linux platform Agile development experience Show more Show less

Make an impact with NTT DATA Join a company that is pushing the boundaries of what is possible. We are renowned for our technical excellence and leading innovations, and for making a difference to our clients and society. Our workplace embraces diversity and inclusion – it’s a place where you can grow, belong and thrive. Your day at NTT DATA The Vulnerability Assessment Specialist is a seasoned subject matter expert, responsible for conducting advanced vulnerability assessments, identifying vulnerabilities, and provides expert recommendations to mitigate security risks to ensure the security and integrity of the organization's systems and infrastructure. This role requires collaboration with cross-functional teams, and they lead/perform vulnerability assessments, analyze findings, and provide recommendations to mitigate security risks and contributes to the improvement of vulnerability management practices. What You'll Be Doing Key Responsibilities: Conducts vulnerability assessments using automated scanning tools and manual techniques to identify security vulnerabilities in systems, networks, applications, and infrastructure components. Conducts penetration tests using automated tools and manual techniques to identify security vulnerabilities in systems, networks, applications, and infrastructure components. Analyzes scan results and prioritizes vulnerabilities based on severity, impact, and exploitability. Assesses the potential risks associated with identified vulnerabilities. Analyzes the business impact, likelihood of exploitation, and potential attack vectors to prioritize remediation efforts based on risk severity. Provides detailed remediation recommendations to system owners, administrators, and IT teams. Collaborates to develop practical mitigation strategies, configuration changes, and patch management processes to address identified vulnerabilities. Utilizes vulnerability scanning tools such as Nessus, OpenVAS, Qualys, or similar tools to conduct scans, configure scan policies, and fine-tune scan parameters for accurate and comprehensive assessments. Utilizes penetration testing tools such as Metasploit, Burp Suite, and similar tools to conduct tests, configure test policies, and fine-tune test parameters for accurate and comprehensive assessments. Prepares vulnerability assessment reports, documenting assessment findings, risk analysis, and recommended actions. Communicates assessment results to stakeholders, including technical and non-technical audiences, in a clear and concise manner. Collaborates with cross-functional teams, including IT operations, development teams, and security stakeholders, to ensure effective communication, coordination, and alignment on vulnerability management efforts. Communicates technical concepts and recommendations to non-technical stakeholders. Participates in security awareness programs and provides training to end-users and stakeholders on vulnerability management best practices, secure coding, and security hygiene. Promotes a culture of security awareness within the organization. Collaborates with incident response teams to identify and address vulnerabilities associated with security incidents. Provides support during incident response efforts and contribute to post-incident analysis and remediation. Stays updated with the latest security trends, emerging vulnerabilities, and industry best practices. Contributes to the enhancement of vulnerability assessment processes, methodologies, and tools. Shares knowledge and provides guidance to improve vulnerability management practices. Shares knowledge and provides guidance to improve penetration testing practices. Contributes to open source security projects and the security community. Performs any other related task as required. Knowledge and Attributes: Seasoned understanding of vulnerability assessment methodologies, tools, and industry best practices. Seasoned understanding of penetration testing methodologies, tools, and industry best practices. Seasoned understanding of networking concepts, operating systems, and common software vulnerabilities. Solid proficiency in using vulnerability assessment tools such as Nessus, OpenVAS, Qualys, or similar tools. Solid proficiency in using penetration testing tools such as Metasploit, Burp Suite, and similar tools. Seasoned knowledge of risk analysis principles and the ability to assess the business impact of vulnerabilities. Solid knowledge of vulnerability management frameworks, such as CVE, CVSS, and common vulnerability databases. Strong analytical and problem-solving skills to analyze scan results, prioritize vulnerabilities, and recommend effective remediation actions. Excellent written and verbal communication skills to prepare vulnerability assessment reports and effectively communicate technical information to diverse stakeholders. Excellent collaboration and teamwork skills to work effectively with cross-functional teams and stakeholders. Seasoned familiarity with security frameworks, standards, and regulatory compliance requirements. Academic Qualifications and Certifications: Bachelor's degree or equivalent in Computer Science, Information Security, or a related field. Relevant certifications such as Certified Ethical Hacker (CEH), Certified Information Systems Security Professional (CISSP), Offensive Security Certified Professional (OSCP) GIAC Penetration Tester (GPEN) or GIAC Certified Vulnerability Assessor (GCVA) are beneficial. Required Experience: Seasoned demonstrated experience in information security or related roles, with a focus on conducting vulnerability assessments and providing remediation recommendations. Seasoned demonstrated experience in conducting advanced vulnerability assessments, including application security assessments, network security assessments, penetration testing, or code review. Experience in bug bounty programs and identifying zero-day vulnerabilities is a plus. Workplace type: Hybrid Working About NTT DATA NTT DATA is a $30+ billion trusted global innovator of business and technology services. We serve 75% of the Fortune Global 100 and are committed to helping clients innovate, optimize and transform for long-term success. We invest over $3.6 billion each year in R&D to help organizations and society move confidently and sustainably into the digital future. As a Global Top Employer, we have diverse experts in more than 50 countries and a robust partner ecosystem of established and start-up companies. Our services include business and technology consulting, data and artificial intelligence, industry solutions, as well as the development, implementation and management of applications, infrastructure, and connectivity. We are also one of the leading providers of digital and AI infrastructure in the world. NTT DATA is part of NTT Group and headquartered in Tokyo. Equal Opportunity Employer NTT DATA is proud to be an Equal Opportunity Employer with a global culture that embraces diversity. We are committed to providing an environment free of unfair discrimination and harassment. We do not discriminate based on age, race, colour, gender, sexual orientation, religion, nationality, disability, pregnancy, marital status, veteran status, or any other protected category. Join our growing global team and accelerate your career with us. Apply today. Show more Show less

The Vulnerability Management Engineer II is responsible for managing the identification, assessment, reporting, and mitigation of infrastructure and cloud vulnerabilities. A candidate for this role will have a mindset of a defender and be able to operate in a fast-paced environment working closely with our infrastructure team that includes Network, Firewall, Hypervisors, Servers, and business application teams. Key Responsibilities: • Serve in a contributing role that requires frequent interaction with IT and Infosec managers, engineers and developers. • Provide vulnerability remediation governance and operational support. • Perform vulnerability metrics reporting for ad-hoc and scheduled metrics report for various KPIs (Key Performance Indicators) around vulnerability management activities. • Drive and track remediation initiatives across multiple support teams. • Respond to questions from stakeholders about remediation and vulnerability assessment results and actions. • Collaborate with support groups/stakeholders on details about identified vulnerabilities. EXPERIENCE AND EDUCATIONAL REQUIREMENTS: • Bachelors degree in Computer Science, Cybersecurity or other related field, or equivalent work experience. • Proficient in various vulnerability assessment tools such as Qualys, Armis, Microsoft Defender for Endpoint/Cloud. • Ability to analyze vulnerability metrics using Microsoft Excel advanced techniques. • 5-8years of combined IT and security work experience with a broad range of exposure to cybersecurity, systems analysis, application development and/or systems administration and 3+ years of vulnerability management experience. • Requires Security Certification(s) (i.e., Certified Information Systems Security Professional (CISSP), or Certified Information Security Manage (CISM), Certificate of Cloud Security Knowledge (CCSK), Offensive Security Certified Professional (OSCP) or other equivalent recognized security certifications. • Good understanding of industry standard regulations and risk management frameworks and standards (e.g., ISO, PCI, NIST, COBIT, GAPP, HIPAA, GDPR). • Familiarity with SANS Top 25 controls, OWASP Top 10 and/or MITRE ATT&CK framework • Excellent communication skills: able to explain complex concepts clearly to both technical and non-technical stakeholders. Skills Desired: • Exposure or knowledge of cloud architectures, services, and vulnerabilities. • Understanding of risk assessment methodologies. • Proficiency in using vulnerability scanning tools such as Qualys, Armis, MS Defender, etc. • Ability to interpret vulnerability data from multiple sources. • Reporting and metrics expertise with platforms such as ServiceNow (SecOps), PowerBI, etc.

Come work at a place where innovation and teamwork come together to support the most exciting missions in the world! Should be able to handle the General Accounting activities for some of the Qualys India and Other international entities independently and ensure timely month-end/quarter end book closures. Assists in preparing and posting all entries and reconciliations for month-end close. Reviews various calculations and analysis to ensure accuracy and completeness of financial data and recommends and implements changes as needed. Assist in processing Intercompany fund transfers, Tax and payroll payments. Researches, analyzes, and uses independent judgment in a variety of daily and non-routine decisions affecting assigned function. Review of financial statements and prepare the variance analysis to present the findings along with necessary commentary. Collaborate with the consultants and internal stakeholders to make sure all the Statutory and compliance filings/payments are adhered to as per local laws. Review the open PO’s and record the necessary accruals. Coordinate Intercompany Payable/ Intercompany Receivable reconciliations between parent company and subsidiaries. Responsible for complete Fixed Assets and Prepaid accounting processes of assigned entities. Prepare audit schedules and assist the auditors in their inquiries Qualifications: CA Inter with 3-4 years of experience/ CA Fresher/Bachelor’s degree in accounting, Finance, or related discipline required with 5-6 years experience. Candidate should be self-motivated, prioritize responsibilities, and work in a dynamic environment. Good communication and presentation skills Analytical thinking & attention to detail is a must Continuously identify opportunities for process improvement. Advanced Microsoft Excel skills (Pivot Tables, VLOOKUP functions, etc.) Experience with NetSuite (Oracle Application), Concur and Coupa is preferred Show more Show less