365 Security Audit Jobs - Page 3

1. General a) We are looking for an energetic, self-motivated individual focused on solving Physical & Corporate Security problems. The Security Manager should be a responsive team player who can proactively contribute at an individual level. The person is one with high integrity & personal discipline who should be adaptable to the Samsung environment. b) As Manager Security at SSIR, this position is of the key security person who assists the Security lead to drive, manage & implement all security programs. c) The primary objective of the Security Manager is to provide asset protection, people security, emergency management, traveler escort security and more, in designated area of responsibility in accordance with Global Security guidelines and Policies. d) The role is cross-functional and requires deep collaboration and influencing ability with stakeholders from business units/ functions. 2. Major Responsibilities a) Design, develop, implement and manage security policies, standards, guidelines, procedures, programs and initiatives that ensures adequate controls to protect physical asset and people safety. b) Identify protection goals, objectives and metrics consistent with corporate strategic plan. c) Proactive to deploy state-of-the-art technology solutions, innovative security management techniques. d) Will engage with the corporate team member population in all aspects of access management, surveillance management, asset management, incident response, investigation, special event support, safe and secure concerns, and overall safe and secure culture. e) Identifying outsource staff requirements through skills identification and mapping for articulating the skills requirements and gap analysis. f) Maximizes the utilization of security systems, including access management and surveillance/ screening tools. g) Regular review/ improvisation/ assessment and development of existing security policies and procedures to create a culture of continuous improvement. h) Conduct on-site risk analysis and security assessments/audits to identify and evaluate potential risks to personnel and assets. i) Develop, coordinate and implement comprehensive training program for security personnel to handle job responsibilities, emergency and rescue. j) Develop emergency procedures & incident responses and lead emergency management and business continuity programmes. k) Maintain relationships with local law enforcement agencies. l) Provide the annual budget estimates, to include all events and functions. m) Extensive and up to date knowledge of security equipment and technology. This would entail, but not limited to knowledge of entire process of security administration - physical security, electronic security, people security, emergency management, investigations, risk assessment, security auditing, etc. Security Operations a) Develops, implements, supports, and executes security programs and processes to maintain a safe workplace environment. b) Access Control: Should have a good understanding and managing of the current systems (especially Suprema and Lenel), functioning, operations and maintenance. Periodic review of Access levels. c) Video/ Surveillance management: Should have a good understanding and managing of current systems (especially Milestone), functioning, operations and maintenance. d) Screening management: Should have a good understanding and managing of current systems (especially Smith/ Rapiscan XBIS, HHMDs & DFMDs), functioning, operations and maintenance. e) Fire Fighting: Should be well versed with the local laws on firefighting, how to conduct the fire drills, organize and train the various parties. f) Rationalization, review and profiling of Guard Force to include review of Post Site Instructions. g) Reports - Daily, Weekly, Monthly, Half yearly, Annual and Surprise Checks and submission of report h) Training & awareness programmes i) Quick Completion Investigation and submission of reports j) Security incidents/violation reports 3. Security System a) Ensure 100 % serviceability of all systems. b) Ensure 100% training of all security staff. c) Hygiene Status Report & Operational Effectiveness of Security gadgets. d) AMC, Preventive maintenance Schedule for all Security Gadgets & its Improvements. e) Quarterly and monthly review meeting with partners and Updates. f) Reports, daily defect and follow-ups. 4. Audits/ Certifications a) Keeping the plans & SOPs updated. b) Periodical Check of Documentation. c) Preparation of Documents for Internal & External Audits. 5. Qualifications and Experience a) University Graduate or Post graduate or equivalent through professional certification. b) Graduated from Reliance Security and Risk Management Academy (RSRMA) and minimum 7 years corporate security experience c) 12-15 years of corporate security experience in a large multinational technology company, or d) Ex-Commissioned officers of Army/ Navy/ Air-Force or Ex-paramilitary or Police officers in the rank of DSP and above with at least 5+ years of corporate security experience. e) Preferred certification - ASIS Board CPP/ PSP/ PCI

Role Purpose The purpose of this role is to analyse, identify, rectify & recommend specific improvement measures that help in the security posture of the organization by protecting the sensitive information Do Ensuring customer centricity by providing apt cybersecurity Monitoring and safeguarding the log sources and security access Planning for disaster recovery in the event of any security breaches Monitor for attacks, intrusions and unusual, unauthorized or illegal activity Performs moderately complex log reviews and forensic analysis to identify unauthorized or unacceptable access to data or systems Conduct security assessments, risk analysis and root cause analysis of security incidents Handling incidents escalated by the L1 team in 24x7 rotational shifts Use advanced analytics tools to determine emerging threat patterns and vulnerabilities Completing all tactical security operations tasks associated with this engagement. Analyses all the attacks and come up with remedial attack analysis Conduct detailed analysis of incidents and create reports and dashboards Stakeholder coordination & audit assistance Liaise with stakeholders in relation to cyber security issues and provide future recommendations Maintain an information security risk register and assist with internal and external audits relating to information security Assist with the creation, maintenance and delivery of cyber security awareness training for colleagues Advice and guidance to employees on issues such as spam and unwanted or malicious emails Performance Parameter Measure 1. Customer centricity Timely security breach solutioning to end users, Internal stakeholders & external customers experience 2. Process Adherence Adherence to SLAs (90-95%), response time and resolution time TAT Mandatory Skills: Security Audits .Experience: 5-8 Years .

Iteanz Technologies is looking for SAP Security Consultant to join our dynamic team and embark on a rewarding career journey Design and implement SAP security protocols and processes to ensure the confidentiality, integrity, and availability of SAP data Conduct risk assessments to identify potential security vulnerabilities and develop mitigation strategies Develop and maintain security policies, procedures, and standards for SAP systems and applications Collaborate with other IT teams to ensure compliance with security standards and regulations Manage user access and permissions to SAP systems and applications Implement and maintain security-related tools and technologies, such as firewalls, intrusion detection systems, and antivirus software Monitor and respond to security incidents and threats Conduct regular security audits to ensure compliance with security policies and standards Provide training and support to end-users and other IT teams on SAP security best practices Strong understanding of SAP security concepts and best practices Strong problem-solving and analytical skills Excellent communication and interpersonal skills

Cybersecurity Specialist | Nio Digital Business Platform Coimbatore, Tamil Nadu, India Coimbatore, Tamil Nadu, India We are seeking highly skilled Cybersecurity Specialists with 3 7 years of experience in penetration testing, vulnerability assessment, and security audits. The ideal candidate will have hands-on experience with modern security tools and frameworks, and will play a key role in strengthening our internal systems as well as client-facing applications. Responsibilities Work: conduct vulnerability assessments, penetration testing, and security audits of applications, networks, and systems to identify security risks and vulnerabilities. Tools: such as OWASP ZAP, Burp Suite Professional, and other industry-standard platforms to evaluate the security of web applications and APIs. Compliance: relevant regulations and standards such as ISO 27001, NIST, or GDPR (as applicable). Requirements Bachelor s in Cybersecurity/CS/IS (certifications like CEH, OSCP, CompTIA Security+ a plus). 3+ years in penetration testing, vulnerability scanning, or security audits using tools like Burp Suite, OWASP ZAP, Qualys. Expertise in web vulnerabilities (XSS, SQLi, CSRF) and securing cloud environments (AWS, Azure, GCP). Knowledge of secure coding, DevSecOps, with strong analytical, problem-solving, and reporting skills. Excellent communication for documentation and presenting findings. Benefits Salary at market rate Generous holiday and sick pay Opportunity to work on international projects Whats great in the job Great team of smart people, in a friendly and open culture No dumb managers, no stupid tools to use, no rigid working hours No waste of time in enterprise processes, real responsibilities and autonomy Expand your knowledge of various business industries Create content that will help our users on a daily basis Real responsibilities and challenges in a fast evolving company Discover our products. What We Offer Each employee has a chance to see the impact of his work. You can make a real contribution to the success of the company. Several activities are often organized all over the year, such as weekly sports sessions, team building events, monthly drink, and much more Perks A full-time position Attractive salary package. Refreshment Stay energized at work with our stocked pantry of tea and coffee Trainings Tailored training modules to help you stay ahead in your career journey.

Security Analyste for application support responsible for safeguarding software applications and their infrastructure.Security analysts are experts who identify and fix problems within security systems by analyzing risks, vulnerabilities, threats and incidents. They perform a ton of security analyses to recommend solutions for preventing cyberattacks. Key duties include identifying vulnerabilities through VA, PT ,security patching assessments enforcing secure coding standards, implementing security controls and responding effectively to security incidents. Ensure to work closely with developers, testers, and security teams and customers to ensure applications are designed and deployed securely, complying with industry standards and regulations. Participate in audits and compliance efforts (e.g., SOX, ISO, NIST, PCI). Technical Skills: • Applying Incident Response Frameworks and Handling Procedures. • Information security, compliance, assurance, and/or other security best practices and principles. • Possessing and fostering an inquisitive mindset amongst team members. • Assist in policy and process development related to vulnerability and patch management. • participate in audits and compliance efforts (e.g., Internal security audit ,application Security audit etc.. ). • Security Systems Documentation – Create and maintain technical and operational documentation of in-scope security systems to ensure knowledge transfer and continuity. Roles and Responsibilities • Analyse vulnerability scan results from tools like Tenable, Qualys, or Rapid7 to identify security weaknesses across infrastructure and applications. • Prioritize vulnerabilities using multiple criteria, including CVSS, KEV (Known Exploited Vulnerabilities), EPSS (Exploit Prediction Scoring System), asset criticality, and business context. • Partner with IT and Businesss teams to track remediation progress and provide technical guidance on mitigation strategies. • Monitor threat intelligence feeds to correlate vulnerabilities with current exploit activity. • Create and maintain vulnerability metrics, dashboards, and reports for leadership and compliance teams. • Support vulnerability assessment activities in cloud environments (AWS, Azure, etc.). • Maintain documentation related to the vulnerability management lifecycle. • Develop a set of security controls to mitigate the risks identified • This could include implementing security software and improving physical security measures. • Document the risk assessment results, including all assets, threats, vulnerabilities, and security controls. • Develop a detailed plan to address all identified risks and vulnerabilities. • Monitor the effectiveness of the remediation plan and analyse security metrics to adjust as necessary for the ongoing protection of assets. • Assist in policy and process development related to vulnerability and patch management.

About The Role Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : BeyondTrust Privileged Access Management Good to have skills : NAMinimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to document the implementation of cloud security controls and facilitating the transition to cloud security-managed operations, ensuring that all security measures align with organizational objectives and compliance standards. You will engage in discussions to refine security strategies and provide guidance on best practices, contributing to a secure and efficient cloud environment. Roles & Responsibilities:- Manage full lifecycle of privileged accounts, including vaulting, policy creation, and access provisioning.- Review and remediate safes, IT admin privileges, and elevated endpoint access quarterly.- Monitor compliance, KPIs, and support audit requirements.- Onboard privileged accounts, endpoints, and applications into PAM platform.- Submit and process ITSM requests for access changes.- Troubleshoot issues related to password safe, account synchronization, and access errors.- Maintain BeyondTrust Password Safe Vault policies and automated password operations.- Monitor BeyondTrust session recordings and SSL certificate maintenance.- Configure and maintain Endpoint Privilege Management (EPM) policies and exceptions.- Coordinate deployment of EPM agents and troubleshoot related issues.- Facilitate quarterly planning for onboarding prioritized accounts and applications.- Perform system testing, user acceptance testing, and post-onboarding validation.- Expected to be an SME.- Collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Provide solutions to problems for their immediate team and across multiple teams.- Facilitate training sessions to enhance team knowledge on cloud security practices.- Evaluate and recommend new security technologies to improve the existing security framework. Professional & Technical Skills: - Must To Have Skills: Proficiency in BeyondTrust Privileged Access Management.- Strong understanding of cloud security principles and frameworks.- Experience with identity and access management solutions.- Knowledge of compliance standards such as ISO 27001, NIST, or GDPR.- Familiarity with risk assessment methodologies and security audits. Additional Information:- The candidate should have minimum 5 years of experience in BeyondTrust Privileged Access Management.- This position is based at our Bengaluru office.- A 15 years full time education is required. Qualification 15 years full time education

Design, implement, and manage SAP application security roles and authorizations. Perform security audits and compliance checks. Troubleshoot and resolve security-related issues. Stay up-to-date with SAP security best practices and emerging threats.

Job Summary We are looking for an experienced Platform and IT Security Engineer to design, implement, and maintain secure IT platforms. The ideal candidate should have expertise in system security, network security, cloud platforms, and infrastructure management, ensuring enterprise systems are robust, compliant, and resilient. Key Responsibilities Design, implement, and maintain secure IT infrastructure and platforms. Monitor and respond to security incidents, vulnerabilities, and threats. Implement security controls, policies, and compliance standards across platforms. Manage identity and access management (IAM) and endpoint security. Collaborate with DevOps, cloud, and application teams to ensure secure deployments. Conduct regular security audits, risk assessments, and penetration testing. Maintain documentation for security policies, incident reports, and system configurations.

Diverse Lynx is looking for Network Security to join our dynamic team and embark on a rewarding career journey A Network Security professional is responsible for protecting an organization's computer systems, networks, and data from cyber threats and unauthorized access The job duties typically include:1 Designing, implementing, and maintaining security measures such as firewalls, intrusion detection systems, and virtual private networks (VPNs) 2 Monitoring network traffic for potential security breaches and taking preventive measures to address identified threats 3 Performing regular security audits and vulnerability assessments to identify potential weaknesses in the network 4 Developing and implementing security policies and procedures to ensure the confidentiality, integrity, and availability of sensitive information 5 Responding to security incidents and investigations, including forensic analysis and recovery efforts 6 Staying informed of the latest security trends, threats, and technologies, and updating security measures accordingly 7 Collaborating with other IT and security professionals to develop and implement integrated security strategies The ideal candidate should have experience in network security and a strong understanding of security principles, technologies, and industry best practices

A PKI Engineer II possesses a deeper understanding of PKI systems and takes on more complex responsibilities. Actively participates in the design and deployment of PKI infrastructure using Venafi. Performs advanced configuration tasks, resolves complex PKI-related issues, and conducts in-depth security audits and vulnerability assessments. Collaborates with cross-functional teams to ensure seamless integration of PKI systems and provide guidance to Level I Engineers. Responsibilities Venafi Administration: - Configure, deploy, and maintain PaychexVenafi Trust Protection Platform (TPP). - Execute routine and comprehensive certificate management tasks. Certificate Lifecycle Management: - Lead certificate provisioning, expiration monitoring, and renewal activities. - Create and adhere to certificate policies and procedures. Automation: - Create automation for certificate-related processes. - Integrate Venafi with other systems for operational efficiency. Troubleshooting and Support: - Provide technical support and troubleshoot issues related to certificates, PKI, and Venafi. - Collaborate and lead cross-functional teams to resolve technical problems. Documentation: - Maintain accurate documentation of PKI configurations, certificate policies, and procedures. - Create and update knowledge base articles for certificate management. Security and Compliance: - Participate in security monitoring and contribute to incident response efforts. - Understand regulatory compliance related to certificate management Qualifications Bachelors Degree in IT related field - Preferred 3 years of experience in Develoying, implementing and maintaining enterprise class PKI solutions or IT related field. Live the Paychex Values Act with uncompromising integrity. Provide outstanding service and build trusted relationships. Drive innovation in our products and services and continually improve our processes. Work in partnership and support each other. Be personally accountable and deliver on commitments. Treat each other with respect and dignity. Not sure if you meet every requirementAt Paychex, we know that great talent comes in many forms. If youre passionate about the role but dont check every box, we still encourage you to apply. You might be the right fit - either for this position or another opportunity with us. Paychex is an equal opportunity employer that fosters a workplace culture of Diversity, Equity, & Inclusion. Our valued employees and commitment to DEI are the essence of our internal and external success.

Temenos powers a world of banking that creates opportunities for billions of people and businesses everywhere. We have been doing this for over 30 years through the pioneering spirit of our Temenosians who are passionate about making banking better, together. We serve over 3000 clients from the largest to challengers and community banks in 150+ countries. We collaborate with clients to build new banking services and state-of-the-art customer experiences on our open banking platform, helping them operate more sustainably. At Temenos, we have an open-minded and inclusive culture, where everyone has the power to create their own destiny and make a positive contribution to the world of banking and society. THE ROLE We are seeking a seasoned Technical Lead having a deep understanding of programming languages, software development, their relevant technologies and methodologies. Hands on experience in designing systems and also should be well versed with programming languages like Java/Python, exposure to Spring Framework and Database, Good domain knowledge on core banking (Accounting), Wealth management and Treasury systems is an added plus. You will drive the technical delivery of platforms supporting our core banking Lead a team of engineers to build scalable enterprise banking solutions Collaborate with business teams to translate banking needs into technology solutions Build modules for core banking, Wealth and Treasury modules Mentor developers/testers and ensure adherence to best coding, testing and security practices Manage system design and code reviews and guide teams Partner with DevOps and QA teams to maintain efficient CI/CD processes Ensure performance, scalability, and regulatory compliance of applications SKILLS 12+ years of experience in Java, Spring Boot, and MySQL Strong understanding of enterprise banking processes and workflows Experience with payment processing systems (RTGS, NEFT, SWIFT) and corporate lending platforms Proficient in designing RESTful APIs and microservices architecture Hands-on experience with security, audit logging, and system integration Excellent leadership, communication, and problem-solving skills We care and listen to each other, our clients, partners and the communities we serve We commit with determination and persistence to make things happen We collaborate within Temenos and across a wider partner ecosystem We challenge the status quo, try to look at things differently and drive change SOME OF OUR BENEFITS include: Maternity leave: Transition back with 3 days per week in the first month and 4 days per week in the second month Family care: 4 weeks of paid family care leave Recharge days: 4 days per year to use when you need to physically or mentally needed to recharge Study leave: 2 weeks of paid leave each year for study or personal development

Temenos powers a world of banking that creates opportunities for billions of people and businesses everywhere. We have been doing this for over 30 years through the pioneering spirit of our Temenosians who are passionate about making banking better, together. We serve over 3000 clients from the largest to challengers and community banks in 150+ countries. We collaborate with clients to build new banking services and state-of-the-art customer experiences on our open banking platform, helping them operate more sustainably. At Temenos, we have an open-minded and inclusive culture, where everyone has the power to create their own destiny and make a positive contribution to the world of banking and society. THE ROLE We are seeking a seasoned Technical Lead having a deep understanding of programming languages, software development, their relevant technologies and methodologies. Hands on experience in designing systems and also should be well versed with programming languages like Java/Python, exposure to Spring Framework and Database, Good domain knowledge on core banking (Accounting), Wealth management and Treasury systems is an added plus. You will drive the technical delivery of platforms supporting our core banking Lead architecture and development of scalable enterprise banking solutions Collaborate with business teams to translate corporate banking needs into technology solutions Build modules for enterprise payments, trade finance, corporate lending, and treasury management Mentor developers and ensure adherence to best coding and security practices Manage code reviews, system designs, and deployment pipelines Partner with DevOps and QA teams to maintain efficient CI/CD processes Ensure performance, scalability, and regulatory compliance of applications SKILLS 10+ years of experience in Java, Spring Boot, and MySQL Strong understanding of enterprise banking processes and workflows Experience with payment processing systems (RTGS, NEFT, SWIFT) and corporate lending platforms Proficient in designing RESTful APIs and microservices architecture Hands-on experience with security, audit logging, and system integration Excellent leadership, communication, and problem-solving skills We care and listen to each other, our clients, partners and the communities we serve We commit with determination and persistence to make things happen We collaborate within Temenos and across a wider partner ecosystem We challenge the status quo, try to look at things differently and drive change SOME OF OUR BENEFITS include: Maternity leave: Transition back with 3 days per week in the first month and 4 days per week in the second month Civil Partnership: 1 week of paid leave if youre getting married. This covers marriages and civil partnerships, including same sex/civil partnership Family care: 4 weeks of paid family care leave Recharge days: 4 days per year to use when you need to physically or mentally needed to recharge Study leave: 2 weeks of paid leave each year for study or personal development

RIMT University is looking for Security Incharge to join our dynamic team and embark on a rewarding career journey Security Strategy: Develop and implement security strategies and policies to protect the organization's assets, employees, and facilities. Security Personnel: Recruit, train, and supervise security staff, including security guards, officers, or other security personnel. Risk Assessment: Conduct risk assessments to identify potential threats, vulnerabilities, and security risks. Develop and implement measures to mitigate these risks. Access Control: Manage and enforce access control measures to ensure that only authorized personnel have access to restricted areas. Security Systems: Oversee security systems, including surveillance cameras, alarms, access control systems, and other security technologies. Emergency Response: Develop and implement emergency response plans and procedures for various scenarios, such as natural disasters, accidents, or security breaches. Crisis Management: Handle security-related crises and incidents, coordinating responses and liaising with law enforcement or emergency services when necessary. Compliance: Ensure that the organization complies with relevant security regulations, industry standards, and legal requirements. Security Training: Provide security training and awareness programs for employees, educating them on security best practices and emergency procedures. Security Audits: Conduct security audits and assessments to evaluate the effectiveness of security measures and recommend improvements. Incident Reporting: Establish protocols for reporting security incidents and maintain records of security-related events and actions taken. Vendor and Contractor Management: Oversee security-related contracts with third-party vendors or security service providers. Budget Management: Manage the security budget, including resource allocation, expenses, and cost-effective security solutions.

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Integrated Security Risk Management Good to have skills : Security Architecture DesignMinimum 3 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. You will also document the implementation of the cloud security controls and transition to cloud security-managed operations. Roles & Responsibilities:- Expected to perform independently and become an SME.- Required active participation/contribution in team discussions.- Contribute in providing solutions to work related problems.- Develop and implement security solutions for cloud environments.- Conduct security assessments and risk analysis.- Collaborate with cross-functional teams to ensure security measures are integrated into all aspects of the cloud architecture.- Stay updated on the latest security trends and technologies.- Provide guidance and mentorship to junior security professionals. Professional & Technical Skills: - Must To Have Skills: Proficiency in Integrated Security Risk Management.- Good To Have Skills: Experience with Security Architecture Design.- Strong understanding of cloud security principles and best practices.- Knowledge of security compliance standards and regulations.- Experience in conducting security audits and vulnerability assessments. Additional Information:- The candidate should have a minimum of 3 years of experience in Integrated Security Risk Management.- This position is based at our Bengaluru office.- A 15 years full time education is required. Qualification 15 years full time education

Hi, Find below the detailed Job Description for Information Security Specialist Position. Position Overview : This position is responsible for overseeing and implementing security measures to protect the organization's data and infrastructure. This role involves developing security strategies, managing risks, ensuring compliance, and leading incident response efforts. A key aspect of this role is fostering strong relationships and partnerships with business leaders and stakeholders to ensure security measures align with business objectives. Key Responsibilities : Security Strategy : Develop and implement security strategies tailored to the segment to ensure the protection of data and infrastructure. Risk Management : Identify, assess, and mitigate security risks associated. Incident Response : Lead incident response efforts for security breaches within the segment, including investigation, containment, and remediation. Compliance : Ensure compliance with relevant regulations and standards. Collaboration : Work closely with other IT teams and segment leaders to integrate security measures into services and applications. Training and Awareness : Support security training and awareness programs for employees within the segment to promote a security-conscious culture. Policy Development : Develop and enforce security policies and procedures. Audit and Assessment : Facilitate information security (e.g. ISO 27001, NIST) and regulatory audits, as well as security assurance activities that verify the effectiveness of implemented security controls. Business Partnership : Foster strong relationships with business leaders and stakeholders to ensure security measures support and enhance business objectives. Collaborate with business units to understand their needs and provide tailored security solutions. Qualifications : Proven experience in developing and implementing security strategies. Strong knowledge of risk management and security architecture. Experience in leading incident response efforts. Knowledge of compliance regulations US & India (such as HIPAA & IT Act) and experience with security monitoring tools. Excellent collaboration and communication skills. Ability to conduct training and develop security policies. Experience in conducting security audits and assessments. Demonstrated ability to build and maintain relationships with business leaders and stakeholders. Should understand all aspects of Security environment, TLS Versions Understands Data Data at rest, data in motion, Compliance, Data Relevance Should be able to assess and share the Vulnerability to Business System Security Plan (SSP) Understands Encryptions Good understanding of Security Standards Interested candidates can send their updated resume to ashraffshaik.mohammad@optum.com Regards Team HR

Must have experience with core cybersecurity operations and one or more cyber security tools/process areas (e.g. network security, end point security, email security, cloud security, attack simulation, cyber threat modelling etc.)

Location: Pune Experience Required: 4-5 years Company: Incred Money (www.incredmoney.com) Industry: Fintech / Financial Services About IncredMoney.com IncredMoney.com is a fast-growing digital wealth and investment platform empowering users with smart, simplified financial tools. We are passionate about financial inclusion, investor transparency, and secure digital experiences. As we scale, security remains central to our missionand thats where you come in. Role Summary We are looking for a dynamic and hands-on Senior Infosec Engineer who will be responsible for leading and implementing our information security and cyber-risk strategy. The ideal candidate will have strong experience in fintech or financial services, knowledge of regulatory frameworks (like RBI, SEBI), and the ability to build secure digital systems while enabling growth and innovation. Key Responsibilities Own and lead the companys overall information security strategy. Build and implement policies, procedures, and controls aligned with industry best practices (e.g., ISO 27001, NIST, OWASP). Perform risk assessments, security audits, and regular vulnerability assessments of applications and infrastructure. Collaborate with engineering, DevOps, and product teams to embed security into the SDLC. Oversee data protection strategies (encryption, backups, data access) and ensure regulatory compliance (e.g., RBI, SEBI, GDPR, PCI-DSS if applicable). Manage internal and external security audits and ensure remediation of findings. Lead incident response planning and execution, including root cause analysis and post-mortem reviews. Evaluate and onboard security tools (e.g., SIEM, WAF, DLP, endpoint security). Build a security-first culture through training and awareness programs across teams. Serve as the primary point of contact for security with partners, auditors, and regulators. Key Requirements 4–5 years of progressive experience in Information Security, with at least 2 years in a leadership or ownership role. Strong understanding of cloud security (AWS preferred), web/mobile application security, and data privacy. Hands-on experience with firewalls, VPNs, intrusion detection/prevention systems, and endpoint protection tools. Familiarity with regulatory and compliance frameworks (especially RBI/SEBI guidelines for fintech). Bachelor’s or Master’s degree in Computer Science, Information Security, or related field. Industry certifications like CISSP, CISM, CEH, or ISO 27001 LA are a strong plus. Excellent communication and stakeholder management skills. Preferred Skills Prior experience in fintech, wealth-tech, or BFSI domain. Experience leading security in a startup or early-stage company. Knowledge of DevSecOps practices and CI/CD pipeline security.

Technical Skills- Penetration Testing, Vulnerability Management, Web Application Security, Network Security, Cloud Security (AWS, Azure), Security Compliance (HIPAA, PCI DSS, ISO 27001, NIST), Security Documentation, Security Tools (Qualys, Burp Suite, Nessus, Metasploit), Security Operations, Incident Response, Forensic Analysis, Risk Assessment, Security Audits Experience: 10+ years City: Bengaluru, Noida, Pune, Mumbai, Hyderabad, Mohali, Panchkula, Chennai Job Description: The candidate will have expertise in penetration testing, cloud security, compliance frameworks (HIPAA, PCI DSS), security documentation, and security tools such as Qualys, Burp Suite, and other industry-standard solutions Strong communication skills and the ability to document security processes effectively are essential for this role Key Responsibilities Penetration Testing & Vulnerability ManagementPerform penetration testing on web applications, networks, and cloud environments to identify security vulnerabilities Utilize tools like Burp Suite, Qualys, Nessus, Metasploit, and other scanning tools to detect threats Work with development and operations teams to remediate vulnerabilities and strengthen security posture Cloud SecurityEnsure cloud security best practices for AWS, Azure, and other cloud platforms Implement security controls for cloud-hosted applications and workloads Conduct security assessments and recommend security enhancements Compliance & Regulatory SecurityEnsure compliance with HIPAA, PCI DSS, ISO 27001, NIST, and other security frameworks Conduct audits, risk assessments, and compliance gap analysis Assist in developing policies, procedures, and security documentation to meet regulatory requirements Security Operations & Incident ResponseMonitor security logs and alerts for threat detection and response Work with security teams to investigate and mitigate security incidents Conduct forensic analysis in the event of security breaches Documentation & CommunicationDevelop and maintain security policies, procedures, and technical documentation Create security reports and communicate findings effectively to stakeholders Provide security training and awareness programs for employees

Some careers shine brighter than others. If you re looking for a career that will help you stand out, join HSBC and fulfil your potential. Whether you want a career that could take you to the top, or simply take you in an exciting new direction, HSBC offers opportunities, support and rewards that will take you further. HSBC is one of the largest banking and financial services organisations in the world, with operations in 64 countries and territories. We aim to be where the growth is, enabling businesses to thrive and economies to prosper, and, ultimately, helping people to fulfil their hopes and realise their ambitions. We are currently seeking an experienced professional to join our team in the role of Consultant Specialist In this role, you will: Design, implement, and manage Exchange on-premises and Exchange online environments Configure and troubleshoot application integration using POP, IMAP, SMTP, and REST APIs Ensure seamless integration with other Microsoft products and services Collaborate with cross-functional teams to resolve technical issues and improve overall system performance Implement and maintain compliance and security measures for Exchange environments Ensure adherence to organizational security policies and procedures Conduct regular security audits and risk assessments to identify vulnerabilities Develop and implement remediation plans to address security gaps. Provide Level 3 support for Exchange-related issues Participate in on-call rotations for after-hours support Collaborate with IT teams to plan, implement, and maintain Exchange upgrades and patches. Requirements 5+ years of experience in managing and supporting Exchange on-premises and online environments. In-depth knowledge of Exchange architecture, configuration, and troubleshooting Experience with application integration using POP, IMAP, SMTP, and REST APIs Strong understanding of Microsoft products and services, including Office 365 and Azure. Experience with Exchange migration and coexistence. Knowledge of PowerShell scripting and automation. Certification in Microsoft Exchange or related technologies Personal data held by the Bank relating to employment applications will be used in accordance with our Privacy Statement, which is available on our website.

Some careers shine brighter than others. If you re looking for a career that will help you stand out, join HSBC and fulfil your potential. Whether you want a career that could take you to the top, or simply take you in an exciting new direction, HSBC offers opportunities, support and rewards that will take you further. HSBC is one of the largest banking and financial services organisations in the world, with operations in 64 countries and territories. We aim to be where the growth is, enabling businesses to thrive and economies to prosper, and, ultimately, helping people to fulfil their hopes and realise their ambitions. We are currently seeking an experienced professional to join our team in the role of Consultant Specialist In this role, you will: Design, implement, and manage Exchange on-premises and Exchange online environments Configure and troubleshoot application integration using POP, IMAP, SMTP, and REST APIs Ensure seamless integration with other Microsoft products and services Collaborate with cross-functional teams to resolve technical issues and improve overall system performance Implement and maintain compliance and security measures for Exchange environments Ensure adherence to organizational security policies and procedures Conduct regular security audits and risk assessments to identify vulnerabilities Develop and implement remediation plans to address security gaps. Provide Level 3 support for Exchange-related issues Participate in on-call rotations for after-hours support Collaborate with IT teams to plan, implement, and maintain Exchange upgrades and patches. Requirements 5+ years of experience in managing and supporting Exchange on-premises and online environments. In-depth knowledge of Exchange architecture, configuration, and troubleshooting Experience with application integration using POP, IMAP, SMTP, and REST APIs Strong understanding of Microsoft products and services, including Office 365 and Azure. Experience with Exchange migration and coexistence. Knowledge of PowerShell scripting and automation. Certification in Microsoft Exchange or related technologies Personal data held by the Bank relating to employment applications will be used in accordance with our Privacy Statement, which is available on our website.

Discuss and design end-to-end architecture (frontend, backend, DB, DevOps) Define and enforce modular micro service structure and frontend strategy (microfrontend or monolith to modular) Build highly scalable systems with MySQL, Cassandra, PostgreSQL + NoSQL (MongoDB, Redis) Lead team of frontend, backend, DevOps, and AI developers Implement RBAC, SSO, multi-tenant authentication (Keycloak or OAuth2) Set up CI/CD pipelines, containerization (Docker), and K8s orchestration Lead performance optimization, fault-tolerance, and service isolation strategies Integrate AI chatbot services (RASA) for natural task execution Conduct code reviews, testing strategies, and security audits Communicate regularly with Mangers, product teams, and stakeholders Must-Have Skills: 8 years+ experience in full-stack development Strong in Python (FastAPI or Flask) for backend APIs Strong in React.js (Tailwind / MUI) for frontend Experience with modular microservice architecture Experience with MySQL, Cassandra, SQL (PostgreSQL) and NoSQL (MongoDB, Redis) Familiar with KeyClock, OAuth2 / SSO / RBAC implementations Hands-on with Docker, Kubernetes, and CI/CD pipelines Familiarity with AI/chatbot integration using tools like Rasa or LangChain Good understanding of system security, scalability, and modular deployment Good to Have: Experience building SaaS platforms with multi-tenant architecture Prior work in EdTech, ERP, LMS, or CRM platforms Experience with BI dashboards (Superset / Metabase / Redash) Knowledge of Module Federation / Microfrontends Tools/Tech Stack You ll Work With: Frontend: React.js, TailwindCSS, Vite/Webpack, Module Federation Backend: Python, FastAPI, Node, PostgreSQL, MongoDB, Redis

ISO 27001 Compliance Auditor & Consultant Work from Office & Client Site (Mumbai & Beyond) We are looking for a detail-oriented professional with experience in ISO 27001 audits, risk assessment, and compliance management. The role involves audit execution, security documentation, client collaboration, and regulatory compliance. Strong communication & report-writing skills required. Frequent travel required. Skills : - IT Security Compliance,Risk Assessment,Compliance Auditor,Security Audit,Governance,Risk,Compliance,GRC,IT Risk Management,Audit,ISO 27001 Lead Auditor,Internal Audit,External Audit,Security Frameworks,GDPR,NIST,SOC 2

Responsibilities: Application Security Conduct regular security assessments to identify vulnerabilities in applications and work with development teams to design secure software systems, resolve vulnerabilities and issues, and implement robust security measures. Additional responsibilities include security audits and penetration testing as required. Technical Skills: Proficient in multiple programming languages. Advanced understanding of the intricacies and potential security flaws inherent in different languages. Working experience in languages like Java, JavaScript, C++, Python, and Ruby. Experience in API development/testing and API security Established experience with Agile (including Scrum and Kanban) and software development lifecycle (SDLC) practices. Experience with GCP, Containers and Serverless technologies Tools and Integration: Hands on experience with SAST, DAST, Jira, and Confluence tools, experience integrating security incidence workflows. Knowledge of security technologies like firewalls, intrusion detection systems, and encryption and practical application is Security Reviews and Threat Modeling: Conduct regular security assessments to identify vulnerabilities in applications and work with development teams to remediate them. Work with the development teams on threat modeling to identify potential threats and vulnerabilities in an application. Requires understanding of software architecture, identifying potential attack vectors, and devising strategies to mitigate these threats. Work closely with software developers, systems administrators, and other IT professionals to ensure security is integrated into the application development process from the start. Familiarity with Security Frameworks and Standards Develop and maintain documentation of application security policies and procedures, ensuring compliance with industry standards. Knowledge and practical application of OWASP, CISSP or other well-known security frameworks. Security Incidence Response: In the event of a security alert, the candidate will react quickly to analyze the issue, contain the issue if needed and protect sensitive data. Responsible for proactively working with third party vendors on updating security rules and alerting processes Soft Skills: Strong verbal and written communication skills. Strong ability to articulate complex security concepts to developers and other stakeholders in an understandable way. Ability to write clear and concise security reports and present findings to both technical and non-technical audiences. Problem-solving Skills: Ability to analyze a problem, determine its root cause, and devise a plan to resolve it. Ability to navigate a rapidly changing landscape, while handling multiple responsibilities Curious about new technology and always looking to acquire new knowledge Education: Bachelors Degree in Cybersecurity, Computer Science or Information assurance A Masters degree is a plus. Certified Secure Software Lifecycle Professional (CSSLP), Certified Application Security Engineer (CASE), or Secure Software Practitioner (SSP) certifications are an advantage.

Role & responsibilities 70% -Technical expertise- network and application security and cloud (Certifications-AWS, AZURE, GCP) 30%- risk mgt Exposure OR audit exp (Must have) foundational knowledge across key areas of cloud security, With further depth in risk frameworks, cloud models, and practical exposure to tools and controls Preferred candidate profile those who have certification in any of this - CISA/ CISSP/ AWS/ AZURE/ GCP/ CEH

Role Description : As a Technical Lead - Cloud Security at Incedo, you will be responsible for designing and implementing security solutions for cloud-based environments. You will work with clients to understand their security needs and design security solutions that meet those needs. You will be skilled in cloud security technologies such as Amazon Web Services (AWS) Security, Microsoft Azure Security, or Google Cloud Platform (GCP) Security and have experience with security architecture design patterns such as multi-factor authentication and encryption. Roles & Responsibilities: Developing and implementing cloud security strategies and policies Conducting security audits and assessments Collaborating with other teams to ensure compliance with security regulations and standards Troubleshooting and resolving security issues Providing guidance and mentorship to junior cloud security specialists Staying up-to-date with industry trends and best practices in cloud. Technical Skills Skills Requirements: Understanding of cloud security concepts such as data protection, identity and access management, or encryption. Familiarity with compliance frameworks such as SOC 2, HIPAA, or PCI DSS. Experience with cloud security tools such as AWS Identity and Access Management (IAM), Azure Active Directory, or Google Cloud IAM. Knowledge of network security and security monitoring technologies. Must have excellent communication skills and be able to communicate complex technical information to non-technical stakeholders in a clear and concise manner. Must understand the company's long-term vision and align with it. Should be open to new ideas and be willing to learn and develop new skills. Should also be able to work well under pressure and manage multiple tasks and priorities. Nice-to-have skills Qualifications 7-9 years of work experience in relevant field B.Tech/B.E/M.Tech or MCA degree from a reputed university. Computer science background is preferred