4996 Siem Jobs - Page 9

We are looking for a senior Information Security leader to join our rapidly growing fintech company. Prior experience in a regulated financial environment such as an NBFC, payment aggregator, PPI, or bank is essential. In this strategic role, you will define and drive our cybersecurity vision, ensure compliance with evolving regulations, protect critical digital assets, and strengthen our overall security posture. This is a key leadership position, working closely with executive teams to build a secure and scalable future. Responsibilities Lead the company's information security and risk management strategy. Safeguard data, intellectual property, and technology assets from internal and external threats. Ensure compliance with data privacy and cybersecurity regulations (e. g., DPDP, GDPR). Develop, implement, and enforce security policies, procedures, and incident response plans. Partner with business and IT leaders to embed security across operations and ensure resilience. Design and manage a comprehensive security program spanning cyber defense, data protection, and threat detection. Conduct risk assessments, oversee mitigation strategies, and manage security controls across on-prem and cloud infrastructure. Lead incident detection, response, recovery, and continuous improvement of the security posture. Ensure compliance through regular audits, regulatory reporting, and vulnerability assessments. Promote a culture of security through awareness training and cross-functional engagement. Monitor the evolving threat landscape and advise leadership on emerging risks and technologies. Requirements Bachelor's degree in Information Security, Computer Science, or related field. 6+ years in a senior information security role (e. g., CISO, Security Lead), with direct experience in a fintech, NBFC, banking, or regulated financial services environment. Strong grasp of cybersecurity frameworks (e. g., ISO 27001), threat modeling, and risk governance. Hands-on experience with firewalls, IDS/IPS, encryption, and other core security technologies. In-depth understanding of data protection laws and regulatory standards. Proven track record of leading and developing high-performing security teams. Preferred Qualifications Certifications such as CISSP, CISM, CISA, or equivalent. Experience securing cloud platforms (AWS, Azure, GCP). Familiarity with DevSecOps, secure SDLC, and application security. Background in penetration testing, ethical hacking, or incident forensics. Proficiency with SIEM and security analytics tools. Exposure to AI/ML applications in cybersecurity is a plus. This job was posted by Swathi Prakash from Snapmint.

We are seeking enthusiastic and driven individuals to join our team as Cyber Security Analyst Interns. This opportunity is ideal for recent graduates or final-year students who are passionate about cybersecurity and eager to gain hands-on experience. If you have academic knowledge or have undertaken relevant projects in areas like vulnerability assessment, compliance frameworks (ISO 27001 SOC 2), SIEM tools, or penetration testing, we encourage you to apply. Responsibilities Assist in conducting basic vulnerability assessments to identify potential risks and security weaknesses in systems and networks. Learn and support efforts to ensure compliance with key cybersecurity frameworks such as ISO 27001 and SOC 2 Collaborate with senior team members to help implement security measures and controls. Get exposure to Security Information and Event Management (SIEM) systems and help in monitoring basic security events. Participate in internal security reviews and mock penetration testing activities under supervision. Contribute to research and documentation on security best practices. Support in tracking and responding to minor security alerts and incidents. Stay updated with current trends, tools, and techniques in cybersecurity. Requirements Bachelor's degree (or pursuing final year) in Computer Science, Information Technology, or a related field. Academic understanding or hands-on project work in cybersecurity-related topics like vulnerability assessment, SIEM, penetration testing, or compliance frameworks. Knowledge of cybersecurity concepts and a willingness to learn in a real-world environment. Basic understanding of ISO 27001 / SOC 2 compliance is a plus. Certification or training in areas like CEH, CISSP (even in progress) is a bonus. An analytical thinking and problem-solving mindset. Good communication skills and the ability to work in a collaborative team environment. This job was posted by Mahi Acharya from Aakash Infosoft.

Function Goal : To support the organization's information security efforts by assisting with the monitoring and initial analysis of security threats, providing support in risk management activities, and helping ensure compliance with security policies to protect the organization's information assets. Key Result Areas : Assist in the development, review, and maintenance of security policies and procedures and provide support for security-related documentation to ensure robust security frameworks are in place. Ensure compliance with relevant security standards and regulatory requirements and participate in internal and external security audits to ensure the organization meets all necessary guidelines. Assist in the development and implementation of new security initiatives and technologies. Provide support for security-related projects, including planning, execution, and monitoring. Coordinate with project teams to ensure security requirements are met. Monitor and assess the effectiveness of security training programs. Promote best practices and educate staff on security policies and procedures. Create and distribute security awareness materials, such as security bulletins, phishing simulations and posters to ensure all employees are well-informed and vigilant and have a high level of security awareness. Assist in identifying potential security risks and vulnerabilities within the organization's systems and processes. Participate in the evaluation of risks by analyzing the likelihood and potential impact of security threats. Use tools and techniques to document identified risks and share findings with senior team members for further analysis to ensure proactive risk management. Participate in training and development opportunities to enhance security skills and knowledge. Provide feedback on existing security processes and suggest improvements to enhance effectiveness and to ensure continuous improvement of security measures.

Minimum qualifications: Bachelor's degree in Engineering or equivalent practical experience, Certifications such as Certified Information Systems Security Professional (CISSP) or Certified Information Security Manager (CISM), 8 years of experience in delivering cybersecurity consulting services, 7 years of experience with executive, business development, market growth, and client relationship management, Preferred qualifications: Experience with articulating security and risk concepts to all audiences, including executives, Experience in driving consulting business generation with local business leadership and external contacts, Experience in performing engagement enablement, including scoping, structuring customized engagements, proposal writing, and drafting statements of work, Ability to manage expectations and build rapport with clients, at executive and C-levels, Excellent leadership skills with the ability to prioritize and execute methodically, engaging with the teams to deliver quality client experiences, Excellent communication skills, About The Job As a Security Consultant, you will be responsible for helping clients effectively prepare for, proactively mitigate, and detect and respond to cyber security threats Security Consultants have an understanding of computer science, operating system functionality and networking, cloud services, corporate network environments and how to apply this knowledge to cyber security threats, As a Security Consultant, you could work on engagements including assisting clients in navigating technically complex and high-profile incidents, performing forensic analysis, threat hunting, and malware triage You may also test client networks, applications and devices by emulating the latest techniques to help them defend against threats, and will be the technical advocate for information security requirements and provide an in-depth understanding of the information security domain You will also articulate and present complex concepts to business stakeholders, executive leadership, and technical contributors and successfully lead complex engagements alongside cross functional teams, In this role, you will collaborate with regional business and global consulting teams to enhance our brand and business, while also providing security engagement experiences You will report to the regional consulting leader for India, Japan, and Korea, Part of Google Cloud, Mandiant is a recognized leader in dynamic cyber defense, threat intelligence and incident response services Mandiant's cybersecurity expertise has earned the trust of security professionals and company executives around the world Our unique combination of renowned frontline experience responding to some of the most complex breaches, nation-state grade threat intelligence, machine intelligence, and the industry's best security validation ensures that Mandiant knows more about today's advanced threats than anyone, Responsibilities Build and manage a sustainable pipeline of opportunities for the Mandiant consulting business through local business leadership, business specialists and representatives, and channel partners ecosystem, Understand and qualify client needs, concerns, and identify opportunities to assist them with consulting services, Engage with C-level, business, technology and security leadership to assess their confidence in their cyber security Share Mandiants front-line experience and thought leadership to influence and shape perceptions, Understand Mandiant consulting services and pitch narratives on Mandiants differentiation, value add, expertise, and experience Share mission-moments and success stories with clients on real-life engagements to build trust and transparency, Own client relationships, engagement delivery, outcomes for all consulting engagements Provide support to clients, Project Manager/Engagement Lead (EL), Technical Lead (TL), and other consultants in addressing engagement risks and issues, Google is proud to be an equal opportunity workplace and is an affirmative action employer We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity or Veteran status We also consider qualified applicants regardless of criminal histories, consistent with legal requirements See also Google's EEO Policy and EEO is the Law If you have a disability or special need that requires accommodation, please let us know by completing our Accommodations for Applicants form , Show

Job Description Job Title: MS Defender Location: Mumbai Job Description 5 to 7 years of work experience in cyber security /Information security project, with security posture. Assessment. At least one technical certification required (CEH, CompTIA Security+, CBCA, CSA etc.) Should have at least one cyber security certification (CISM, CCIR, ECSA, GCIH etc) Lead and manage advanced threat detection and response efforts using carbon black EDR across our clients endpoints. Investigate and analyze sophisticated security alerts and events to determine root cause, scope and impact of security incidents. Provide technical expertise and guidance to junior analysts (L1, L2s), assisting with incident investigations, analysis and resolution. Develop and implement advanced detection and response strategies using Carbon Black EDR to enhance our overall security posture. Lead incident response efforts, including coordination with cross-functional teams and external stakeholders. Conduct in-depth analysis of endpoint data and logs to identify indicators of compromise (IOC s) and advanced attack techniques. Collaborate with threat intelligence teams to stay updated on emerging threats and tactics used by threat actors. Develop and maintain security playbooks, procedures and response plans for incident response and threat hunting. Assist in the tuning and optimization of Carbon Black EDR policies, SIEM rules and custom queries to improve detection efficacy. Skills Required RoleMS Defender -Mumbai Industry TypeIT/ Computers - Software Functional Area Required Education B. Sc. Employment TypeFull Time, Permanent Key Skills AZURE CARBONBLACK CYBERSECURITY EDR END POINT MICROSOFT DEFENDER MS DEFENDER Other Information Job CodeGO/JC/711/2025 Recruiter NameAckshaya

Vestas is a major player in wind technology and a motivation in the development of the wind power industry. Vestas' core business comprises the development, manufacture, sale, marketing, and maintenance of Wind Turbines. Come and join us at Vestas! Power Plant Solutions Department is part of the VTO Organisation and supports the regions in selling, installing, and servicing a large number of SCADA systems controlling medium and large sized wind power plants. Our customers can mainly be found among larger power supply companies and professional investors. Frontend Engineering & Technology > Regional Engineering & Technology APAC > Power Plant Solutions APAC Responsibilities Provide support for hardware and software. Implementing installations, configuration, and testing of new or upgraded hardware and software to ensure uniformity, performance, reliability, and security Identity Access Management: - Provisioning user access and privileges on servers and network devices- Migration of users from existing site configuration- Auditing of user access/privilege levels Managing antivirus software on-site systems Installs and configures approved applications on-site systems Configure and test log management systems/SIEM e.g. Syslog, and NetFlow Implement and Monitor Intrusions Detection Systems on site Testing and deployment of approved security updates (patches) and firmware on SCADA devices Testing and deployment of upgrades on networking devices, majorly Cisco devices Troubleshoot and test PCs, servers, applications, and networking devices by using remote tools or by traveling to the different Vestas sites in Asia-Pacific Liaise with the Security Operations Centre (SOC) and Remote Operations Centre (ROC) to investigate and resolve incidents and tickets Ensure transfer/handoff of issues to appropriate personnel in the global organization Provide support to SCADA Engineers, Site technicians, and customers Supporting Configuration of switch and router for the SCADA team Participate in SCADA/Security Projects across the region Prepares operational reports including project status, equipment, network, inventory, and area activity summaries; develops and maintains procedures manuals Performs other duties of similar nature and level as assigned Qualifications University degree in Cyber Security, Computer/Software/Electrical Engineering At least 2 - 4 years of experience within cybersecurity, preferably in operational technology or specifically in the energy sector Certifications such as MCSE, and CCNA are an advantage You possess excellent communication skills You speak and write English fluently Competencies Experience with Microsoft Windows(R) Operating System, Cisco networking devices (switches, routers, and firewalls), and Linux Operating System Insight into Cyber security frameworks Such as C2M2, NIST, AESCSF, IEC62443 or similar Engineering experience within PLC programming, Automation, or SCADA systems is an advantage Troubleshooting - Ability to identify and define the source of problems through a logical process and identify and evaluate possible solutions based on facts and sound judgment that mitigate the problem whilst ensuring delivery of required outcomes. Microsoft server and Cisco certifications are an advantage Industrial electricity and electronics knowledge Motivated by finding solutions to meet customer needs inside existing design constraints Strong communication skills in English, both in speech and writing What We Offer We offer a very exciting job in a flat, multi-cultural, and dynamic department that cuts across Asia-Pacific, focusing on reaching world-class results. Exposure to the renewable energy environment through training and cross-functional activities is on offer. To us, it is all about protecting our customers' assets by identifying cyber threats to them and mitigating them before they become an incident. Additional Information Your primary workplace will be Chennai. Please note: We do amend or withdraw our jobs and reserve the right to the right to do so at any time, including prior to the advertised closing date. Please be advised to apply on or before 29th Aug 2025. Our commitment to a fair hiring At Vestas, we evaluate all candidates solely on professional experience, education, and relevant skills. To support a fair recruitment process, please remove any photos, dates of birth or graduation dates, gender pronouns, marital status, or other personal details not relevant to the role, before submitting your CV. Please keep your CV focused on work and educational details, and the necessary information that we contact you (email and phone number). We train our hiring teams in inclusive evaluation and regularly review process outcomes to ensure fairness. DEIB Statement At Vestas, we recognise the value of diversity, equity, and inclusion in driving innovation and success. We strongly encourage individuals from all backgrounds to apply, particularly those who may hesitate due to their identity or feel they do not meet every criterion. As our CEO states, "Expertise and talent come in many forms, and a diverse workforce enhances our ability to think differently and solve the complex challenges of our industry". Your unique perspective is what will help us powering the solution for a sustainable, green energy future. BEWARE – RECRUITMENT FRAUD It has come to our attention that there are a number of fraudulent emails from people pretending to work for Vestas. Read more via this link, https://www.vestas.com/en/careers/our-recruitment-process About Vestas Vestas is the energy industry’s global partner on sustainable energy solutions. We are specialised in designing, manufacturing, installing, and servicing wind turbines, both onshore and offshore. Across the globe, we have installed more wind power than anyone else. We consider ourselves pioneers within the industry, as we continuously aim to design new solutions and technologies to create a more sustainable future for all of us. With more than 185 GW of wind power installed worldwide and 40+ years of experience in wind energy, we have an unmatched track record demonstrating our expertise within the field. With 30,000 employees globally, we are a diverse team united by a common goal: to power the solution – today, tomorrow, and far into the future. Vestas promotes a diverse workforce which embraces all social identities and is free of any discrimination. We commit to create and sustain an environment that acknowledges and harvests different experiences, skills, and perspectives. We also aim to give everyone equal access to opportunity. To learn more about our company and life at Vestas, we invite you to visit our website at www.vestas.com and follow us on our social media channels. We also encourage you to join our Talent Universe to receive notifications on new and relevant postings.

About the Role: As a Information Security Officer, you'll join growing Global Corporate Security Office diverse international team bridging divisions, central services, and global entities. Ideal for career changers or early cybersecurity enthusiasts, this role offers a hands-on learning experience with room to grow. What Youll Do: Develop, review, and maintain security policies and procedures; produce documentation and guidelines to foster organizational security awareness. Support or manage internal frameworks and audits related to ISMS (ISO 27001), QMS (ISO 9001), and SOC2. Handle security incidents end-to-end, from detection to resolution and post-incident analysis. Contribute to security-focused projects: define requirements, assess risks & mitigations, and monitor adherence to securitybydesign principles. Advise on secure product design and development to uphold privacy and regulatory standards. Build team security maturity: assess current competencies, identify gaps, propose improvements, and drive training initiatives. Serve as a liaison for a designated Cegeka Group entity, addressing security/compliance queries and verifying conformance with baseline standards. Support corporate security office in validating compliance across group entities (CSAF/minimum security standards). Maintain the corporate security risk register: identify, document, and track organizational risks. Seek and participate in ongoing training to strengthen security expertise; provide feedback and suggest enhancements to existing processes. Technical Exposure: SIEM/SOAR : Hands-on experience with Splunk or equivalent tools. EDR : Familiarity with CrowdStrike endpoint protection. Vulnerability Management : Using tools like Microsoft Intune . Network Security : Understanding of firewalls (e.g., FortiGate) and other perimeter controls. Application Security (AppSec) : Secure coding practices, code reviews, and application threat modeling. SDLC Security : Integration of security controls into development lifecycles. AI Risk Awareness : Understanding risks associated with AI models and data privacy. Enterprise Risk Management : Experience in identifying, analyzing, and mitigating enterprise-level security risks. Threat Intelligence : Ability to analyze threat reports and integrate actionable intelligence into security posture. Requirements: Bachelors or masters degree in a relevant field or equivalent practical experience. Excellent communication capabilities with both technical and business stakeholders (e.g., CISO, IT, engineering). Familiarity with frameworks like NIST or ISO 27001. CISSP and/or CISM certifications. Fluent in English (verbal and written)

This role involves the development and application of engineering practice and knowledge in designing, managing and improving the processes for Industrial operations, including procurement, supply chain and facilities engineering and maintenance of the facilities. Project and change management of industrial transformations are also included in this role. - Grade Specific Focus on Industrial Operations Engineering. Develops competency in own area of expertise. Shares expertise and provides guidance and support to others. Interprets clients needs. Completes own role independently or with minimum supervision. Identifies problems and relevant issues in straight forward situations and generates solutions. Contributes in teamwork and interacts with customers.

Job Role: Infrastructure Engineer - Backup Experience: 2-4 Years Work Location: Trivandrum Job Responsibilities: 1. Storage Deployment & Maintenance Assist in the installation, configuration, and administration of Extreme IO, Unity, Pure Storage, and Cisco Hyperflex storage systems. Monitor storage performance, availability, and utilization to ensure seamless operations. Perform basic storage troubleshooting, working with senior engineers on issue resolution. Help apply firmware updates, patches, and system upgrades for storage infrastructure. 2. Backup & Disaster Recovery Support Support data backup and recovery processes using tools like Rubrik, Druva, or Veeam. Assist in storage replication and failover testing to ensure disaster recovery readiness. Ensure adherence to data retention and backup policies. 3. Storage Performance & Optimization Help monitor and resolve storage-related latency and performance issues. Assist in storage capacity planning and recommend solutions for optimal utilization. Learn and contribute to automation scripts (PowerShell, Python, or Ansible) for routine storage tasks. 4. Security & Compliance Assist in configuring access controls and encryption for storage security. Follow data protection policies and compliance guidelines such as ISO, GDPR, and SOC. Work with security teams to integrate storage solutions into SIEM and monitoring tools. 5. Collaboration & Documentation Work closely with senior engineers, network, virtualization, and cloud teams to support business applications. Document storage configurations, troubleshooting steps, and best practices. Participate in team training and knowledge-sharing sessions to improve storage expertise. Skill Requirements: 2+ years of experience in storage infrastructure engineering or system administration. Basic experience in Extreme IO, Unity, Pure Storage, or Cisco Hyperflex. Familiarity with SAN, NAS, RAID, fiber channel, and iSCSI protocols. Basic knowledge of backup and disaster recovery solutions such as Rubrik, Druva, or Veeam. Understanding of storage performance monitoring and troubleshooting. Strong problem-solving and analytical skills. Certifications such as Dell EMC Storage, Pure Storage, or Cisco Hyperflex Certified Associate. Experience with hybrid cloud storage solutions and cloud-based storage integrations. Basic scripting skills in PowerShell, Bash, or Python for automation tasks. Exposure to ITIL processes and knowledge of IT Service Management (ITSM) best practices.

The Forensic Analyst role will entail working closely with the investment research team across different sectors and geographies. Key Responsibilities: Deep dive into annual reports Assessment of corporate disclosures including exchange filings and MCA filings Report drafting and presentation of corporate governance findings to the team Aid the groups ESG and stewardship efforts Qualification & Skills: Chartered Accountant Excellent working knowledge of accounting & corporate governance best practices High degree of curiosity Strong analytical skills The above role is only for Chartered Accountants who have cleared in the last 12 months

Job Title: Presales – Cyber Security Location: Gurugram (Work from Office) Experience Required: Relevant experience in cyber security presales Salary Package: ₹10–15 LPA (Negotiable based on expertise) Company Description Saffron Networks Pvt Ltd is a leading cybersecurity consulting firm specialising in enhancing organisations' security posture and protecting against modern cyber threats. With a team of highly skilled cybersecurity professionals and extensive industry experience, we offer comprehensive services tailored to the unique needs of our clients. Combining strategic consulting, technical expertise, and a proactive approach, we empower organisations with robust cybersecurity strategies to ensure the confidentiality, integrity, and availability of their digital assets. As a client-centric organisation, we prioritise building strong partnerships to collaboratively achieve cybersecurity objectives. Job Description: We are hiring a Presales professional in core Cyber Security to join our team in Gurugram. The ideal candidate should have excellent communication skills and a strong understanding of cyber security solutions, tools, and industry trends. This is a client-facing role that involves end-to-end technical engagement from requirement gathering to POC and solution positioning. Key Responsibilities: Engage with clients to understand technical requirements and provide appropriate cyber security solutions Prepare and deliver compelling technical presentations and product demonstrations Design and execute Proof of Concept (POC) to showcase solution effectiveness Respond to RFPs/RFIs with customized technical documentation and proposals Act as the bridge between sales, technical teams, and the client to ensure solution feasibility Stay current with emerging cyber threats, tools, and technologies Support deal closures with strong technical justification and value articulation Requirements: In-depth knowledge of core cyber security domains (e.g., network security, endpoint protection, SIEM, DLP, cloud security) Prior experience in technical presales , solution design, and POC execution Strong verbal and written communication skills Ability to present complex technical solutions in a clear and business-oriented manner Self-motivated with strong problem-solving and analytical skills

Who We Are At Kyndryl, we design, build, manage and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl? We are always moving forward – always pushing ourselves to go further in our efforts to build a more equitable, inclusive world for our employees, our customers and our communities. The Role Are you a tech-savvy problem-solver with a passion for ensuring optimal network performance? If so, look no further – Kyndryl is seeking a Network Support Specialist who will be the go-to expert for installing, maintaining, and troubleshooting computer networks. As our Network Support Specialist, you'll be working in a complex, multi-vendor environment, and will use your analytical skills to identify and resolve network issues, make configuration changes, and implement security policies. This role requires someone who can think on their feet, test and apply corrective actions (including emergency changes), and participate in change reviews as needed. And with the ever-changing nature of technology, you'll be constantly learning and growing in your role. You will work alongside a talented team of experts to plan and execute routine network changes, troubleshoot and solve network issues and outages, and maintain excellent communication with our end customers, project managers, and service engineers. You’ll be responsible for maintaining network components, monitoring network performance, and maintaining network security. You will also be providing user support for network-related issues, ensuring that our customers receive the highest level of support possible. If you're ready to take on a fast-paced and rewarding role in the world of network support, apply to join the Kyndryl team today! Responsibility are Implement and maintain VPNs, IPSec tunnels, and SSL VPNs using Palo Alto and FortiGate technologies.Proficiency in routing protocols BGP, OSPF Configure proxy and network access control (NAC) solutions.Hands-on experience with FortiManager, and FortiAnalyzerCreate and Perform firmware upgrades, patches, and routine maintenance on firewalls.cIntegrate firewall solutions with SIEM, IDS/IPS, endpoint protection, and cloud security tools.Monitor network performance and security systems, responding to security incidents and conducting root cause analysis.Investigate and respond to security breaches, malware infections, and intrusion attempts. Implement network virtualization, micro-segmentation, distributed fire walling (DFW) .Troubleshoot and optimize NSX networking components, including VXLAN, Overlay, Edge Services Gateway (ESG), and Distributed Logical Routers (DLR) and Configure NSX Security Policies, NAT, VPN, Load Balancing, and Firewall rules Expertise in NSX-T components such as Transport Zones, Edge Nodes, and T0/T1 Gateways. Your Future at Kyndryl Every position at Kyndryl offers a way forward to grow your career, from Junior Administrator to Architect. We have training and upskilling programs that you won’t find anywhere else, including hands-on experience, learning opportunities, and the chance to certify in all four major platforms. One of the benefits of Kyndryl is that we work with customers in a variety of industries, from banking to retail. Whether you want to broaden your knowledge base or narrow your scope and specialize in a specific sector, you can find your opportunity here Who You Are You’re good at what you do and possess the required experience to prove it. However, equally as important – you have a growth mindset; keen to drive your own personal and professional development. You are customer-focused – someone who prioritizes customer success in their work. And finally, you’re open and borderless – naturally inclusive in how you work with others Required Technical and Professional Experience : Total 10+ years of experience. Experience in cybersecurity, SOC, or security engineering roles. Hands-on experience with WAF, IBM DAM, IBM GDE, Force point Proxy, DLP , Email Gateway. Strong knowledge of network security, endpoint security Qualification: BSc. B.E./B. Tech, M.E. /M. Tech Preferred Technical and Professional Experience : Experience with DAM solutions such as IBM Guardium Ability to monitor and audit database activities for unauthorized access and suspicious activities Experience with Thales CipherTrust Understanding of key management solutions (KMS) and Hardware Security Modules (HSMs) Certifications : PCNSE, NSE4 ,WAF, Network Virtualization (VCTA-NV) , Force point DLP, Web Security Administrator Certification , CEH , CompTIA Security+ Being You Diversity is a whole lot more than what we look like or where we come from, it’s how we think and who we are. We welcome people of all cultures, backgrounds, and experiences. But we’re not doing it single-handily: Our Kyndryl Inclusion Networks are only one of many ways we create a workplace where all Kyndryls can find and provide support and advice. This dedication to welcoming everyone into our company means that Kyndryl gives you – and everyone next to you – the ability to bring your whole self to work, individually and collectively, and support the activation of our equitable culture. That’s the Kyndryl Way. What You Can Expect With state-of-the-art resources and Fortune 100 clients, every day is an opportunity to innovate, build new capabilities, new relationships, new processes, and new value. Kyndryl cares about your well-being and prides itself on offering benefits that give you choice, reflect the diversity of our employees and support you and your family through the moments that matter – wherever you are in your life journey. Our employee learning programs give you access to the best learning in the industry to receive certifications, including Microsoft, Google, Amazon, Skillsoft, and many more. Through our company-wide volunteering and giving platform, you can donate, start fundraisers, volunteer, and search over 2 million non-profit organizations. At Kyndryl, we invest heavily in you, we want you to succeed so that together, we will all succeed. Get Referred! If you know someone that works at Kyndryl, when asked ‘How Did You Hear About Us’ during the application process, select ‘Employee Referral’ and enter your contact's Kyndryl email address.

Job Summary: We are seeking a motivated and technically skilled L1 Security Engineer with hands-on experience or strong understanding of Zscaler security solutions (ZIA/ZPA). The candidate will be responsible for providing first-level technical support, monitoring security incidents, and assisting with the administration and troubleshooting of Zscaler-based environments. This role is ideal for someone with a keen interest in cybersecurity and cloud security, especially in Zero Trust environments. Key Responsibilities: Provide L1 support for Zscaler Internet Access (ZIA) and Zscaler Private Access (ZPA) related issues. Monitor and triage security alerts generated from Zscaler or integrated SIEM tools. Assist in the initial troubleshooting of user connectivity issues , authentication failures, or policy misconfigurations related to Zscaler services. Perform basic log analysis and generate incident tickets as per SOPs. Document and escalate complex issues to L2/L3 teams as needed. Support onboarding/offboarding of users with respect to Zscaler configurations. Maintain and update knowledge base articles and standard operating procedures (SOPs). Coordinate with internal IT and security teams to ensure seamless policy updates and device configurations. Perform periodic checks on Zscaler dashboards, tunnel status, certificate updates, and user activity reports. Required Skills & Qualifications: Bachelor’s degree or diploma in Computer Science, Information Technology, or related field. 1–3 years of experience in IT/security support. Working knowledge or certification in Zscaler (ZIA/ZPA). Familiarity with networking fundamentals (TCP/IP, DNS, HTTP/HTTPS, VPN, proxy). Basic understanding of firewalls, secure web gateways, and identity providers (e.g., Azure AD, Okta). Experience with ticketing tools (e.g., ServiceNow, Jira). Strong communication and documentation skills. Ability to work in rotational shifts and under pressure. Job Type: Full-time Pay: Up to ₹40,000.00 per month Benefits: Health insurance Provident Fund Ability to commute/relocate: Kakkanad, Kochi, Kerala: Reliably commute or planning to relocate before starting work (Required) Experience: ZIA / ZPA: 1 year (Required) Work Location: In person

Summary The Director DDIT ISC CSOC Automation Engineering will be an integral part of the Novartis Cyber Security Operations Center (CSOC). The CSOC is an advanced global team passionate about actively defending against the most sophisticated cyber threats and attacks. The Director DDIT ISC CSOC Automation Engineering is a seasoned leader who will lead a team of skilled SOAR engineers and manage tools to support the proactive detection, investigation, and mitigation of emerging and persistent threats that impact Novartis’ networks, systems, users, and applications. This role will involve coordination and communication with technical and non-technical teams, including security leadership and business stakeholders. As an experienced and skilled manager, this role will also involve coaching and mentoring talented Security Engineers with diverse backgrounds. About the Role MAJOR ACCOUNTABILITIES In addition to accountabilities listed above in Job Purpose: SOAR Manager Lead and manage a geographically distributed team of skilled SOAR Engineers, providing guidance and support while leveraging their diverse skill sets and personalities. Evaluate and review performance metrics and KPIs to ensure the SOAR team is meeting targets and delivering efficient and effective results. Take accountability for the team's performance in various areas, including, but not limited to: Manage SOAR platforms Support audit requests and reports Engage with product teams to address technical challenges Manage stakeholders' commitments Act as the primary point of contact for first-level escalations, addressing any issues or concerns that arise and ensuring timely resolution. Develop and maintain comprehensive documentation to facilitate knowledge sharing and ensure consistently achieving quality outcomes. Drive a culture of continuous improvement and innovation within the team, identifying opportunities to optimize processes and enhance efficiency. Serve as a subject matter expert in SOAR processes and play an active role in guiding the team and providing expertise whenever needed. Workflow Orchestration and Process Automation Define, design, evaluate, and improve business processes and playbooks integrating automation and orchestration. Integrate a variety of technology devices, applications, and datasets to support workflow orchestration and process automations. Gather requirements, plan, design, implement, and test automations with SOAR platform and surrounding technologies. Develop custom integrations to support CSOC workflow automation and orchestration. Develop and maintain effective documentation; including automation playbooks, processes, and other supporting operational material. Case Management and Analytics Interface with engineering teams to design, test, and implement case management with workflow orchestration and automation. Define, design, evaluate, and enhance case management features including front end interface, backend data model, and technology integrations to support measurable, effective, and streamlined CSOC activities. Scripting and Development Design, develop, and test scripts and other solutions to support CSOC mission and activities. Research and test new technologies and platforms; develop recommendations and improvement plans. Cooperating with stakeholders Management – Periodically report to management the current status of sources and use cases in the system. Operational stakeholders (CSOC analysts, Cyber Center) – Maintain a good understanding of stakeholders’ needs in regard to activities and requirements. Essential Requirements: University working and thinking level, degree in business/technical/scientific area or comparable education/experience. Desirable Requirements: Professional information security certification, such as CISSP, CISM or ISO 27001 auditor / practitioner is preferred. Professional (information system) risk or audit certification such as CIA, CISA or CRISC is preferred. Preferably one or more XSOAR, Phantom trainings/certifications. EXPERIENCE 6+ Years work experience. 4+ Years Python scripting or other similar coding experience. Experience with Python and Splunk. Experience planning, designing, developing, and testing automation solutions with SOAR platforms (Cortex, Phantom, FortiSOAR, etc). Experience developing solutions with SIEM tools (Splunk, QRadar, Sentinel, etc.). Experienced IT administration with broad and in-depth technical, analytical and conceptual skills. Experience in reporting to and communicating with senior level management (with and without IT background, with and without in depth risk management background) on incident response topics. Excellent written and verbal communication and presentation skills; interpersonal and collaborative skills; and the ability to communicate information risk-related and incident response concepts to technical as well as nontechnical audiences. Excellent understanding and knowledge of general IT infrastructure technology and systems. Proven experience to initiate and manage projects that will affect CSOC services and technologies. SKILLS/JOB RELATED KNOWLEDGE Understanding of SOAR architecture components, including technology integrations, common automation scenarios and solutions. Understanding of configuration files and relationship between GUI configuration and backend configuration file impact. Experience with software development lifecycle and user acceptance testing. An understanding of error messages and logs displayed by various software. Ability to troubleshoot, diagnose and solve issues independently. Self-learner, ability to document learning as experience is gained. Understanding of network protocols and topologies. Strong technical troubleshooting and analytical skills. Experience with platform and application automated deployment and version control software e.g. (Ansible, Git, Bitbucket). A knowledge of the MITRE ATT&CK framework is a beneficial. Ability to prioritise workload. Excellent written and spoken English. Calm and logical approach. NETWORKS High level of personal integrity, and the ability to professionally handle confidential matters and exude the appropriate level of judgment and maturity. Ability to handle competing priorities, and seeking consensus when stakeholders have different or even contradicting opinions. CORE COMPETENCIES Leadership Establishes clear direction and sets stretch objectives. Aligns and energizes Associates behind common objectives. Champions the Novartis Values and Behaviors. Rewards/encourages the right behaviors and corrects others. Establishes clear directives and objectives. Communicates positive expectations for others on the team. Integrates and applies learning to achieve business goals. Customer/Quality Focus Assigns highest priority to customer satisfaction. Listens to customer and creates solutions for unmet customer needs. Established effective relationships with customers and gains their trust and respect. Defines quality standards to ensure customer satisfaction. Creates and supports world-class quality standards to ensure customer satisfaction. Fast, Action-Oriented Is action-oriented and full of energy to face challenging situations. Is decisive, seizes opportunities and ensures fast implementation. Strives for simplicity and clarity. Avoids 'bureaucracy'. Alerts others to potential risks and opportunities. Keeps organizational processes simple and efficient. Takes acceptable/calculated risks by adopting new or unknown directions. Results Driven Can be relied upon to succeed targets successfully. Does better than the competition. Pushes self and others for results. Anticipates potential barriers to achievement of shared goals. Pushes self and others to see new ways of achieving results (e.g., better business model). Uses feasibility and ROI analyses to ensure results. Keeps pace with new developments in the industry. Why Novartis: Helping people with disease and their families takes more than innovative science. It takes a community of smart, passionate people like you. Collaborating, supporting and inspiring each other. Combining to achieve breakthroughs that change patients’ lives. Ready to create a brighter future together? https://www.novartis.com/about/strategy/people-and-culture Join our Novartis Network: Not the right Novartis role for you? Sign up to our talent community to stay connected and learn about suitable career opportunities as soon as they come up: https://talentnetwork.novartis.com/network Benefits and Rewards: Read our handbook to learn about all the ways we’ll help you thrive personally and professionally: https://www.novartis.com/careers/benefits-rewards Division Operations Business Unit Universal Hierarchy Node Location India Site Hyderabad (Office) Company / Legal Entity IN10 (FCRS = IN010) Novartis Healthcare Private Limited Functional Area Technology Transformation Job Type Full time Employment Type Regular Shift Work No

SOC Analyst (Tier 3) Locations & Number of Openings Delhi: 15 openings Jaipur: 15 openings Pune: 15 openings Chandigarh: 15 openings Experience: 8 years Certification: Minimum CISA (required) Job Description We are seeking a SOC Analyst (Tier 3) with deep cybersecurity expertise to lead investigations, develop advanced detection use cases, and drive strategic security initiatives. You will manage high-severity incidents, mentor junior analysts, and refine SOC processes. Key Responsibilities Lead critical security incident investigations, containment, and remediation. Develop threat detection rules, correlation use cases, and SOAR playbooks. Oversee vulnerability assessments, audits, and compliance checks. Serve as the technical escalation point for Tier 1 and Tier 2 analysts. Stay up-to-date with emerging threats and recommend proactive defensive measures. Preferred Skills & Tools Experience Advanced Security Tools : SIEM, SOAR, ESP+IPmediation, UTM+TrueView Identity & Access Management : IDAM, PAM Incident Response & Forensics : Hands-on with IR methodologies, advanced log analysis, and threat hunting. Prior experience designing SOC workflows, dashboards, or automation runbooks. Qualifications 8+ years in cybersecurity, preferably in a SOC or incident response function. CISA certification (required). Expert-level knowledge of intrusion detection, threat intelligence, and forensic analysis. Proven leadership in high-pressure, time-sensitive security incidents. Excellent communication, documentation, and mentoring capabilities. Additional Details High-impact role with opportunities to shape the SOC strategy. Must be comfortable working in a 24/7 security environment or on-call rotations. How to Apply Send your CV to mailto:shreyag@aeroqube.com with the subject line “SOC Analyst (Tier 3) – [Preferred Location].” #SOC #Tier3 #CISA #SIEM #SOAR #IDAM #PAM #UTM #SecurityOperations #Cybersecurity #Leadership #Hiring #DelhiJobs #JaipurJobs #PuneJobs #ChandigarhJobs

SOC Analyst (Tier 2) Locations & Number of Openings Delhi: 15 openings Jaipur: 15 openings Pune: 15 openings Chandigarh: 15 openings Experience: 4 years Certification: Minimum CISA (required) Job Description We are hiring a SOC Analyst (Tier 2) to handle advanced security threats and incidents. You will investigate escalations from Tier 1, perform deep-dive analysis, and assist in coordinating response efforts. Key Responsibilities Investigate escalated security alerts, incidents, and vulnerabilities. Analyze logs, network traffic, and endpoint data for potential threats. Coordinate with Tier 1 to share best practices and streamline incident triaging. Work with cross-functional teams (IT, NOC, etc.) to contain and remediate security incidents. Maintain accurate incident records in SIEM and ticketing systems. Preferred Skills & Tools Experience Security Monitoring : SIEM, SOAR Identity & Access : IDAM, PAM Threat Detection & Response : ESP+IPmediation, UTM+TrueView Knowledge of relevant frameworks (ISO 27001, NIST) and threat intelligence sources. Qualifications 4+ years of experience in a Security Operations Center or cybersecurity role. CISA certification (required). Hands-on experience with intrusion detection/prevention, threat intelligence, and log analysis. Familiarity with compliance requirements and regulations. Strong communication, collaboration, and analytical skills. Additional Details Training and growth opportunities in advanced cybersecurity tools. May involve rotating shifts or on-call schedules in a 24/7 SOC environment. How to Apply Send your CV to mailto:shreyag@aeroqube.com with the subject line “SOC Analyst (Tier 2) – [Preferred Location].” #SOC #Tier2 #CISA #SIEM #SOAR #IDAM #PAM #UTM #SecurityOperations #Hiring #DelhiJobs #JaipurJobs #PuneJobs #ChandigarhJobs

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : CyberArk Privileged Access Management Good to have skills : NA Minimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary: We are looking for an experienced CyberArk PAM Specialist to design, implement, and support CyberArk Privileged Access Management (PAM) solution. Roles and Responsibilities: 1. Define, design, and implement CyberArk Privilege Cloud (SaaS). 2. Install and configure cloud connectors. 3. Configure MFA, SAML, LDAP, SIEM integration 4. Troubleshoot and resolve CyberArk related technical issues. 5. Work closely with application teams to onboard different types to systems to CyberArk 6. Generate custom CPM,PSM plugins if required 7. Support application onboarding, including access policies, group assignments, and role management. 8. Communicate effectively with business teams, external clients, and solution providers. 9. Document technical designs, solutions, and implementation plans. 10. Work independently and take ownership of technical deliverables. Professional & Technical Skills: Must Have: 1. Strong experience in CyberArk P-cloud, Conjur Secrets Management, CyberArk PAM (Vault, CPM, PSM, PVWA, AAM) 2. Solid understanding of security standards and protocols including SSO, MFA, SAML, OAuth, OIDC, LDAP, RADIUS, and Kerberos. 3. Proficient in CyberArk and related technologies. Experience in system administration, scripting (UNIX, Linux scripting), Rest API, LDAP directories, Active Directory 4. Experience in providing guidance in CyberArk strategy; must have PAM deep-dive experience. 5. Strong understanding of PAM Architecture, deployment methodologies and best practices. 6. Effective at presenting information to different audiences at the correct level of detail (e.g., from engineering teams to executive management). 7. Be a product and domain expert in PAM domain experienced in conducting environment assessments and health checks in line with best practices. 8. Strong troubleshooting and problem-solving skills. 9. Experience in EPM is desirable but not mandatory 10. Excellent verbal and written communication skills. 11. Ability to work independently on technical tasks and client engagements. 12. Candidate must be an independent self-starter able to perform all deployment activities with oversight and as a member of a project team. 13. Candidate must have Sentry Certification. Nice to have CyberArk CDE 14. Good to Have Skills : Thycotic (Delinea), Beyond Trust, HashiCorp Vault Additional Information: 1. 9+ years’ experience related to designing, deploying, and configuring PAM solutions, or 6+ years direct PAM consulting experience. 2. Candidate must have completed 16 years of full-time education. 3. This position is open to Bengaluru, Chennai,Pune,Hyderabad, Gurugaon Accenture locations. 15 years full time education

Ankura is a team of excellence founded on innovation and growth. Location: Conditional Remote / Gurgaon Hours: 40 hours a week Reporting: Director - Threat Detection Operations (TDO) Duties include providing On-Job Training to fellow Senior Analysts and Analysts, continuous monitoring of Security Information Event Management (SIEM), EDR, XDR and related platforms for correlated events and alerts and working with the client to take action. Senior Analysts leverage events to determine the impact, document possible causes, and provide useful information to clients. A deep understanding of various commercial and open-source network sensors, intrusion detection systems, and event log correlation engines is required as senior analysts are expected to deliver enhanced threat awareness and knowledge through research and continuous improvement of use cases, signatures, and metrics. Expected to help automate anomaly detection and alerting while documenting security incidents, processes, investigations, and remediation efforts. Senior Analysts are also expected to maintain open communication and visibility with their team members, Directors, and Clients. Usually, employees will be permitted to work remotely in the current operational setup however that setup may change based on company and/or business needs, with or without notice. It may also be considered a conditional privilege as the employees are personally responsible to maintain uninterrupted availability and communication via all official channels throughout their designated shifts. If the employee's performance cannot be satisfactorily ascertained by their manager or the employee is unable to adapt to work without disturbance, they may be called upon to work out of the company’s office. CAPABILITIES Knowledge of IR process, ticketing tools, Knowledgeable in various IR response commands related to Windows, Linux Strong knowledge on advanced attack techniques related to Endpoints and servers, Threat hunting using EDR/XDR. Experience in handling latest attack techniques LOLBAS, fileless malware etc. Experience in monitor globally emerging threats, vulnerabilities, malicious activities etc. research about the same and reports to concerned teams and management for proactive actions. Must have knowledge of various OSINT tools: VirusTotal, Cisco Talos Intelligence, IBM X-force Exchange, URL.io etc. during the investigation of security alerts. Capable to handle a team of L1 analysts, impart training etc Must have experience of Vulnerability management to identify emerging risks in organization's environment using Qualys, Nessus, MS-Defender etc Knowledgeable about Automation and SOAR Must have the necessary experience to conduct initial triage and in depth analysis of security events and incidents; determine the priority, criticality, and impact; facilitate communication within the client's SOC, escalate to the for containment and remediation, and document/journal progress throughout the Incident Response Lifecycle within the respective service level objectives. Required to have experience in conducting research analysis and data gathering requirements to present in a report format. Should be detail-oriented and able to work independently and communicate effectively both verbally and in writing.Must be flexible enough to work in a 24x7 rotational shift setup, including overnight, weekend, and national holidays. TECHNICAL Emerging SIEM/XDR such as MS Azure Sentinel, SentinelOne Experience with security tools: Nessus, Burpsuite, Acunetix, Kali Linux Strong knowledge on XDR tools such as Sentinel One, Cortex, CrowdStrike, Microsoft etc Understanding of KQL, Lucene, Python, and/or other similar programming/query/scripting languages Proficient in finetuning detection rules of XDR, creation of SOPs, Playbooks for various scenarios and techniques EDUCATION, EXPERINCE, TRAINING & CERTIFICATIONS Minimum Experince in SOC/IR/VM 4 yrs plus Preferred to have a degree in CS/IT or a Masters's Diploma in the field of IT Security. Certifications such as CEH, Security+ CHFI,ACE, and specific to vendor XDR tools SentinelOne cortex, Microsoft CrowdStrike etc COMMUNICATION Comfortable working in a remote work environment including web-based team management and collaboration applications, and time-keeping systems e.g. Slack, Microsoft Teams, Intapp, and Workday. Ability to communicate complex ideas effectively, both verbally and in writing in English and the local office language(s) Able to provide reports showing progress or achievement of assigned goals and responsibilities as required. Must be an active listener and ask questions of others when clarity is needed Ability to gain an understanding of client needs and apply analytic reasoning Demonstrates proactive engagement in meetings and process discussions KEY PERFORMANCE INDICATORS Analyze client networks for threats using analytical platforms for event monitoring such as NSM, SIEM, UEBA, ETDR. Deliver client reports based on analyses that are timely, high quality, and accurate. Understand and support incident response and triage Improve reporting to avoid ‘analysis paralysis’. Develop new skills within analytical platforms INDIVIDUAL & TEAMWORK Must be able to effortlessly switch between independent and team-based work Understands that the work product is dependent on team efforts and remains responsive to internal and external deadlines Able to share expertise and experience with team members to encourage growth and shared success Able to maintain focus and attention to detail for sustained periods of time Engaged in supporting the development and growth of all team members GROWTH MINDSET Can receive and provide feedback in a constructive manner that leads to the growth of self and others. Displays perseverance of effort and passion for a long-term goal and end state. Works well under timelines and puts in extra effort as required to meet timelines. Self-motivated to identify areas for team & process improvement and collaborate with others to develop creative solutions LEADERSHIP TRAITS Willing to adapt leadership skills to support larger and more complex projects. Work product for self and team is consistently of excellent quality and efficiency. Respectful and professional in all interactions with team members, clients, and colleagues. Maintains composure and calm disposition under high-pressure or stressful circumstances. #LI-JK1 Ankura is an Affirmative Action and Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status and will not be discriminated against based on disability. Equal Employment Opportunity Posters, if you have a disability and believe you need a reasonable accommodation to search for a job opening, submit an online application, or participate in an interview/assessment, please email accommodations@ankura.com or call toll-free +1.312-583-2122. This email and phone number are created exclusively to assist disabled job seekers whose disability prevents them from being able to apply online. Only messages left for this purpose will be returned. Messages left for other purposes, such as following up on an application or technical issues unrelated to a disability, will not receive a response.

🔐 We're Hiring: Cyber Security Expert (4–5 Years Experience) 📍 Location : CS Soft Solutions Pvt. Ltd., I-18, Sector 101, IT City Rd, JLPL Industrial Area, Sahibzada Ajit Singh Nagar, Punjab – 160062 📧 Email: shivani-kanwar@cssoftsolutions.com At CS Soft Solutions, we're not just about building digital products—we’re about building trust in every digital interaction. We're expanding our cybersecurity division and are on the lookout for a Cyber Security Expert who’s ready to take ownership, drive strategic initiatives, and protect our clients across industries. 🚀 Key Responsibilities : Act as a trusted advisor to clients, assessing posture & identifying risks Conduct vulnerability assessments, penetration tests & risk analyses Design and implement tailored cybersecurity policies & frameworks Respond to incidents & coordinate response with internal and client teams Ensure compliance (GDPR, HIPAA, ISO 27001, NIST, SOC 2) Lead client workshops, trainings, and briefings Collaborate with DevOps, IT, and Engineering for secure solution design Engage directly with CXOs to understand needs & propose solutions Drive proposal creation, pre-sales, and client success Mentor and lead junior cybersecurity professionals ✅ Required Qualifications : Bachelor’s/Master’s in Cybersecurity, InfoSec, or related field 5+ years hands-on cybersecurity experience Expertise in threat detection, incident response, and network security Hands-on with SIEMs (Splunk, QRadar), Nessus, Qualys, Metasploit, etc. Cloud security exposure (AWS, Azure, GCP) Knowledge of compliance & frameworks (ISO 27001, NIST, SOC 2) Industry exposure: IT, BFSI, Healthcare, Manufacturing Certifications Preferred: CEH, CISSP, OSCP, CISM, ISO 27001 LA/LI 💡 Nice to Have : MSSP or cybersecurity consulting experience DevSecOps and secure SDLC familiarity Forensics or threat hunting background 🧠 Key Traits : Strategic mindset with strong business acumen Excellent communication & client-handling skills Ownership-driven, independent, and team-oriented 📩 If you're passionate about securing digital transformation journeys and thrive in a dynamic, high-growth environment—CS Soft wants you on board! #CyberSecurityJobs #HiringNow #CSSoftSolutions #InformationSecurity #CybersecurityExpert #MSSP #ISO27001 #SIEM #DevSecOps #CloudSecurity #CISSP #OSCP #JoinOurTeam

Experience: 7+ Years Location: Pune / Hyderabad Type: Permanent Notice Period: Immediate to 30 Days Preferred ???? Job Description We are seeking an experienced WAF Engineer (Web Application Firewall) to join our cybersecurity team, focusing primarily on Akamai Web Application and API Protection (WAAP) The ideal candidate will have strong hands-on expertise in WAF configuration, tuning, and policy management across platforms such as Akamai, Cloudflare, F5, Indusface/AppTrana, and Radware, You will work closely with capability leads, security architects, and application teams to ensure robust protection against web-based threats, support tuning requests, analyze logs, and deliver consistent and secure WAF policies across the enterprise, ???? Key Responsibilities Deliver WAAP (Web Application and API Protection) solutions using Akamai for critical applications, Review, analyze, and act on WAF tuning requests, Conduct log analysis to identify false positives and optimize WAF rules, Document WAF tuning procedures, configurations, and policies, Design, develop, and implement tailored WAF policies for diverse applications, Collaborate with cross-functional and application teams to ensure smooth integration of WAF solutions, Implement anti-bypass mechanisms for on-prem applications by enforcing Akamai-only access, Conduct regular assessments and audits of WAF configurations to maintain compliance and optimal performance, Prepare and present monthly/quarterly business reviews to demonstrate WAF effectiveness, Stay updated on emerging web security threats, vulnerabilities, and best practices, Evaluate and recommend new WAAP features and alternative protection models, ?? Key Accountabilities Deliver consistent WAF policy frameworks across infrastructures in alignment with control owners, Enhance false positive management through advanced log analysis, Ensure integration of WAF into broader security architecture, Maintain security compliance and audit readiness, Deliver service reviews and performance reporting to application stakeholders, ???? Mandatory Skills (Candidates must have hands-on experience with at least one of the following) WAF DDoS Akamai WAF DDoS Cloudflare WAF DDoS F5 WAF DDoS Indusface/AppTrana WAF DDoS Radware ??? Preferred Qualifications Bachelors Degree in Computer Science, Cybersecurity, or related field, Industry certifications such as CISSP, CISM, or vendor-specific WAF certifications, Show

Overview We are seeking a seasoned DevSecOps Lead to own and advance our security-by-design approach across the entire software development lifecycle. In this role, you will define and drive a comprehensive DevSecOps strategy, architect and automate secure CI/CD pipelines, and embed security best practices into our cloud-native infrastructure. You will partner closely with engineering, security, and operations teams to enable rapid, compliant, and resilient software delivery at scale. Responsibilities DevSecOps Strategy & Roadmap Define a multi-year DevSecOps vision and actionable roadmap. Identify gaps in current practices and propose improvements in tooling, automation, and processes. Secure CI/CD Implementation Architect, build, and maintain automated pipelines (GitHub Actions, Jenkins, etc.) that integrate security checks (SAST, DAST, dependency scanning). Enforce “shift-left” security controls—secret scanning, container image hardening, infrastructure policy as code. Technical Leadership & Innovation Evaluate and introduce next-gen DevSecOps platforms and open-source tools. Pilot AI/ML-driven security analytics and self-service guardrails. Serve as hands-on expert for complex troubleshooting and incident response. Cross-Functional Collaboration Work with application teams to bake in secure infrastructure as code (Terraform, ARM Templates, Helm). Partner with SREs and cloud platform engineers to align security requirements on Kubernetes, serverless, and bare-metal architectures. Coach and mentor developers on secure-coding standards and threat modeling. Governance, Compliance & Risk Management Define security guardrails, policies, and approval workflows to meet PCI-DSS, SOC 2, ISO 27001, or similar frameworks. Collaborate with audit teams to validate adherence to regulatory controls. Track and remediate security findings through a centralized ticketing and reporting process. Platform Modernization & Migration Lead migration of build/test/release pipelines from legacy on-prem tools to cloud-native platforms. Optimize performance, cost, and security posture in container registries, artifact repositories, and vaults. Qualifications Bachelor’s or Master’s degree in Computer Science, Engineering, or related field. 12+ years of software development or DevOps experience, with 4+ years focused on DevSecOps. Hands-on expertise with GitHub (Actions, Packages), Jenkins, or comparable CI/CD platforms. Proficiency in scripting/programming (Python, Bash, Go, or similar). Strong knowledge of container orchestration (Kubernetes, Docker) and service mesh fundamentals. Experience with infrastructure as code (Terraform, CloudFormation, ARM Templates, Helm). Familiarity with security scanning tools (SonarQube, Semgrep and Snyk) and remediation workflows. Deep understanding of cloud security controls in AWS, Azure, or GCP. Excellent communication skills, with experience presenting to both technical and executive audiences. Preferred Skills & Certifications Certifications: CKA/CKAD, Certified DevSecOps Professional (CDP), or CISSP. Experience with policy-as-code frameworks (Open Policy Agent, HashiCorp Sentinel). Familiarity with SIEM, SOAR, and threat-intelligence platforms. Prior leadership or people-management experience.

Role Purpose: The build lead will oversee the end-to-end technical execution and governance of enterprise security solutions across infrastructure, applications, and cloud platforms. This role requires in-depth technical expertise, strong leadership, and strategic alignment with the organizations cybersecurity objectives. The ideal candidate will be responsible for managing the secure deployment of technologies and ensuring all security controls comply with global standards and business requirements. Role & responsibilities : Lead the design and build of security infrastructure, including firewalls, proxies, SIEM, endpoint protection, identity solutions, and encryption. Act as a subject matter expert during the build phases of projects, ensuring security architecture is implemented according to design and best practices. Collaborate with architects, infrastructure teams, and cloud engineers to embed security into new and existing platforms. Review and validate low-level designs (LLDs), and implement technical configurations aligned with security standards. Establish and maintain documentation standards: runbooks, LLDs, test cases, build templates, and governance artifacts. Lead technical build documentation, runbooks, and handover sessions to operations. Support onboarding and integration of new tools such as EDR, DLP, PAM, CNAPP, CASB, ZTNA, and WAF. Conduct hardening, patch validation, and secure configuration baselines for systems and services. Perform gap analysis and remediation planning during security assessments and audits. And provide technical training on newly built security solutions. Preferred candidate profile: Provide technical direction, mentoring for the security build team. Oversee resource planning, execution timelines to ensure on-time and compliant delivery of security solutions. Facilitate regular team meetings, technical reviews, and collaborative work environment. Coordinate with cross-functional leaders from architecture, operations, compliance, and cloud teams to ensure security build alignment with enterprise goals. Set and track key performance indicators (KPIs) and service-level objectives (SLOs) for the build function. Support team training plans and professional development initiatives to build internal capabilities and specialization in modern security technologies. Escalates risks, issues, or delays proactively to senior leadership, and implement mitigation plans as needed. Ensure team compliance with internal governance, change management, and documentation standards. Qualification: Masters/bachelors in engineering Cybersecurity Certifications Experience: 15 years of experience in IT security Hands-on experience in building and integrating security solutions in enterprise environments. Proficiency in working with security tools such as Palo Alto, Armis, Carbon Black, Zscaler, CrowdStrike, Symantec, Wiz, and Vulnerability Management Good knowledge of networking, cloud security (AWS/Azure), and identity management (AD, IAM). Familiarity with frameworks such as ISO 27001, NIST, MITRE ATT&CK, and Zero Trust Architecture.

What is the Security Operations responsible for? Security Operations is responsible for continuous monitoring and improving organizations security posture while preventing, detecting, analyzing, and responding to Cyber Security incidents with the aid of both technology and well-defined processes and procedures. Security Operations is expected to possess extensive knowledge of incident response methodologies, a deep understanding of cybersecurity threats, and hands-on experience in managing and mitigating security incidents. What are the ongoing responsibilities of Analyst Security Operations? Lead and coordinate incident response activities, ensuring timely and effective resolution. Develop and maintain incident response playbooks and procedures. Perform threat hunting using SIEM, EDR, and threat intelligence. Conduct digital forensics and malware analysis to determine the scope and impact of incidents. Collaborate with IT, legal, and business teams to contain and remediate threats. Stay current with emerging threats, vulnerabilities, and security trends. Mentor and guide junior SOC analysts. Required Qualifications: Experience:6-8 years in cybersecurity, with a focus on SOC operations and incident response. Environment:Experience in a 24x7 operational environment, preferably across multiple geographies. Technical Skills: Good understanding of networking protocols, operating systems (Windows/Linux), and security technologies. Exposure to malware analysis and digital forensics. Familiarity with cybersecurity frameworks (e.g., NIST, MITRE ATT&CK, ISO 27001). Hands-on experience with tools such as: SIEM:Splunk, CrowdStrike, QRadar EDR:CrowdStrike, Carbon Black, SentinelOne SOAR:Palo Alto XSOAR, Splunk SOAR Forensics:FTK Imager, Autopsy, Wireshark, Procmon Preferred Certifications: GIAC Certified Incident Handler (GCIH) GIAC Certified Forensic Analyst (GCFA) Certified Ethical Hacker (CEH) Soft Skills & Attributes: Strong analytical and problem-solving mindset. Excellent communication and collaboration skills. Ability to work under pressure and manage multiple priorities. High integrity and a proactive, team-oriented attitude. Strategic and tactical thinking with attention to detail. Work Shift Timings - 6:00 AM 3:00 PM 2:00 PM - 11:00 PM IST

Essential Services : Role & Location fungibility At ICICI Bank, we believe in serving our customers beyond our role definition, product boundaries, and domain limitations through our philosophy of customer 360-degree. In essence, this captures our belief in serving the entire banking needs of our customers as One Bank, One Team . To achieve this, employees at ICICI Bank are expected to be role and location-fungible with the understanding that Banking is an essential service . The role descriptions give you an overview of the responsibilities, it is only directional and guiding in nature. About the role: As a SOC Analyst - Detection Engineering in the banks security operations center (SOC), the individual will be responsible to strengthen the creation and optimization of Analytical rules and alerts configured in the banks SIEM platform. Key Responsibilities: Business Understanding: Accountable to ensure all security anomalous activities are detected by the banks SIEM platform and false positives are kept to a minimum. You will be responsible to build analytical correlational rules in the banks SIEM platform covering network, systems and endpoints, cloud (SAAS, IAAS and PAAS) and applications (both COTS and internally developed). Collaborate: Verify the ingested logs and ensure log parsing to normalize the events. Implement a testing methodology to test the alerts configured and obtain sign off before releasing into production. Provide expert guidance and support to the security operations team in the use of for threat hunting and incident investigation. Analyzing the detected Incidents to identify lessons learned to improve response processes and make recommendations for enhancing security posture. Reporting: Develop and maintain documentation for Analytical rules processes and procedures. Stay Up to date with the latest trends and developments in cybersecurity and SIEM technologies and recommend improvements to the organization security posture. Qualifications & Skills Educational Qualification: Engineering Graduate in CS, IT, EC or InfoSec, CyberSec or MCA equivalent with experience in cloud security with any of the following - Microsoft Azure, Google cloud, Ability to develop and implement security policies, procedures and best practices. Experience: At least 5 years of experience working as a SOC analysts responsible to create SIEM rules/alerts. Hands-on experience in creation of security alerts in any of the commonly used SIEM solutions is a must. Certifications: SIEM Certification from any of the leading SIEM OEMs Splunk, Palo Alto, Securonix, LogRhythm, etc,. CEH or CISSP CCNA Security and/or any of the Cloud security certifications (AWS, GCP, Azure, OCI). Compliance: Knowledge of Networking components, Servers (RHEL, Windows, etc.) and Endpoints, cloud infrastructure along with Machine learning models used for detection of security alerts. Knowledge of various log types, event parsing and ingestion mechanisms across Systems, networks, cloud and commonly used applications in banks. Communication Skills: Excellent communication and interpersonal skills. Synergize with the Team: Working with the designated bank personnel to ensure alignment with RBI guidelines on detection of security alerts applicable to banks. Should have strong understanding of cybersecurity principles, threat detection and incident response. About the Business Group ICICI Bank’s Information Security Group believes in providing services to its customers in the safest and secured manner, keeping in mind that data protection for its customers is as important as providing quality banking services across the spectrum. The CIA triad of Confidentiality, Integrity, and Availability is built on the vision of creating a comprehensive information security framework. The Bank also lays emphasis on customer elements like protection from phishing, adaptive authentication, awareness initiatives, and provide easy to use protection and risk configuration ability in the hands of customers. With this core responsibly, ICICI administer and promotes on going campaigns to create awareness among customers on security aspects while banking through digital channels.

Job Description: About Us At Bank of America, we are guided by a common purpose to help make financial lives better through the power of every connection. Responsible Growth is how we run our company and how we deliver for our clients, teammates, communities, and shareholders every day. One of the keys to driving Responsible Growth is being a great place to work for our teammates around the world. We’re devoted to being a diverse and inclusive workplace for everyone. We hire individuals with a broad range of backgrounds and experiences and invest heavily in our teammates and their families by offering competitive benefits to support their physical, emotional, and financial well-being. Bank of America believes both in the importance of working together and offering flexibility to our employees. We use a multi-faceted approach for flexibility, depending on the various roles in our organization. Working at Bank of America will give you a great career with opportunities to learn, grow and make an impact, along with the power to make a difference. Join us! Global Business Services Global Business Services delivers Technology and Operations capabilities to Lines of Business and Staff Support Functions of Bank of America through a centrally managed, globally integrated delivery model and globally resilient operations. Global Business Services is recognized for flawless execution, sound risk management, operational resiliency, operational excellence, and innovation. In India, we are present in five locations and operate as BA Continuum India Private Limited (BACI), a non-banking subsidiary of Bank of America Corporation and the operating company for India operations of Global Business Services Process Overview* Network Security Assurance (NSA) – Cyber Security Assurance (CSA) team’s primary function is the preservation of the BAC Network segmentation strategy through enforcement of GIS Policy and Industry best practices at network segmentation points (e.g. firewalls). NSAs BAU programs and processes revolve around the assessment of proposed engineering change requests and existing network connectivity entitlements. Job Description* The Network Security Initiative Life Cycle Manager role will lead strategic initiatives within our Network Security Assurance team. This hybrid role blends agile facilitation with traditional project management to drive the successful delivery of security assurance programs, ensuring compliance, risk mitigation and secure infrastructure across Bank of America Enterprise. Will work closely with Network SME’s, IT Operations, and leadership to co-ordinate cross functional deliverables, manage timelines and promote Agile best practices with in high-stakes, regulated environment. Responsibilities* Facilitate Scrum Events (Daily Stand-ups, Sprint Planning, Sprint reviews and Retrospectives) Bridging Communications between Agile teams and business stakeholders Balance team capacity with business priorities, ensuring both productivity and quality. Remove impediments to the team’s progress, escalating issues where necessary. Foster collaborative environment focused on continuous environment. Collaborating with peers and business units in a team-focused environment Communicate effectively with Stakeholders, business teams and cross functional teams. Identify, track, and mitigate Project Risks Escalate Major issues and manage resolution plans. Produce Regular Project status reports (Progress, Roadblocks and Achievements) for Leadership Translate Agile outputs into executive level reports and stakeholder updates. Ensuring compliance with Project governance, change management and documentation standards. Requirements* Education* - Bachelor’s degree in IT Discipline Certifications If Any* - Any security certifications, Certified Scrum Master (CSM), PMI-ACP, PMP or equivalent would be a plus. Experience Range* - 6-8 Years Foundational skills* Experience in Project Management Proficient in Project tracking Tools (e.g., Jira, Confluence, ServiceNow) Scrum master Experience in Stakeholder management Experience in Front end development Familiarity with Network Security & Cloud concepts Familiarity with DevOps or CI/CD environments A broad knowledge of Information security principles Deep understanding of Agile/Scrum frameworks and SDLC Concepts Understanding of Risk management, Governance and Compliance Methodologies Understanding of IT Infrastructure and Security implications Strong skills in Stakeholder management, change management support and Reporting. Familiarity with Network Security / Cloud Network Security concepts Strong Analytical and Problem-Solving Skills Strong Leadership, facilitation, and conflict resolution skills Excellent verbal and written communications skills. Good presentation and documentation skills. Desired skills* Basic knowledge in scripting and System Integration Concepts Basic Splunk knowledge (SIEM Tools) Project Governance knowledge Familiarity with Front-End development and business analysis concepts is a plus. Risk and Stakeholder Management Expertise Excellent interpersonal and stakeholder management abilities Familiarity with and basic understanding of basic network fundamentals, like OSI model, TCP/IP model NAC concepts etc. Work Timings* - 12:30 PM to 09:30 PM Job Location* - HYD, CHE