67 Security Analyst Jobs - Page 2

The purpose of this role is to work as part of a team to implement an organised approach to addressing and managing security requests, breaches or cyberattacks. Performing first responder and triage activities to assess the potential risk. Key responsibilities: Manage client audits, and MSAs Support client risk assessments. Performs daily, weekly, monthly maintenance and management tasks Monitors and manages security tool consoles, ensuring all alerts are responded to, escalating incidents quickly Performs risk and vulnerability assessments Maintains current knowledge of tools, techniques and procedures of attackers Investigates alerts, anomalies, errors, intrusions and malware for evidence of compromise Takes ownership of cyber security call queues ensuring tickets are closed based on defined SLAs

MINIMUM REQUIREMENTS List the minimum requirements of skills, knowledge and the type and length of previous experience necessary for an individual to be considered for this position. 2-5 years of IT experience 1-2 years of security experience 1-2 years of cloud experience Any experience with basic administration of security tools (e. g. , antivirus/EDR, SIEMs, firewalls, identity management systems). Any experience with encryption technologies and digital certificate management Any experience with security and secrets protection platforms Any experience with incident response activities on Windows and Linux systems Any experience identifying and remediating security vulnerabilities Any experience with running scripts and scripting languages Strong written and verbal communication skills Ability to troubleshoot security problems Ability to properly handle confidential and sensitive information EDUCATION REQUIREMENTS List the minimum requirements of education and/or certification for an individual to be considered for this position. Bachelor s degree in information systems or comparable experience CompTIA Network+ or Security+ highly desired Committed to diversity and inclusion At Manhattan, it s about more than just the work. From cultural celebrations to interest groups to volunteer opportunities, your true self is always welcome here. Our team members backgrounds, experiences and perspectives add to us as a whole and make us unique. We are proudly an Equal Employment Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a veteran. In the United States, Manhattan Associates participates in the Employment Eligibility Verification Program (E-Verify) operated by the Department of Homeland Security in partnership with the Social Security Administration. Participation in the E-Verify Program allows Manhattan to confirm the employment eligibility of all newly hired employees after the Employment Eligibility Verification Form (Form I-9) has been completed.

Responsibilities: Perform real time security monitoring and incident response activities across the networks, leveraging a variety of tools and techniques Create and improve Incident Response Playbook Perform post incident reviews to improve and tune Halma s incident response capability Provide support to the team members while investigating alerts escalated by MSSP & work closely with Leads. Provide support in the area of Azure Active directory, Intune (conditional access/MDM), single sign on and Multifactor Authentication, Microsoft Defender for Endpoint, Microsoft Defender for Server, Office 365 email security. Monitor and respond to security incidents for Halma PLC and Subsidiary companies. Interact with end-users and IT Managers of Halma and Subsidiary companies during investigations, to raise awareness and training opportunities. Create and Maintain KB articles & SOPs for all the applications related to SOC to ensure security best practices in the team. Should be able to work on Incident and Security Reports Independently. Experience (exposure): Total experience 3-5 years Exposure to security technologies including Incident Response, Microsoft Defender, Azure Sentinel. Knowledge of network fundamentals TCP/IP, SSL/TLS, DNS, DHCP. Hands on experience to Microsoft technologies like 365 ATP Defender, Endpoint Manager (Intune- conditional access/MDM/MAM) and KQL knowledge.

Its fun to work in a company where people truly BELIEVE in what they are doing! Were committed to bringing passion and customer focus to the business. Responsibilities: Perform real time security monitoring and incident response activities across the networks, leveraging a variety of tools and techniques Create and improve Incident Response Playbook Perform post incident reviews to improve and tune Halma s incident response capability Provide support to the team members while investigating alerts escalated by MSSP & work closely with Leads. Provide support in the area of Azure Active directory, Intune (conditional access/MDM), single sign on and Multifactor Authentication, Microsoft Defender for Endpoint, Microsoft Defender for Server, Office 365 email security. Monitor and respond to security incidents for Halma PLC and Subsidiary companies. Interact with end-users and IT Managers of Halma and Subsidiary companies during investigations, to raise awareness and training opportunities. Create and Maintain KB articles & SOPs for all the applications related to SOC to ensure security best practices in the team. Should be able to work on Incident and Security Reports Independently. Experience (exposure): Total experience 3-5 years Exposure to security technologies including Incident Response, Microsoft Defender, Azure Sentinel. Knowledge of network fundamentals TCP/IP, SSL/TLS, DNS, DHCP. Hands on experience to Microsoft technologies like 365 ATP Defender, Endpoint Manager (Intune- conditional access/MDM/MAM) and KQL knowledge. If you like wild growth and working with happy, enthusiastic over-achievers, youll enjoy your career with us! Not the right fit? Let us know youre interested in a future opportunity by clicking Introduce Yourself in the top-right corner of the page or create an account to set up email alerts as new job postings become available that meet your interest!

Its fun to work in a company where people truly BELIEVE in what they are doing! Were committed to bringing passion and customer focus to the business. Responsibilities: Perform real time security monitoring and incident response activities across the networks, leveraging a variety of tools and techniques Create and improve Incident Response Playbook Perform post incident reviews to improve and tune Halma s incident response capability Provide support to the team members while investigating alerts escalated by MSSP & work closely with Leads. Provide support in the area of Azure Active directory, Intune (conditional access/MDM), single sign on and Multifactor Authentication, Microsoft Defender for Endpoint, Microsoft Defender for Server, Office 365 email security. Monitor and respond to security incidents for Halma PLC and Subsidiary companies. Interact with end-users and IT Managers of Halma and Subsidiary companies during investigations, to raise awareness and training opportunities. Create and Maintain KB articles & SOPs for all the applications related to SOC to ensure security best practices in the team. Should be able to work on Incident and Security Reports Independently. Experience (exposure): Total experience 3-5 years Exposure to security technologies including Incident Response, Microsoft Defender, Azure Sentinel. Knowledge of network fundamentals TCP/IP, SSL/TLS, DNS, DHCP. Hands on experience to Microsoft technologies like 365 ATP Defender, Endpoint Manager (Intune- conditional access/MDM/MAM) and KQL knowledge. If you like wild growth and working with happy, enthusiastic over-achievers, youll enjoy your career with us! Not the right fit Let us know youre interested in a future opportunity by clicking Introduce Yourself in the top-right corner of the page or create an account to set up email alerts as new job postings become available that meet your interest!

Job Title: Network & Systems Administrator Job Level: Individual Contributor Experience: 8-11 years Primary Skills: Windows System Administration, Network Administration Secondary Skills: HTTP, SSL/TLS, SOAP, Cloud Knowledge POSITION SUMMARY: The Technology Support Specialist is responsible for providing IT and Security support related to computer systems, hardware, and software to the Securonix global staff. This role is integral to the continued operations of the company by ensuring that our employees have the technology and tools functioning as needed to perform their job duties in a secure fashion. POSITION RESPONSIBILITIES: Perform administration and internal support of PCs, laptops, mobile devices, printers, servers, and other related equipment located on-site and in satellite offices. Respond to telephone calls, emails and help ticket requests for technical support. Identify, research, and resolve technical problems with timely resolution and follow-up. Diagnose requests to determine level of technical assistance required; if unable to resolve problem, escalate the request to the proper resource Provision and deprovision process of user accounts, system access, and overall directory service management Monitor and maintain technology to ensure maximum access and efficient operations. Assist with security operations and compliance initiatives. Assist with managing internal and external vulnerability scanning and penetration testing. Assist in creating and maintaining security policies, procedures, and standards documentation. Ensure software and firmware patching is scheduled and performed on a regular basis. Monitor vulnerability tracking services for new security alerts, vulnerabilities, and exposures for internal and production systems. Notify IT staff of new vulnerabilities and coordinates the installation of security patches. Monitor logs on a regular basis and creates security reports based on that information as needed. Supports ongoing security efforts by coordinating the remediation of security vulnerabilities. Assist with planning and implementing future software and hardware upgrades. Complete security and compliance assessments and questionnaires as required by our clients. Conduct security and compliance assessments of our vendors. REQUIRED SKILLS: Bachelors degree in computer science, Computer Engineering, Network Security, Information Security, Information Technology or equivalent work experience. Minimum of 3-4 years working as a Windows System Administrator, Network Administrator, Security Analyst or similar role. Minimum of 1 year customer service experience in a fast-paced help desk or customer contact environment. Advanced knowledge in Directory Services, DNS, Group Policy, and DHCP Expertise in computer hardware and software systems and programs including but not limited to emails, industry specific software, telecommunications, video conferencing systems and software, AV equipment, computer networks, network administration and network installation. Intermediate understanding of HTTP, SSL/TLS, SOAP, and reverse proxies Basic understanding of a cloud environment and infrastructure (AWS, Azure, Google Cloud, etc.) Basic understanding of Security Information & Event Management (SIEM) concepts and functionality Intermediate incident response experience Basic experience with configuration and troubleshooting of network switches, routers, and firewalls. Knowledge of networking including TCP/IP Basic understanding of routing Troubleshoot technical issues. Physically set up workstations for new employees including new CPU's, monitors and related components (i.e., keyboards, mouse, speakers, webcam, etc.) Ability to work independently, analyse data, take and recommend appropriate actions with minimal supervision. Superior analytical, organizational and problem-solving abilities Excellent written and oral communication skills Must work flexible hours, including late nights and weekends, Prioritize multiple "High Priority" request for most efficient operations, Ability to remain patient and professional when faced with difficult situations,

The Security Operations Team protects Akamais systems and infrastructure while promoting internal security practices. Collaborate directly with product and platform teams across the organisation. Partner with the best As a Senior Security Analyst, monitor and respond to security events and inquiries from customers and vendors. Gain exposure to complex tasks within the role. The position requires technical expertise and knowledge of recent threats and adversarial techniques. As a Security Analyst Senior, you will be responsible for: Identifying and driving process improvements in Security Operations and Incidents Coordinating with Incident response and engineering Team to handle efforts during security Incidents. Ensuring threats are identified and escalated accordingly across multiple business units. Investigating and finding root causes of incidents and document the lessons learned Do what you love To be successful in this role you will: Have at least 5 years of relevant experiences in Security operations and IT Security. Possess IT Security expertise in CEH, Comptia Security+, CCNA, SANS, CISSP, or Incident Response. Demonstrate some experience of software development using Python Demonstrate hands-on experience working with SIEM platforms Possess expertise in Endpoint, Network, Perimeter security solutions; demonstrate familiarity with Windows, Linux, OSINT. Work rotating monthly shifts (Morning: 6:00-14:00, Afternoon: 14:00-22:00) with weekend on-call duties.

Key Skills : Workday SaaS, Software Engineering, Workday Security Solutions, Security Analyst, Requirements Gathering, Software Design, Architecture, Audit Support, Risk Mitigation. Roles & Responsibilities : Engineer and maintain innovative, customer-centric, high-performance, secure, and robust solutions. Collaborate within a feature team to develop software, scripts, and tools, engaging with engineers, architects, and business analysts across the platform. Produce complex and critical software rapidly and with high quality, adding value to the business. Work across the full life cycle of software from initial development to enhancement, maintenance, and decommissioning. Optimize software engineering capability through collaboration with team members. Design, produce, test, and implement working code. Collaborate throughout the life cycle, from requirements analysis and design to coding, testing, deployment, and operations. Gather and analyze requirements, design solutions, and implement software solutions for Workday SaaS. Support internal and external audit queries by gathering Workday evidences and identifying security gaps and risks, providing mitigation options. Experience Requirement : 7-12 years of experience in delivering Workday SaaS solutions. Experience in requirements gathering, analysis, design, development, testing, and implementation of Workday Security solutions. Hands-on experience as a Security Analyst in designing, building, and deploying Workday Security solutions. Experience in supporting internal and external audit queries, proactively identifying security gaps, and providing mitigation options. Education : Any Post Graduation, Any Graduation.

Position SAP Security Analyst Experience 3+ years Job Summary The SAP Security GRC DevOps analyst will be responsible for contributing to the implementation and management of security controls and governance, risk, and compliance (GRC) solutions within SAP environments. The candidate will work closely with cross-functional teams to ensure robust security practices are integrated into the DevOps lifecycle. Requirements Bachelor s degree in computer science, Information Technology, or related field. 3+ years of experience in SAP security and GRC, with a focus on DevOps practices. Strong knowledge of SAP security architecture, role-based access control, and GRC frameworks. Experience with cloud platforms and containerization technologies (e. g. , AWS, Azure, Docker). Proven ability to manage multiple projects and priorities in a fast-paced environment. Excellent problem-solving skills and attention to detail. Strong communication and interpersonal skills to work effectively with diverse teams. Preferred Qualifications Relevant certifications in SAP security or GRC (e. g. , CISA, CISSP, SAP Certified Technology Associate). Experience with automation tools and scripting languages (e. g. , Python, PowerShell). Location [Insert Location] Type [Full-Time/Part-Time/Contract]

Perform first-line review of incoming Trust Office cases in Salesforce, validate case accuracy, and assign for further action. Respond to requests from internal sales teams regarding security and compliance inquiries from customers and prospects. Prepare and distribute weekly reports from Salesforce. Manage distribution of Security and Trust Assurance Packets (STAP) to customers and prospects. Collaborate with internal teams (Security, Product, Engineering, etc.) to communicate and support DocuSigns compliance posture. Contribute to continuous improvement initiatives within the Office. Perform additional tasks and responsibilities as assigned. Support after-hours requests on an as-needed basis. What You’ll Bring Basic Qualifications: Bachelor’s degree or equivalent work experience in Computer Science, Cybersecurity, GRC (Governance, Risk & Compliance), or related field. Minimum 2 years of relevant experience in cybersecurity or compliance-related roles. Familiarity with security and compliance frameworks such as: SSAE16, ISO 27001, NIST, PCI DSS, SOC, SIG, CSA, HIPAA, HITRUST, FedRAMP. Experience working in a SaaS or cloud solutions environment. Proficiency with Salesforce and Google Workspace tools. Strong analytical, communication, and presentation skills. Detail-oriented with excellent organizational and time management skills. Comfortable working across cross-functional teams and stakeholders. Strong passion for continuous learning and improvement. Understanding of the role of supply chain security in customer assurance. Work Environment Hybrid Work Model: This is a hybrid position requiring a presence in the Bangalore office a minimum of 2 days per week, with flexibility for remote work based on team and business needs.Role & responsibilities Preferred candidate profile

Responsibilities, authorities and accountabilities We are seeking a highly skilled and experienced Senior Product Security Analyst to join our growing security team. In this role, you will be responsible for ensuring the security of our products throughout the development lifecycle. You will work closely with engineering, product management, and DevOps teams to identify, assess, and mitigate security risks in our applications and services. In this role, you will: Be responsible for providing technical leadership and defining, developing, and evolving security within software in a fast-paced and agile development environment using the latest secure software development technologies and infrastructure. Work with Cyber Security Leaders and SMEs to understand security requirements Perform penetration testing Collaborate with product and engineering teams to integrate security into the software development lifecycle (SDLC). Conduct threat modeling, design reviews, and code reviews to identify and mitigate security vulnerabilities. Perform static and dynamic application security testing (SAST/DAST), and manage results and remediation efforts. Lead security assessments of new and existing products, including third-party components and APIs. Develop and maintain secure coding guidelines and best practices. Support incident response and forensic investigations related to product security. Stay current with emerging threats, vulnerabilities, and security technologies. Assist security champions in completing Threat Modeling and Architecture Risk Analysis on product features Provide guidance and advice on writing secure code that meets standards and delivers desired functionality, using the technology selected for the project Understand application security methodologies and frameworks Leverage Baker Hughes Digital s tailored Secure SDL practice into specific engineering engagements Research new application security technologies and implement them to improve application security. Maintaining a backlog of security-related tools that will improve the maintainability and security of our code and the pace of development Promote best practices based on OWASP, SANS Top 25, and the Baker Hughes Digital SDL. Required Qualifications Bachelors Degree in Computer Science or STEM Majors (Science, Technology, Engineering and Math). A minimum 2 years of professional experience in STEM related degree, Political Science / Government / International Affairs. Desired Characteristics Detailed working knowledge of two modern programming languages, such as java, python, or ruby Strong written and oral communication skills and successful security consulting background. At least 2 years of security consulting involvement with development team(s) that delivered software-based services Experience in developing secure applications A high energy and a result-oriented attitude/approach, with an understanding of release timelines and the need to enable development teams, not slow them down Experience with Security Development Lifecycle processes Contribute to and lead discussions and communications within the team and outside, including customers and other business units Strong knowledge of Object Oriented Analysis and Design, Software Design Patterns and coding principles Experience with penetration testing tools, ability to replicate security defects uncovered by groups such as red team Good understanding of security tools and technologies to facilitate secure development

Lead Product Security Analyst Are you a Product Security Analyst expert looking for a challenging opportunity? Join our Product Security team. We operate at the heart of the digital transformation of our business. Our team is responsible for Product Security including application security for our global organization. Partner with the best . We are looking for a Lead Product Security Analyst, with a focus in Product Security. In this role, you will work in a team and demonstrate working knowledge of systems and products and how they are secured in customers businesses . As a Senior Lead Product Security Engineer , you will be responsible for: Leading security architecture reviews, threat modeling, and risk assessments for complex systems and products. Defining and drive the adoption of secure development practices across engineering teams. Partnering with product managers, architects, and developers to embed security into product roadmaps and design decisions. Developing and maintain scalable security frameworks, standards, and automation tools. Conducting advanced security testing (SAST, DAST, IAST, fuzzing) and oversee remediation efforts. Evaluating and integrate security tools into CI/CD pipelines and development workflows. Serving as a mentor and technical leader for junior analysts and engineers. Collaborating with incident response and vulnerability management teams to address product-related security issues. Staying ahead of emerging threats, technologies, and regulatory requirements, and translate them into actionable strategies. Fuel your passion To be successful in this role you will: Have Bachelor s or Master s degree in Computer Science, Cybersecurity, or a related field. Have 6+ years of experience in application/product security, with a proven track record of securing large-scale systems. Have Deep understanding of secure coding, software architecture, and common vulnerabilities (e.g., OWASP Top 10, CWE). Have proficiency in multiple programming languages (e.g., Python, Java, Go, C++) and scripting. Have experience with cloud-native security (AWS, Azure, GCP), containers (Docker, Kubernetes), and microservices. Have strong communication and leadership skills, with the ability to influence cross-functional teams. Desired Characteristics Industry certifications such as OSCP, CISSP, CSSLP, or GIAC. Experience in threat modeling methodologies (e.g., STRIDE, PASTA). Familiarity with compliance and regulatory standards (e.g., SOC 2, ISO 27001, PCI-DSS). Contributions to open-source security tools or research. Working with us Our people are at the heart of what we do at Baker Hughes. We know we are better when all our people are developed, engaged and able to bring their whole authentic selves to work. We invest in the health and well-being of our workforce, train and reward talent and develop leaders at all levels to bring out the best in each other. Working for you Our inventions have revolutionized energy for over a century. But to keep going forward tomorrow, we know we must push the boundaries today. We prioritize rewarding those who embrace change with a package that reflects how much we value their input. Join us, and you can expect: Contemporary work-life balance policies and wellbeing activities Comprehensive private medical care options Safety net of life insurance and disability programs Tailored financial programs. Additional elected or voluntary benefits

Lead Product Security Analyst Are you a Product Security Analyst expert looking for a challenging opportunity? Join our Product Security team. We operate at the heart of the digital transformation of our business. Our team is responsible for Product Security including application security for our global organization. Partner with the best . We are looking for a Lead Product Security Analyst, with a focus in Product Security. In this role, you will work in a team and demonstrate working knowledge of systems and products and how they are secured in customers businesses . As a Senior Lead Product Security Engineer , you will be responsible for: Leading security architecture reviews, threat modeling, and risk assessments for complex systems and products. Defining and drive the adoption of secure development practices across engineering teams. Partnering with product managers, architects, and developers to embed security into product roadmaps and design decisions. Developing and maintain scalable security frameworks, standards, and automation tools. Conducting advanced security testing (SAST, DAST, IAST, fuzzing) and oversee remediation efforts. Evaluating and integrate security tools into CI/CD pipelines and development workflows. Serving as a mentor and technical leader for junior analysts and engineers. Collaborating with incident response and vulnerability management teams to address product-related security issues. Staying ahead of emerging threats, technologies, and regulatory requirements, and translate them into actionable strategies. Fuel your passion To be successful in this role you will: Have Bachelor s or Master s degree in Computer Science, Cybersecurity, or a related field. Have 6+ years of experience in application/product security, with a proven track record of securing large-scale systems. Have Deep understanding of secure coding, software architecture, and common vulnerabilities (e.g., OWASP Top 10, CWE). Have proficiency in multiple programming languages (e.g., Python, Java, Go, C++) and scripting. Have experience with cloud-native security (AWS, Azure, GCP), containers (Docker, Kubernetes), and microservices. Have strong communication and leadership skills, with the ability to influence cross-functional teams. Desired Characteristics Industry certifications such as OSCP, CISSP, CSSLP, or GIAC. Experience in threat modeling methodologies (e.g., STRIDE, PASTA). Familiarity with compliance and regulatory standards (e.g., SOC 2, ISO 27001, PCI-DSS). Contributions to open-source security tools or research. Working with us Our people are at the heart of what we do at Baker Hughes. We know we are better when all our people are developed, engaged and able to bring their whole authentic selves to work. We invest in the health and well-being of our workforce, train and reward talent and develop leaders at all levels to bring out the best in each other. Working for you Our inventions have revolutionized energy for over a century. But to keep going forward tomorrow, we know we must push the boundaries today. We prioritize rewarding those who embrace change with a package that reflects how much we value their input. Join us, and you can expect: Contemporary work-life balance policies and wellbeing activities Comprehensive private medical care options Safety net of life insurance and disability programs Tailored financial programs. Additional elected or voluntary benefits

Everbridge is seeking an energetic, multi-tasking, and process focused Sales Security Analyst to support our nationwide sales team. The Sales Security Analyst provides a wide range of security, privacy, and operational support to the Everbridge sales team. The Sales Security Analyst will also become a strong user of Salesforce.com and confidential messaging technologies (email and 3rd party based). What you ll do Responding to client security inquiries and questionnaires Validating confidentiality and deploying security attestation documentation Reviewing security and compliance requirements in contract negotiations Participating in security control discussions with our Legal Team and clients/prospects Interacting with Everbridge Security & Compliance teams to obtain up to date content/responses Managing and updating security response content and associated security artifacts Creating and configuring environments in Everbridge s SaaS system to be used by sales, technical, and client teams Reviewing and assigning incoming proposals and engaging with our proposal management team as first point of contact for technical and operational support. What you ll bring Minimum experience required for the role is 3 yrs. High level understanding of internet hosted applications, highly available architectures, computer security, telephony, and networking Experience interfacing with business and technical teams Ability to learn, understand, and discuss technical concepts, security/compliance requirements and regulations Ability to maintain a high level of productivity in a fast-paced, team environment while managing multiple competing priorities Strong time management skills with proficiency with the Microsoft Office Suite Knowledge of Salesforce.com application a plus Knowledge of cybersecurity, software security and compliance requirements and controls knowledge a benefit BA or BS, Business, Computer Science or +5yrs related experience a benefit (not required) About Everbridge Everbridge empowers enterprises and government organizations to anticipate, mitigate, respond to, and recover stronger from critical events. In today s unpredictable world, resilient organizations minimize impact to people and operations, absorb stress, and return to productivity faster when deploying critical event management (CEM) technology. Everbridge digitizes organizational resilience by combining intelligent automation with the industry s most comprehensive risk data to Keep People Safe and Organizations Running . For more information, visit www.everbridge.com , read the company blog, and follow on Twitter. Everbridge Empowering Resilience

Role & responsibilities Conduct internal audits and control assessments across frameworks including but not limited to: SOC 2 Type 2 ISO/IEC 27001:2022 PCI DSS HiTrust CSF PIMS (ISO/IEC 27701), AIMS (ISO/IEC 22301) EcoVadis Prepare and maintain audit documentation, evidence collection, and control narratives. Liaise with stakeholders from IT, Security, HR, Legal, and Operations to gather and verify compliance evidence. Support external auditors during SOC, ISO, and PCI assessments by coordinating walkthroughs, follow-ups, and remediation tracking. Perform risk-based control testing and gap analysis against regulatory and contractual obligations. Maintain and update the audit calendar, issue logs, and compliance dashboards. Monitor and track audit findings and assist in developing corrective action plans (CAPAs). Contribute to the development and continuous improvement of the GRC framework and control library. Stay current on updates to standards (e.g., ISO 27001:2022 updates), regulatory developments (e.g., DPDPA, GDPR), and industry best practices. Looking for early Joiners. Interested Candidate can share resume on bhawana.sharma@rsystems.com or can call at 8595575733. Regards, Bhawana

The Area: The Information Security Team is a central function governing corporate and product security globally. We have built a strong team of high performing security experts and are creating a new team within Information Security here at Morningstar. As a member of our new Security Operations Center Team, you will get to be a part of a growing and well supported program protecting Morningstar s Infrastructure, Data, and People. The Role: As an analyst on our Security Operations Center Team, you will monitor and analyze threats, provide security monitoring, and incident response services. Day to day you will work with the team to understand, mitigate, and respond to threats quickly, restoring operations and limiting impact. You will analyze incidents to determine scope and impact and assist in recovery efforts. You will combine threat intelligence, event data, and assessments from recent events, to identify patterns to understand attackers goals and stop them from succeeding. This position is based in our Mumbai office. Responsibilities: Provide 24x7 monitoring operations for security alerts Detect, analyze, report and respond to cyber security events and incidents using a combination of technology solutions and processes Review and escalate alerts Examine and operationalize new adversary detection methods to defend Morningstar Assess the security impact of security alerts and traffic anomalies to identify malicious actions. Generate reports for both technical and non-technical staff and stakeholders. Requirements + A bachelor s degree and 2-3+ years experience in Information Security. + Excellent communication skills and an understanding of cyber security fundamentals. + Candidates should be interested in keeping up with the latest security trends. + Experience with security tools +Add-on Certification like Security+, CompTIA+, Splunk. Morningstar is an equal opportunity employer

Join us as a Security Analyst We ll look to you to assess, triage, and respond proactively and effectively to security related threats, incidents, requests, and events The work you do will be vital in defending our assets, information, and systems from unauthorised access, use, disclosure, disruption, modification, perusal, inspection, recording, or destruction Collaborating with internal and external stakeholders including third party suppliers, you ll ensure activities relating to incident response, user access, alert monitoring, root cause analysis, and scenario planning are completed in line with standard operating procedures and to a high standard This role is available at associate vice president level What you ll do Working with an array of domains, stakeholders, and specialists, you ll take a proactive role to anticipate and identify security events, incidents, and trends that could adversely impact the bank, our customers, employees, or assets. You ll contribute to security operations including production support, incident response, and on-call rota, and you ll carry out and contribute to root cause analysis on security incidents and events, conduct training and scenario planning to prepare for and anticipate future events. As such, you ll minimise future reoccurrence, and prepare reports and briefings as needed and to a high quality. You ll also develop and maintain response plans, procedures, and playbooks to increase consistency and effectiveness of response capability. As well as this, you ll: Proactively identify and effectively manage risks to deliver key security related customer and compliance outcomes, escalating and driving actions as necessary Actively contribute to security operations such as production support, incident response and on-call rota Maintain the end-to-end security response as directed, and ensure that security related services are delivered in line with expectations and that process change is implemented smoothly Act with pace when responding to customer queries and complaints and when responding to security events, make sure that feedback loops are in place to learn how to improve service and response Interrogate and interpret large volumes of data and analyse and assess data to understand trends and causal factors The skills you ll need We re looking for someone with a passion for cloud security and automation using Agile and DevOps methodologies, as well as promoting shift-left culture, which integrates security analysis into each CI/CD stage. You ll have experience with Azure Cloud and security stack including Defender, Azure Sentinel and Azure Security Centre. You ll also have expertise in automated security assessments and familiarity with third-party security tools integration such as Qualys and Tenable and compliance standards like PCI-DSS. In addition to this, you ll demonstrate: Experience and knowledge of security controls The ability to communicate technical issues in business terms to range of stakeholders Experience in p enetration testing and vulnerability management An understanding of Agile methodologies with experience of working in an Agile team Hours 45 Job Posting Closing Date: 30/06/2025

Job Title: Operational Security Engineer Network Security Company : Infrasoft Technologies ( Kiya.ai ) Location: Chennai Department: Wealth Management – IT Security (ITRCS) Experience: 5 – 7 years (only eligible) Job Purpose: As an Operational Security Engineer, you will be responsible for strengthening the security posture of Wealth Management’s global IT environment by implementing and managing security controls in the areas of cloud, infrastructure, network, application, and vulnerability management. Key Responsibilities: Cloud & Container Security Secure cloud infrastructure and container images using Docker, Kubernetes Implement cloud image hardening, secure configuration and access controls Ensure compliance with organizational cloud security policies Network & System Security Design and implement secure network architectures Apply firewall, WAF, and anti-DDoS strategies to protect network traffic Ensure endpoint and server system patching and hardening Vulnerability & Risk Management Conduct regular vulnerability assessments using tools like Qualys, Rapid7, Tanium Prioritize and remediate vulnerabilities in coordination with Dev/Infra teams Report risks and mitigation status to leadership Application Security Support Secure SDLC practices (SAST, DAST, SCA, threat modeling) Collaborate with developers to ensure secure coding practices Ensure DevSecOps integration in CI/CD pipelines Compliance & Governance Ensure compliance with ISO 27001, NIST, GDPR, PCI-DSS, HIPAA Align with regional regulators like HKMA, MAS, FINMA Define and improve security policies and procedures Cybersecurity Operations Assist in incident investigations, SIEM onboarding, and DLP monitoring Track, analyze, and mitigate cybersecurity threats across environments Contribute to regional and global reporting (dashboards, committee updates) Technical Expertise 5 - 7 years of experience in Information Security, Vulnerability Management, Cloud/Infra Security Hands-on with Qualys, Tanium, Rapid7, Docker, Kubernetes Strong knowledge of firewall, endpoint security, and network protocols Familiar with DevSecOps, CI/CD pipelines, and secure application architecture Understanding of IT security standards: ISO 27001, NIST, CIS Preferred Certifications: CISSP, CISM, CEH, CISA ISO 27001 LA, SANS, Azure/AWS Security certs Domain Experience Banking or Financial Services background (especially Wealth Management) is preferred Understanding of APAC and global regulatory environments Why Join Us? Be part of a globally recognized security team Work on cutting-edge cloud and security technologies Contribute to protecting one of the world’s largest financial institutions Embrace an inclusive culture with diversity at its core Apply Now with the subject - Cybersecurity analyst profile : kanimozhi.p@kiya.ai

A. Job Qualifications Necessary: Education: Bachelor's degree in Cybersecurity, Computer Science, Information Security, or a related field Experience: 5+ years of experience in information security, including roles as a Security Analyst and/or Security Engineer. Experience with secure coding practices, code reviews, and security testing. Experience with static and dynamic code analysis tools. Experience with CI/CD pipelines and integrating security into DevOps processes. Certifications: Relevant certifications such as CISSP, CEH, OSCP, or similar. Skills: Strong understanding of security principles, protocols, and best practices. Proficiency in security tools and technologies (e.g., Wiz, SonarQube, vulnerability scanners). Knowledge of regulatory requirements and industry standards (e.g., GDPR, ISO 27001, SOC2). Familiarity with the OWASP Top 10 vulnerabilities and mitigation strategies Understanding of NIST cybersecurity standards and frameworks (e.g., NIST CSF, NIST SP 800-53) Excellent analytical and problem-solving skills. Strong communication and collaboration skills. Ability to work independently and as part of a team.

• Management and configuration of Checkpoint firewall& IPS Technology Checkpoint / Switching / Routing. • Expert to handle the day-to-day checkpoint firewall & IPS operational issues. • Initial firewall/IPS testing of parameters, operation, support Required Candidate profile 1) Candidate should have strong 2 + years of overall experience as a Network/Security Engineer. 2) Experience in firewall& IPS Technology / Switching / Routing. 3) CCSA Certification mandatory.

Company Description Vialto Partners is a market leader in global mobility services. Our purpose is to Connect the world . We are unique and the only stand-alone global mobility business. This presents a rare opportunity for our clients, stakeholders and colleagues. Working at Vialto Partners is about getting the chance to be part of a global and dynamic team. Globally, Vialto Partners has over 6, 500 staff in over 50 countries around the world, and continues to grow. You will work with clients from a range of industries and different geographical locations. We believe in connecting the world and supporting our colleagues to do the same in their careers by undertaking assignments and opportunities globally that broaden their skills and ultimately benefit our clients. To learn more about what we do, tune in to our podcast On the Move to hear expert insights on issues affecting global mobility, and read about the latest news in the industry. You can also follow us on Linkedin and Instagram. Job Description The Senior Associate - Client Security Analyst role is responsible for assisting in supporting client due diligence requests including: completing client security questionnaires, responding to engagement team and client inquiries, updating and validating artifacts, maintaining the Trust Center portal, managing the appropriate client security inboxes, and liaising with other team members on tasks. The position has an active role in most client engagements at Vialto Partners, including RFP requests and other pre and post-sales activities. As a Senior Associate, you ll work as part of a team of problem solvers, helping to solve complex business issues from strategy to execution. A successful candidate will need a combination of technical and communication skills, as well as the ability to handle a mix of disparate tasks which may include collaborating with other teams to gather information and/or artifacts. This role will provide career growth opportunities as you will be working with fellow world-class technologists. Skills and responsibilities for this level include but are not limited to: Contribute to the development, implementation, and maintenance of security assurance functions, which includes client Perform assessments against organizational policy controls and regulatory control frameworks Partner with engagement teams to translate Vialto Partners global information security expectations and work towards technical security solutions as appropriate. Support client and engagement team security assessment inquiries about Vialto Partners global information security program. Provide security training and outreach to internal development teams as necessary. Develop security documentation as necessary. Provide security metrics on delivery and improvements, where applicable. Work independently and be self-driven to assist internal and external stakeholders. Uphold Vialto Partners code of ethics and business conduct. Use feedback and reflection to develop self-awareness, personal strengths and address development areas. Qualifications Minimum Degree Required: Bachelor s or Master s degree. Required Fields of Study: Any Engineering graduate Minimum Years of Experience: 5-10 years of total experience, 2+ years experience in IT/Security roles Location: Hyderabad (In-office) Additional Information We are an equal opportunity employer that does not discriminate on the basis of any legally protected status. Please note, AI is used as part of the application process.

We are looking for a hands-on and motivated OT Security Analyst with around 3 years of experience in securing Operational Technology (OT) and Industrial Control Systems (ICS) environments. This role will support the implementation and improvement of our manufacturing security program. You will play a key part in shaping OT security strategies, supporting the deployment of security controls, and collaborating with cross-functional teams to strengthen our OT security posture. Key Responsibilities: Implement and support security controls for PLCs, HMIs, SCADA systems, RTUs , and other OT assets. Perform risk assessments , define segmentation strategies , and contribute to OT security baselines . Work with OT security tools such as Claroty, Nozomi, Armis, or Tenable.ot to monitor and protect industrial networks. Collaborate with plant operations, engineering, and OT vendors for secure implementation and lifecycle support. Assist in SIEM log integration , alert triage, and incident investigation related to OT systems. Support network segmentation , firewall configuration , and passive traffic monitoring within OT environments. Participate in the creation of documentation, playbooks, and process improvements for OT security operations. Required Skills & Qualifications: 3+ years of experience in OT/ICS cybersecurity or related roles. Strong understanding of ICS protocols like Modbus, DNP3, OPC , etc. Experience with industrial devices and systems (PLCs, SCADA, RTUs, robotic automation). Familiarity with OT-specific risks and the unique constraints of industrial environments. Exposure to OT security tools (e.g.,Claroty, Nozomi, Armis, Tenable.ot ). Working knowledge of SIEM tools , firewalls , and network segmentation in OT setups. Good communication skills and the ability to work with multi-disciplinary teams. Preferred (Nice to Have): Certifications like GICSP, GRID, IEC 62443 or other OT security credentials. Familiarity with NIST CSF , IEC 62443 , or related cybersecurity frameworks. Experience working in manufacturing or industrial sectors .

Cybersecurity Risk Analyst develops and maintains the cybersecurity strategy, policies, and risk management processes to ensure that the organization effectively secures Chevron s operations. Analyze and priortize cybersecurity risks, key controls and assess appropriate remediation plan, monitor progress of risk prevention and remediation. Follow processes that ensure critical cyber security information reaches Business Units. Identify and addresses gaps, trends, or opportunities to address cybersecurity risk in a specifically assigned area. Demonstrated experience developing and maintaining the cybersecurity strategy, policies, and risk management processes to ensure that the organization effectively Demonstrated experience developing and maintaining the cybersecurity strategy, policies, and risk management processes to ensure that the organization effectively secures operations.

Phishing Email Analysis (SOC) Overview We are seeking a highly skilled Security Analyst with extensive experience in phishing email analysis to join our cybersecurity team. The ideal candidate will have a keen eye for detail, a strong understanding of email security protocols, and the ability to identify and mitigate phishing threats. This role is critical in ensuring the safety and security of our organizations digital communications. Responsibilities Analyze and investigate phishing emails to identify and assess potential threats. Develop and implement strategies to detect and prevent phishing attacks. Collaborate with IT and cybersecurity teams to enhance email security measures. Recommend training sessions for employees on phishing awareness and prevention. Monitor and report on phishing trends and provide actionable insights to improve security posture. Create and maintain documentation related to phishing incidents and response protocols. Stay up-to-date with the latest phishing techniques and cybersecurity threats. Respond to security incidents involving phishing emails and work to mitigate their impact. Qualifications Bachelors degree in cybersecurity, computer science, or related field. Proven experience in phishing email analysis and threat mitigation. Familiarity with email security tools and technologies, specifically Microsoft Defender for email. Strong analytical and problem-solving skills. Excellent written and verbal communication skills. Ability to work well in a team environment. "We are an equal opportunity employer committed to fair and ethical hiring practices. We do not charge any fees or accept any form of payment from candidates at any stage of the recruitment process. If anyone claims to offer employment opportunities in our company in exchange for money or any other benefit, please treat it as fraudulent and report it immediately"

The selected candidates will be responsible for performing VAPT on the web, mobile, infrastructure, and API, doing a secure code review, and analyzing any security incidents that strike within our SecureNexus division.