66 Security Awareness Jobs - Page 3

As a Technical Architect at Adobe Digital Media Professional Services, you will play a crucial role in providing consulting services for Adobe Digital Media solutions. Your expertise will involve implementing Adobe applications, integrating complementary Adobe enterprise solutions, and collaborating with clients" existing IT infrastructure. Your primary responsibility will be to serve as the Adobe technical authority, possessing in-depth knowledge of the products and understanding the implications of various functions, settings, and integrations. You will provide guidance and consulting to client teams from a technical perspective, ensuring the successful implementation of proposed solutions. In this role, you will design and write well-structured, object-oriented code, collaborate with cross-functional teams to deliver new features, and interact effectively with customer team members, consultants, and managers. Your ability to implement new features, address system issues, and present proposals to customers in a clear and compelling manner will be crucial for success. To qualify for this position, you should have a Bachelor's degree in Computer Science, Software Engineering, or a related field, with a Master's degree considered a plus. Your technical skills should include proficiency in front-end and back-end technologies, experience with databases, knowledge of RESTful and GraphQL APIs, version control using Git, and familiarity with cloud computing platforms and DevOps practices. With 9-10 years of relevant work experience in Digital Transformation, you should have a consistent track record of developing full-stack applications and expertise in delivering end-to-end solutions. Your experience with Agile methodologies, project management skills, and the ability to mentor junior developers will be beneficial in this role. Furthermore, your strong communication and interpersonal skills, problem-solving attitude, adaptability to emerging technologies, and commitment to ongoing learning will be essential. Having knowledge of Adobe Experience Cloud, Adobe Document Cloud, Adobe Creative Cloud solutions, and experience with Generative AI will be advantageous. Joining Adobe will provide you with an exceptional work environment recognized globally. You will collaborate with colleagues dedicated to mutual growth through ongoing feedback. We are committed to providing reasonable accommodations for individuals with disabilities during the application process and employment. Adobe values accessibility and welcomes individuals with special needs to reach out for assistance.,

As a Senior Principal Information Security Analyst at NTT DATA, you will be a highly skilled and advanced subject matter expert responsible for influencing and leading the implementation of the information security strategy. You will align it with business goals and industry best practices. Your role will involve acting as a consultant in the design and implementation of security systems to protect the organization's computer networks from cyber-attacks. Additionally, you will set and maintain security standards, contributing to maintaining a secure and compliant environment. You will also be responsible for coaching and mentoring junior resources within the team and providing high-level insights of industry best practices. Your key responsibilities will include monitoring security alerts and events from various sources, investigating potential threats, and escalating incidents as necessary. You will assist in the implementation and monitoring of security controls, including firewalls, intrusion detection systems, and access controls. Conducting regular vulnerability assessments, analyzing scan results, and prioritizing and remediating identified vulnerabilities will also be part of your role. You will support the incident response team in investigating security incidents, documenting findings, and participating in remediation efforts. Furthermore, you will ensure compliance with industry standards such as GDPR and ISO 27001 by conducting assessments and implementing necessary controls. Installing security measures, operating software to protect systems and information infrastructure, documenting security breaches, and assessing the damage they cause are also essential aspects of your role. You will collaborate with cross-functional teams, IT, and other teams to ensure security measures are integrated into the organization's processes and projects. To thrive in this role, you will need to have excellent communication skills to convey technical information effectively to non-technical stakeholders. Strong analytical thinking and problem-solving skills are crucial to prevent hacking on the network. Leadership skills to identify and evaluate potential risks, as well as the ability to work both independently and collaboratively in a fast-paced environment, are also required. Proficiency in understanding firewalls, proxies, SIEM, antivirus, and IDPS concepts, as well as familiarity with security frameworks, standards, and regulations, is essential. Academic qualifications and certifications required for this role include a Bachelor's degree or equivalent in information security, cybersecurity, computer science, or related field. A Master's degree or equivalent is advantageous. Security certifications such as CompTIA Security+, CISSP, or CISM are also beneficial. Significant demonstrated experience in information security or cybersecurity, working in a global IT organization, computer network penetration testing, security assessment, and vulnerability scanning tools, as well as coaching and mentoring junior team members, are necessary for this position.,

As a Technology Lead specializing in Java Full Stack, you will be responsible for leading the end-to-end software development and architecture design process. With a focus on designing and managing robust enterprise applications, you should have a minimum of 5 to 8 years of hands-on experience in Java (1.8+), Spring Boot, Microservices, Angular (4+), and Hibernate. Your role will involve conducting code reviews, enforcing best practices, and guiding junior developers while collaborating with cross-functional teams. You will also review application design and user documentation, ensuring adherence to secure development practices such as OWASP guidelines, encryption, and session handling. Troubleshooting performance and scalability issues, driving CI/CD adoption, testing frameworks, and code repositories will be essential components of your responsibilities. Key Responsibilities include: - Leading end-to-end software development and architecture design - Conducting code reviews and enforcing best practices - Guiding junior developers and collaborating with cross-functional teams - Reviewing application design and final user documentation - Ensuring secure development practices and troubleshooting performance and scalability issues - Driving the adoption of CI/CD, testing frameworks, and code repositories Mandatory Skills: - Java (1.8+) with 5 to 8 years of experience - Spring Boot / Spring MVC / Spring Framework with 5+ years of experience - Hibernate / Spring JPA with 4 to 6 years of experience - Microservices Architecture with 5+ years of experience - Microsoft SQL Server or other RDBMS with 4 to 6 years of experience - JavaScript & jQuery with 4+ years of experience - Angular (4+) & TypeScript with 3 to 5 years of experience - Proficiency in JUNIT, ANT, MAVEN, HUDSON, SVN, Git - Knowledge of Design Patterns, Distributed Architectures, and Multi-threaded Programming - Security awareness including OWASP top 10, static/dynamic scans, session handling, and encryption Good to Have: - Knowledge of JBPM - Domain expertise in Financial Services / Life Insurance If you possess the required skills and experience in Java Full Stack development, have a strong understanding of system architecture, design patterns, and secure coding practices, and are looking for a challenging opportunity to lead a dynamic team in a fast-paced environment, we encourage you to apply for this Technology Lead position.,

ZS is a place where passion changes lives. As a management consulting and technology firm focused on improving life and how we live it, our most valuable asset is our people. Here you'll work side-by-side with a powerful collective of thinkers and experts shaping life-changing solutions for patients, caregivers, and consumers worldwide. ZSers drive impact by bringing a client-first mentality to each and every engagement. We partner collaboratively with our clients to develop custom solutions and technology products that create value and deliver company results across critical areas of their business. Bring your curiosity for learning, bold ideas, courage, and passion to drive life-changing impact to ZS. Our most valuable asset is our people. At ZS, we honor the visible and invisible elements of our identities, personal experiences, and belief systemsthe ones that comprise us as individuals, shape who we are, and make us unique. We believe your personal interests, identities, and desire to learn are part of your success here. Learn more about our diversity, equity, and inclusion efforts and the networks ZS supports to assist our ZSers in cultivating community spaces, obtaining the resources they need to thrive, and sharing the messages they are passionate about. Information Protection Lead We are seeking a highly motivated and experienced professional to build and lead our Insider Threat & Risk Management team within the Information Security group. This role is critical in identifying, assessing, and mitigating insider risks to protect our firm's critical data, intellectual property, and operational integrity. The Lead will develop and execute an insider threat program, leveraging behavioral analytics, security tools, and cross-functional collaboration to proactively detect and respond to threats. What You'll Do: Program Development & Leadership: Design and implement a comprehensive insider threat and risk management program aligned with business and security objectives. Threat Detection & Response: Utilize data analytics, behavioral indicators, and security tools (e.g., UEBA, DLP, SIEM) to monitor and investigate potential insider threats. Risk Assessment & Mitigation: Conduct insider risk assessments, define detection methodologies, and recommend mitigation strategies. Collaboration & Stakeholder Engagement: Work closely with Legal, HR, IT, Security Operations, and Compliance teams to develop policies, response frameworks, and training initiatives. Incident Handling & Investigations: Lead investigations into potential insider threats, ensuring timely response and remediation while adhering to privacy and legal considerations. Security Awareness & Training: Drive awareness programs to educate employees and leaders about insider risks and best practices. Regulatory & Compliance Alignment: Ensure the program aligns with industry standards (e.g., NIST, ISO 27001, SOC2) and regulatory requirements. Continuous Improvement: Regularly assess and refine the program to adapt to evolving threats and business needs. What You'll Bring: Bachelors degree in information security, Cybersecurity, or related field. 6+ years of experience in information security, with a focus on information protection, DLP, and data protection. Strong understanding of information security frameworks, regulations, and standards (e.g., ISO 27001, NIST, GDPR). Familiarity with network security, endpoint protection, and cloud security principles. Ability to balance proactive prevention with reactive incident response. High ethical standards and discretion when handling sensitive information. Demonstrated ability to build and lead teams, with excellent communication and interpersonal skills. Experience with security technologies such as data classification, DLP, encryption, SIEM, and access controls. Professional certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or equivalent. Excellent analytical and problem-solving skills, with the ability to assess risks and recommend effective solutions. Strong communication and interpersonal skills to collaborate with various teams and stakeholders. Proven track record of successfully implementing and managing information protection programs. Perks & Benefits: ZS offers a comprehensive total rewards package including health and well-being, financial planning, annual leave, personal growth, and professional development. Our robust skills development programs, multiple career progression options and internal mobility paths and collaborative culture empower you to thrive as an individual and global team member. We are committed to giving our employees a flexible and connected way of working. A flexible and connected ZS allows us to combine work from home and on-site presence at clients/ZS offices for the majority of our week. The magic of ZS culture and innovation thrives in both planned and spontaneous face-to-face connections. Travel: Travel is a requirement at ZS for client-facing ZSers; the business needs of your project and client are the priority. While some projects may be local, all client-facing ZSers should be prepared to travel as needed. Travel provides opportunities to strengthen client relationships, gain diverse experiences, and enhance professional growth by working in different environments and cultures. Considering applying At ZS, we're building a diverse and inclusive company where people bring their passions to inspire life-changing impact and deliver better outcomes for all. We are most interested in finding the best candidate for the job and recognize the value that candidates with all backgrounds, including non-traditional ones, bring. If you are interested in joining us, we encourage you to apply even if you don't meet 100% of the requirements listed above. ZS is an equal opportunity employer and is committed to providing equal employment and advancement opportunities without regard to any class protected by applicable law. To Complete Your Application: Candidates must possess or be able to obtain work authorization for their intended country of employment. An online application, including a full set of transcripts (official or unofficial), is required to be considered. NO AGENCY CALLS, PLEASE. Find Out More At: www.zs.com,

As a Senior Associate Information Security Analyst at NTT DATA, you will play a crucial role in designing and implementing security systems to safeguard the organization's computer networks from cyber-attacks and ensuring compliance with industry standards. Your responsibilities will include monitoring security alerts, investigating potential threats, installing security software, and documenting any security issues or breaches found. You will be actively involved in implementing and monitoring security controls such as firewalls, intrusion detection systems, and access controls. Conducting regular vulnerability assessments, analyzing scan results, and assisting in prioritizing and remediating identified vulnerabilities will be part of your daily tasks. Additionally, you will support the incident response team in investigating security incidents, documenting findings, and participating in remediation efforts. Your role will also involve installing security measures, operating software to protect systems and information infrastructure, documenting security breaches, and assessing the damage they cause. You will collaborate with the security team to perform tests, uncover network vulnerabilities, and maintain a high-security standard by fixing detected vulnerabilities. Furthermore, you will contribute to security awareness initiatives by creating training materials, conducting workshops, and educating employees about best security practices. Staying abreast of information technology trends and security standards, researching security enhancements, and making recommendations to management will also be part of your responsibilities. Key Requirements: - Bachelor's degree or equivalent in information security, cybersecurity, computer science, or related field. - Security certifications such as CompTIA Security+, CISSP, or CISM are advantageous. - Moderate level of demonstrated experience in information security or cybersecurity. - Proficiency in network penetration testing, security assessment, and vulnerability scanning tools. - Familiarity with security frameworks, standards, and regulations. Attributes: - Strong communication skills to convey technical information effectively. - Analytical thinking and problem-solving skills to prevent network hacking. - Ability to identify, evaluate, and mitigate potential risks. - Understanding of firewalls, proxies, SIEM, antivirus, and IDPS concepts. - Proficiency with MAC and OS. - Basic understanding of network and system architecture, security controls, and protocols. NTT DATA is a trusted global innovator in business and technology services, committed to helping clients innovate, optimize, and transform for long-term success. As a Senior Associate Information Security Analyst, you will be part of a diverse and inclusive workplace that fosters growth, belonging, and collaboration. Join us in making a difference and pushing the boundaries of what is possible in the world of information security.,

TIKAJ is seeking a passionate individual who is eager to kickstart their cybersecurity career. As a Security Analyst, you will embark on the first step towards becoming a cybersecurity expert and shaping a brighter future in this field. Your responsibilities will include responding to and enforcing actions on cybersecurity incidents, monitoring user activity, network events, and signals from security tools to detect events, categorizing alerts and anomalous activities that pose real threats, remediating attacks, triaging general information security tickets, collecting data for analysis, evaluating attacks, identifying the root causes, and implementing necessary security measures to counter the attacks. Additionally, you will be accountable for investigating information security issues and generating detailed reports. We are seeking candidates who are highly motivated, possess a strong inclination towards self-learning, and thrive in a team-oriented environment. Candidates should hold a degree in computer science or a related field, have beginner to intermediate level proficiency in Python, demonstrate an interest in cybersecurity, phishing, cyber laws, and enforcement, and exhibit excellent written and verbal communication skills. Key Skills: - Security awareness - Cybersecurity - Incident management,

As a Security Analyst/Engineer, you will be responsible for supporting the security operations of the organization by assisting in the monitoring, detection, and response to security incidents. This role offers a blend of security analysis and engineering tasks, providing a progression from foundational knowledge to more advanced responsibilities, enabling you to contribute significantly to the organization's cybersecurity efforts. You will be involved in various key responsibilities, including security monitoring and analysis. This involves monitoring security events and alerts from sources such as SIEM, IDS/IPS, antivirus systems, and endpoint detection platforms. Additionally, you will conduct initial analysis of security events, collaborate with senior analysts to investigate and respond to security incidents like malware infections, phishing attempts, and unauthorized access. In incident response activities, you will provide technical assistance during security incidents for containment, eradication, and recovery efforts. You will also document incident response procedures, develop post-incident reports, and implement proactive measures to enhance incident detection and response capabilities, such as developing playbooks for common attack scenarios. Supporting the vulnerability management process will be part of your responsibilities, including assisting in vulnerability scanning, assessment, and remediation efforts. You will help prioritize and track the resolution of identified vulnerabilities, collaborate with system owners and IT teams for timely patching and mitigation, and conduct security assessments and penetration tests to identify weaknesses in systems, applications, and network infrastructure. Furthermore, you will assist in the administration and configuration of security tools and technologies, participate in evaluating and testing new security technologies, optimize the configuration and tuning of security tools, and recommend enhancements based on industry best practices and organizational requirements. You will also support security awareness and training initiatives by assisting in the development of educational materials and delivering security awareness briefings to staff. The ideal candidate should have a Bachelor's degree in computer science, Information Security, or related field, along with 3-5 years of experience in a cybersecurity role. Strong understanding of cybersecurity principles, proficiency in security tools and technologies, excellent analytical and problem-solving skills, effective communication, and stakeholder management abilities are essential. Certifications such as CompTIA Security+, CEH, or equivalent are a plus. Demonstrated experience in conducting security analysis, incident response, and vulnerability management in a complex environment, hands-on experience with security tool optimization, security assessments, and penetration testing, as well as a proven track record of incident response efforts are desired qualifications for this role. This position offers a valuable opportunity for career growth and development in the field of cybersecurity, with the possibility to progress into more specialized roles such as Senior Security Analyst, Incident Responder, or Security Engineer. Continued learning and professional certifications will be encouraged to enhance skills and knowledge in the cybersecurity domain. Joining the global cyber security team at Carmeuse will provide you with the opportunity to contribute to the organization's digitalization strategy while ensuring security. Working with a team of regional senior security managers and cyber architects, you will be involved in security design, delivery, and operations to safeguard Carmeuse's digital IT & OT footprint, participating in innovative initiatives to strengthen operations. Reporting to Victor Alexandrescu, the leader of the team, you will benefit from his extensive experience and practical knowledge. Victor's management style focuses on efficiency, continuous improvement, and proactive problem-solving, aiming to optimize processes and enhance team performance. The organization offers a permanent contract, flexible working hours, home working policy, competitive salary package and benefits, growth opportunities, strong HR and training policy, and work-life balance. The recruitment process includes steps such as resume and cover letter analysis by Georges Mensah-Boateng, a first "Teams" interview with personality questionnaires, a second interview with Victor Alexandrescu and Aurelie Mordant, and a final interview with Stavros Georgakopoulos, Rusty Gavin, and Eugene Marchenko to assess your suitability for the role.,

What Youll Bring Clean code discipline you adhere to best practices and write code that remains robust and maintainable over time Full-stack proficiency while Ruby is a plus, youre comfortable with at least 1-2 modern server-side language and can collaborate on front-end interfaces CI/CD expertise you thrive in continuous integration and deployment environments, including trunk-based development Ownership mentality you drive features from concept to deployment and take pride in your works impact Problem-solving mindset you tackle challenges head-on, always pushing to find effective solutions Cross-functional collaboration you work seamlessly with product, design, and other teams to define and deliver new features Security awareness you prioritize the integrity and confidentiality of financial data, following best practices throughout Requirements Our Engineering DNA At Shuru, we live and breathe excellence in engineering. Our team embraces: Clean code practices - writing testable and maintainable code that were proud of Agile development - rapidly iterating and delivering value in short cycles Continuous growth - always expanding our skills and staying ahead of industry trends Open collaboration - valuing each others ideas and working together towards our audacious goals Perks & Benefits Work on international projects: Be part of a global team working with clients from across the world. Regular team outings: Even with remote work, we believe in building strong team bonds through regular social and team-building events. Collaborative & growth-oriented: Learn from senior engineers, work in a collaborative environment, and grow professionally with opportunities for career development. Competitive Salary and Benefits,

As a Principal Cybersecurity Engineer at Medtronic, you will serve as the Principal OT Risk Governance Analyst, leading the development, implementation, and oversight of robust risk management and governance frameworks for our Operational Technology (OT) environments in manufacturing. Your expertise will ensure that OT security controls align with corporate policies, industry regulations, and cybersecurity best practices, playing a critical role in Medtronic's mission to champion healthcare access and innovation. A Day in the Life You will drive cybersecurity excellence within our OT environments by: Leading OT risk assessments , identifying and rating risks based on the established risk matrix. Maintaining the risk register and tracking risks specifically related to manufacturing environments. Ensuring compliance with NIST CSF, NIS 2, and other relevant cybersecurity frameworks and regulations. Collaborating with IT, OT, and compliance teams to align cybersecurity policies with operational requirements. Establishing and maintaining OT security governance frameworks, policies, and procedures. Defining roles and responsibilities for OT security within manufacturing operations. Developing tailored security awareness programs for OT personnel, engineers, and plant operators. Providing guidance on secure architecture, network segmentation, and access controls for OT systems. Supporting the cybersecurity incident response process , including detection, response, and recovery planning. Collaborating with IT security teams, SOC analysts, and plant personnel to investigate and mitigate security incidents. Ensuring disaster recovery plans incorporate IT and OT system resilience and recovery. Assisting manufacturing teams with initial documentation of disaster recovery plans, tabletop exercises, and tracking updates. Acting as a key advisor for manufacturing operations teams and cybersecurity stakeholders. Developing training on IT and OT security risks, governance frameworks, and compliance expectations. Facilitating security awareness sessions for IT and OT engineering teams. Required Qualifications and Experience Bachelor's degree in Cybersecurity, Information Technology, Engineering, or a related field with 14+ years of overall experience. 5+ years of experience in OT security, risk management, or governance in manufacturing, energy, or critical infrastructure. Strong knowledge of ICS/SCADA systems , industrial protocols (Modbus, OPC, DNP3, etc.), and IT and OT asset management. Experience with risk assessment methodologies , audit frameworks, and regulatory compliance. Familiarity with frameworks like NIST 800-82, IEC 62443, ISO 27001, and the Purdue Model for ICS Security. Strong communication and leadership skills for cross-functional collaboration. Preferred Qualifications Industry certifications: CISM, CISSP, CRISC, GICSP, ISA 62443, or equivalent. Experience with vulnerability management, threat modeling, and incident response in manufacturing environments. Knowledge of firewalls, network segmentation, and endpoint protection for ICS environments. Benefits & Compensation Medtronic offers a competitive Salary and flexible Benefits Package. We are committed to our employees, recognizing their contributions and providing resources to support you at every career and life stage. About Medtronic Medtronic leads global healthcare technology, boldly attacking the most challenging health problems facing humanity by searching out and finding solutions. Our Mission to alleviate pain, restore health, and extend life unites a global team of 95,000+ passionate people. We are engineers at heart, putting ambitious ideas to work to generate real solutions for real people, leveraging talent, diverse perspectives, and courage to engineer the extraordinary.

Job Title: Senior Manager (Security) Looking for a Security Manager who will be responsible for creating and executing security programs, procedures, and policies. The role involves coordinating security operations with other members of the security and cross-functional teams. The ideal candidate should possess outstanding leadership, strong communication and security management skills. Qualifications and Experience: - University degree or equivalent through experience and professional certification. - 15 years of expertise in security operations in the private sector with a minimum of five years in a key leadership position in Corporate Security. - In-depth knowledge of global risk assessment approaches. - Ability to interact effectively with diverse cultures and build consensus. - Proven capability to direct and manage initiatives, provide assistance, and generate value. - Outstanding verbal, written, and interpersonal communication abilities. (English, Hindi and Local language a must (based on the location of the factory) - Proficient in providing risk management training. - Familiarity with contemporary security devices, deployment, and monitoring. - Experience in security auditing. Prior experience in Multinational corporations preferably in Electronics manufacturing. Responsibilities: Policy and Procedure Development: - Develop and execute company-wide security policies, protocols, and procedures in collaboration with management and meeting customer expectations. Surveillance and Emergency Response: - Demonstrate exceptional abilities in surveillance and emergency response. - Dedication to security regulations and understanding of potential dangers and safety issues. Technology Integration: - Implement technology-driven monitoring systems for continuous improvement. Audit and Compliance: - Conduct security audits as required by management, customers and by law. - Examine audit results, identify non-compliance areas, and take necessary action. Security operations tasks: - Coordinate with cross-functional teams on project requirements, standards and deadlines. - Develop and execute project plans, ensuring timely completion. - Administer vendors for on-time delivery and completion. Team Management: - Recruit, train, and oversee security personnel. - Ensure alignment with the company's core values and long-term strategy. Collaboration and Communication: - Attend meetings with other departments, clients, and stakeholders to establish operational requirements. - Liaise with law enforcement agencies, government entities, and regulatory authorities. Confidentiality - Ensure confidentiality of work assignments and comply to non-disclosure agreements.

Looking for a Security Specialist/Asst. Manager with Man-guarding experience who can communicate effectively, supervise daily security operations, and make informed decisions. The candidate should also know about physical security practices, Man management, recruitment, scrutiny, training and Investigations. Qualifications and Experience: - University degree or equivalent through experience and professional certification. - 8 years of expertise in managing security operations in the private sector with a minimum of 3 years in a team management role. - In-depth knowledge of Man-guarding deployment needs and Training. - Hands-on experience in designing and developing security deployment plans. - Strong leadership and team management skills. - Ensure confidentiality of work assignments and comply with non-disclosure agreements. - Good verbal, written, and interpersonal communication abilities. (English, Hindi and Local language a must (based on the location of the factory) Responsibilities: - Oversee and coordinate day to day of Guarding services at the site. - Coordinate and support client/process audits from a Guarding standpoint. - Guarding Vendor Management and ensuring compliance with regulatory requirements. - Develop and Implement security policies and manage effective implementation. - Provide training programs to maintain a high competency level among Security staff. - Conduct security awareness sessions for employees/ vendors to increase awareness about security practices. - Conduct a performance evaluation of the guard force and identify areas of improvement. - Develop an automated tool to evaluate weekly/ fortnightly/ monthly areas of improvement and corrective plans. - Designing retention/recognition programs. - Conduct and support investigations at the site. - Emergency preparedness and contingency planning. - Liasoning with Law enforcement authorities and communicating internally on potential business disruptions.

We want to shape the future with vision and innovation. Be part of it and develop your full potential! As part of the global NTT DATA Group, one of the most successful IT service providers in the world, we specialize in value-added SAP solutions as NTT DATA Business Solutions. With over 16,000 employees in more than 30 countries, we design, implement, and develop custom-fit SAP solutions for our global customers. Would you like to take the next step in your career and be part of our highly qualified team? Are you ready to break new ground? Job Title: Information Security Analyst Experience: 3 - 6 Years Job Location: Hyderabad Technical Experience Experience in managing security audits, such as, ISO 27001, SOC I / II including preparing control owners for audits, interpreting control requirements, reviewing control evidence for appropriateness, testing control effectiveness, presenting control evidence to external auditors, and audit planning with external auditors. In-depth knowledge of security controls, interpreting control requirements for ISO 27001 (Must) and SOC II (good to have), audits, reviewing control evidence for completeness an accuracy, and ensuring evidence provided to auditors satisfies control requirements. Ability to of plan and lead meetings with control owners and external auditors. Ability to clearly define control requirements to control owners or explaining control evidence to external auditors. Experience planning and performing vendor security risk reviews including creation of templates and reporting for reviewing different types and categories of vendors such as cloud, vendors hosting sensitive data, and vendors with access to sensitive data. Experience reviewing ISO 27001, SOC 2, Pen Test , and other forms of security assessment reports. Manages and tracks the delivery of Security Training and Awareness campaigns. Assists in the development of content for Security Awareness campaigns. Actively contributes to the Security knowledgebase to enable internal knowledge sharing and facilitates efficient audits and questionnaire responses. Supports the Security Audit function by reviewing evidence submissions for accuracy and completeness, following up on audit requests, and helping to establish a continuous monitoring function. Manages and performs quarterly access reviews ensuring completeness and accuracy of results and consistent evidence collection. Supports the Risk Management function by reviewing and documenting Security exceptions and recommending appropriate actions. Recommends and assists in the definition and implementation of security controls in accordance with enterprise policies, standards, and procedures. Educational Qualification: Must be a graduate. Must be ISO27001:2022 Lead Auditor / Lead Implementer certified. Interested candidates share me your updated resume to Satyendra.TVNR@bs.nttdata.com

Job Overview: We are seeking a motivated and detail-oriented Junior Security Analyst to join our security team. As a Junior Security Analyst, you will assist in monitoring and defending our network and systems, helping to identify and resolve security vulnerabilities, and ensuring the safety of our organization's data and assets. Key Responsibilities: Monitor Security Systems: Assist in monitoring security alerts and events from various security tools and platforms (e.g., SIEM, firewalls, intrusion detection systems). Incident Response: Support the identification, investigation, and response to security incidents, including potential breaches, malware infections, and system vulnerabilities. Vulnerability Management: Help assess and track vulnerabilities and assist with patch management and remediation efforts. Security Audits: Participate in regular security audits and assessments to evaluate and ensure the security posture of the organization. Threat Intelligence: Stay updated on the latest cybersecurity threats and trends, providing insight into emerging risks and recommended countermeasures. Security Documentation: Maintain accurate documentation for security incidents, vulnerabilities, and remediation steps taken. Collaboration: Work closely with seniors, IT teams, and other departments to improve the overall security posture of the organization. Security Awareness: Assist in developing and promoting security best practices among employees and assist with training on security-related topics. Our Ideal Candidate: Qualifications: Education: Bachelor's degree in computer science, Information Technology, Cybersecurity, or a related field. Alternatively, relevant certifications or work experience in cybersecurity may be considered. Experience: 0-2 years of experience in IT security or a related field. Familiarity with security concepts such as firewalls, intrusion detection systems, malware, encryption, and risk assessments. Technical Skills: Good understanding of network protocols, operating systems, and security tools. Knowledge of security frameworks and standards (e.g., NIST, ISO 27001, CIS). Familiarity with SIEM tools, vulnerability scanners, and endpoint protection technologies is a plus. Certifications: Industry certifications such as CompTIA Security+, Certified Information Systems Security Professional (CISSP), or Certified Ethical Hacker (CEH), eJPT, or any relevant certifications are a plus. Problem-Solving Skills: Ability to analyze security incidents and recommend actionable steps for remediation. Communication Skills: Strong written and verbal communication skills, with the ability to document incidents and work with teams effectively. Attention to Detail: Ability to focus on details while managing multiple tasks in a fast-paced environment. Must have Skills : Familiarity with cloud security (AWS, Azure, Google Cloud). Basic scripting or programming skills (Python, PowerShell, etc.) for automation or analysis. Experience with endpoint protection, antivirus solutions, or web application security. Personal Attributes: Eagerness to learn and adapt to new technologies and security practices. Strong team player with the ability to work independently when needed. A proactive mindset, always thinking ahead to prevent security incidents before they occur. Ability to handle sensitive information with discretion and integrity.

1. Mandatory Qualification: Engineering Graduate (IT/Computer Science), MBA (IT/Systems), or MCA from a recognized institute/university with strong knowledge of Information Security. 2. Desirable Qualification: Experience in implementing and maintaining GRC frameworks and ISO 27001:2022 compliance. Hands-on expertise in Information Security Risk Management, Cloud Security, Third-Party Risk Management, and Change Management processes. Proficiency in MS Excel and PowerPoint with strong written and verbal communication skills in English. Relevant certifications in Information Security/Cybersecurity. (e.g., CISSP, CISA, CEH, etc.) Practical experience with security tools like SIEM, firewalls, endpoint protection, etc. 3. Preferred Experience: ISMS implementation for organizations in the BFSI sector. Job description The employee will be responsible for ensuring the integrity, confidentiality, and availability of organizational information assets by overseeing the following: 1. ISMS Program Management: Lead the implementation, maintenance, and continual improvement of ISMS to ensure alignment with ISO 27001:2022 standards and CERT-In guidelines. 2. Risk Assessments and Audits: Conduct regular risk assessments, vulnerability scans, and audits (internal and third-party) to identify potential threats and address vulnerabilities. 3. Incident Response and Recovery: Develop and manage the organization's incident response and disaster recovery plans. Ensure timely resolution and minimal disruption during security incidents. 4. Policy and Compliance Management: Develop, update, and enforce security policies and procedures in line with ISO 27001, CICRA, and other applicable regulatory frameworks. 5. Collaboration with IT Teams: Work closely with IT teams to implement security measures for protecting organizational data, networks, and applications. 6. Third-Party Risk Management: Evaluate and manage the security posture of vendors and service providers to ensure compliance with contractual and regulatory requirements. 7. Security Awareness: Conduct organization-wide training and awareness programs, including phishing simulations, to enhance cybersecurity knowledge. 8. IT/IS Tools Management: Oversee the implementation and monitoring of tools such as SIEM, NGAV, EDR, DLP, and backup solutions. 9. Regulatory Compliance: Ensure adherence to CERT-In guidelines, conduct audits as per CICRA, and maintain ISO 27001 certification. 10. Documentation and Reporting: Prepare detailed reports for internal and external audits, risk assessments, and incident reviews. Present periodic updates to CISO and senior management. 11. Process Improvements: Continuously evaluate current security processes, recommend improvements, and assess new tools for better effectiveness. 12. Stakeholder Engagement: Ensure timely communication and coordination with business teams for approvals, testing, and compliance verification. 13. Monitoring and Testing: Ensure timely completion of DR drills, internal ISMS audits, and adherence to the organization's IT policies.

1. Mandatory Qualification: Engineering Graduate (IT/Computer Science), MBA (IT/Systems), or MCA from a recognized institute/university with strong knowledge of Information Security. 2. Desirable Qualification: Experience in implementing and maintaining GRC frameworks and ISO 27001:2022 compliance. Hands-on expertise in Information Security Risk Management, Cloud Security, Third-Party Risk Management, and Change Management processes. Proficiency in MS Excel and PowerPoint with strong written and verbal communication skills in English. Relevant certifications in Information Security/Cybersecurity. (e.g., CISSP, CISA, CEH, etc.) Practical experience with security tools like SIEM, firewalls, endpoint protection, etc. 3. Preferred Experience: ISMS implementation for organizations in the BFSI sector. Job description The employee will be responsible for ensuring the integrity, confidentiality, and availability of organizational information assets by overseeing the following: 1. ISMS Program Management: Lead the implementation, maintenance, and continual improvement of ISMS to ensure alignment with ISO 27001:2022 standards and CERT-In guidelines. 2. Risk Assessments and Audits: Conduct regular risk assessments, vulnerability scans, and audits (internal and third-party) to identify potential threats and address vulnerabilities. 3. Incident Response and Recovery: Develop and manage the organization's incident response and disaster recovery plans. Ensure timely resolution and minimal disruption during security incidents. 4. Policy and Compliance Management: Develop, update, and enforce security policies and procedures in line with ISO 27001, CICRA, and other applicable regulatory frameworks. 5. Collaboration with IT Teams: Work closely with IT teams to implement security measures for protecting organizational data, networks, and applications. 6. Third-Party Risk Management: Evaluate and manage the security posture of vendors and service providers to ensure compliance with contractual and regulatory requirements. 7. Security Awareness: Conduct organization-wide training and awareness programs, including phishing simulations, to enhance cybersecurity knowledge. 8. IT/IS Tools Management: Oversee the implementation and monitoring of tools such as SIEM, NGAV, EDR, DLP, and backup solutions. 9. Regulatory Compliance: Ensure adherence to CERT-In guidelines, conduct audits as per CICRA, and maintain ISO 27001 certification. 10. Documentation and Reporting: Prepare detailed reports for internal and external audits, risk assessments, and incident reviews. Present periodic updates to CISO and senior management. 11. Process Improvements: Continuously evaluate current security processes, recommend improvements, and assess new tools for better effectiveness. 12. Stakeholder Engagement: Ensure timely communication and coordination with business teams for approvals, testing, and compliance verification. 13. Monitoring and Testing: Ensure timely completion of DR drills, internal ISMS audits, and adherence to the organization's IT policies. The role requires a proactive approach, excellent problem-solving skills, and the ability to work collaboratively across teams to ensure the organizations IT and information security objectives are met. This is an indicative job description. Any other tasks or responsibilities may be assigned by management as required.

about our diversity, equity, and inclusion efforts and the networks ZS supports to assist our ZSers in cultivating community spaces, obtaining the resources they need to thrive, and sharing the messages they are passionate about. Information Security Awareness and Training team seeks an experienced, highly motivated and detail-oriented Senior Security Awareness & Training Associate to join our team. The ideal candidate will have 3-5 years of relevant experience in the field and will play a crucial role in developing and implementing effective communication strategies to educate and engage employees about security best practices and promote a culture of security awareness. What you'll do : Collaborate with cross-functional teams and subject matter experts to create engaging and informative security awareness material or program. Support the annual refresh of a global security awareness and training program at ZS. The program must follow the NIST800-50 and relevant regulatory requirements to reduce risk and impact a change in behavior. Support objectives of repeatable security strategy, execute, and distribute interactive materials globally for the Security Awareness and Training Program. Collaborate with Information Security (IS) leads and experts to develop materials and programs or activities. Partner with Security Awareness and Training lead to facilitate engagement of ideas and ensure goals of program are met. Support development of the annual mandatory Information Security training course with assistance from Data Privacy team. Plan and execute monthly phishing simulations to test and improve employee awareness and response to phishing attacks. Promote awareness through appropriate ZS channels and work with communications and IS community to propagate monthly programs. Monitor and analyze the effectiveness of various communications initiatives and make data-driven recommendations for improvement. Serve as internal mentor for ambassadors of global ambassador program. Drive awareness program towards maturity through continuous improvement, updated material, surveys etc. Perform additional duties as required from time to time. What you'll bring: A bachelors degree in information security, Computer Science, Information Technology, or a related field is preferred. Minimum 3-5 years of experience in information security, security awareness, or a related field. Strong ability to work independently and manage multiple tasks effectively. Excellent communication and presentation skills, with the ability to distill complex security concepts into clear and concise messages. Proven ability to work well in a collaborative environment. Experience in planning and executing training programs is a plus. Strong understanding of security best practices and current threats, as well as the ability to stay up to date with emerging trends in the field.Experience working with Information Security Awareness program.Creative thinker and ability to coordinate and execute programs with technical and non-technical associates. Ability to create and review materials for global programs. Strong organizational and project management skills. Ability to analyze and interpret data to improve training effectiveness. Proficiency in using training and collaboration tools (e.g., Learning Management Systems (LMS), Microsoft Office Suite, Adobe Creative Suite, Trello, Security awareness and training tool). Strong problem-solving skills and attention to detail.