365 Snyk Jobs

Summary Position Summary Senior Analyst – DevOps - Deloitte Support Services India Private Limited Join our innovative, creative, and inclusive T&L DevOps team - a world-class operation with extensive knowledge and experience. You will interface with business and technical teams to bring about change and influence across the entire world of Deloitte. Apply your skills to make things happen and be a part of a great team that is passionate about serving a great purpose. Work you’ll do We are seeking an enthusiastic, passionate professional with experience in Azure cloud services and DevOps practices to lead and help us mature our DevOps practice across disciplines. You will have broad skills in implementing cloud solutions for various application architectures, scripting, databases and other data services ensuring the optimal level of documentation. This role will implement and support cloud solutions on MS Azure and processes leveraged by large number of applications hosted in our environment. You will work with development teams to help increase automation and streamline build & deployment processes, apply best practices & principles. This role will engage with wider Deloitte Cloud and Security teams to ensure compliance and alignment with firm policy and assess impact of future strategies. You will design and support the growing demand for cloud technologies, including Kubernetes, Open AI, and implementations on Azure, creating & maintaining technical documentation for the Architects. We are looking for individuals who are passionate about development, innovative and seek to continuously improve. We also expect you to comfortably transition between varying projects and priorities. Responsibilities Strategic Monitors the T&L department’s tools and procedures and promotes their evolution alongside the business’s systems. He/She plays an active role in building and improving the platform services inclusive of websites, software, and applications while hosting and managing databases. Design, deploy, and manage Azure resources such as virtual machines, storage, networking, databases, Azure Kubernetes Service (AKS), App Service, Azure Container Apps, Open AI Search etc. Experience on basic concepts of integrating OpenAI or Azure OpenAI Service into enterprise applications. Regularly checks and monitors alarms, diagnoses symptoms, analyzes root causes, and employs preventative measures to avoid reoccurrence of similar issues. Taking ownership and accountability of the performance and reliability of the T&L solutions. Troubleshooting complex issues as quickly and effectively as possible. Understands websites and software capacity planning requirements and works to ensure that sites/software are deployed in a scalable architecture. Designing and developing T&L DAF infrastructure architecture as well as developing automated scripts meant for building development and production environments. Implement and maintain Infrastructure as Code (IaC) using ARM templates, Terraform, or Bicep. Designs, tests, and supports automated risk-management techniques and enables the support of continuous and consistent integration techniques for the development teams. In this position, the DevOps Engineer will also design, setup, and maintain core infrastructures that run the business’s online practices. Design and build automation frameworks for the deployment, management, and monitoring of web-based business services and platforms. Maintain the business’s configuration and deployment tools such as Azure DevOps, transforming them into a robust system in order to auto-scale the business’s platform. Keeping up to date with industry best practices, trends, and standards and identifies automation opportunities, designs, and develops automation solutions that improve DevOps operations and efficiency. Troubleshooting of Networking issues with respect to Firewall, NSGs etc. using various available tools. Completes assigned dev-ops tickets in a timely matter taking into account agreed SLA’s. Operational Result-oriented and passionate in the improvement of user experience Highly organized while having the ability to multi-task and meet challenging deadlines Ability to promote knowledge sharing and DevOps culture across development teams Work comfortably in constantly evolving environment Demonstrate calmness and composure in times of uncertainty and stress Ability to work in an international environment Able to make meaningful and long-lasting connections with others Approachable for others and inspiring trust and confidence 3-5 years relevant experience as dev-ops engineer Strong knowledge in Azure cloud Up-to-date with latest technologies and developments Azure DevOps knowledge is mandatory Ability to think out of the box Team player The team At Deloitte, we’re all about collaboration. And nowhere is this more apparent than among our 2,000-strong internal services team. With our combined specialist skills, we provide all the essential support and advice our client-facing colleagues need, right across the firm. This enables them to focus all of their efforts on delivering the best service possible to their clients. Covering seven distinct areas; Human Resources, Clients & Industries, Finance & Legal, Practice Support Services, Quality & Risk Services, IT Services, and Workplace Services & Real Estate, together we live, breathe and deliver the Deloitte experience . Location : Hyderabad Work shift Timings : 11 AM to 8 PM Qualifications Bachelor of Engineering/ Bachelor of Technology 3 to 5 years’ experience in a similar role and Enterprise organisation. Technical Skills Deep knowledge of configuring and troubleshooting IIS. Hands on experience in latest technologies like Azure OpenAI, Azure AI Search service, Document Intelligence etc., Real-time experience to onboard and setup applications using Open AI, Databricks, Azure CosmosDB, Kubernetes services, Redis Cache, Azure SignalR, Azure SQL Database, Container Registry etc., Good knowledge in troubleshooting issues related to AI services and contributing to architecture of the project. Strong knowledge of CI/CD setup and monitoring (Azure Cloud, Azure DevOps). Experience in working with Version Control Systems/Source Code Management Repository tools like GIT, TFVC and Azure Repos. Strong knowledge on Microsoft Azure Platform as a Service product such as Azure SQL, VM’s, WebApps, AppServices, Azure App Service Fabric, App Service Environment & Azure Kubernetes Service (AKS) Good understanding of monitoring tools including Application insights, Solarwinds, Azure Monitor, Prometheous & Grafana. Exposure to code scanning tools like SonarQube, Snyk, Fortify. Code deployments and product release management. Incident management and troubleshooting Configuration management Monitoring and automation Set-up and maintain of new/existing environments Continuous integration and testing methods Strong knowledge in PowerShell, Azure CLI scripting Experience with SQL, SQL server is a plus Experience with virtualization is a plus Good to have Obtained an industry certification e.g. Azure certification (AZ-900, AZ-104, AZ-400). Knowledge on .NET applications. Good knowledge on MS SQL Database. Our purpose Deloitte’s purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities. Our people and culture Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our clients' most complex challenges. This makes Deloitte one of the most rewarding places to work. Professional development At Deloitte, professionals have the opportunity to work with some of the best and discover what works best for them. Here, we prioritize professional growth, offering diverse learning and networking opportunities to help accelerate careers and enhance leadership skills. Our state-of-the-art DU: The Leadership Center in India, located in Hyderabad, represents a tangible symbol of our commitment to the holistic growth and development of our people. Explore DU: The Leadership Center in India . Benefits To Help You Thrive At Deloitte, we know that great people make a great organization. Our comprehensive rewards program helps us deliver a distinctly Deloitte experience that helps that empowers our professionals to thrive mentally, physically, and financially—and live their purpose. To support our professionals and their loved ones, we offer a broad range of benefits. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you. Recruiting tips From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters. Requisition code: 312106

Senior Analyst – DevOps - Deloitte Support Services India Private Limited Join our innovative, creative, and inclusive T&L DevOps team - a world-class operation with extensive knowledge and experience. You will interface with business and technical teams to bring about change and influence across the entire world of Deloitte. Apply your skills to make things happen and be a part of a great team that is passionate about serving a great purpose. Work you’ll do We are seeking an enthusiastic, passionate professional with experience in Azure cloud services and DevOps practices to lead and help us mature our DevOps practice across disciplines. You will have broad skills in implementing cloud solutions for various application architectures, scripting, databases and other data services ensuring the optimal level of documentation. This role will implement and support cloud solutions on MS Azure and processes leveraged by large number of applications hosted in our environment. You will work with development teams to help increase automation and streamline build & deployment processes, apply best practices & principles. This role will engage with wider Deloitte Cloud and Security teams to ensure compliance and alignment with firm policy and assess impact of future strategies. You will design and support the growing demand for cloud technologies, including Kubernetes, Open AI, and implementations on Azure, creating & maintaining technical documentation for the Architects. We are looking for individuals who are passionate about development, innovative and seek to continuously improve. We also expect you to comfortably transition between varying projects and priorities. Responsibilities Strategic Monitors the T&L department’s tools and procedures and promotes their evolution alongside the business’s systems. He/She plays an active role in building and improving the platform services inclusive of websites, software, and applications while hosting and managing databases. Design, deploy, and manage Azure resources such as virtual machines, storage, networking, databases, Azure Kubernetes Service (AKS), App Service, Azure Container Apps, Open AI Search etc. Experience on basic concepts of integrating OpenAI or Azure OpenAI Service into enterprise applications. Regularly checks and monitors alarms, diagnoses symptoms, analyzes root causes, and employs preventative measures to avoid reoccurrence of similar issues. Taking ownership and accountability of the performance and reliability of the T&L solutions. Troubleshooting complex issues as quickly and effectively as possible. Understands websites and software capacity planning requirements and works to ensure that sites/software are deployed in a scalable architecture. Designing and developing T&L DAF infrastructure architecture as well as developing automated scripts meant for building development and production environments. Implement and maintain Infrastructure as Code (IaC) using ARM templates, Terraform, or Bicep. Designs, tests, and supports automated risk-management techniques and enables the support of continuous and consistent integration techniques for the development teams. In this position, the DevOps Engineer will also design, setup, and maintain core infrastructures that run the business’s online practices. Design and build automation frameworks for the deployment, management, and monitoring of web-based business services and platforms. Maintain the business’s configuration and deployment tools such as Azure DevOps, transforming them into a robust system in order to auto-scale the business’s platform. Keeping up to date with industry best practices, trends, and standards and identifies automation opportunities, designs, and develops automation solutions that improve DevOps operations and efficiency. Troubleshooting of Networking issues with respect to Firewall, NSGs etc. using various available tools. Completes assigned dev-ops tickets in a timely matter taking into account agreed SLA’s. Operational Result-oriented and passionate in the improvement of user experience Highly organized while having the ability to multi-task and meet challenging deadlines Ability to promote knowledge sharing and DevOps culture across development teams Work comfortably in constantly evolving environment Demonstrate calmness and composure in times of uncertainty and stress Ability to work in an international environment Able to make meaningful and long-lasting connections with others Approachable for others and inspiring trust and confidence 3-5 years relevant experience as dev-ops engineer Strong knowledge in Azure cloud Up-to-date with latest technologies and developments Azure DevOps knowledge is mandatory Ability to think out of the box Team player The team At Deloitte, we’re all about collaboration. And nowhere is this more apparent than among our 2,000-strong internal services team. With our combined specialist skills, we provide all the essential support and advice our client-facing colleagues need, right across the firm. This enables them to focus all of their efforts on delivering the best service possible to their clients. Covering seven distinct areas; Human Resources, Clients & Industries, Finance & Legal, Practice Support Services, Quality & Risk Services, IT Services, and Workplace Services & Real Estate, together we live, breathe and deliver the Deloitte experience. Location : Hyderabad Work shift Timings : 11 AM to 8 PM Qualifications Bachelor of Engineering/ Bachelor of Technology 3 to 5 years’ experience in a similar role and Enterprise organisation. Technical Skills Deep knowledge of configuring and troubleshooting IIS. Hands on experience in latest technologies like Azure OpenAI, Azure AI Search service, Document Intelligence etc., Real-time experience to onboard and setup applications using Open AI, Databricks, Azure CosmosDB, Kubernetes services, Redis Cache, Azure SignalR, Azure SQL Database, Container Registry etc., Good knowledge in troubleshooting issues related to AI services and contributing to architecture of the project. Strong knowledge of CI/CD setup and monitoring (Azure Cloud, Azure DevOps). Experience in working with Version Control Systems/Source Code Management Repository tools like GIT, TFVC and Azure Repos. Strong knowledge on Microsoft Azure Platform as a Service product such as Azure SQL, VM’s, WebApps, AppServices, Azure App Service Fabric, App Service Environment & Azure Kubernetes Service (AKS) Good understanding of monitoring tools including Application insights, Solarwinds, Azure Monitor, Prometheous & Grafana. Exposure to code scanning tools like SonarQube, Snyk, Fortify. Code deployments and product release management. Incident management and troubleshooting Configuration management Monitoring and automation Set-up and maintain of new/existing environments Continuous integration and testing methods Strong knowledge in PowerShell, Azure CLI scripting Experience with SQL, SQL server is a plus Experience with virtualization is a plus Good to have Obtained an industry certification e.g. Azure certification (AZ-900, AZ-104, AZ-400). Knowledge on .NET applications. Good knowledge on MS SQL Database. Our purpose Deloitte’s purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities. Our people and culture Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our clients' most complex challenges. This makes Deloitte one of the most rewarding places to work. Professional development At Deloitte, professionals have the opportunity to work with some of the best and discover what works best for them. Here, we prioritize professional growth, offering diverse learning and networking opportunities to help accelerate careers and enhance leadership skills. Our state-of-the-art DU: The Leadership Center in India, located in Hyderabad, represents a tangible symbol of our commitment to the holistic growth and development of our people. Explore DU: The Leadership Center in India. Benefits to help you thrive At Deloitte, we know that great people make a great organization. Our comprehensive rewards program helps us deliver a distinctly Deloitte experience that helps that empowers our professionals to thrive mentally, physically, and financially—and live their purpose. To support our professionals and their loved ones, we offer a broad range of benefits. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you. Recruiting tips From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters. Requisition code: 312106

Rapid7 is a publicly traded Cybersecurity company headquartered in Boston, MA with 17 offices around the world. We are excited to be expanding our Global footprint into India and as we build out our Product & Engineering teams, we are looking for Software Engineers. As a Senior Software Engineer, you will own a full life cycle of development and be a senior contributor on a team responsible for the end-to-end delivery of increasingly complex features that are correctly implemented and high quality. You will take initiative to identify and own solutions to problems, and you will partner with cross-functional teams owning requirements that take into account all parties needs. You will act as a resource by advising and mentoring junior engineers to continue to build the technical capabilities of our teams. This is an exciting opportunity to be one of the first hires for Rapid7 in India supporting our growth strategy in a culture that supports trying new approaches and continuous learning. About The Team Our Product and Engineering team works with our award-winning products to help us create a single experience to help customers assess risk, detect threats and automate their security programs at over 10,000 organizations. These teams use best-in-class technology, leading-edge research, and broad, strategic expertise to develop new products and features, and enhance existing features, in order to create value for customers across the world. The stakes for creating a safer digital world are greater than ever. At Rapid7 we believe its our responsibility to show up every day and give our best for our customers and the entire security community. Our global engineering teams are at the centre of this mission and are dedicated to building a complete suite of industry-leading products which provide a cohesive platform for our customers. Our range of solutions spans vulnerability management, detection, automation, cloud security, and penetration testing; in order to build these products our teams work with an array of technologies including Java, Python, AWS and Go, just to name a few. Join our engineering team to help us build and innovate great products on our Insight platform using the latest technologies to make the world a safer digital space. About The Role The Senior Software Engineer is a part of our Product and Engineering team who are at the forefront of keeping our customers safe from attacks and breaches. In this role you will be focussed on helping our customers seamlessly manage their security solutions as effectively and efficiently as possible, and ensuring our products are delivering a secure experience. You will have the opportunity to further broaden your skills surrounded by a team of incredibly smart and experienced Engineers, whilst getting the opportunity to mentor others. In This Role, You Will Build, maintain, and release our well architected services by writing correct and clean code consistently and following best practices and conventions. You will understand and make well-reasoned design decisions and tradeoffs in your areas of expertise Take an active role in the design and planning of upcoming features, our engineers are first class stakeholders in all parts of the development process When required, partner with internal teams such as UX and Product Management who work deeply with our product to ensure we are understanding our customers needs Continue to develop a deep understanding of our products in order to support our customers Work with Practice specific technologies The Skills Youll Bring Include 5+ years experience in software development using Java. Experience using any of the following: Java Spring Boot Dependency Management Tools such as Maven Security Vulnerability Scanning such as Snyk or Trivy Testing frameworks such as JUnit Github Actions or Jenkins Cloud Infrastructure such as AWS Excited by technology, curious and eager to learn, with the ability to mentor more junior members of the team The attitude and ability to thrive in a high-growth, evolving environment Collaborative team player who has the ability to partner with others and drive toward solutions Strong creative problem solving skills Solid communicator with excellent written and verbal communications skills both within the team and cross functionally Passionate about delighting customers, puts the customer needs at the forefront of all decision making Excellent attention to detail Demonstrable experience of delivering complex solutions to customers We know that the best ideas and solutions come from multi-dimensional teams. Thats because these teams reflect a variety of backgrounds and professional experiences. If you are excited about this role and feel your experience can make an impact, please dont be shy - apply today. About Rapid7 At Rapid7, we are on a mission to create a secure digital world for our customers, our industry, and our communities. We do this by embracing tenacity, passion, and collaboration to challenge whats possible and drive extraordinary impact. Here, were building a dynamic workplace where everyone can have the career experience of a lifetime. We challenge ourselves to grow to our full potential. We learn from our missteps and celebrate our victories. We come to work every day to push boundaries in cybersecurity and keep our 10,000 global customers ahead of whatevers next. Join us and bring your unique experiences and perspectives to tackle some of the worlds biggest security challenges. Show more Show less

Tech Stack : AngularJS, Node.js, MongoDB, PostgreSQL Infra : Orthanc ( Dicom Server ), Cloud services Platform : medDream, Dicom 110 hours. 5hours a day for 1 month. work from office/ remote About Launch VenturesLaunch Ventures is a niche, award-winning technology company that co-creates products with industry partners who bring valuable expertise in the domain for which the product is intended. We are working with a range of startups to Fortune 500 companies. Some of our early products have achieved global scale and attracted investments from the likes of Google. We work in web, mobile, IoT, Blockchain, Cloud and AI / ML based applications, and have worked across multiple industry domains (financial services, media, e-commerce and more). We care deeply about the products we build and the software craftsmanship that goes into making them. This has been our mission and passion, to take software products from concept to scale, maturely and responsibly. We don't just write code, we Launch Ventures. Company Info Address: Launch Ventures, 6th Floor, 91 Springboard, LVS Arcade, 71, Hitech, Madhapur Road, Jubilee Enclave, HITEC City, Hyderabad, Telangana 500081 Position: Full-stack Developer You’ll be a part of a cross-functional team that’s responsible for the full software development life cycle, from inception, to deployment to production. For this position you need to have deep experience with, at least, one programming language, and, preferably, experience with a few more. You also need to have full-stack development experience—front-end (and, preferably, mobile), backend, databases, etc.—and experience in designing and configuring CI/CD pipelines. You should be eager to mentor junior developers. Setup infrastructure services as needed for the project. Responsibilities Design resilient system to integrate with third party APIs. Provide technical guidance to teammates through coaching and mentorship. Maintain high standards of software quality within the team by following good practices and habits. Hands-on coding and collaborate with other software developers, business analysts, team leads and software architects to plan, design, develop, test, and maintain the software system being developed. Assist in the collection and documentation of user's requirements, development of user stories, estimates and work plans. Design, develop, and unit test applications in accordance with established standards independently. Participate in peer-reviews of solution designs and related code. Package and support deployment of releases. Setup and manage infrastructure (AWS, GCP, Azure, etc.) required for the project deployment and scaling via automated tools like Terraform, etc. Run effective client interactions for scrum events, requirements gathering, reporting to stakeholders. Minimum qualifications Proven hands-on 3+ years of experience in developing full stack software projects from scratch till the delivery and support. Full-stack development experience, including front-end (web, or mobile, or both), and backend. Strong oral and written communication skills. Proven experience to communicate with stakeholders 1:1 at all levels. Lead the day-to-day meetings and agile processes. Deep experience with, JavaScript programming language and its main frameworks and libraries like React.js Proven hands-on experience in frontend development - React.js, Proven hands-on experience in Backend development - Node.js, Express.js Proven hands-on experience in database technologies (relational databases), I/O and networking. PostgreSQL, etc. Experience with Test Driven Development (TDD), unit testing, and automated testing in general. Jest, Chai, Mocha, React testing library, Cypress, Playwright, etc. Proven hands-on experience in Typescript. Experience with ORM like Prisma. Experience in setting up CI/CD pipelines. (GitHub Actions, Pipelines, etc.) Hands-on experience in working with any Git based code repository. Experience in configuring cloud Infrastructure. AWS / GCP / Azure - manually or with Terraform scripts is a plus Experience in estimating features, modules and projects with in-depth understanding. Experience in quickly bootstrapping projects for development or proof of concepts. Good understanding of data structures and algorithms. Committed to continuous learning and improvement. Experience with Agile software development. Experience with clean code, design patterns and principles. ESLint, SonarQube, Snyk, etc. SOLID principles, clean code, Code smells, etc. You should certainly apply if You enjoy crafting elegant, well-tested solutions, not just delivering working code. The acronyms FP, OO, SOLID, TDD, BDD, XP mean something to you. You have logical and well-researched opinions on existing and new technologies, and relish the learnings and challenges of working on different platforms and products. You have experience with or interest in user-centered interaction design. You have an entrepreneurial mindset. You strive for yourself, your team and your organization to continuously learn and improve.

About Tide At Tide, we are building a business management platform designed to save small businesses time and money. We provide our members with business accounts and related banking services, but also a comprehensive set of connected administrative solutions from invoicing to accounting. Launched in 2017, Tide is now used by over 1 million small businesses across the world and is available to UK, Indian and German SMEs. Headquartered in central London, with offices in Sofia, Hyderabad, Delhi, Berlin and Belgrade, Tide employs over 2,000 employees. Tide is rapidly growing, expanding into new products and markets and always looking for passionate and driven people. Join us in our mission to empower small businesses and help them save time and money. About The Team Our 40+ engineering teams are working on designing, creating and running the rich product catalogue across our business areas (e.g. Payments Services, Business Services). We have a long roadmap ahead of us and always have interesting problems to tackle. We trust and empower our engineers to make real technical decisions that affect multiple teams and shape the future of Tide’s Global One Platform. It’s an exceptional opportunity to make a real difference by taking ownership of engineering practices in a rapidly expanding company! We work in small autonomous teams, grouped under common domains owning the full lifecycle of some microservices in Tide’s service catalogue. Our engineers self-organize, gather together to discuss technical challenges, and set their own guidelines in the different Communities of Practice regardless of where they currently stand in our Growth Framework. About The Role Contribute to our event-driven Microservice Architecture (currently 200+ services owned by 40+ teams). You will define and maintain the services your team owns (you design it, you build it, you run it, you scale it globally) Use Java 17, Spring Boot and JOOQ to build your services. Expose and consume RESTful APIs. We value good API design and we treat our APIs as Products (in the world of Open Banking often times they are gonna be public!) Use SNS+SQS and Kafka to send events Utilise PostgreSQL via Aurora as your primary datastore (we are heavy AWS users) Deploy your services to Production as often as you need to (this usually means multiple times per day!). This is enabled by our CI/CD pipelines powered by GitHub with GitHub actions, and solid JUnit/Pact testing (new joiners are encouraged to have something deployed to production in their first 2 weeks) Experience modern GitOps using ArgoCD. Our Cloud team uses Docker, Terraform, EKS/Kubernetes to run the platform. Have DataDog as your best friend to monitor your services and investigate issues Collaborate closely with Product Owners to understand our Users’ needs, Business opportunities and Regulatory requirements and translate them into well-engineered solutions What We Are Looking For Have some experience building server-side applications and detailed knowledge of the relevant programming languages for your stack. You don’t need to know Java, but bear in mind that most of our services are written in Java, so you need to be willing to learn it when you have to change something there! Have a sound knowledge of a backend framework (e.g. Spring/Spring Boot) that you’ve used to write microservices that expose and consume RESTful APIs Have experience engineering scalable and reliable solutions in a cloud-native environment (the most important thing for us is understanding the fundamentals of CI/CD, practical Agile so to speak) Demonstrate a mindset of delivering secure, well-tested and well-documented software that integrates with various third party providers and partners (we do that a lot in the fintech industry) Our Tech Stack Java 17, Spring Boot and JOOQ to build the RESTful APIs of our microservices Event-driven architecture with messages over SNS+SQS and Kafka to make them reliable Primary datastores are MySQL and PostgreSQL via RDS or Aurora (we are heavy AWS users) Docker, Terraform, EKS/Kubernetes used by the Cloud team to run the platform DataDog, ElasticSearch/Fluentd/Kibana and Rollbar to keep it running GitHub with GitHub actions for Sonarcloud, Snyk and solid JUnit/Pact testing to power the CI/CD pipelines What You Will Get In Return Competitive salary Self & Family Health Insurance Term & Life Insurance OPD Benefits Mental wellbeing through Plumm Learning & Development Budget WFH Setup allowance 25 Annual leaves Family & Friendly Leaves Tidean Ways Of Working At Tide, we champion a flexible workplace model that supports both in-person and remote work to cater to the specific needs of our different teams. While remote work is supported, we believe in the power of face-to-face interactions to foster team spirit and collaboration. Our offices are designed as hubs for innovation and team-building, where we encourage regular in-person gatherings to foster a strong sense of community. TIDE IS A PLACE FOR EVERYONE At Tide, we believe that we can only succeed if we let our differences enrich our culture. Our Tideans come from a variety of backgrounds and experience levels. We consider everyone irrespective of their ethnicity, religion, sexual orientation, gender identity, family or parental status, national origin, veteran, neurodiversity or differently-abled status. We celebrate diversity in our workforce as a cornerstone of our success. Our commitment to a broad spectrum of ideas and backgrounds is what enables us to build products that resonate with our members’ diverse needs and lives. We are One Team and foster a transparent and inclusive environment, where everyone’s voice is heard. At Tide, we thrive on diversity, embracing various backgrounds and experiences. We welcome all individuals regardless of ethnicity, religion, sexual orientation, gender identity, or disability. Our inclusive culture is key to our success, helping us build products that meet our members' diverse needs. We are One Team, committed to transparency and ensuring everyone’s voice is heard. Disclaimer It Has Come To Our Attention That Individuals Or Agencies Are Falsely Claiming To Represent Tide And Are Reaching Out To Candidates Regarding Job Opportunities. Please Be Aware That Tide does not charge any fees at any stage of the recruitment process. All official Tide job opportunities are listed exclusively on our Careers Page and applications should be submitted through this channel. Communication from Tide will only come from an official @tide.co email address. Tide does not work with agencies or recruiters without prior formal engagement, and we do not authorize third parties to make job offers on our behalf. If you are contacted by anyone misrepresenting Tide or requesting payment, please treat it as fraudulent and report it to us immediately at talent@tide.co Your safety and trust are important to us, and we are committed to ensuring a fair and transparent recruitment process. You personal data will be processed by Tide for recruitment purposes and in accordance with Tide's Recruitment Privacy Notice .

Experience: 5+ years Qualification: MCA/ BE/ BTech / ME/MTech (Preferably in Comp Sc/IT/ Cybersecurity) Technical Skills Required Mandatory: Expertise in web, mobile, and API security with a strong understanding of security-by-design principles. Proficiency in Python, Ruby, PowerShell, Bash, and Perl for security scripting. Solid foundation in network security and secure coding practices. 3+ years of experience in source code review and using static & dynamic analysis tools. Hands-on experience with security tools like Burp Suite, OWASP ZAP, SonarQube, Snyk, Checkmarx, and vulnerability scanners like Nessus, OpenVAS. Familiarity with Metasploit for penetration testing. Experience in security architecture reviews and enforcing secure coding guidelines. Skilled in incident analysis, root cause analysis, and risk assessment. Working knowledge of the STRIDE model and MITRE ATT&CK framework. Good to have: Experience in secure software development in .Net, Node.js, C, C++, and JavaScript. Knowledge of mobile security testing (MobSF) and cloud security. Familiarity with ISO 27001, industry standards, and product security certifications. Experience with threat modeling for VPN, VDI, MFA, and SSO products. Desirable Certifications: Certified Ethical Hacker (CEH) Offensive Security Certified Professional (OSCP) Certified information systems security professional (CISSP) GIAC/GWAPT/GWEB Soft Skills Required Analytical thinking Problem solving Strong communication skills (written and verbal) Attention to detail Proactive, self-motivated Flexible/adaptable Role and Responsibilities: Lead and manage the application security program, including tools, assessments, and issue resolution. Integrate security into CI/CD pipelines and collaborate with development teams. Provide security training for developers, project managers, and product managers. Work with cross-functional teams to assess and resolve security issues within release cycles. Support security certifications like ISO27001, SOC2, CC, FIPS for Accops products. Conduct risk assessments, vulnerability analysis, and threat modeling. Review application design and architecture for security and compliance. Founded in 2012, Accops is a leading provider of secure remote access and digital workspace solutions, enabling organizations to maintain control and governance while offering flexibility to work from any device. Accops offers a comprehensive Digital Workspace suite that includes Zero Trust-based Application Access Gateway, End-User Computing (EUC) Virtualization via VDI, robust Identity & Access Management (IAM) solutions such as Multi-Factor Authentication (MFA) and Single Sign-On (SSO), and thin client hardware and software solutions. Accops addresses modern remote work challenges by delivering secure, instant access to business applications. Its solutions protect against network threats and unauthorized access, critical in today’s work-from-anywhere environment. Unlike traditional, multi-product approaches, Accops' pre-integrated suite reduces complexity and deployment time, ensuring faster and more agile implementation. Headquartered in Pune, Accops has become a significant player in the End-User Computing (EUC) virtualization domain, offering a one-stop solution for organizations seeking to deploy secure remote work infrastructures. Its products, including the Nano OS for secure containerization on BYOD devices, and extensive MFA and SSO capabilities, ensure robust data protection and strong identity management. Part of Jio Platforms Ltd, Accops continues to innovate and enhance digital workspace solutions with a focus on security, user experience, and operational efficiency. 𝘈𝘤𝘤𝘰𝘱𝘴 𝘪𝘴 𝘢𝘯 𝘦𝘲𝘶𝘢𝘭 𝘰𝘱𝘱𝘰𝘳𝘵𝘶𝘯𝘪𝘵𝘺 𝘦𝘮𝘱𝘭𝘰𝘺𝘦𝘳 𝘤𝘰𝘮𝘮𝘪𝘵𝘵𝘦𝘥 𝘵𝘰 𝘣𝘶𝘪𝘭𝘥𝘪𝘯𝘨 𝘢 𝘤𝘶𝘭𝘵𝘶𝘳𝘦 𝘸𝘩𝘦𝘳𝘦 𝘢𝘭𝘭 𝘦𝘮𝘱𝘭𝘰𝘺𝘦𝘦𝘴 𝘢𝘳𝘦 𝘷𝘢𝘭𝘶𝘦𝘥, 𝘳𝘦𝘴𝘱𝘦𝘤𝘵𝘦𝘥 𝘢𝘯𝘥 𝘰𝘱𝘪𝘯𝘪𝘰𝘯𝘴 𝘤𝘰𝘶𝘯𝘵. 𝘞𝘦 𝘦𝘯𝘤𝘰𝘶𝘳𝘢𝘨𝘦 𝘢𝘱𝘱𝘭𝘪𝘤𝘢𝘵𝘪𝘰𝘯𝘴 𝘧𝘳𝘰𝘮 𝘢𝘭𝘭 𝘴𝘶𝘪𝘵𝘢𝘣𝘭𝘺 𝘲𝘶𝘢𝘭𝘪𝘧𝘪𝘦𝘥𝘱𝘦𝘳𝘴𝘰𝘯𝘴 𝘪𝘳𝘳𝘦𝘴𝘱𝘦𝘤𝘵𝘪𝘷𝘦 𝘰𝘧, 𝘣𝘶𝘵 𝘯𝘰𝘵 𝘭𝘪𝘮𝘪𝘵𝘦𝘥 𝘵𝘰, 𝘵𝘩𝘦𝘪𝘳 𝘨𝘦𝘯𝘥𝘦𝘳 𝘰𝘳 𝘨𝘦𝘯𝘦𝘵𝘪𝘤 𝘪𝘯𝘧𝘰𝘳𝘮𝘢𝘵𝘪𝘰𝘯, 𝘴𝘦𝘹𝘶𝘢𝘭 𝘰𝘳𝘪𝘦𝘯𝘵𝘢𝘵𝘪𝘰𝘯, 𝘦𝘵𝘩𝘯𝘪𝘤𝘪𝘵, 𝘳𝘦𝘭𝘪𝘨𝘪𝘰𝘯, 𝘴𝘰𝘤𝘪𝘢𝘭 𝘴𝘵𝘢𝘵𝘶𝘴, 𝘮𝘦𝘥𝘪𝘤𝘢𝘭 𝘤𝘢𝘳𝘦 𝘭𝘦𝘢𝘷𝘦 𝘳𝘦𝘲𝘶𝘪𝘳𝘦𝘮𝘦𝘯𝘵𝘴, 𝘱𝘰𝘭𝘪𝘵𝘪𝘤𝘢𝘭 𝘢𝘧𝘧𝘪𝘭𝘪𝘢𝘵𝘪𝘰𝘯, 𝘱𝘦𝘰𝘱𝘭𝘦 𝘸𝘪𝘵𝘩 𝘥𝘪𝘴𝘢𝘣𝘪𝘭𝘪𝘵𝘪𝘦𝘴, 𝘤𝘰𝘭𝘰𝘳, 𝘯𝘢𝘵𝘪𝘰𝘯𝘢𝘭 𝘰𝘳𝘪𝘨𝘪𝘯, 𝘷𝘦𝘵𝘦𝘳𝘢𝘯 𝘴𝘵𝘢𝘵𝘶𝘴, 𝘦𝘵𝘤. 𝘞𝘦 𝘤𝘰𝘯𝘴𝘪𝘥𝘦𝘳 𝘢𝘭𝘭 𝘢𝘱𝘱𝘭𝘪𝘤𝘢𝘵𝘪𝘰𝘯𝘴 𝘣𝘢𝘴𝘦𝘥 𝘰𝘯 𝘮𝘦𝘳𝘪𝘵 𝘢𝘯𝘥 𝘴𝘶𝘪𝘵𝘢𝘣𝘪𝘭𝘪𝘵𝘺 𝘵𝘰 𝘵𝘩𝘦 𝘳𝘰𝘭𝘦.

Bengaluru, Karnataka, India Department Engineering Job posted on Sep 12, 2025 Employee Type Full Time Experience range (Years) 5 years - 7 years About Us: MatchMove is a leading embedded finance platform that empowers businesses to embed financial services into their applications. We provide innovative solutions across payments, banking-as-a-service, and spend/send management, enabling our clients to drive growth and enhance customer experiences. Are You The One? As a Security Engineer , you will be the guardian and enabler of secure engineering practices across our entire technology footprint. You'll drive the "shift-left" security philosophy, embedding security early in the development lifecycle while ensuring our payment platform remains resilient against evolving threats. You'll work closely with our Go and PHP engineering teams to build security into our DNA, not bolt it on as an afterthought. You Will Contribute To Establishing and driving a comprehensive shift-left security charter across all engineering teams and cloud infrastructure Maintain , upgrade and enhance automated security testing pipelines that integrate seamlessly with our CI/CD workflows Conducting thorough network security assessments for our cloud-native payment infrastructure Shift left SAST (Static Application Security Testing) and DAST (Dynamic Application Security Testing) practices for our Go microservices and legacy PHP systems Creating security guardrails that empower developers to build secure-by-default services Protecting billions in financial flows through proactive threat modeling and security architecture reviews Enabling compliance with PCI-DSS, ISO 27001 , and regional financial regulations through security controls Responsibilities Network Security Testing & Assessment Conduct regular penetration testing and vulnerability assessments across our cloud infrastructure Perform network segmentation reviews and validate zero-trust architecture implementations Assess API gateway configurations, WAF rules, and DDoS protection mechanisms Validate mTLS implementations and certificate management across microservices Code Security & Review Practices Implement and maintain SAST tools integrated with our Go and PHP development pipelines Conduct dynamic security testing (DAST) on running services and APIs Perform manual security code reviews for critical payment processing components Develop custom security linters and static analysis rules specific to our tech stack Champion secure coding practices through documentation, training, and tooling Shift-Left Security Leadership Drive security requirements gathering during design phase of new features Implement security gates in CI/CD pipelines without impacting developer velocity Create developer-friendly security tools and libraries (e.g., encryption helpers, secure defaults) Build threat modeling into sprint planning and architecture reviews Establish security champions program across engineering teams Infrastructure & Cloud Security Secure our Kubernetes clusters, container registries, and service mesh configurations Implement cloud security posture management (CSPM) across AWS/GCP/Azure Design and validate secrets management, key rotation, and HSM integration Monitor and respond to security events through SIEM and automated alerting Compliance & Governance Ensure security controls meet PCI-DSS Level 1 requirements for payment processing Support security audits and certification processes Maintain security runbooks and incident response procedures Document security architecture decisions and risk assessments Requirements 5+ years of hands-on security engineering experience in production environments Deep expertise in application security testing (SAST, DAST, IAST) with tools like: SonarQube, Checkmarx, Veracode, or Semgrep for static analysis OWASP ZAP, Burp Suite, or similar for dynamic testing Go-specific tools like gosec, nancy, and staticcheck Proven experience in network security assessment including: Network penetration testing and vulnerability scanning TCP/IP, TLS/SSL, and cryptographic protocol analysis Cloud networking security (VPC, security groups, NACLs) Strong understanding of secure SDLC and DevSecOps practices Hands-on experience with container security (Docker, Kubernetes security policies, admission controllers) Proficiency in at least one programming language (Go, Python, or PHP preferred) Experience with cloud security in AWS, GCP, or Azure environments Knowledge of OWASP Top 10 , CWE, and secure coding standards Understanding of financial services security requirements and compliance frameworks Technical Skills Security Testing Tools : Burp Suite, OWASP ZAP, Metasploit, Nmap, Wireshark SAST/DAST Platforms : SonarQube, Checkmarx, Veracode, Snyk, GitLab Security Cloud Security : AWS Security Hub, GuardDuty, Cloud Trail, IAM, KMS Container Security : Falco, Twistlock, Aqua Security, OPA (Open Policy Agent) Scripting : Python, Go, Bash for security automation Monitoring : ELK Stack, New relic, Wazuh, Prometheus/Grafana for security metrics IaC Security : Terraform security scanning, CloudFormation validation Brownie Points Security certifications (OSCP, CISSP, CEH, AWS Security Specialty) Experience with payment card industry security and PCI-DSS implementation Contributions to security tools or vulnerability research Experience with Go security tooling and secure Go development practices Background in financial services or payment processing security Experience implementing zero-trust architectures Knowledge of GenAI security implications and LLM attack vectors Track record of building security culture in fast-moving engineering organizations MatchMove Culture: We cultivate a dynamic and innovative culture that fuels growth, creativity, and collaboration. Our fast-paced fintech environment thrives on adaptability, agility, and open communication. We focus on employee development, supporting continuous learning and growth through training programs, learning on the job and mentorship. We encourage speaking up, sharing ideas, and taking ownership. Embracing diversity, our team spans across Asia, fostering a rich exchange of perspectives and experiences. Personal Data Protection Act: By submitting your application for this job, you are authorizing MatchMove to: collect and use your personal data, and to disclose such data to any third party with whom MatchMove or any of its related corporation has service arrangements, in each case for all purposes in connection with your job application, and employment with MatchMove; and retain your personal data for one year for consideration of future job opportunities (where applicable).

As a Security Operations Engineer at Commvault, you will play a key role in driving innovation in application security by integrating automated testing tools into CI/CD workflows. Your focus will be on building scalable solutions, collaborating with cross-functional teams, and enhancing security processes to support the global security program. **Key Responsibilities:** - Design, build, implement, and maintain scalable automation tools and pipelines for application security, including static (SAST), dynamic (DAST), and software composition analysis (SCA) scanning. - Collaborate with developers, security engineers, and DevOps teams to seamlessly integrate security automation into CI/CD workflows. - Identify opportunities for improving security tool coverage, efficiency, and performance. - Develop custom scripts, plugins, or APIs to extend the capabilities of security testing and remediation automation. - Monitor and analyze security automation tool results, generate actionable insights, and support incident response and remediation efforts. - Stay updated on the latest security automation trends, technologies, and best practices, advocating for continuous improvement in tooling and processes. - Provide mentorship and guidance to other engineers on secure coding and secure development lifecycle practices. **Qualifications Required:** - 8+ years of software engineering experience with a focus on security automation or application security. - Proficiency in programming languages such as Python, Ruby, Go, Java, or similar. - Strong understanding of application security principles, vulnerabilities (e.g., OWASP Top Ten), and remediation techniques. - Hands-on experience with security scanning tools such as SAST, DAST, and SCA. - Familiarity with CI/CD pipelines and infrastructure as code tools is a plus. - Solid understanding of software development lifecycle processes and seamless integration of security automation. - Excellent problem-solving skills and ability to work independently and as part of a team. **Preferred Skills:** - Experience with cloud-native security automation in AWS, Azure, or GCP environments. - Familiarity with container security and related security scanning solutions. - Knowledge of threat modeling and security risk assessments. Commvault is committed to an inclusive and accessible interviewing process. If you require accommodation due to a disability or special need, please contact accommodations@commvault.com. For general inquiries, please reach out to wwrecruitingteam@commvault.com.,

As a Software Engineer II at Rapid7, you will have the opportunity to take ownership of developing new features for your team. You will work with cutting-edge technologies and oversee the entire process from start to finish. It is essential to bring a customer-centric approach along with a genuine curiosity and passion for continuous learning. Rest assured that you will receive coaching and support to help you enhance your skills and reach your full potential. This role offers an exciting opportunity to be one of the pioneering hires for Rapid7 in India, supporting our growth strategy in a culture that encourages trying new approaches and continuous learning. **Key Responsibilities:** - Build, maintain, and release well-architected services by consistently writing correct and clean code following best practices and conventions - Participate in the design and planning of upcoming features, playing a key role in all parts of the development process - Collaborate with internal teams such as UX and Product Management to ensure a deep understanding of customer needs - Develop a comprehensive understanding of our products to provide the best support to our customers - Work with practice-specific technologies **Qualifications Required:** - Minimum 1.5 years of experience in software development using Java - Experience with Java Spring Boot, Maven, Snyk or Trivy for security vulnerability scanning, JUnit for testing frameworks, GitHub Actions or Jenkins, and AWS for cloud infrastructure would be advantageous - Enthusiasm for technology, coupled with a curious and eager-to-learn mindset - Ability to thrive in a high-growth, evolving environment - Strong problem-solving skills and a collaborative team player - Excellent written and verbal communication skills, both within the team and cross-functionally - Passion for customer satisfaction and attention to detail Rapid7, a publicly traded Cybersecurity company headquartered in Boston, MA, with 17 offices globally, is expanding its global footprint into India. Rapid7 is at the forefront of creating a more secure digital future for organizations worldwide, empowering security professionals to manage risk effectively and eliminate threats across various landscapes. With a commitment to open-source communities and cutting-edge research, Rapid7 strives to optimize its products and equip the global security community with the latest insights into attacker methods. Trusted by over 10,000 customers globally, Rapid7's industry-leading solutions and services keep businesses ahead of attackers, ahead of the competition, and prepared for the future.,

We at Innovecture are hiring for a DevSecOps Engineer to expand our team, this will be in Pune/Mumbai. You will work across various Innovecture and client teams and apply your technical expertise to some of the most complex and challenging technology problems. About Innovecture: Founded in 2007 under the leadership of CEO Shreyas Kamat, Innovecture LLC, began as a U.S.-based Information Technology and Management Consulting Company focusing on technology consulting and services. With international development centers located in Salt Lake City, USA, and Pune, India, Innovecture leverages its Global Agile Delivery Model to effectively deliver client projects within budget scope and project deadline. The primary focus of Innovecture is to provide a unique wealth of expertise and experience to the IT and Management Consulting realm by utilizing various technologies across multiple industry domains. Innovecture uses best-in-class design processes and top-quality talent to ensure the highest quality deliverables. With innovation embedded in its consulting and services approach, Innovecture will continue to deliver outstanding results for its Fortune 500 clients and employees. Job Description Architect, design, and implement robust and scalable CI/CD pipelines using Jenkins and ArgoCD for continuous integration, delivery and deployment. Drive the adoption and implementation of GitOps principles using ArgoCD for managing Kubernetes deployments and infrastructure as code. Develop and maintain automation scripts (e.g., Python, Bash, Shell) for various DevOps tasks, including infrastructure provisioning, configuration management, and deployment. Manage and optimize Kubernetes clusters, including deployment, monitoring, troubleshooting, and resource management (pods, services, deployments, etc.). Work closely with development, QA, and operations teams to ensure smooth and efficient software delivery, troubleshoot issues, and enhance system reliability. Ensure CI/CD pipelines and infrastructure adhere to security standards and compliance requirements. Proven experience in designing, implementing, and managing complex CI/CD pipelines and DevOps practices. In-depth knowledge and hands-on experience with Jenkins, including pipeline creation (Declarative Pipelines), plugin management, and job configuration. Strong understanding and practical experience with ArgoCD for GitOps-based continuous delivery to Kubernetes. Experience with IaC tools like Terraform or Ansible. Proficiency in scripting languages such as Python, Bash, or Shell scripting for automation. Familiarity with major cloud platforms (e.g., AWS, Azure) and their relevant services (e.g., Rancher, EKS, Api Gateway, AWS KMS, Config Maps etc.. Experience with monitoring and logging tools (e.g., Fluent bit, Cloud Watch, Prometheus, Grafana, ELK stack). Strong experience with Git and platforms like GitHub, GitLab, or Azure DevOps. Excellent problem-solving, communication, and collaboration skills. Experience in configuring and using SAST and DAST Tools like SonarQube, SNYK, Git Gaurdian, Burp Suite. Experience with Automation testing scripts in pipeline. Artifactory integrations with the JFrog DevOps Platform, including JFrog Xray, for comprehensive security scanning, vulnerability detection, and policy enforcement. Familiarity with Github Actions.

Recruitment Fraud Alert We’ve learned that scammers are impersonating Commvault team members—including HR and leadership—via email or text. These bad actors may conduct fake interviews and ask for personal information, such as your social security number. What to know: Commvault does not conduct interviews by email or text. We will never ask you to submit sensitive documents (including banking information, SSN, etc) before your first day. If you suspect a recruiting scam, please contact us at wwrecruitingteam@commvault.com About Commvault Commvault (NASDAQ: CVLT) is the gold standard in cyber resilience. The company empowers customers to uncover, take action, and rapidly recover from cyberattacks – keeping data safe and businesses resilient. The company’s unique AI-powered platform combines best-in-class data protection, exceptional data security, advanced data intelligence, and lightning-fast recovery across any workload or cloud at the lowest TCO. For over 25 years, more than 100,000 organizations and a vast partner ecosystem have relied on Commvault to reduce risks, improve governance, and do more with data. Security Operations Engineer: The Opportunity: We are seeking a Security Operations Engineer to drive innovation in application security by integrating automated testing tools into CI/CD workflows. This role will focus on building scalable solutions, collaborating with cross-functional teams, and enhancing security processes to support our global security program. What you’ll do… Design / build / implement and maintain scalable automation tools and pipelines for application security, including static (SAST), dynamic (DAST), and software composition analysis (SCA) scanning. Collaborate with developers, security engineers, and DevOps teams to integrate security automation seamlessly into CI/CD workflows. Identify opportunities for improving security tool coverage, efficiency, and performance. Develop custom scripts, plugins, or APIs to extend the capabilities of security testing and remediation automation. Monitor and analyze security automation tool results, generate actionable insights, and support incident response and remediation efforts. Stay up to date on the latest security automation trends, technologies, and best practices, and advocate for continuous improvement in tooling and processes. Provide mentorship and guidance to other engineers on secure coding and secure development lifecycle practices. Who you are? 8+ years of software engineering experience with a focus on security automation or application security. Proficiency in Python, Ruby, Go, Java, or similar programming languages. Strong understanding of application security principles, vulnerabilities (e.g., OWASP Top Ten), and remediation techniques. Hands-on experience implementing and configuring security scanning tools such as SAST (e.g., Checkmarx, Fortify), DAST (e.g., Burp Suite, OWASP ZAP), and SCA (e.g., Snyk, WhiteSource). Familiarity with CI/CD pipelines (e.g., Jenkins, GitHub Actions, GitLab CI) and infrastructure as code tools (e.g., Terraform, Ansible) is a plus. Solid understanding of software development lifecycle (SDLC) processes and how to integrate security automation seamlessly. Excellent problem-solving skills and ability to work independently and as part of a team. Preferred Skills: Experience with cloud-native security automation (e.g., in AWS, Azure, or GCP environments). Familiarity with container security (e.g., Docker, Kubernetes) and related security scanning solutions. Knowledge of threat modeling and security risk assessments Commvault is an equal opportunity workplace and is an affirmative action employer. We are always committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity or Veteran status and we will not discriminate against on the basis of such characteristics or any other status protected by the laws or regulations in the locations where we work. Commvault’s goal is to make interviewing inclusive and accessible to all candidates and employees. If you have a disability or special need that requires accommodation to participate in the interview process or apply for a position at Commvault, please email accommodations@commvault.com For any inquiries not related to an accommodation please reach out to wwrecruitingteam@commvault.com.

As a Solutions Consultant/Technical Advisor for AppScan, you will serve as the pre-sales technical expert supporting HCLSoftware’s application security portfolio in India, with a primary base in Mumbai. You’ll work closely with the Sales team to design customer-centric solutions, deliver impactful demos and PoCs, and guide organizations on best practices in application security. This role is pivotal in driving customer success, enabling product adoption, and contributing to overall revenue growth through technical excellence. Key Responsibilities: Conduct technical discovery sessions, product demonstrations, PoCs, and workshops for AppScan and AppScan on Cloud. Prepare responses for technical sections of RFIs/RFPs and address customer queries. Guide customers in adopting AppScan within DevSecOps and secure SDLC practices. Partner with Sales, Services, Product Management, and Support teams to deliver effective solutions. Build reusable technical assets (presentations, demo scripts, FAQs). Conduct partner enablement workshops and provide technical guidance for channel engagements. Stay updated on cybersecurity trends, compliance requirements, and AppSec best practices. Foster strong relationships with customers, acting as a trusted technical advisor. Qualifications & Experience: 5+ years of experience in technical pre-sales, solution engineering, or consulting in AppSec or enterprise software. Bachelor’s degree in Computer Science, Engineering, or related field. Knowledge of security testing tools and methodologies (DAST, SAST, SCA, etc.). Working knowledge of programming/scripting languages (e.g., Java, .NET, Python, JavaScript, Bash). Experience with AppScan or competitor tools like Fortify, Checkmarx, Snyk, Veracode, or Burp Suite. Familiarity with DevOps pipelines, CI/CD tools, and secure coding practices. Strong communication, presentation, and executive engagement skills. Additional Details: Location: Mumbai, India (Hybrid role) Primary Product Focus: AppScan (on-premises and cloud) Travel Requirement: Up to 25–30% within India (primarily customer meetings and partner sessions) Compensation: Competitive base salary + performance bonus

Role Overview: As a Cloud DevOps Engineer, you will be responsible for designing and implementing infrastructure as code using Terraform. Your role will involve deploying and managing Kubernetes clusters in cloud environments, integrating and managing security and code quality tools such as Wiz, Snyk, Qualys, Mend, Checkmarx, and Dependabot. Additionally, you will manage secrets securely using HashiCorp Vault or Akeyless, automate CI/CD pipelines, and ensure smooth deployments. Monitoring and troubleshooting cloud infrastructure for performance, security, and reliability will also be part of your responsibilities. Key Responsibilities: - Design and implement infrastructure as code using Terraform. - Deploy and manage Kubernetes clusters in cloud environments. - Integrate and manage security and code quality tools such as Wiz, Snyk, Qualys, Mend, Checkmarx, and Dependabot. - Manage secrets securely using HashiCorp Vault or Akeyless. - Automate CI/CD pipelines and ensure smooth deployments. - Monitor and troubleshoot cloud infrastructure for performance, security, and reliability. Qualification Required: - Cloud experience (Azure/AWS). - Proficiency in Terraform and Kubernetes. - Experience with CI/CD tools. - Familiarity with security tools such as Wiz, Snyk, Qualys, etc. - Knowledge of secret management tools like HashiCorp Vault or Akeyless.,

Rapid7 is a publicly traded Cybersecurity company headquartered in Boston, MA with 17 offices around the world. We are excited to be expanding our Global footprint into India and as we build out our Product & Engineering teams, we are looking for Software Engineers. As a Software Engineer II you will take ownership of the development of new features for your team, working with cutting edge technologies and owning this process end to end. You will bring a customer centric approach with a curiosity and passion for continuous learning. You will be provided with coaching and support to help you further develop your skills to reach your full potential. This is an exciting opportunity to be one of the first hires for Rapid7 in India supporting our growth strategy in a culture that supports trying new approaches and continuous learning. About The Team Our Product and Engineering team works with our award-winning products to help us create a single experience to help customers assess risk, detect threats and automate their security programs at over 10,000 organizations. These teams use best-in-class technology, leading-edge research, and broad, strategic expertise to develop new products and features, and enhance existing features, in order to create value for customers across the world. The stakes for creating a safer digital world are greater than ever. At Rapid7 we believe it’s our responsibility to show up every day and give our best for our customers and the entire security community. Our global engineering teams are at the centre of this mission and are dedicated to building a complete suite of industry-leading products which provide a cohesive platform for our customers. Our range of solutions spans vulnerability management, detection, automation, cloud security, and penetration testing; in order to build these products our teams work with an array of technologies including Java, TypeScript, Python, AWS and Go, just to name a few. Join our engineering team to help us build and innovate great products on our Insight platform using the latest technologies to make the world a safer digital space. About The Role The Software Engineer I is a part of our Product and Engineering team who are at the forefront of keeping our customers safe from attacks and breaches. In this role you will be focussed on helping our customers seamlessly manage their security solutions as effectively and efficiently as possible, and ensuring our products are delivering a secure experience. You will be given the time to continue to develop your skills surrounded by a team of incredibly smart and experienced Engineers. In This Role, You Will Build, maintain, and release our well architected services by writing correct and clean code consistently and following best practices and conventions Participate in the design and planning of upcoming features, our Engineers are first class stakeholders in all parts of the development process When required, partner with internal teams such as UX and Product Management who work deeply with our product to ensure we are understanding our customers needs Work towards developing a deep understand of our products in order to best support our customers Work with Practice specific technologies The Skills You’ll Bring Include A minimum of 1.5 years experience in software development using Java. Experience using any of the following would be advantageous: Java Spring Boot Dependency Management Tools such as Maven Security Vulnerability Scanning such as Snyk or Trivy Testing frameworks such as JUnit Github Actions or Jenkins Cloud Infrastructure such as AWS Excited by technology, curious and eager to learn The attitude and ability to thrive in a high-growth, evolving environment Collaborative team player who has the ability to partner with others and drive toward solutions Strong creative problem solving skills Solid communicator with excellent written and verbal communications skills both within the team and cross functionally Passionate about delighting customers, puts the customer needs at the forefront of all decision making Excellent attention to detail We know that the best ideas and solutions come from multi-dimensional teams. That’s because these teams reflect a variety of backgrounds and professional experiences. If you are excited about this role and feel your experience can make an impact, please don’t be shy - apply today. About Rapid7 Rapid7 is creating a more secure digital future for all by helping organizations strengthen their security programs in the face of accelerating digital transformation. Our portfolio of best-in-class solutions empowers security professionals to manage risk and eliminate threats across the entire threat landscape from apps to the cloud to traditional infrastructure to the dark web. We foster open source communities and cutting-edge research–using these insights to optimize our products and arm the global security community with the latest in attacker methods. Trusted by more than 10,000 customers worldwide, our industry-leading solutions and services help businesses stay ahead of attackers, ahead of the competition, and future-ready for what’s next.

Essential Qualifications :- Any Graduate, preferably bachelors degree in computer science or information technology. Overall Working Experience of 6-8 Years Minimum 4 years of experience in DevOps with AWS and security automation AWS Certified DevOps Engineer / AWS Security Specialty (preferred) Preferred Key Skill /Qualifications :- Deep understanding of AWS services (EC2, S3, IAM, RDS, Lambda, CloudTrail, CloudWatch, Config, GuardDuty, VPC, EKS, CloudFormation) Infrastructure as Code (Terraform, AWS CDK, CloudFormation) • Network security, firewall configuration, security groups, VPC subnetting • Identity & Access Management (IAM, RBAC, MFA, SSO) Vulnerability assessment, penetration testing, patch management CI/CD tools (Jenkins, GitHub Actions, GitLab CI/CD) Scripting (Python, Bash, Shell) • Containerization (Docker, Kubernetes/EKS) • Security-as-Code and automated compliance tools (e.g., Checkov, TFSec, Open Policy Agent) Secrets management (HashiCorp Vault, AWS Secrets Manager) SAST/DAST tools (SonarQube, OWASP ZAP, Snyk, Fortify) • IAM roles, policies, encryption, KMS, and secure configurations Centralized logging and monitoring (CloudWatch, ELK Stack, Prometheus, Grafana) Excellent documentation, communication, and collaboration skills Essential Experience :- Automating security checks in CI/CD pipelines • Implementing least privilege access control and identity federation Securing infrastructure provisioning and deployments • Conducting threat modeling and vulnerability remediation • Enforcing compliance and audit readiness (ISO, HIPAA, etc.) Working knowledge of secure networking (VPCs, firewalls, VPNs, NACLs, etc.) • Incident response and root cause analysis for infrastructure issues Partnering with infosec teams to roll out security best practices • Supporting development teams to adopt security-by-design Competencies :- Strong analytical, problem-solving, and debugging skills Security-first mindset across DevOps practices Effective communicator and team collaborator Continuous learning and proactive approach Decision Making Control :- * Choice of security tools and DevSecOps frameworks Cloud architecture decisions aligned with compliance Key Roles/Responsibilities: • Build and maintain AWS cloud environments with infrastructure as code • Integrate security controls into CI/CD pipelines and DevOps workflows • Automate security scans, testing, and compliance validation • Support secure deployment of applications in containers and serverless setups • Implement cloud-native logging, monitoring, and alerting systems • Manage secrets, certificates, and access securely • Work closely with development, infosec, and operations teams to enforce DevSecOps best practices • Document all configurations, procedures, and known issues • Conduct internal training on DevOps, secure coding and best security practices • Respond to security incidents and participate in audits and reviews • Ensure adherence to SLAs, compliance mandates, and performance KPIs

About The Role The role is based in the Pune R&D Centre, at SAS R&D Pune facility. For this role, you will join the Viya 3.5 team. We are looking for a FullStack developer to help develop and maintain the Viya 3.5 platform and services. You will help with plan and design work and take responsibility for large parts of the application. Furthermore, you will be joining a friendly team with a broad range of experience, to develop and maintain SAS Viya 3.5 and/or SAS 9.4 Solutions. Primary Responsibilities Your primary responsibility will be to enhance and maintain, fix customer and security issues with multiple products and services under SAS Viya 3.5 Platform products. Work with technical management and architects in the selection of third-party libraries based on research and security considerations. Your primary area of focus would be front end development and maintenance, however you are also expected to understand code in Java for middle-tier services. Work with customers and technical support for resolution of issues related to security, performance. You will be delegating, monitoring with work to be done by associate developers and testers You will be mentoring associate developers to ensure the seamless development of the platform solutions. Ensure all applicable security policies and processes are followed to support the organization’s secure software development goals. Contribute to the unit testing, integration testing, and manual/automated tests functional/performance testing. Review business and solution requirements/design documents for accuracy. Requirement 6+ years’ experience. Excellent programming skills in front end development with Java Script and JS libraries such as React / Open UI / Angular etc. Experience in Technical Leadership including estimation, scoping, delegation, monitoring and reporting for work. You are expected to use OpenUI5 along with the inhouse developed HTML commons libraries Programming skills in mid-tier development with Java, Spring MVC, Hibernate. Expertise in SQL and Database centric applications with Postgres, Oracle preferred. Knowledge of tools such as Hashi Corp Vault, Consul, Distributed Cache like Gem fire, Redis etc desirable. Experience level of an Expert in OOPs, Design Patterns, SOLID principles. Good knowledge of Security concepts, Tool such as Snyk, Blackduck etc Experience with fast paced Agile software development methodologies. Hands on experience in Test Driven and CI/CD Development methodologies. Good Systems knowledge – E.g. Linux Administration, Cloud administration. Good debugging skills, logical problem-solving capability, quick and self-learner to adopt and use new technologies. Demonstrated experience with disciplined unit, regression, and integration testing with large software portfolio Experience of scripting language (Python and shell-scripting). Experience in Gradle/Ant, Jenkins/GitHub actions. Knowledge of Devops tools such as Ansible/Chef/Puppet etc desirable Polyglot with knowledge of programming language such as C/C++, GoLang, Python is preferred. Aptitude to work with large Legacy code bases Use of AI Dev tool (GitHub Copilot, Cursor, Claude code etc) Mandatory Technical Skills Good exposure to design and development of mid-tier services, REST APIs, Java ecosystem. Excellent programming skills in front end development with Java Script and JS libraries such as React / Open UI / Angular etc. Expertise in delegating and monitoring work to associate developers and testers Experience in Technical Leadership including estimation, scoping, delegation, monitoring and reporting for work. Programming skills in mid-tier development with Java, Spring MVC, Hibernate. Expertise in SQL and Database centric applications with Postgres, Oracle preferred. Experience level of an Expert in OOPs, Design Patterns, SOLID principles. Expertise in working with complex distributed RESTFUL mid-tier services Good knowledge of Security concepts, Tool such as Snyk, Blackduck etc Expertise in working with Database centric applications including database design and administration with Postgres, Oracle Demonstrated experience with disciplined unit, regression, and integration testing with large software portfolio Total Years Of Relevant Experience 6+ years Education Preference Bachelor’s in computer science or relevant equivalent combination of related education, training and experience may be considered in place of the above qualifications.

Nice to meet you! We’re a leader in data and AI. Through our software and services, we inspire customers around the world to transform data into intelligence - and questions into answers. We’re also a debt-free multi-billion-dollar organization on our path to IPO-readiness. If you're looking for a dynamic, fulfilling career coupled with flexibility and world-class employee experience, you'll find it here. About The Job Candidate will be required to participate in designs, develops, and debugs software of diverse scope for new and existing products in accordance with designated development practices, timelines, and quality expectations. Experience in designing and developing cloud-based applications. Experience in server-side development, including the use of either GO or Java, Spring Boot, micro-service architectures, REST and MVC patterns. Must be familiar with software engineering concepts, Agile and DevOps software development methodologies. Participates in project scoping and scheduling; tracks progress of individual tasks and alerts stakeholders of issues blocking or preventing completion of task. Ensures quality through functional, unit and performance testing; works closely with testing by providing thorough reviews of the test plan and communicates when updates to the plan should be made to cover code changes related to enhancements, redesigns and/or bug fixes. Maintains accountability for the entire life cycle of the code including support for both internal and external consumers. Experience using IDEs and third-party tools for debugging, unit testing and CI/CD automation using Jenkins. Experience with Cloud architectures and at least one major public Cloud provider Candidate should have a thorough understanding of non-functional requirements and be able to work on those viz. performance, scalability, security, etc. and have experience in one or more of these areas. Additional Responsibilities Performs primary responsibilities on one or more large projects independently. Solves problems with some guidance from others. Sphere of influence: department and division with some interaction across division Strong interpersonal, documentation, and problem-solving skills Strong programming skills in SAS or language(s) related to assigned area Ability to think analytically and effectively communicate issues and solutions Ability to work independently and within a team General knowledge of software development tools, methodologies, and principles General knowledge of SAS products and their applications or specialized products related to the assigned area Mandatory Technical Skills Proven experience in design and development of software projects for the cloud environments using following technologies. Languages: Golang/Java, knowledge of more than one programming languages will be preferred Cloud: Docker, Kubernetes, Azure, AWS, GCP, OpenShift Interfaces: RESTful web services and command line interfaces Databases: PostgreSQL, Elasticsearch, Redis Tools: GIT, Gerrit, Gradle, Jenkins, Black Duck Hub, SNYK Operating systems: Unix, Windows, z/OS 5-9 years of relevant experience with Bachelor's degree in computer science or equivalent related work experience. Diverse and Inclusive At SAS, it’s not about fitting into our culture – it’s about adding to it. We believe our people make the difference. Our diverse workforce brings together unique talents and inspires teams to create amazing software that reflects the diversity of our users and customers. Our commitment to diversity is a priority to our leadership, all the way up to the top; and it’s essential to who we are. To put it plainly: you are welcome here. Additional Information Please insert appropriate compliance verbiage for your country. SAS only sends emails from verified “sas.com” email addresses and never asks for sensitive, personal information or money. If you have any doubts about the authenticity of any type of communication from, or on behalf of SAS, please contact Recruitingsupport@sas.com. #SAS

About the Company Armada is an edge computing startup that provides computing infrastructure to remote areas where connectivity and cloud infrastructure is limited, as well as areas where data needs to be processed locally for real-time analytics and AI at the edge. We’re looking to bring on the most brilliant minds to help further our mission of bridging the digital divide with advanced technology infrastructure that can be rapidly deployed anywhere . About the Role We are seeking a skilled Security Engineer/Penetration Tester to join our cybersecurity team. The ideal candidate will have intermediate-level experience in application security testing, web application penetration testing, and mobile security assessments. This role involves identifying vulnerabilities, conducting security assessments, and working closely with the security and development teams to improve our overall security posture. Location. This role is office-based at our Trivandrum, Kerala office. What You'll Do (Key Responsibilities) Security Testing & Assessment Conduct comprehensive penetration testing of web applications, mobile applications, and APIs Perform manual and automated security testing using industry-standard tools and methodologies Execute security code reviews and static/dynamic analysis of applications Identify, document, and prioritize security vulnerabilities and weaknesses Develop proof-of-concept exploits to demonstrate impact of identified vulnerabilities Required Qualifications Experience & Education Bachelor's degree in Computer Science, Information Security, or related field (or equivalent experience) 3-5 years of hands-on experience in application security testing and penetration testing Proven experience with web application security testing and vulnerability assessment Experience with mobile application security testing (iOS and/or Android) Understanding of secure coding practices and common vulnerability patterns Knowledge of authentication mechanisms (OAuth, SAML, JWT, etc.) Familiarity with encryption, PKI, and cryptographic implementations Understanding of network security principles and protocols Technical Skills OWASP Top 10 vulnerabilities and testing methodologies REST API and GraphQL security testing Session management and business logic testing iOS and Android security architectures Mobile OWASP Top 10 vulnerabilities Binary analysis and reverse engineering Runtime manipulation and debugging Security Tools & Technologies Burp Suite Professional, Frida, OWASP ZAP Static analysis tools (SonarQube, semgreo, snyk, etc.) Dynamic analysis tools (DAST scanners) Mobile testing tools (MobSF, Objection, Cycript, Frida) Version control systems (Git) and CI/CD pipelines Programming & Scripting Proficiency in at least two programming languages (Python, Java, JavaScript, C#, etc.) Scripting capabilities for automation (Python, Bash, PowerShell) Understanding of common web technologies (HTML, CSS, JavaScript, HTTP/HTTPS) Database query languages (SQL) Preferred Qualifications Certifications OSCP (Offensive Security Certified Professional) OSWP (Offensive Security Web Expert) CEH (Certified Ethical Hacker) SANS-542/SANS-642 Additional Experience Cloud security (AWS, Azure, GCP) and containerization security API security testing and GraphQL security DevSecOps practices and security automation Bug bounty program participation or vulnerability research Open source security tool development or contribution Advanced Skills Advanced mobile security techniques (kernel exploitation, jailbreak/root detection bypass) Custom exploit development and advanced penetration testing techniques Security research and CVE discovery experience Speaking at security conferences or publishing security research Compensation & Benefits For India-based candidates: We offer a competitive base salary along with equity options, providing an opportunity to share in the success and growth of Armada. You're a Great Fit if You're A go-getter with a growth mindset. You're intellectually curious, have strong business acumen, and actively seek opportunities to build relevant skills and knowledge A detail-oriented problem-solver. You can independently gather information, solve problems efficiently, and deliver results with a "get-it-done" attitude Thrive in a fast-paced environment. You're energized by an entrepreneurial spirit, capable of working quickly, and excited to contribute to a growing company A collaborative team player. You focus on business success and are motivated by team accomplishment vs personal agenda Highly organized and results-driven. Strong prioritization skills and a dedicated work ethic are essential for you Equal Opportunity Statement At Armada, we are committed to fostering a work environment where everyone is given equal opportunities to thrive. As an equal opportunity employer, we strictly prohibit discrimination or harassment based on race, color, gender, religion, sexual orientation, national origin, disability, genetic information, pregnancy, or any other characteristic protected by law. This policy applies to all employment decisions, including hiring, promotions, and compensation. Our hiring is guided by qualifications, merit, and the business needs at the time.

Position Summary GCP DevSecOps - Consultant Position Summary As a DevSecOps Consultant, you will be a key contributor to the successful delivery of high-visibility projects, applying your technical skills and engineering knowledge to build secure, reliable solutions. You will work hands-on with modern DevSecOps tools, AI/ML services, deployment architecture, and cloud security best practices and frameworks to help deliver solutions that create value for Deloitte’s business and its clients. You will collaborate with cross-functional teams to design, implement, and maintain CI/CD pipelines and automation processes, ensuring that security and quality are integrated throughout the software development lifecycle. Your ability to troubleshoot, learn quickly, and apply best practices will be essential in supporting the delivery of high-quality, outcome-focused solutions. Key Responsibilities: Act as a subject matter expert (SME) on GCP security and DevSecOps practices during client engagements. Design and deploy AI/ML solutions on GCP, leveraging services like Vertex AI, BigQuery ML, AutoML , and TensorFlow on GCP. Manage CI/CD pipelines, I nfrastructure as C ode ( IaC ), and automation tools for ML deployments (e.g., using Terraform, Cloud Build, GitOps ). Provide consulting and advisory services to clients on cloud strategy, AI/ML adoption, and security best practices. Perform threat modeling and security assessments specific to AI/ML workloads. Collaborate with DevOps and data teams to automate, monitor , and optimize ML workflows. Lead security assessments of cloud environments and DevOps pipelines. Evaluate and enhance CI/CD pipelines with automated security testing tools (SAST, DAST, SCA, IaC scanning). Recommend and implement policy-as-code for guardrails (OPA, Sentinel). Deliver security posture reports, recommendations, and remediation plans. Collaborate with client security, DevOps, and IT teams to drive secure cloud adoption. Design and implement GCP-native security controls (IAM, VPC security, Cloud Armor, SCC, GKE, etc.). Conduct gap analysis on client GCP environments against benchmarks (CIS, NIST, etc.). Guide clients in building secure landing zones and cloud governance frameworks. Design shift-left strategies for embedding security earlier in the SDLC. Map technical controls to compliance frameworks (SOC 2, HIPAA, PCI-DSS, ISO 27001, etc.). Assist with security documentation, risk registers, and audit support. Automate GCP security guardrails using Terraform, Ansible, and Cloud Functions. Integrate security logs into client SIEM/SOAR platforms (Chronicle, Splunk, etc.). Implement and tune cloud-native monitoring tools (Cloud Logging, SCC, etc.). Required Qualifications: 4 + years in Google Cloud Platform DevSecOps role. Proficiency in CI/CD tools, Infrastructure Code, container security, and policy-as-code solutions such as Open Policy Agent (OPA). Understanding the embedding of security controls and automated checks into DevOps pipelines (CI/CD) using tools such as Jenkins, GitLab CI, Terraform, and Cloud Build. Strong hands-on experience with Vertex AI, BigQuery , Cloud Functions, GKE, and AI/ML Ops on GCP. Deep understanding of AI/ML model lifecycle, including data prep, training, evaluation, deployment, and monitoring. Familiarity with compliance frameworks (e.g., HIPAA, SOC 2, ISO 27001) as they apply to cloud-based ML systems Proficiency with security automation tools and scripting (Python, Bash, etc.). Familiarity with container security (e.g., GKE, Kubernetes RBAC, image scanning). Experience with security frameworks such as NIST, CIS, or MITRE ATT&CK. Familiarity with security tools like Checkov , Snyk or Prisma Cloud. Preferred Qualifications: Certifications such as: GCP Cloud DevOps Engineer, Architect, Professional Machine Learning Engineer, GCP Cloud Security Engineer, CCSP. Understanding of responsible AI principles, including model fairness, transparency, and auditability Experience with Kubernetes security in GKE (RBAC, network policies, container scanning). Knowledge of multi-cloud (AWS, Azure ) security strategies and governance. Familiarity with service mesh security (Istio, Anthos). Knowledge of integration of AI/ML for Advanced Security Analytics with existing on-premise and cloud platforms (e.g., Network Intelligence/ Sentinel/ Chronicle). Familiarity with zero trust architecture concepts . Experience with secrets management tools like HashiCorp Vault, GCP Secret Manager. Knowledge of IP networking, VPNs, DNS, load balancing, and firewalling concepts Job Title: Security Consultant (Microsoft Azure Active Directory and Active Directory (AAD/AD)) Are you interested in working in a dynamic environment that offers opportunities for professional growth and new responsibilities? If so, Deloitte & Touche LLP could be the place for you. Traditional security programs have often been unsuccessful in unifying the need to both secure and support technology innovation required by the business. Join Deloitte's Advisory Cyber Risk Services team and become a member of the largest group of Cyber Risk individuals worldwide. Work you’ll do As a Security Senior Consultant, you will be at the front lines with our clients supporting them with their Cyber Risk needs specifically helping them address Active Directory (AD) health and navigate the journey to the Cloud on the Microsoft Azure Active Directory (AAD) Platform. This will include: Microsoft MFA, SSO, Conditional Access, B2B and B2C and on-premise Active Directory Architect, design, and implement large-scale Active Directory / Azure Active Directory deployments/migrations/upgrades Performing technical health checks for the AD/AAD platforms/environments prior to broader deployments. Assisting clients with Azure B2B, B2C including SAML, OAUTH, OpenID Connect protocols Assisting clients with Migrating applications (legacy platforms or other) to Azure AD Assisting clients cleaning up the Active Directory environment and prepare them for Azure AD/O365 migration Assisting clients with configuration and delivery of Cloud security and compliance reports. Assisting clients with configuration and delivery of Azure Advanced Threat Protection. Providing technical support for AD/AAD services and resolve service-related issues through research and troubleshooting and working with Microsoft. Implementation of industry leading practices around AD/AAD cyber risks and Cloud security for clients. Troubleshooting system level problems in a multi-vendor, multi-protocol network environment. Documenting platform technical issues, analysis, client communication, and resolution as part of cyber risk mitigation steps. Executing on AD/AAD Cloud security engagements during different phases of the lifecycle – assess, design, and implementation & post implementation reviews. Perform health check, discovery and cleanup of Active Directory Infrastructure Analyze and review Active Directory services such as DNS, DHCP, Group Policy etc. Perform Active Directory security assessments specific to ESAE implementations Implement Active Directory RBAC model to secure the AD environment Provide internal technical training to Advisory personnel as needed. Support Managed Services team on client calls as necessary. Acting as a subject matter expert on cyber risk for the Microsoft Active Directory and Azure Active Directory platforms. Contribute to eminence activities, such as whitepapers pertaining to IAM technologies The team Deloitte Advisory's Cyber Risk team helps complex organizations more confidently pursue their growth, innovation and performance agendas through proactive management of the associated cyber risks. Our professionals provide advisory and implementation services that integrate risk, regulatory, and technology skills to help clients transform their legacy programs into proactive Secure.Vigilant.Resilient. TM cyber risk programs. Join the team developing the future state of cyber risk solutions. Learn more about Deloitte Advisory’s Cyber Risk Services practice. Required: 2 + years of experience in technical consulting, client problem solving, architecting, and designing solutions. Working experience in at least one of the areas listed below. 2 +years of hands-on technical experience enterprise-with Microsoft Identity and Access management and EMS services (Azure Active Directory, Azure Active Directory premium solutions, conditional access, SSO, MFA, PAM/PIM, and third party IAM solution integration with AAD) in implementation and operations. This should include designing and implementing AAD for organizations including integrations with applications. 2+ years of hands-on technical experience Identity and Access Management (IAM) on Active Directory. This should include designing and implementing AD for organizations including integrations with applications. Ideally the following technical experience: 2 + years of working with IAM Protocols such as WS-Fed, SAML, OpenID Connect and OAuth. 2 + years of hands-on technical experience implementing IAM focused security solutions for Microsoft technologies such as Active Directory 2 + years of working knowledge with Azure Cloud service provider technologies. 2+ years of working knowledge with Azure Advanced Threat Protection Additional Requirements: B.Tech/BE/BCA/MCA Degree required. Ideally in Computer Science, Cyber Security, Information Security, Engineering, Information Technology. Preferred: Certifications such as: Microsoft new roles-based certifications, CCSP, CCSK, CISSP, CCNP, CCNA, MCSE, MCSA certification a plus. How You’ll Grow At Deloitte, our professional development plan focuses on helping people at every level of their career to identify and use their strengths to do their best work every day. From entry-level employees to senior leaders, we believe there’s always room to learn. We offer opportunities to help sharpen skills in addition to hands-on experience in the global, fast-changing business world. From on-the-job learning experiences to formal development programs at Deloitte University, our professionals have a variety of opportunities to continue to grow throughout their career. Explore Deloitte University, The Leadership Center. Benefits At Deloitte, we know that great people make a great organization. We value our people and offer employees a broad range of benefits. Learn more about what working at Deloitte can mean for you. Deloitte’s culture Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy, centered, confident, and aware. We offer well-being programs and are continuously looking for new ways to maintain a culture where our people excel and lead healthy, happy lives. Learn more about Life at Deloitte. Corporate citizenship Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationships with our clients, our people and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities. Learn more about Deloitte’s impact on the world. Recruiter tips We want job seekers exploring opportunities at Deloitte to feel prepared and confident. To help you with your interview, we suggest that you do your research: know some background about the organization and the business area you’re applying to. Check out recruiting tips from Deloitte professionals. Job title: Azure Cloud Security Engineer (Consultant) About At Deloitte, we do not offer you just a job, but a career in the highly sought-after risk Management field. We are one of the business leaders in the risk market. We work with a vision to make the world more prosperous, trustworthy, and safe. Deloitte’s clients, primarily based outside of India, are large, complex organizations that constantly evolve and innovate to build better products and services. In the process, they encounter various risks and the work we do to help them address these risks is increasingly important to their success—and to the strength of the economy and public security. By joining us, you will get to work with diverse teams of professionals who design, manage, and implement risk-centric solutions across a variety of domains. In the process, you will gain exposure to the risk-centric challenges faced in today’s world by organizations across a range of industry sectors and become subject matter experts in those areas. Our Risk and Financial Advisory services professionals help organizations effectively navigate business risks and opportunities—from strategic, reputation, and financial risks to operational, cyber, and regulatory risks—to gain competitive advantage. We apply our experience in ongoing business operations and corporate lifecycle events to help clients become stronger and more resilient. Our market-leading teams help clients embrace complexity to accelerate performance, disrupt through innovation, and lead in their industries. We use cutting-edge technology like AI/ML techniques, analytics, and RPA to solve Deloitte’s clients ‘most complex issues. Working in Risk and Financial Advisory at Deloitte US-India offices has the power to redefine your ambitions. The Team Cyber & Strategic Risk We help organizations create a cyber-minded culture, reimagine risk to uncover strategic opportunities, and become faster, more innovative, and more resilient in the face of ever-changing threats. We provide intelligence and acuity that dynamically reframes risk, transcending a manual, reactive paradigm. The cyber risk services—Identity & access management (IAM) practice helps organizations in designing, developing, and implementing industry-leading IAM solutions to protect their information and confidential data, as well as help them build their businesses and supporting technologies to be more secure, vigilant, and resilient. The IAM team delivers service to clients through following key areas: User provisioning Access certification Access management and federation Entitlements management Work you’ll do As a Cloud Security Engineer, you will be at the front lines with our clients supporting them with their Cloud Cyber Risk needs: Executing on cloud security engagements across the lifecycle – assessment, strategy, design, implementation, and operations. Performing technical health checks for cloud platforms/environments prior to broader deployments. Assisting in the selection and tailoring of approaches, methods and tools to support cloud adoption, including for migration of existing workloads to a cloud vendor. Designing and developing cloud-specific security policies, standards and procedures. e.g., user account management (SSO, SAML), password/key management, tenant management, firewall management, virtual network access controls, VPN/SSL/IPSec, security incident and event management (SIEM), data protection (DLP, encryption). Documenting all technical issues, analysis, client communication, and resolution. Supporting proof of concept and production deployments of cloud technologies. Assisting clients with transitions to cloud via tenant setup, log processing setup, policy configuration, agent deployment, and reporting. Operating across both technical and management leadership capacities. Providing internal technical training to Advisory personnel as needed. Performing cloud orchestration and automation (Continuous Integration and Continuous Delivery (CI/CD)) in single and multi-tenant environments using tools like Terraform, Ansible, Puppet, Chef, Salt etc. Experience with multiple security technologies like CSPM, CWPP, WAF, CASB, IAM, SIEM, etc. Required Skills 3 + years of information technology and/or information security operations experience. Ideally 2+ years of working with different Cloud platforms (SaaS, PaaS, and IaaS) and environments (Public, Private, Hybrid). Familiarity with the following will be considered a plus: Solid understanding of enterprise-level directory and system configuration services (Active Directory, SCCM, LDAP, Exchange, SharePoint, M365) and how these integrate with cloud platforms Solid understanding of cloud security industry standards such as Cloud Security Alliance (CSA), ISO/IEC 27017 and NIST CSF and how they help in compliance for cloud providers and cloud customers Hands-on technical experience implementing security solutions for Microsoft Azure Knowledge of cloud orchestration and automation (Continuous Integration and Continuous Delivery (CI/CD)) in single and multi-tenant environments using tools like Terraform, Ansible, Puppet, Chef, Salt etc. Knowledge of cloud access security broker (CASB) and cloud workload protection platform (CWPP) technologies Solid understanding of OSI Model and TCP/IP protocol suite and network segmentation principles and how these can be applied on cloud platforms Preferred: Previous Consulting or Big 4 experience. Hands-on experience with Azure, plus any CASB or CWPP product or service. Understanding of Infrastructure-as-Code, and ability to create scripts using Terraform, ARM, Ansible etc. Knowledge of scripting languages (PowerShell, JSON, .NET, Python, Javascript etc.) Qualification Bachelor’s Degree required.Ideally in Computer Science, Cyber Security, Information Security, Engineering, Information Technology. How You’ll Grow At Deloitte, we’ve invested a great deal to create a rich environment in which our professionals can grow. We want all our people to develop in their own way, playing to their own strengths as they hone their leadership skills. And, as a part of our efforts, we provide our professionals with a variety of learning and networking opportunities—including exposure to leaders, sponsors, coaches, and challenging assignments—to help accelerate their careers along the way. No two people learn in the same way. So, we provide a range of resources including live classrooms, team-based learning, and eLearning. DU: The Leadership Center in India, our state-of-the-art, world-class learning Center in the Hyderabad offices is an extension of the Deloitte University (DU) in Westlake, Texas, and represents a tangible symbol of our commitment to our people’s growth and development. Explore DU: The Leadership Center in India . Deloitte’s culture Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy, centered, confident, and aware. Deloitte is committed to achieving diversity within its workforce, and encourages all qualified applicants to apply, irrespective of gender, age, sexual orientation, disability, culture, religious and ethnic background. We offer well-being programs and are continuously looking for new ways to maintain a culture that is inclusive, invites authenticity, leverages our diversity, and where our people excel and lead healthy, happy lives. Learn more about Life at Deloitte. Corporate citizenship Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationships with Deloitte’s clients, our people and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities. Learn more about Deloitte’s impact on the world. Recruiting tips Finding the right job and preparing for the recruitment process can be tricky. Check out tips from our Deloitte recruiting professionals to set yourself up for success. Check out recruiting tips from Deloitte recruiters . Benefits We believe that to be an undisputed leader in professional services, we should equip you with the resources that can make a positive impact on your well-being journey. Our vision is to create a leadership culture focused on the development and well-being of our people. Here are some of our benefits and programs to support you and your family’s well-being needs. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you . Our people and culture Our people and our culture make Deloitte a place where leaders thrive. Get an inside look at the rich diversity of background, education, and experiences of our people. What impact will you make? Check out our professionals’ career journeys and be inspired by their stories. Professional development You want to make an impact. And we want you to make it. We can help you do that by providing you the culture, training, resources, and opportunities to help you grow and succeed as a professional. Learn more about our commitment to developing our people . © 2025. See Terms of Use for more information. Deloitte refers to one or more of Deloitte Touche Tohmatsu Limited, a UK private company limited by guarantee ("DTTL"), its network of member firms, and their related entities. DTTL and each of its member firms are legally separate and independent entities. DTTL (also referred to as "Deloitte Global") does not provide services to clients. In the United States, Deloitte refers to one or more of the US member firms of DTTL, their related entities that operate using the "Deloitte" name in the United States and their respective affiliates. Certain services may not be available to attest clients under the rules and regulations of public accounting. Please see www.deloitte.com/about to learn more about our global network of member firms. Our purpose Deloitte’s purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities. Our people and culture Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our clients' most complex challenges. This makes Deloitte one of the most rewarding places to work. Professional development At Deloitte, professionals have the opportunity to work with some of the best and discover what works best for them. Here, we prioritize professional growth, offering diverse learning and networking opportunities to help accelerate careers and enhance leadership skills. Our state-of-the-art DU: The Leadership Center in India, located in Hyderabad, represents a tangible symbol of our commitment to the holistic growth and development of our people. Explore DU: The Leadership Center in India . Benefits To Help You Thrive At Deloitte, we know that great people make a great organization. Our comprehensive rewards program helps us deliver a distinctly Deloitte experience that helps that empowers our professionals to thrive mentally, physically, and financially—and live their purpose. To support our professionals and their loved ones, we offer a broad range of benefits. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you. Recruiting tips From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters. Requisition code: 311314

Position Summary GCP DevSecOps - Consultant Position Summary As a DevSecOps Consultant, you will be a key contributor to the successful delivery of high-visibility projects, applying your technical skills and engineering knowledge to build secure, reliable solutions. You will work hands-on with modern DevSecOps tools, AI/ML services, deployment architecture, and cloud security best practices and frameworks to help deliver solutions that create value for Deloitte’s business and its clients. You will collaborate with cross-functional teams to design, implement, and maintain CI/CD pipelines and automation processes, ensuring that security and quality are integrated throughout the software development lifecycle. Your ability to troubleshoot, learn quickly, and apply best practices will be essential in supporting the delivery of high-quality, outcome-focused solutions. Key Responsibilities: Act as a subject matter expert (SME) on GCP security and DevSecOps practices during client engagements. Design and deploy AI/ML solutions on GCP, leveraging services like Vertex AI, BigQuery ML, AutoML , and TensorFlow on GCP. Manage CI/CD pipelines, I nfrastructure as C ode ( IaC ), and automation tools for ML deployments (e.g., using Terraform, Cloud Build, GitOps ). Provide consulting and advisory services to clients on cloud strategy, AI/ML adoption, and security best practices. Perform threat modeling and security assessments specific to AI/ML workloads. Collaborate with DevOps and data teams to automate, monitor , and optimize ML workflows. Lead security assessments of cloud environments and DevOps pipelines. Evaluate and enhance CI/CD pipelines with automated security testing tools (SAST, DAST, SCA, IaC scanning). Recommend and implement policy-as-code for guardrails (OPA, Sentinel). Deliver security posture reports, recommendations, and remediation plans. Collaborate with client security, DevOps, and IT teams to drive secure cloud adoption. Design and implement GCP-native security controls (IAM, VPC security, Cloud Armor, SCC, GKE, etc.). Conduct gap analysis on client GCP environments against benchmarks (CIS, NIST, etc.). Guide clients in building secure landing zones and cloud governance frameworks. Design shift-left strategies for embedding security earlier in the SDLC. Map technical controls to compliance frameworks (SOC 2, HIPAA, PCI-DSS, ISO 27001, etc.). Assist with security documentation, risk registers, and audit support. Automate GCP security guardrails using Terraform, Ansible, and Cloud Functions. Integrate security logs into client SIEM/SOAR platforms (Chronicle, Splunk, etc.). Implement and tune cloud-native monitoring tools (Cloud Logging, SCC, etc.). Required Qualifications: 4 + years in Google Cloud Platform DevSecOps role. Proficiency in CI/CD tools, Infrastructure Code, container security, and policy-as-code solutions such as Open Policy Agent (OPA). Understanding the embedding of security controls and automated checks into DevOps pipelines (CI/CD) using tools such as Jenkins, GitLab CI, Terraform, and Cloud Build. Strong hands-on experience with Vertex AI, BigQuery , Cloud Functions, GKE, and AI/ML Ops on GCP. Deep understanding of AI/ML model lifecycle, including data prep, training, evaluation, deployment, and monitoring. Familiarity with compliance frameworks (e.g., HIPAA, SOC 2, ISO 27001) as they apply to cloud-based ML systems Proficiency with security automation tools and scripting (Python, Bash, etc.). Familiarity with container security (e.g., GKE, Kubernetes RBAC, image scanning). Experience with security frameworks such as NIST, CIS, or MITRE ATT&CK. Familiarity with security tools like Checkov , Snyk or Prisma Cloud. Preferred Qualifications: Certifications such as: GCP Cloud DevOps Engineer, Architect, Professional Machine Learning Engineer, GCP Cloud Security Engineer, CCSP. Understanding of responsible AI principles, including model fairness, transparency, and auditability Experience with Kubernetes security in GKE (RBAC, network policies, container scanning). Knowledge of multi-cloud (AWS, Azure ) security strategies and governance. Familiarity with service mesh security (Istio, Anthos). Knowledge of integration of AI/ML for Advanced Security Analytics with existing on-premise and cloud platforms (e.g., Network Intelligence/ Sentinel/ Chronicle). Familiarity with zero trust architecture concepts . Experience with secrets management tools like HashiCorp Vault, GCP Secret Manager. Knowledge of IP networking, VPNs, DNS, load balancing, and firewalling concepts Job Title: Security Consultant (Microsoft Azure Active Directory and Active Directory (AAD/AD)) Are you interested in working in a dynamic environment that offers opportunities for professional growth and new responsibilities? If so, Deloitte & Touche LLP could be the place for you. Traditional security programs have often been unsuccessful in unifying the need to both secure and support technology innovation required by the business. Join Deloitte's Advisory Cyber Risk Services team and become a member of the largest group of Cyber Risk individuals worldwide. Work you’ll do As a Security Senior Consultant, you will be at the front lines with our clients supporting them with their Cyber Risk needs specifically helping them address Active Directory (AD) health and navigate the journey to the Cloud on the Microsoft Azure Active Directory (AAD) Platform. This will include: Microsoft MFA, SSO, Conditional Access, B2B and B2C and on-premise Active Directory Architect, design, and implement large-scale Active Directory / Azure Active Directory deployments/migrations/upgrades Performing technical health checks for the AD/AAD platforms/environments prior to broader deployments. Assisting clients with Azure B2B, B2C including SAML, OAUTH, OpenID Connect protocols Assisting clients with Migrating applications (legacy platforms or other) to Azure AD Assisting clients cleaning up the Active Directory environment and prepare them for Azure AD/O365 migration Assisting clients with configuration and delivery of Cloud security and compliance reports. Assisting clients with configuration and delivery of Azure Advanced Threat Protection. Providing technical support for AD/AAD services and resolve service-related issues through research and troubleshooting and working with Microsoft. Implementation of industry leading practices around AD/AAD cyber risks and Cloud security for clients. Troubleshooting system level problems in a multi-vendor, multi-protocol network environment. Documenting platform technical issues, analysis, client communication, and resolution as part of cyber risk mitigation steps. Executing on AD/AAD Cloud security engagements during different phases of the lifecycle – assess, design, and implementation & post implementation reviews. Perform health check, discovery and cleanup of Active Directory Infrastructure Analyze and review Active Directory services such as DNS, DHCP, Group Policy etc. Perform Active Directory security assessments specific to ESAE implementations Implement Active Directory RBAC model to secure the AD environment Provide internal technical training to Advisory personnel as needed. Support Managed Services team on client calls as necessary. Acting as a subject matter expert on cyber risk for the Microsoft Active Directory and Azure Active Directory platforms. Contribute to eminence activities, such as whitepapers pertaining to IAM technologies The team Deloitte Advisory's Cyber Risk team helps complex organizations more confidently pursue their growth, innovation and performance agendas through proactive management of the associated cyber risks. Our professionals provide advisory and implementation services that integrate risk, regulatory, and technology skills to help clients transform their legacy programs into proactive Secure.Vigilant.Resilient. TM cyber risk programs. Join the team developing the future state of cyber risk solutions. Learn more about Deloitte Advisory’s Cyber Risk Services practice. Required: 2 + years of experience in technical consulting, client problem solving, architecting, and designing solutions. Working experience in at least one of the areas listed below. 2 +years of hands-on technical experience enterprise-with Microsoft Identity and Access management and EMS services (Azure Active Directory, Azure Active Directory premium solutions, conditional access, SSO, MFA, PAM/PIM, and third party IAM solution integration with AAD) in implementation and operations. This should include designing and implementing AAD for organizations including integrations with applications. 2+ years of hands-on technical experience Identity and Access Management (IAM) on Active Directory. This should include designing and implementing AD for organizations including integrations with applications. Ideally the following technical experience: 2 + years of working with IAM Protocols such as WS-Fed, SAML, OpenID Connect and OAuth. 2 + years of hands-on technical experience implementing IAM focused security solutions for Microsoft technologies such as Active Directory 2 + years of working knowledge with Azure Cloud service provider technologies. 2+ years of working knowledge with Azure Advanced Threat Protection Additional Requirements: B.Tech/BE/BCA/MCA Degree required. Ideally in Computer Science, Cyber Security, Information Security, Engineering, Information Technology. Preferred: Certifications such as: Microsoft new roles-based certifications, CCSP, CCSK, CISSP, CCNP, CCNA, MCSE, MCSA certification a plus. How You’ll Grow At Deloitte, our professional development plan focuses on helping people at every level of their career to identify and use their strengths to do their best work every day. From entry-level employees to senior leaders, we believe there’s always room to learn. We offer opportunities to help sharpen skills in addition to hands-on experience in the global, fast-changing business world. From on-the-job learning experiences to formal development programs at Deloitte University, our professionals have a variety of opportunities to continue to grow throughout their career. Explore Deloitte University, The Leadership Center. Benefits At Deloitte, we know that great people make a great organization. We value our people and offer employees a broad range of benefits. Learn more about what working at Deloitte can mean for you. Deloitte’s culture Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy, centered, confident, and aware. We offer well-being programs and are continuously looking for new ways to maintain a culture where our people excel and lead healthy, happy lives. Learn more about Life at Deloitte. Corporate citizenship Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationships with our clients, our people and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities. Learn more about Deloitte’s impact on the world. Recruiter tips We want job seekers exploring opportunities at Deloitte to feel prepared and confident. To help you with your interview, we suggest that you do your research: know some background about the organization and the business area you’re applying to. Check out recruiting tips from Deloitte professionals. Job title: Azure Cloud Security Engineer (Consultant) About At Deloitte, we do not offer you just a job, but a career in the highly sought-after risk Management field. We are one of the business leaders in the risk market. We work with a vision to make the world more prosperous, trustworthy, and safe. Deloitte’s clients, primarily based outside of India, are large, complex organizations that constantly evolve and innovate to build better products and services. In the process, they encounter various risks and the work we do to help them address these risks is increasingly important to their success—and to the strength of the economy and public security. By joining us, you will get to work with diverse teams of professionals who design, manage, and implement risk-centric solutions across a variety of domains. In the process, you will gain exposure to the risk-centric challenges faced in today’s world by organizations across a range of industry sectors and become subject matter experts in those areas. Our Risk and Financial Advisory services professionals help organizations effectively navigate business risks and opportunities—from strategic, reputation, and financial risks to operational, cyber, and regulatory risks—to gain competitive advantage. We apply our experience in ongoing business operations and corporate lifecycle events to help clients become stronger and more resilient. Our market-leading teams help clients embrace complexity to accelerate performance, disrupt through innovation, and lead in their industries. We use cutting-edge technology like AI/ML techniques, analytics, and RPA to solve Deloitte’s clients ‘most complex issues. Working in Risk and Financial Advisory at Deloitte US-India offices has the power to redefine your ambitions. The Team Cyber & Strategic Risk We help organizations create a cyber-minded culture, reimagine risk to uncover strategic opportunities, and become faster, more innovative, and more resilient in the face of ever-changing threats. We provide intelligence and acuity that dynamically reframes risk, transcending a manual, reactive paradigm. The cyber risk services—Identity & access management (IAM) practice helps organizations in designing, developing, and implementing industry-leading IAM solutions to protect their information and confidential data, as well as help them build their businesses and supporting technologies to be more secure, vigilant, and resilient. The IAM team delivers service to clients through following key areas: User provisioning Access certification Access management and federation Entitlements management Work you’ll do As a Cloud Security Engineer, you will be at the front lines with our clients supporting them with their Cloud Cyber Risk needs: Executing on cloud security engagements across the lifecycle – assessment, strategy, design, implementation, and operations. Performing technical health checks for cloud platforms/environments prior to broader deployments. Assisting in the selection and tailoring of approaches, methods and tools to support cloud adoption, including for migration of existing workloads to a cloud vendor. Designing and developing cloud-specific security policies, standards and procedures. e.g., user account management (SSO, SAML), password/key management, tenant management, firewall management, virtual network access controls, VPN/SSL/IPSec, security incident and event management (SIEM), data protection (DLP, encryption). Documenting all technical issues, analysis, client communication, and resolution. Supporting proof of concept and production deployments of cloud technologies. Assisting clients with transitions to cloud via tenant setup, log processing setup, policy configuration, agent deployment, and reporting. Operating across both technical and management leadership capacities. Providing internal technical training to Advisory personnel as needed. Performing cloud orchestration and automation (Continuous Integration and Continuous Delivery (CI/CD)) in single and multi-tenant environments using tools like Terraform, Ansible, Puppet, Chef, Salt etc. Experience with multiple security technologies like CSPM, CWPP, WAF, CASB, IAM, SIEM, etc. Required Skills 3 + years of information technology and/or information security operations experience. Ideally 2+ years of working with different Cloud platforms (SaaS, PaaS, and IaaS) and environments (Public, Private, Hybrid). Familiarity with the following will be considered a plus: Solid understanding of enterprise-level directory and system configuration services (Active Directory, SCCM, LDAP, Exchange, SharePoint, M365) and how these integrate with cloud platforms Solid understanding of cloud security industry standards such as Cloud Security Alliance (CSA), ISO/IEC 27017 and NIST CSF and how they help in compliance for cloud providers and cloud customers Hands-on technical experience implementing security solutions for Microsoft Azure Knowledge of cloud orchestration and automation (Continuous Integration and Continuous Delivery (CI/CD)) in single and multi-tenant environments using tools like Terraform, Ansible, Puppet, Chef, Salt etc. Knowledge of cloud access security broker (CASB) and cloud workload protection platform (CWPP) technologies Solid understanding of OSI Model and TCP/IP protocol suite and network segmentation principles and how these can be applied on cloud platforms Preferred: Previous Consulting or Big 4 experience. Hands-on experience with Azure, plus any CASB or CWPP product or service. Understanding of Infrastructure-as-Code, and ability to create scripts using Terraform, ARM, Ansible etc. Knowledge of scripting languages (PowerShell, JSON, .NET, Python, Javascript etc.) Qualification Bachelor’s Degree required.Ideally in Computer Science, Cyber Security, Information Security, Engineering, Information Technology. How You’ll Grow At Deloitte, we’ve invested a great deal to create a rich environment in which our professionals can grow. We want all our people to develop in their own way, playing to their own strengths as they hone their leadership skills. And, as a part of our efforts, we provide our professionals with a variety of learning and networking opportunities—including exposure to leaders, sponsors, coaches, and challenging assignments—to help accelerate their careers along the way. No two people learn in the same way. So, we provide a range of resources including live classrooms, team-based learning, and eLearning. DU: The Leadership Center in India, our state-of-the-art, world-class learning Center in the Hyderabad offices is an extension of the Deloitte University (DU) in Westlake, Texas, and represents a tangible symbol of our commitment to our people’s growth and development. Explore DU: The Leadership Center in India . Deloitte’s culture Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy, centered, confident, and aware. Deloitte is committed to achieving diversity within its workforce, and encourages all qualified applicants to apply, irrespective of gender, age, sexual orientation, disability, culture, religious and ethnic background. We offer well-being programs and are continuously looking for new ways to maintain a culture that is inclusive, invites authenticity, leverages our diversity, and where our people excel and lead healthy, happy lives. Learn more about Life at Deloitte. Corporate citizenship Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationships with Deloitte’s clients, our people and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities. Learn more about Deloitte’s impact on the world. Recruiting tips Finding the right job and preparing for the recruitment process can be tricky. Check out tips from our Deloitte recruiting professionals to set yourself up for success. Check out recruiting tips from Deloitte recruiters . Benefits We believe that to be an undisputed leader in professional services, we should equip you with the resources that can make a positive impact on your well-being journey. Our vision is to create a leadership culture focused on the development and well-being of our people. Here are some of our benefits and programs to support you and your family’s well-being needs. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you . Our people and culture Our people and our culture make Deloitte a place where leaders thrive. Get an inside look at the rich diversity of background, education, and experiences of our people. What impact will you make? Check out our professionals’ career journeys and be inspired by their stories. Professional development You want to make an impact. And we want you to make it. We can help you do that by providing you the culture, training, resources, and opportunities to help you grow and succeed as a professional. Learn more about our commitment to developing our people . © 2025. See Terms of Use for more information. Deloitte refers to one or more of Deloitte Touche Tohmatsu Limited, a UK private company limited by guarantee ("DTTL"), its network of member firms, and their related entities. DTTL and each of its member firms are legally separate and independent entities. DTTL (also referred to as "Deloitte Global") does not provide services to clients. In the United States, Deloitte refers to one or more of the US member firms of DTTL, their related entities that operate using the "Deloitte" name in the United States and their respective affiliates. Certain services may not be available to attest clients under the rules and regulations of public accounting. Please see www.deloitte.com/about to learn more about our global network of member firms. Our purpose Deloitte’s purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities. Our people and culture Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our clients' most complex challenges. This makes Deloitte one of the most rewarding places to work. Professional development At Deloitte, professionals have the opportunity to work with some of the best and discover what works best for them. Here, we prioritize professional growth, offering diverse learning and networking opportunities to help accelerate careers and enhance leadership skills. Our state-of-the-art DU: The Leadership Center in India, located in Hyderabad, represents a tangible symbol of our commitment to the holistic growth and development of our people. Explore DU: The Leadership Center in India . Benefits To Help You Thrive At Deloitte, we know that great people make a great organization. Our comprehensive rewards program helps us deliver a distinctly Deloitte experience that helps that empowers our professionals to thrive mentally, physically, and financially—and live their purpose. To support our professionals and their loved ones, we offer a broad range of benefits. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you. Recruiting tips From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters. Requisition code: 311314

Position Summary GCP DevSecOps - Consultant Position Summary As a DevSecOps Consultant, you will be a key contributor to the successful delivery of high-visibility projects, applying your technical skills and engineering knowledge to build secure, reliable solutions. You will work hands-on with modern DevSecOps tools, AI/ML services, deployment architecture, and cloud security best practices and frameworks to help deliver solutions that create value for Deloitte’s business and its clients. You will collaborate with cross-functional teams to design, implement, and maintain CI/CD pipelines and automation processes, ensuring that security and quality are integrated throughout the software development lifecycle. Your ability to troubleshoot, learn quickly, and apply best practices will be essential in supporting the delivery of high-quality, outcome-focused solutions. Key Responsibilities: Act as a subject matter expert (SME) on GCP security and DevSecOps practices during client engagements. Design and deploy AI/ML solutions on GCP, leveraging services like Vertex AI, BigQuery ML, AutoML , and TensorFlow on GCP. Manage CI/CD pipelines, I nfrastructure as C ode ( IaC ), and automation tools for ML deployments (e.g., using Terraform, Cloud Build, GitOps ). Provide consulting and advisory services to clients on cloud strategy, AI/ML adoption, and security best practices. Perform threat modeling and security assessments specific to AI/ML workloads. Collaborate with DevOps and data teams to automate, monitor , and optimize ML workflows. Lead security assessments of cloud environments and DevOps pipelines. Evaluate and enhance CI/CD pipelines with automated security testing tools (SAST, DAST, SCA, IaC scanning). Recommend and implement policy-as-code for guardrails (OPA, Sentinel). Deliver security posture reports, recommendations, and remediation plans. Collaborate with client security, DevOps, and IT teams to drive secure cloud adoption. Design and implement GCP-native security controls (IAM, VPC security, Cloud Armor, SCC, GKE, etc.). Conduct gap analysis on client GCP environments against benchmarks (CIS, NIST, etc.). Guide clients in building secure landing zones and cloud governance frameworks. Design shift-left strategies for embedding security earlier in the SDLC. Map technical controls to compliance frameworks (SOC 2, HIPAA, PCI-DSS, ISO 27001, etc.). Assist with security documentation, risk registers, and audit support. Automate GCP security guardrails using Terraform, Ansible, and Cloud Functions. Integrate security logs into client SIEM/SOAR platforms (Chronicle, Splunk, etc.). Implement and tune cloud-native monitoring tools (Cloud Logging, SCC, etc.). Required Qualifications: 4 + years in Google Cloud Platform DevSecOps role. Proficiency in CI/CD tools, Infrastructure Code, container security, and policy-as-code solutions such as Open Policy Agent (OPA). Understanding the embedding of security controls and automated checks into DevOps pipelines (CI/CD) using tools such as Jenkins, GitLab CI, Terraform, and Cloud Build. Strong hands-on experience with Vertex AI, BigQuery , Cloud Functions, GKE, and AI/ML Ops on GCP. Deep understanding of AI/ML model lifecycle, including data prep, training, evaluation, deployment, and monitoring. Familiarity with compliance frameworks (e.g., HIPAA, SOC 2, ISO 27001) as they apply to cloud-based ML systems Proficiency with security automation tools and scripting (Python, Bash, etc.). Familiarity with container security (e.g., GKE, Kubernetes RBAC, image scanning). Experience with security frameworks such as NIST, CIS, or MITRE ATT&CK. Familiarity with security tools like Checkov , Snyk or Prisma Cloud. Preferred Qualifications: Certifications such as: GCP Cloud DevOps Engineer, Architect, Professional Machine Learning Engineer, GCP Cloud Security Engineer, CCSP. Understanding of responsible AI principles, including model fairness, transparency, and auditability Experience with Kubernetes security in GKE (RBAC, network policies, container scanning). Knowledge of multi-cloud (AWS, Azure ) security strategies and governance. Familiarity with service mesh security (Istio, Anthos). Knowledge of integration of AI/ML for Advanced Security Analytics with existing on-premise and cloud platforms (e.g., Network Intelligence/ Sentinel/ Chronicle). Familiarity with zero trust architecture concepts . Experience with secrets management tools like HashiCorp Vault, GCP Secret Manager. Knowledge of IP networking, VPNs, DNS, load balancing, and firewalling concepts Job Title: Security Consultant (Microsoft Azure Active Directory and Active Directory (AAD/AD)) Are you interested in working in a dynamic environment that offers opportunities for professional growth and new responsibilities? If so, Deloitte & Touche LLP could be the place for you. Traditional security programs have often been unsuccessful in unifying the need to both secure and support technology innovation required by the business. Join Deloitte's Advisory Cyber Risk Services team and become a member of the largest group of Cyber Risk individuals worldwide. Work you’ll do As a Security Senior Consultant, you will be at the front lines with our clients supporting them with their Cyber Risk needs specifically helping them address Active Directory (AD) health and navigate the journey to the Cloud on the Microsoft Azure Active Directory (AAD) Platform. This will include: Microsoft MFA, SSO, Conditional Access, B2B and B2C and on-premise Active Directory Architect, design, and implement large-scale Active Directory / Azure Active Directory deployments/migrations/upgrades Performing technical health checks for the AD/AAD platforms/environments prior to broader deployments. Assisting clients with Azure B2B, B2C including SAML, OAUTH, OpenID Connect protocols Assisting clients with Migrating applications (legacy platforms or other) to Azure AD Assisting clients cleaning up the Active Directory environment and prepare them for Azure AD/O365 migration Assisting clients with configuration and delivery of Cloud security and compliance reports. Assisting clients with configuration and delivery of Azure Advanced Threat Protection. Providing technical support for AD/AAD services and resolve service-related issues through research and troubleshooting and working with Microsoft. Implementation of industry leading practices around AD/AAD cyber risks and Cloud security for clients. Troubleshooting system level problems in a multi-vendor, multi-protocol network environment. Documenting platform technical issues, analysis, client communication, and resolution as part of cyber risk mitigation steps. Executing on AD/AAD Cloud security engagements during different phases of the lifecycle – assess, design, and implementation & post implementation reviews. Perform health check, discovery and cleanup of Active Directory Infrastructure Analyze and review Active Directory services such as DNS, DHCP, Group Policy etc. Perform Active Directory security assessments specific to ESAE implementations Implement Active Directory RBAC model to secure the AD environment Provide internal technical training to Advisory personnel as needed. Support Managed Services team on client calls as necessary. Acting as a subject matter expert on cyber risk for the Microsoft Active Directory and Azure Active Directory platforms. Contribute to eminence activities, such as whitepapers pertaining to IAM technologies The team Deloitte Advisory's Cyber Risk team helps complex organizations more confidently pursue their growth, innovation and performance agendas through proactive management of the associated cyber risks. Our professionals provide advisory and implementation services that integrate risk, regulatory, and technology skills to help clients transform their legacy programs into proactive Secure.Vigilant.Resilient. TM cyber risk programs. Join the team developing the future state of cyber risk solutions. Learn more about Deloitte Advisory’s Cyber Risk Services practice. Required: 2 + years of experience in technical consulting, client problem solving, architecting, and designing solutions. Working experience in at least one of the areas listed below. 2 +years of hands-on technical experience enterprise-with Microsoft Identity and Access management and EMS services (Azure Active Directory, Azure Active Directory premium solutions, conditional access, SSO, MFA, PAM/PIM, and third party IAM solution integration with AAD) in implementation and operations. This should include designing and implementing AAD for organizations including integrations with applications. 2+ years of hands-on technical experience Identity and Access Management (IAM) on Active Directory. This should include designing and implementing AD for organizations including integrations with applications. Ideally the following technical experience: 2 + years of working with IAM Protocols such as WS-Fed, SAML, OpenID Connect and OAuth. 2 + years of hands-on technical experience implementing IAM focused security solutions for Microsoft technologies such as Active Directory 2 + years of working knowledge with Azure Cloud service provider technologies. 2+ years of working knowledge with Azure Advanced Threat Protection Additional Requirements: B.Tech/BE/BCA/MCA Degree required. Ideally in Computer Science, Cyber Security, Information Security, Engineering, Information Technology. Preferred: Certifications such as: Microsoft new roles-based certifications, CCSP, CCSK, CISSP, CCNP, CCNA, MCSE, MCSA certification a plus. How You’ll Grow At Deloitte, our professional development plan focuses on helping people at every level of their career to identify and use their strengths to do their best work every day. From entry-level employees to senior leaders, we believe there’s always room to learn. We offer opportunities to help sharpen skills in addition to hands-on experience in the global, fast-changing business world. From on-the-job learning experiences to formal development programs at Deloitte University, our professionals have a variety of opportunities to continue to grow throughout their career. Explore Deloitte University, The Leadership Center. Benefits At Deloitte, we know that great people make a great organization. We value our people and offer employees a broad range of benefits. Learn more about what working at Deloitte can mean for you. Deloitte’s culture Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy, centered, confident, and aware. We offer well-being programs and are continuously looking for new ways to maintain a culture where our people excel and lead healthy, happy lives. Learn more about Life at Deloitte. Corporate citizenship Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationships with our clients, our people and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities. Learn more about Deloitte’s impact on the world. Recruiter tips We want job seekers exploring opportunities at Deloitte to feel prepared and confident. To help you with your interview, we suggest that you do your research: know some background about the organization and the business area you’re applying to. Check out recruiting tips from Deloitte professionals. Job title: Azure Cloud Security Engineer (Consultant) About At Deloitte, we do not offer you just a job, but a career in the highly sought-after risk Management field. We are one of the business leaders in the risk market. We work with a vision to make the world more prosperous, trustworthy, and safe. Deloitte’s clients, primarily based outside of India, are large, complex organizations that constantly evolve and innovate to build better products and services. In the process, they encounter various risks and the work we do to help them address these risks is increasingly important to their success—and to the strength of the economy and public security. By joining us, you will get to work with diverse teams of professionals who design, manage, and implement risk-centric solutions across a variety of domains. In the process, you will gain exposure to the risk-centric challenges faced in today’s world by organizations across a range of industry sectors and become subject matter experts in those areas. Our Risk and Financial Advisory services professionals help organizations effectively navigate business risks and opportunities—from strategic, reputation, and financial risks to operational, cyber, and regulatory risks—to gain competitive advantage. We apply our experience in ongoing business operations and corporate lifecycle events to help clients become stronger and more resilient. Our market-leading teams help clients embrace complexity to accelerate performance, disrupt through innovation, and lead in their industries. We use cutting-edge technology like AI/ML techniques, analytics, and RPA to solve Deloitte’s clients ‘most complex issues. Working in Risk and Financial Advisory at Deloitte US-India offices has the power to redefine your ambitions. The Team Cyber & Strategic Risk We help organizations create a cyber-minded culture, reimagine risk to uncover strategic opportunities, and become faster, more innovative, and more resilient in the face of ever-changing threats. We provide intelligence and acuity that dynamically reframes risk, transcending a manual, reactive paradigm. The cyber risk services—Identity & access management (IAM) practice helps organizations in designing, developing, and implementing industry-leading IAM solutions to protect their information and confidential data, as well as help them build their businesses and supporting technologies to be more secure, vigilant, and resilient. The IAM team delivers service to clients through following key areas: User provisioning Access certification Access management and federation Entitlements management Work you’ll do As a Cloud Security Engineer, you will be at the front lines with our clients supporting them with their Cloud Cyber Risk needs: Executing on cloud security engagements across the lifecycle – assessment, strategy, design, implementation, and operations. Performing technical health checks for cloud platforms/environments prior to broader deployments. Assisting in the selection and tailoring of approaches, methods and tools to support cloud adoption, including for migration of existing workloads to a cloud vendor. Designing and developing cloud-specific security policies, standards and procedures. e.g., user account management (SSO, SAML), password/key management, tenant management, firewall management, virtual network access controls, VPN/SSL/IPSec, security incident and event management (SIEM), data protection (DLP, encryption). Documenting all technical issues, analysis, client communication, and resolution. Supporting proof of concept and production deployments of cloud technologies. Assisting clients with transitions to cloud via tenant setup, log processing setup, policy configuration, agent deployment, and reporting. Operating across both technical and management leadership capacities. Providing internal technical training to Advisory personnel as needed. Performing cloud orchestration and automation (Continuous Integration and Continuous Delivery (CI/CD)) in single and multi-tenant environments using tools like Terraform, Ansible, Puppet, Chef, Salt etc. Experience with multiple security technologies like CSPM, CWPP, WAF, CASB, IAM, SIEM, etc. Required Skills 3 + years of information technology and/or information security operations experience. Ideally 2+ years of working with different Cloud platforms (SaaS, PaaS, and IaaS) and environments (Public, Private, Hybrid). Familiarity with the following will be considered a plus: Solid understanding of enterprise-level directory and system configuration services (Active Directory, SCCM, LDAP, Exchange, SharePoint, M365) and how these integrate with cloud platforms Solid understanding of cloud security industry standards such as Cloud Security Alliance (CSA), ISO/IEC 27017 and NIST CSF and how they help in compliance for cloud providers and cloud customers Hands-on technical experience implementing security solutions for Microsoft Azure Knowledge of cloud orchestration and automation (Continuous Integration and Continuous Delivery (CI/CD)) in single and multi-tenant environments using tools like Terraform, Ansible, Puppet, Chef, Salt etc. Knowledge of cloud access security broker (CASB) and cloud workload protection platform (CWPP) technologies Solid understanding of OSI Model and TCP/IP protocol suite and network segmentation principles and how these can be applied on cloud platforms Preferred: Previous Consulting or Big 4 experience. Hands-on experience with Azure, plus any CASB or CWPP product or service. Understanding of Infrastructure-as-Code, and ability to create scripts using Terraform, ARM, Ansible etc. Knowledge of scripting languages (PowerShell, JSON, .NET, Python, Javascript etc.) Qualification Bachelor’s Degree required.Ideally in Computer Science, Cyber Security, Information Security, Engineering, Information Technology. How You’ll Grow At Deloitte, we’ve invested a great deal to create a rich environment in which our professionals can grow. We want all our people to develop in their own way, playing to their own strengths as they hone their leadership skills. And, as a part of our efforts, we provide our professionals with a variety of learning and networking opportunities—including exposure to leaders, sponsors, coaches, and challenging assignments—to help accelerate their careers along the way. No two people learn in the same way. So, we provide a range of resources including live classrooms, team-based learning, and eLearning. DU: The Leadership Center in India, our state-of-the-art, world-class learning Center in the Hyderabad offices is an extension of the Deloitte University (DU) in Westlake, Texas, and represents a tangible symbol of our commitment to our people’s growth and development. Explore DU: The Leadership Center in India . Deloitte’s culture Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy, centered, confident, and aware. Deloitte is committed to achieving diversity within its workforce, and encourages all qualified applicants to apply, irrespective of gender, age, sexual orientation, disability, culture, religious and ethnic background. We offer well-being programs and are continuously looking for new ways to maintain a culture that is inclusive, invites authenticity, leverages our diversity, and where our people excel and lead healthy, happy lives. Learn more about Life at Deloitte. Corporate citizenship Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationships with Deloitte’s clients, our people and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities. Learn more about Deloitte’s impact on the world. Recruiting tips Finding the right job and preparing for the recruitment process can be tricky. Check out tips from our Deloitte recruiting professionals to set yourself up for success. Check out recruiting tips from Deloitte recruiters . Benefits We believe that to be an undisputed leader in professional services, we should equip you with the resources that can make a positive impact on your well-being journey. Our vision is to create a leadership culture focused on the development and well-being of our people. Here are some of our benefits and programs to support you and your family’s well-being needs. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you . Our people and culture Our people and our culture make Deloitte a place where leaders thrive. Get an inside look at the rich diversity of background, education, and experiences of our people. What impact will you make? Check out our professionals’ career journeys and be inspired by their stories. Professional development You want to make an impact. And we want you to make it. We can help you do that by providing you the culture, training, resources, and opportunities to help you grow and succeed as a professional. Learn more about our commitment to developing our people . © 2025. See Terms of Use for more information. Deloitte refers to one or more of Deloitte Touche Tohmatsu Limited, a UK private company limited by guarantee ("DTTL"), its network of member firms, and their related entities. DTTL and each of its member firms are legally separate and independent entities. DTTL (also referred to as "Deloitte Global") does not provide services to clients. In the United States, Deloitte refers to one or more of the US member firms of DTTL, their related entities that operate using the "Deloitte" name in the United States and their respective affiliates. Certain services may not be available to attest clients under the rules and regulations of public accounting. Please see www.deloitte.com/about to learn more about our global network of member firms. Our purpose Deloitte’s purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities. Our people and culture Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our clients' most complex challenges. This makes Deloitte one of the most rewarding places to work. Professional development At Deloitte, professionals have the opportunity to work with some of the best and discover what works best for them. Here, we prioritize professional growth, offering diverse learning and networking opportunities to help accelerate careers and enhance leadership skills. Our state-of-the-art DU: The Leadership Center in India, located in Hyderabad, represents a tangible symbol of our commitment to the holistic growth and development of our people. Explore DU: The Leadership Center in India . Benefits To Help You Thrive At Deloitte, we know that great people make a great organization. Our comprehensive rewards program helps us deliver a distinctly Deloitte experience that helps that empowers our professionals to thrive mentally, physically, and financially—and live their purpose. To support our professionals and their loved ones, we offer a broad range of benefits. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you. Recruiting tips From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters. Requisition code: 311314

Position Summary GCP DevSecOps - Consultant Position Summary As a DevSecOps Consultant, you will be a key contributor to the successful delivery of high-visibility projects, applying your technical skills and engineering knowledge to build secure, reliable solutions. You will work hands-on with modern DevSecOps tools, AI/ML services, deployment architecture, and cloud security best practices and frameworks to help deliver solutions that create value for Deloitte’s business and its clients. You will collaborate with cross-functional teams to design, implement, and maintain CI/CD pipelines and automation processes, ensuring that security and quality are integrated throughout the software development lifecycle. Your ability to troubleshoot, learn quickly, and apply best practices will be essential in supporting the delivery of high-quality, outcome-focused solutions. Key Responsibilities: Act as a subject matter expert (SME) on GCP security and DevSecOps practices during client engagements. Design and deploy AI/ML solutions on GCP, leveraging services like Vertex AI, BigQuery ML, AutoML , and TensorFlow on GCP. Manage CI/CD pipelines, I nfrastructure as C ode ( IaC ), and automation tools for ML deployments (e.g., using Terraform, Cloud Build, GitOps ). Provide consulting and advisory services to clients on cloud strategy, AI/ML adoption, and security best practices. Perform threat modeling and security assessments specific to AI/ML workloads. Collaborate with DevOps and data teams to automate, monitor , and optimize ML workflows. Lead security assessments of cloud environments and DevOps pipelines. Evaluate and enhance CI/CD pipelines with automated security testing tools (SAST, DAST, SCA, IaC scanning). Recommend and implement policy-as-code for guardrails (OPA, Sentinel). Deliver security posture reports, recommendations, and remediation plans. Collaborate with client security, DevOps, and IT teams to drive secure cloud adoption. Design and implement GCP-native security controls (IAM, VPC security, Cloud Armor, SCC, GKE, etc.). Conduct gap analysis on client GCP environments against benchmarks (CIS, NIST, etc.). Guide clients in building secure landing zones and cloud governance frameworks. Design shift-left strategies for embedding security earlier in the SDLC. Map technical controls to compliance frameworks (SOC 2, HIPAA, PCI-DSS, ISO 27001, etc.). Assist with security documentation, risk registers, and audit support. Automate GCP security guardrails using Terraform, Ansible, and Cloud Functions. Integrate security logs into client SIEM/SOAR platforms (Chronicle, Splunk, etc.). Implement and tune cloud-native monitoring tools (Cloud Logging, SCC, etc.). Required Qualifications: 4 + years in Google Cloud Platform DevSecOps role. Proficiency in CI/CD tools, Infrastructure Code, container security, and policy-as-code solutions such as Open Policy Agent (OPA). Understanding the embedding of security controls and automated checks into DevOps pipelines (CI/CD) using tools such as Jenkins, GitLab CI, Terraform, and Cloud Build. Strong hands-on experience with Vertex AI, BigQuery , Cloud Functions, GKE, and AI/ML Ops on GCP. Deep understanding of AI/ML model lifecycle, including data prep, training, evaluation, deployment, and monitoring. Familiarity with compliance frameworks (e.g., HIPAA, SOC 2, ISO 27001) as they apply to cloud-based ML systems Proficiency with security automation tools and scripting (Python, Bash, etc.). Familiarity with container security (e.g., GKE, Kubernetes RBAC, image scanning). Experience with security frameworks such as NIST, CIS, or MITRE ATT&CK. Familiarity with security tools like Checkov , Snyk or Prisma Cloud. Preferred Qualifications: Certifications such as: GCP Cloud DevOps Engineer, Architect, Professional Machine Learning Engineer, GCP Cloud Security Engineer, CCSP. Understanding of responsible AI principles, including model fairness, transparency, and auditability Experience with Kubernetes security in GKE (RBAC, network policies, container scanning). Knowledge of multi-cloud (AWS, Azure ) security strategies and governance. Familiarity with service mesh security (Istio, Anthos). Knowledge of integration of AI/ML for Advanced Security Analytics with existing on-premise and cloud platforms (e.g., Network Intelligence/ Sentinel/ Chronicle). Familiarity with zero trust architecture concepts . Experience with secrets management tools like HashiCorp Vault, GCP Secret Manager. Knowledge of IP networking, VPNs, DNS, load balancing, and firewalling concepts Job Title: Security Consultant (Microsoft Azure Active Directory and Active Directory (AAD/AD)) Are you interested in working in a dynamic environment that offers opportunities for professional growth and new responsibilities? If so, Deloitte & Touche LLP could be the place for you. Traditional security programs have often been unsuccessful in unifying the need to both secure and support technology innovation required by the business. Join Deloitte's Advisory Cyber Risk Services team and become a member of the largest group of Cyber Risk individuals worldwide. Work you’ll do As a Security Senior Consultant, you will be at the front lines with our clients supporting them with their Cyber Risk needs specifically helping them address Active Directory (AD) health and navigate the journey to the Cloud on the Microsoft Azure Active Directory (AAD) Platform. This will include: Microsoft MFA, SSO, Conditional Access, B2B and B2C and on-premise Active Directory Architect, design, and implement large-scale Active Directory / Azure Active Directory deployments/migrations/upgrades Performing technical health checks for the AD/AAD platforms/environments prior to broader deployments. Assisting clients with Azure B2B, B2C including SAML, OAUTH, OpenID Connect protocols Assisting clients with Migrating applications (legacy platforms or other) to Azure AD Assisting clients cleaning up the Active Directory environment and prepare them for Azure AD/O365 migration Assisting clients with configuration and delivery of Cloud security and compliance reports. Assisting clients with configuration and delivery of Azure Advanced Threat Protection. Providing technical support for AD/AAD services and resolve service-related issues through research and troubleshooting and working with Microsoft. Implementation of industry leading practices around AD/AAD cyber risks and Cloud security for clients. Troubleshooting system level problems in a multi-vendor, multi-protocol network environment. Documenting platform technical issues, analysis, client communication, and resolution as part of cyber risk mitigation steps. Executing on AD/AAD Cloud security engagements during different phases of the lifecycle – assess, design, and implementation & post implementation reviews. Perform health check, discovery and cleanup of Active Directory Infrastructure Analyze and review Active Directory services such as DNS, DHCP, Group Policy etc. Perform Active Directory security assessments specific to ESAE implementations Implement Active Directory RBAC model to secure the AD environment Provide internal technical training to Advisory personnel as needed. Support Managed Services team on client calls as necessary. Acting as a subject matter expert on cyber risk for the Microsoft Active Directory and Azure Active Directory platforms. Contribute to eminence activities, such as whitepapers pertaining to IAM technologies The team Deloitte Advisory's Cyber Risk team helps complex organizations more confidently pursue their growth, innovation and performance agendas through proactive management of the associated cyber risks. Our professionals provide advisory and implementation services that integrate risk, regulatory, and technology skills to help clients transform their legacy programs into proactive Secure.Vigilant.Resilient. TM cyber risk programs. Join the team developing the future state of cyber risk solutions. Learn more about Deloitte Advisory’s Cyber Risk Services practice. Required: 2 + years of experience in technical consulting, client problem solving, architecting, and designing solutions. Working experience in at least one of the areas listed below. 2 +years of hands-on technical experience enterprise-with Microsoft Identity and Access management and EMS services (Azure Active Directory, Azure Active Directory premium solutions, conditional access, SSO, MFA, PAM/PIM, and third party IAM solution integration with AAD) in implementation and operations. This should include designing and implementing AAD for organizations including integrations with applications. 2+ years of hands-on technical experience Identity and Access Management (IAM) on Active Directory. This should include designing and implementing AD for organizations including integrations with applications. Ideally the following technical experience: 2 + years of working with IAM Protocols such as WS-Fed, SAML, OpenID Connect and OAuth. 2 + years of hands-on technical experience implementing IAM focused security solutions for Microsoft technologies such as Active Directory 2 + years of working knowledge with Azure Cloud service provider technologies. 2+ years of working knowledge with Azure Advanced Threat Protection Additional Requirements: B.Tech/BE/BCA/MCA Degree required. Ideally in Computer Science, Cyber Security, Information Security, Engineering, Information Technology. Preferred: Certifications such as: Microsoft new roles-based certifications, CCSP, CCSK, CISSP, CCNP, CCNA, MCSE, MCSA certification a plus. How You’ll Grow At Deloitte, our professional development plan focuses on helping people at every level of their career to identify and use their strengths to do their best work every day. From entry-level employees to senior leaders, we believe there’s always room to learn. We offer opportunities to help sharpen skills in addition to hands-on experience in the global, fast-changing business world. From on-the-job learning experiences to formal development programs at Deloitte University, our professionals have a variety of opportunities to continue to grow throughout their career. Explore Deloitte University, The Leadership Center. Benefits At Deloitte, we know that great people make a great organization. We value our people and offer employees a broad range of benefits. Learn more about what working at Deloitte can mean for you. Deloitte’s culture Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy, centered, confident, and aware. We offer well-being programs and are continuously looking for new ways to maintain a culture where our people excel and lead healthy, happy lives. Learn more about Life at Deloitte. Corporate citizenship Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationships with our clients, our people and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities. Learn more about Deloitte’s impact on the world. Recruiter tips We want job seekers exploring opportunities at Deloitte to feel prepared and confident. To help you with your interview, we suggest that you do your research: know some background about the organization and the business area you’re applying to. Check out recruiting tips from Deloitte professionals. Job title: Azure Cloud Security Engineer (Consultant) About At Deloitte, we do not offer you just a job, but a career in the highly sought-after risk Management field. We are one of the business leaders in the risk market. We work with a vision to make the world more prosperous, trustworthy, and safe. Deloitte’s clients, primarily based outside of India, are large, complex organizations that constantly evolve and innovate to build better products and services. In the process, they encounter various risks and the work we do to help them address these risks is increasingly important to their success—and to the strength of the economy and public security. By joining us, you will get to work with diverse teams of professionals who design, manage, and implement risk-centric solutions across a variety of domains. In the process, you will gain exposure to the risk-centric challenges faced in today’s world by organizations across a range of industry sectors and become subject matter experts in those areas. Our Risk and Financial Advisory services professionals help organizations effectively navigate business risks and opportunities—from strategic, reputation, and financial risks to operational, cyber, and regulatory risks—to gain competitive advantage. We apply our experience in ongoing business operations and corporate lifecycle events to help clients become stronger and more resilient. Our market-leading teams help clients embrace complexity to accelerate performance, disrupt through innovation, and lead in their industries. We use cutting-edge technology like AI/ML techniques, analytics, and RPA to solve Deloitte’s clients ‘most complex issues. Working in Risk and Financial Advisory at Deloitte US-India offices has the power to redefine your ambitions. The Team Cyber & Strategic Risk We help organizations create a cyber-minded culture, reimagine risk to uncover strategic opportunities, and become faster, more innovative, and more resilient in the face of ever-changing threats. We provide intelligence and acuity that dynamically reframes risk, transcending a manual, reactive paradigm. The cyber risk services—Identity & access management (IAM) practice helps organizations in designing, developing, and implementing industry-leading IAM solutions to protect their information and confidential data, as well as help them build their businesses and supporting technologies to be more secure, vigilant, and resilient. The IAM team delivers service to clients through following key areas: User provisioning Access certification Access management and federation Entitlements management Work you’ll do As a Cloud Security Engineer, you will be at the front lines with our clients supporting them with their Cloud Cyber Risk needs: Executing on cloud security engagements across the lifecycle – assessment, strategy, design, implementation, and operations. Performing technical health checks for cloud platforms/environments prior to broader deployments. Assisting in the selection and tailoring of approaches, methods and tools to support cloud adoption, including for migration of existing workloads to a cloud vendor. Designing and developing cloud-specific security policies, standards and procedures. e.g., user account management (SSO, SAML), password/key management, tenant management, firewall management, virtual network access controls, VPN/SSL/IPSec, security incident and event management (SIEM), data protection (DLP, encryption). Documenting all technical issues, analysis, client communication, and resolution. Supporting proof of concept and production deployments of cloud technologies. Assisting clients with transitions to cloud via tenant setup, log processing setup, policy configuration, agent deployment, and reporting. Operating across both technical and management leadership capacities. Providing internal technical training to Advisory personnel as needed. Performing cloud orchestration and automation (Continuous Integration and Continuous Delivery (CI/CD)) in single and multi-tenant environments using tools like Terraform, Ansible, Puppet, Chef, Salt etc. Experience with multiple security technologies like CSPM, CWPP, WAF, CASB, IAM, SIEM, etc. Required Skills 3 + years of information technology and/or information security operations experience. Ideally 2+ years of working with different Cloud platforms (SaaS, PaaS, and IaaS) and environments (Public, Private, Hybrid). Familiarity with the following will be considered a plus: Solid understanding of enterprise-level directory and system configuration services (Active Directory, SCCM, LDAP, Exchange, SharePoint, M365) and how these integrate with cloud platforms Solid understanding of cloud security industry standards such as Cloud Security Alliance (CSA), ISO/IEC 27017 and NIST CSF and how they help in compliance for cloud providers and cloud customers Hands-on technical experience implementing security solutions for Microsoft Azure Knowledge of cloud orchestration and automation (Continuous Integration and Continuous Delivery (CI/CD)) in single and multi-tenant environments using tools like Terraform, Ansible, Puppet, Chef, Salt etc. Knowledge of cloud access security broker (CASB) and cloud workload protection platform (CWPP) technologies Solid understanding of OSI Model and TCP/IP protocol suite and network segmentation principles and how these can be applied on cloud platforms Preferred: Previous Consulting or Big 4 experience. Hands-on experience with Azure, plus any CASB or CWPP product or service. Understanding of Infrastructure-as-Code, and ability to create scripts using Terraform, ARM, Ansible etc. Knowledge of scripting languages (PowerShell, JSON, .NET, Python, Javascript etc.) Qualification Bachelor’s Degree required.Ideally in Computer Science, Cyber Security, Information Security, Engineering, Information Technology. How You’ll Grow At Deloitte, we’ve invested a great deal to create a rich environment in which our professionals can grow. We want all our people to develop in their own way, playing to their own strengths as they hone their leadership skills. And, as a part of our efforts, we provide our professionals with a variety of learning and networking opportunities—including exposure to leaders, sponsors, coaches, and challenging assignments—to help accelerate their careers along the way. No two people learn in the same way. So, we provide a range of resources including live classrooms, team-based learning, and eLearning. DU: The Leadership Center in India, our state-of-the-art, world-class learning Center in the Hyderabad offices is an extension of the Deloitte University (DU) in Westlake, Texas, and represents a tangible symbol of our commitment to our people’s growth and development. Explore DU: The Leadership Center in India . Deloitte’s culture Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy, centered, confident, and aware. Deloitte is committed to achieving diversity within its workforce, and encourages all qualified applicants to apply, irrespective of gender, age, sexual orientation, disability, culture, religious and ethnic background. We offer well-being programs and are continuously looking for new ways to maintain a culture that is inclusive, invites authenticity, leverages our diversity, and where our people excel and lead healthy, happy lives. Learn more about Life at Deloitte. Corporate citizenship Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationships with Deloitte’s clients, our people and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities. Learn more about Deloitte’s impact on the world. Recruiting tips Finding the right job and preparing for the recruitment process can be tricky. Check out tips from our Deloitte recruiting professionals to set yourself up for success. Check out recruiting tips from Deloitte recruiters . Benefits We believe that to be an undisputed leader in professional services, we should equip you with the resources that can make a positive impact on your well-being journey. Our vision is to create a leadership culture focused on the development and well-being of our people. Here are some of our benefits and programs to support you and your family’s well-being needs. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you . Our people and culture Our people and our culture make Deloitte a place where leaders thrive. Get an inside look at the rich diversity of background, education, and experiences of our people. What impact will you make? Check out our professionals’ career journeys and be inspired by their stories. Professional development You want to make an impact. And we want you to make it. We can help you do that by providing you the culture, training, resources, and opportunities to help you grow and succeed as a professional. Learn more about our commitment to developing our people . © 2025. See Terms of Use for more information. Deloitte refers to one or more of Deloitte Touche Tohmatsu Limited, a UK private company limited by guarantee ("DTTL"), its network of member firms, and their related entities. DTTL and each of its member firms are legally separate and independent entities. DTTL (also referred to as "Deloitte Global") does not provide services to clients. In the United States, Deloitte refers to one or more of the US member firms of DTTL, their related entities that operate using the "Deloitte" name in the United States and their respective affiliates. Certain services may not be available to attest clients under the rules and regulations of public accounting. Please see www.deloitte.com/about to learn more about our global network of member firms. Our purpose Deloitte’s purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities. Our people and culture Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our clients' most complex challenges. This makes Deloitte one of the most rewarding places to work. Professional development At Deloitte, professionals have the opportunity to work with some of the best and discover what works best for them. Here, we prioritize professional growth, offering diverse learning and networking opportunities to help accelerate careers and enhance leadership skills. Our state-of-the-art DU: The Leadership Center in India, located in Hyderabad, represents a tangible symbol of our commitment to the holistic growth and development of our people. Explore DU: The Leadership Center in India . Benefits To Help You Thrive At Deloitte, we know that great people make a great organization. Our comprehensive rewards program helps us deliver a distinctly Deloitte experience that helps that empowers our professionals to thrive mentally, physically, and financially—and live their purpose. To support our professionals and their loved ones, we offer a broad range of benefits. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you. Recruiting tips From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters. Requisition code: 311314

Position Summary GCP DevSecOps - Consultant Position Summary As a DevSecOps Consultant, you will be a key contributor to the successful delivery of high-visibility projects, applying your technical skills and engineering knowledge to build secure, reliable solutions. You will work hands-on with modern DevSecOps tools, AI/ML services, deployment architecture, and cloud security best practices and frameworks to help deliver solutions that create value for Deloitte’s business and its clients. You will collaborate with cross-functional teams to design, implement, and maintain CI/CD pipelines and automation processes, ensuring that security and quality are integrated throughout the software development lifecycle. Your ability to troubleshoot, learn quickly, and apply best practices will be essential in supporting the delivery of high-quality, outcome-focused solutions. Key Responsibilities: Act as a subject matter expert (SME) on GCP security and DevSecOps practices during client engagements. Design and deploy AI/ML solutions on GCP, leveraging services like Vertex AI, BigQuery ML, AutoML , and TensorFlow on GCP. Manage CI/CD pipelines, I nfrastructure as C ode ( IaC ), and automation tools for ML deployments (e.g., using Terraform, Cloud Build, GitOps ). Provide consulting and advisory services to clients on cloud strategy, AI/ML adoption, and security best practices. Perform threat modeling and security assessments specific to AI/ML workloads. Collaborate with DevOps and data teams to automate, monitor , and optimize ML workflows. Lead security assessments of cloud environments and DevOps pipelines. Evaluate and enhance CI/CD pipelines with automated security testing tools (SAST, DAST, SCA, IaC scanning). Recommend and implement policy-as-code for guardrails (OPA, Sentinel). Deliver security posture reports, recommendations, and remediation plans. Collaborate with client security, DevOps, and IT teams to drive secure cloud adoption. Design and implement GCP-native security controls (IAM, VPC security, Cloud Armor, SCC, GKE, etc.). Conduct gap analysis on client GCP environments against benchmarks (CIS, NIST, etc.). Guide clients in building secure landing zones and cloud governance frameworks. Design shift-left strategies for embedding security earlier in the SDLC. Map technical controls to compliance frameworks (SOC 2, HIPAA, PCI-DSS, ISO 27001, etc.). Assist with security documentation, risk registers, and audit support. Automate GCP security guardrails using Terraform, Ansible, and Cloud Functions. Integrate security logs into client SIEM/SOAR platforms (Chronicle, Splunk, etc.). Implement and tune cloud-native monitoring tools (Cloud Logging, SCC, etc.). Required Qualifications: 4 + years in Google Cloud Platform DevSecOps role. Proficiency in CI/CD tools, Infrastructure Code, container security, and policy-as-code solutions such as Open Policy Agent (OPA). Understanding the embedding of security controls and automated checks into DevOps pipelines (CI/CD) using tools such as Jenkins, GitLab CI, Terraform, and Cloud Build. Strong hands-on experience with Vertex AI, BigQuery , Cloud Functions, GKE, and AI/ML Ops on GCP. Deep understanding of AI/ML model lifecycle, including data prep, training, evaluation, deployment, and monitoring. Familiarity with compliance frameworks (e.g., HIPAA, SOC 2, ISO 27001) as they apply to cloud-based ML systems Proficiency with security automation tools and scripting (Python, Bash, etc.). Familiarity with container security (e.g., GKE, Kubernetes RBAC, image scanning). Experience with security frameworks such as NIST, CIS, or MITRE ATT&CK. Familiarity with security tools like Checkov , Snyk or Prisma Cloud. Preferred Qualifications: Certifications such as: GCP Cloud DevOps Engineer, Architect, Professional Machine Learning Engineer, GCP Cloud Security Engineer, CCSP. Understanding of responsible AI principles, including model fairness, transparency, and auditability Experience with Kubernetes security in GKE (RBAC, network policies, container scanning). Knowledge of multi-cloud (AWS, Azure ) security strategies and governance. Familiarity with service mesh security (Istio, Anthos). Knowledge of integration of AI/ML for Advanced Security Analytics with existing on-premise and cloud platforms (e.g., Network Intelligence/ Sentinel/ Chronicle). Familiarity with zero trust architecture concepts . Experience with secrets management tools like HashiCorp Vault, GCP Secret Manager. Knowledge of IP networking, VPNs, DNS, load balancing, and firewalling concepts Job Title: Security Consultant (Microsoft Azure Active Directory and Active Directory (AAD/AD)) Are you interested in working in a dynamic environment that offers opportunities for professional growth and new responsibilities? If so, Deloitte & Touche LLP could be the place for you. Traditional security programs have often been unsuccessful in unifying the need to both secure and support technology innovation required by the business. Join Deloitte's Advisory Cyber Risk Services team and become a member of the largest group of Cyber Risk individuals worldwide. Work you’ll do As a Security Senior Consultant, you will be at the front lines with our clients supporting them with their Cyber Risk needs specifically helping them address Active Directory (AD) health and navigate the journey to the Cloud on the Microsoft Azure Active Directory (AAD) Platform. This will include: Microsoft MFA, SSO, Conditional Access, B2B and B2C and on-premise Active Directory Architect, design, and implement large-scale Active Directory / Azure Active Directory deployments/migrations/upgrades Performing technical health checks for the AD/AAD platforms/environments prior to broader deployments. Assisting clients with Azure B2B, B2C including SAML, OAUTH, OpenID Connect protocols Assisting clients with Migrating applications (legacy platforms or other) to Azure AD Assisting clients cleaning up the Active Directory environment and prepare them for Azure AD/O365 migration Assisting clients with configuration and delivery of Cloud security and compliance reports. Assisting clients with configuration and delivery of Azure Advanced Threat Protection. Providing technical support for AD/AAD services and resolve service-related issues through research and troubleshooting and working with Microsoft. Implementation of industry leading practices around AD/AAD cyber risks and Cloud security for clients. Troubleshooting system level problems in a multi-vendor, multi-protocol network environment. Documenting platform technical issues, analysis, client communication, and resolution as part of cyber risk mitigation steps. Executing on AD/AAD Cloud security engagements during different phases of the lifecycle – assess, design, and implementation & post implementation reviews. Perform health check, discovery and cleanup of Active Directory Infrastructure Analyze and review Active Directory services such as DNS, DHCP, Group Policy etc. Perform Active Directory security assessments specific to ESAE implementations Implement Active Directory RBAC model to secure the AD environment Provide internal technical training to Advisory personnel as needed. Support Managed Services team on client calls as necessary. Acting as a subject matter expert on cyber risk for the Microsoft Active Directory and Azure Active Directory platforms. Contribute to eminence activities, such as whitepapers pertaining to IAM technologies The team Deloitte Advisory's Cyber Risk team helps complex organizations more confidently pursue their growth, innovation and performance agendas through proactive management of the associated cyber risks. Our professionals provide advisory and implementation services that integrate risk, regulatory, and technology skills to help clients transform their legacy programs into proactive Secure.Vigilant.Resilient. TM cyber risk programs. Join the team developing the future state of cyber risk solutions. Learn more about Deloitte Advisory’s Cyber Risk Services practice. Required: 2 + years of experience in technical consulting, client problem solving, architecting, and designing solutions. Working experience in at least one of the areas listed below. 2 +years of hands-on technical experience enterprise-with Microsoft Identity and Access management and EMS services (Azure Active Directory, Azure Active Directory premium solutions, conditional access, SSO, MFA, PAM/PIM, and third party IAM solution integration with AAD) in implementation and operations. This should include designing and implementing AAD for organizations including integrations with applications. 2+ years of hands-on technical experience Identity and Access Management (IAM) on Active Directory. This should include designing and implementing AD for organizations including integrations with applications. Ideally the following technical experience: 2 + years of working with IAM Protocols such as WS-Fed, SAML, OpenID Connect and OAuth. 2 + years of hands-on technical experience implementing IAM focused security solutions for Microsoft technologies such as Active Directory 2 + years of working knowledge with Azure Cloud service provider technologies. 2+ years of working knowledge with Azure Advanced Threat Protection Additional Requirements: B.Tech/BE/BCA/MCA Degree required. Ideally in Computer Science, Cyber Security, Information Security, Engineering, Information Technology. Preferred: Certifications such as: Microsoft new roles-based certifications, CCSP, CCSK, CISSP, CCNP, CCNA, MCSE, MCSA certification a plus. How You’ll Grow At Deloitte, our professional development plan focuses on helping people at every level of their career to identify and use their strengths to do their best work every day. From entry-level employees to senior leaders, we believe there’s always room to learn. We offer opportunities to help sharpen skills in addition to hands-on experience in the global, fast-changing business world. From on-the-job learning experiences to formal development programs at Deloitte University, our professionals have a variety of opportunities to continue to grow throughout their career. Explore Deloitte University, The Leadership Center. Benefits At Deloitte, we know that great people make a great organization. We value our people and offer employees a broad range of benefits. Learn more about what working at Deloitte can mean for you. Deloitte’s culture Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy, centered, confident, and aware. We offer well-being programs and are continuously looking for new ways to maintain a culture where our people excel and lead healthy, happy lives. Learn more about Life at Deloitte. Corporate citizenship Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationships with our clients, our people and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities. Learn more about Deloitte’s impact on the world. Recruiter tips We want job seekers exploring opportunities at Deloitte to feel prepared and confident. To help you with your interview, we suggest that you do your research: know some background about the organization and the business area you’re applying to. Check out recruiting tips from Deloitte professionals. Job title: Azure Cloud Security Engineer (Consultant) About At Deloitte, we do not offer you just a job, but a career in the highly sought-after risk Management field. We are one of the business leaders in the risk market. We work with a vision to make the world more prosperous, trustworthy, and safe. Deloitte’s clients, primarily based outside of India, are large, complex organizations that constantly evolve and innovate to build better products and services. In the process, they encounter various risks and the work we do to help them address these risks is increasingly important to their success—and to the strength of the economy and public security. By joining us, you will get to work with diverse teams of professionals who design, manage, and implement risk-centric solutions across a variety of domains. In the process, you will gain exposure to the risk-centric challenges faced in today’s world by organizations across a range of industry sectors and become subject matter experts in those areas. Our Risk and Financial Advisory services professionals help organizations effectively navigate business risks and opportunities—from strategic, reputation, and financial risks to operational, cyber, and regulatory risks—to gain competitive advantage. We apply our experience in ongoing business operations and corporate lifecycle events to help clients become stronger and more resilient. Our market-leading teams help clients embrace complexity to accelerate performance, disrupt through innovation, and lead in their industries. We use cutting-edge technology like AI/ML techniques, analytics, and RPA to solve Deloitte’s clients ‘most complex issues. Working in Risk and Financial Advisory at Deloitte US-India offices has the power to redefine your ambitions. The Team Cyber & Strategic Risk We help organizations create a cyber-minded culture, reimagine risk to uncover strategic opportunities, and become faster, more innovative, and more resilient in the face of ever-changing threats. We provide intelligence and acuity that dynamically reframes risk, transcending a manual, reactive paradigm. The cyber risk services—Identity & access management (IAM) practice helps organizations in designing, developing, and implementing industry-leading IAM solutions to protect their information and confidential data, as well as help them build their businesses and supporting technologies to be more secure, vigilant, and resilient. The IAM team delivers service to clients through following key areas: User provisioning Access certification Access management and federation Entitlements management Work you’ll do As a Cloud Security Engineer, you will be at the front lines with our clients supporting them with their Cloud Cyber Risk needs: Executing on cloud security engagements across the lifecycle – assessment, strategy, design, implementation, and operations. Performing technical health checks for cloud platforms/environments prior to broader deployments. Assisting in the selection and tailoring of approaches, methods and tools to support cloud adoption, including for migration of existing workloads to a cloud vendor. Designing and developing cloud-specific security policies, standards and procedures. e.g., user account management (SSO, SAML), password/key management, tenant management, firewall management, virtual network access controls, VPN/SSL/IPSec, security incident and event management (SIEM), data protection (DLP, encryption). Documenting all technical issues, analysis, client communication, and resolution. Supporting proof of concept and production deployments of cloud technologies. Assisting clients with transitions to cloud via tenant setup, log processing setup, policy configuration, agent deployment, and reporting. Operating across both technical and management leadership capacities. Providing internal technical training to Advisory personnel as needed. Performing cloud orchestration and automation (Continuous Integration and Continuous Delivery (CI/CD)) in single and multi-tenant environments using tools like Terraform, Ansible, Puppet, Chef, Salt etc. Experience with multiple security technologies like CSPM, CWPP, WAF, CASB, IAM, SIEM, etc. Required Skills 3 + years of information technology and/or information security operations experience. Ideally 2+ years of working with different Cloud platforms (SaaS, PaaS, and IaaS) and environments (Public, Private, Hybrid). Familiarity with the following will be considered a plus: Solid understanding of enterprise-level directory and system configuration services (Active Directory, SCCM, LDAP, Exchange, SharePoint, M365) and how these integrate with cloud platforms Solid understanding of cloud security industry standards such as Cloud Security Alliance (CSA), ISO/IEC 27017 and NIST CSF and how they help in compliance for cloud providers and cloud customers Hands-on technical experience implementing security solutions for Microsoft Azure Knowledge of cloud orchestration and automation (Continuous Integration and Continuous Delivery (CI/CD)) in single and multi-tenant environments using tools like Terraform, Ansible, Puppet, Chef, Salt etc. Knowledge of cloud access security broker (CASB) and cloud workload protection platform (CWPP) technologies Solid understanding of OSI Model and TCP/IP protocol suite and network segmentation principles and how these can be applied on cloud platforms Preferred: Previous Consulting or Big 4 experience. Hands-on experience with Azure, plus any CASB or CWPP product or service. Understanding of Infrastructure-as-Code, and ability to create scripts using Terraform, ARM, Ansible etc. Knowledge of scripting languages (PowerShell, JSON, .NET, Python, Javascript etc.) Qualification Bachelor’s Degree required.Ideally in Computer Science, Cyber Security, Information Security, Engineering, Information Technology. How You’ll Grow At Deloitte, we’ve invested a great deal to create a rich environment in which our professionals can grow. We want all our people to develop in their own way, playing to their own strengths as they hone their leadership skills. And, as a part of our efforts, we provide our professionals with a variety of learning and networking opportunities—including exposure to leaders, sponsors, coaches, and challenging assignments—to help accelerate their careers along the way. No two people learn in the same way. So, we provide a range of resources including live classrooms, team-based learning, and eLearning. DU: The Leadership Center in India, our state-of-the-art, world-class learning Center in the Hyderabad offices is an extension of the Deloitte University (DU) in Westlake, Texas, and represents a tangible symbol of our commitment to our people’s growth and development. Explore DU: The Leadership Center in India . Deloitte’s culture Our positive and supportive culture encourages our people to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them to be healthy, centered, confident, and aware. Deloitte is committed to achieving diversity within its workforce, and encourages all qualified applicants to apply, irrespective of gender, age, sexual orientation, disability, culture, religious and ethnic background. We offer well-being programs and are continuously looking for new ways to maintain a culture that is inclusive, invites authenticity, leverages our diversity, and where our people excel and lead healthy, happy lives. Learn more about Life at Deloitte. Corporate citizenship Deloitte is led by a purpose: to make an impact that matters. This purpose defines who we are and extends to relationships with Deloitte’s clients, our people and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities. Learn more about Deloitte’s impact on the world. Recruiting tips Finding the right job and preparing for the recruitment process can be tricky. Check out tips from our Deloitte recruiting professionals to set yourself up for success. Check out recruiting tips from Deloitte recruiters . Benefits We believe that to be an undisputed leader in professional services, we should equip you with the resources that can make a positive impact on your well-being journey. Our vision is to create a leadership culture focused on the development and well-being of our people. Here are some of our benefits and programs to support you and your family’s well-being needs. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you . Our people and culture Our people and our culture make Deloitte a place where leaders thrive. Get an inside look at the rich diversity of background, education, and experiences of our people. What impact will you make? Check out our professionals’ career journeys and be inspired by their stories. Professional development You want to make an impact. And we want you to make it. We can help you do that by providing you the culture, training, resources, and opportunities to help you grow and succeed as a professional. Learn more about our commitment to developing our people . © 2025. See Terms of Use for more information. Deloitte refers to one or more of Deloitte Touche Tohmatsu Limited, a UK private company limited by guarantee ("DTTL"), its network of member firms, and their related entities. DTTL and each of its member firms are legally separate and independent entities. DTTL (also referred to as "Deloitte Global") does not provide services to clients. In the United States, Deloitte refers to one or more of the US member firms of DTTL, their related entities that operate using the "Deloitte" name in the United States and their respective affiliates. Certain services may not be available to attest clients under the rules and regulations of public accounting. Please see www.deloitte.com/about to learn more about our global network of member firms. Our purpose Deloitte’s purpose is to make an impact that matters for our people, clients, and communities. At Deloitte, purpose is synonymous with how we work every day. It defines who we are. Our purpose comes through in our work with clients that enables impact and value in their organizations, as well as through our own investments, commitments, and actions across areas that help drive positive outcomes for our communities. Our people and culture Our inclusive culture empowers our people to be who they are, contribute their unique perspectives, and make a difference individually and collectively. It enables us to leverage different ideas and perspectives, and bring more creativity and innovation to help solve our clients' most complex challenges. This makes Deloitte one of the most rewarding places to work. Professional development At Deloitte, professionals have the opportunity to work with some of the best and discover what works best for them. Here, we prioritize professional growth, offering diverse learning and networking opportunities to help accelerate careers and enhance leadership skills. Our state-of-the-art DU: The Leadership Center in India, located in Hyderabad, represents a tangible symbol of our commitment to the holistic growth and development of our people. Explore DU: The Leadership Center in India . Benefits To Help You Thrive At Deloitte, we know that great people make a great organization. Our comprehensive rewards program helps us deliver a distinctly Deloitte experience that helps that empowers our professionals to thrive mentally, physically, and financially—and live their purpose. To support our professionals and their loved ones, we offer a broad range of benefits. Eligibility requirements may be based on role, tenure, type of employment and/ or other criteria. Learn more about what working at Deloitte can mean for you. Recruiting tips From developing a stand out resume to putting your best foot forward in the interview, we want you to feel prepared and confident as you explore opportunities at Deloitte. Check out recruiting tips from Deloitte recruiters. Requisition code: 311314

Job Summary: We are seeking a skilled DevSecOps Engineer to join our XOps team. You will be responsible for integrating security practices within the DevOps pipeline, ensuring secure software development and deployment processes. You'll work closely with development, operations, and security teams to embed automated tools and processes into CI/CD workflows. Key Responsibilities: Design, implement, and manage CI/CD pipelines using tools like Jenkins , GitHub etc. Integrate and manage security tools such as Snyk , SonarQube , JFrog etc., to detect vulnerabilities early in the development lifecycle. Automate security testing and compliance checks as part of the DevOps process. Collaborate with development teams to remediate identified vulnerabilities. Ensure infrastructure as code (IaC) is securely designed and deployed. Drive container security and orchestration using tools like Docker , Kubernetes , Trivy , etc. Maintain compliance with security standards (e.g., OWASP, NIST, ISO 27001). Contribute to monitoring and incident response automation. Required Skills: Strong hands-on experience with Jenkins , Snyk , SonarQube , and static/dynamic code analysis tools. Proficiency in scripting languages (e.g., Python, Bash). Experience with version control systems like Git . Working knowledge of container security, IaC (Terraform, CloudFormation), and secrets management tools (e.g., Vault, AWS Secrets Manager). Familiarity with security practices in cloud environments (AWS, Azure, or GCP). Preferred Qualifications: Certifications such as Certified DevSecOps Professional , AWS Security , or Azure Security Engineer . Knowledge of compliance frameworks (SOC 2, HIPAA, GDPR). Experience in threat modeling and risk assessment.

As a Systems Designer at our company, you will be responsible for designing large scale systems with high complexity to support our high throughput applications. You will use your expertise to understand how to leverage infrastructure for solving such large scale problems effectively. Additionally, you will have the opportunity to develop tools and contribute to open source projects wherever possible. We encourage problem solving as a way of life and expect you to always go to the root cause to support the code you write in production. In terms of technology stack, we select the best combination of tech based on the requirements. You will be working with technologies such as Java, Kotlin, Scala, Spring Boot, JUnit, Resilience4j, Feign, MySQL/AuroraDB, DynamoDB, ELK, Kafka, Redis, TiDB, Docker, Kubernetes, ArgoCD, AWS, GCP, GitHub, IntelliJ, Gradle, Maven, npm/yarn, Flyway, Jenkins, snyk, Bigquery, Kibana, Spark, PlantUML, draw.io, miro.com, Slack, and Zoom. To qualify for this role, you should have at least 3 years of experience using Java in a professional environment. Alternatively, if you are a non-Java user, you should possess excellent skills in generalized programming languages such as Scala, Python, and Go. An interest and ability to learn other coding languages as needed is essential. Experience with NoSQL databases and distributed cache, strong fundamentals in data structures, algorithms, and object-oriented programming, as well as an in-depth understanding of concurrency and distributed computing are required. A degree in Computer Engineering or Computer Science, or 5+ years equivalent experience in SaaS platform development is preferred. Proficiency in English or Japanese is necessary. Preferred qualifications include experience with implementing platform components like RESTful APIs, Pub/Sub Systems, and Database Clients, familiarity with AWS services, expertise in system design and development of web systems handling massive transactions or requiring scalability, language ability in Japanese and English, and experience in microservices. This is a full-time position located at our Gurugram office in Wework. The development center requires your presence in the office to establish a strong core team.,