482 Soar Jobs - Page 8

About The Role Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Security Information and Event Management (SIEM) Good to have skills : NAMinimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :SIEM Engineer with expertise in Splunk to support the deployment, configuration, and ongoing maintenance of the Splunk platform in support of our Cyber Defense and Security Operations. The ideal candidate will help in developing use cases, onboarding log sources, fine-tuning alerts, and ensuring optimal performance of the SIEM environment Roles & Responsibilities:- Deploy, configure, and maintain Splunk infrastructure components (indexers, forwarders, search heads, etc.)- Onboard log sources from various platforms including network devices, endpoints, cloud, and applications.- Create, optimize, and tune correlation rules and alerts to reduce false positives and improve threat detection.- Develop and maintain dashboards, reports, and visualizations for different stakeholders including SOC, IT, and leadership teams.- Perform root cause analysis and troubleshooting of SIEM-related issues.- Design and implement custom Splunk queries and SPL scripts to support detection and investigation.- Collaborate with Security Operations Center (SOC), Threat Intel, and IR teams to improve detection and response capabilities.- Support the integration of SOAR for automation of repetitive security tasks and response actions.- Participate in threat hunting and red/blue team exercises using Splunk.- Ensure Splunk platform is compliant with internal governance and regulatory requirements (e.g., PCI, HIPAA).- Maintain documentation for use cases, onboarding procedures, and dashboards Professional & Technical Skills: - Bachelors degree in Computer Science, Information Security, or related field (or equivalent experience).- 57 years of experience in Cybersecurity with at least 4+ years hands-on with Splunk.- Strong knowledge of Splunk Enterprise and Splunk Enterprise Security (ES).- Proficient in SPL (Search Processing Language).- Familiarity with security frameworks like MITRE ATT&CK, NIST, or ISO27001.- Experience integrating threat intelligence feeds and IOC sources.- Understanding of network protocols, logs, firewalls, IDS/IPS, endpoint security, and cloud platforms (AWS, Azure).- Experience with SOAR tools (e.g., Splunk SOAR, Phantom) is a plus.- Splunk certifications (e.g., Splunk Core Certified User/Power User/Admin) preferred Additional Information:- The candidate should have minimum 5 years of experience in Security Information and Event Management (SIEM).- This position is based at our Bengaluru office.- A 15 years full time education is required.- Experience with cloud-native logging solutions (e.g., AWS CloudTrail, Azure Sentinel).- Knowledge of scripting languages (Python, PowerShell, Bash).- Exposure to ITSM tools (e.g., ServiceNow) for incident tracking.- Ability to work in a 24x7 security operations environment (if required). Qualification 15 years full time education

About The Role Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Security Operation Automation Good to have skills : NAMinimum 3 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to assess security needs, designing robust security solutions, and documenting the implementation of cloud security controls. You will also oversee the transition to cloud security-managed operations, ensuring that all processes align with organizational standards and best practices. Engaging in continuous improvement initiatives will be a key part of your role, as you strive to enhance the security posture of the organization while adapting to evolving threats and technologies. Roles & Responsibilities:1. Lead the development and implementation of SOAR solutions to automate security incident response and improve incident management efficiency.2. Design and implement scalable SOAR architectures that integrate with existing security infrastructure and tools.3. Manage and mentor a team of SOAR engineers and analysts to ensure successful solution delivery and adoption.4. Collaborate with cross-functional teams* to identify security automation opportunities and drive solution adoption.5. Drive continuous improvement of SOAR solutions through data analysis, reporting, and process optimization.6. Develop and execute SOAR strategy and roadmap7. Design and implement SOAR solutions, playbooks, and integrations8. Lead and mentor a team of SOAR engineers and analysts9. Collaborate with security teams, vendors, and stakeholders10. Analyze data and generate reports to inform SOAR solution improvement11. Ensure compliance with security regulations and industry standardsRequirements:- Strong technical background in security automation, SOAR, and security incident response- Experience with Splunk Phantom SOAR platform- Leadership and team management experience- Excellent communication and collaboration skills- Strong analytical and problem-solving skills Professional & Technical Skills: - Must Have Skills: Proficiency in Security Operation Automation.- Tool proficiency:Splunk Phantom SOAR platform- Strong understanding of cloud security principles and best practices.- Experience with security frameworks such as NIST, ISO 27001, or CIS.- Familiarity with security automation tools and technologies.- Ability to analyze security incidents and develop effective response strategies. Additional Information:- The candidate should have minimum 3 years of experience in Security Operation Automation.- This position is based at our Gurugram office.- A 15 years full time education is required. Qualification 15 years full time education

Position - Operations Security Consultant Experience: 8 to 12 years Location: Chennai Education: B.E./ B.Tech./ MCA Job Profile The Operations Security Consultant is responsible for the end-to-end management of security operations across multiple client environments. The role demands strong leadership in overseeing SOC operations, incident response, threat detection, compliance, and risk management. The ideal candidate will possess extensive hands-on experience in a multi-customer SIEM (QRadar) environment, a deep understanding of security frameworks, and the ability to build trusted relationships with internal and external stakeholders. Key Roles & Responsibilities Oversee Daily security operations and maintain operational excellence ensuring availability, performance, and reliability of security tools and processes. Manage 24/7 monitoring, triage, investigation, and resolution of security incidents via SIEM (QRadar). Coordinate incident management efforts across internal teams and external stakeholders. Develop, fine-tune, and manage security detection rules, use cases, and threat intelligence integration. Implement continuous improvement processes using KPIs, operational reviews, and performance metrics. Manage Lead SOC analysts, threat hunters, and incident responders. Facilitate collaboration across engineering, compliance, and client teams. Ensure compliance with ISO 27001, NIST CSF, CIS Controls, DORA, GDPR, and client-specific standards. Lead preparation of audits, client reports, and executive dashboards. Maintain risk treatment plans aligned with ISO 27001 standards. Conduct vulnerability assessments and prioritize remediation using EBIOS methodology. Desired Skills Hands-on expertise with QRadar SIEM, SOC operations, and incident response. Proficiency in security frameworks: NIST CSF, CIS Controls, DORA, GDPR. Experience with vulnerability management, threat hunting, and risk assessment methodologies. Familiarity with automation, SOAR solutions, and operational workflow optimization. Strong experience on at least one technical environment and related cybersecurity topics: Cloud (AWS/Azure), Mainframe, Datawarehouse, Database, O365 Certifications (Preferred) Security: CISSP, CISM (any one) Technical Skills (Minimum 3 to 4 from below) Environments: Cloud (AWS/Azure), Windows, Linux, Mainframe, Data Warehouse, Database. Tools: Qualys, Splunk, ServiceNow, PAM, IAM, Palo Alto, Fortinet, SOC tools / EDR (MDR), AppSec, Bastion, Network Management, Micro-Segmentation, Vaults & Secret Management, PKI, Vulnerability Scanning (QRadar, Nessus).

Overview: The Mastercard Processing team is looking for an experienced Senior Software Architect to contribute to the design and development of scalable, high-performance payment software solutions. The ideal candidate will possess deep technical expertise, strong background in Payment Systems, and a strategic mindset to drive architectural decisions across multiple projects and teams. Role Architecture & Design o Define and maintain software architecture standards and best practices. o Design scalable, secure, and maintainable systems aligned with business goals. o Evaluate and recommend tools, technologies, and frameworks. Technical Leadership o Collaborate with engineering teams to guide implementation of architectural decisions. o Conduct code reviews and ensure adherence to architectural principles. Technology Strategy o Actively contribute to the department Technology Strategy. o Partner with P&E to identify innovative solutions and drive strategic decisions. o Work closely with A&T to implement Enterprise Standards in the application. o Provide strategic thinking and leadership related to a wide range of applications and systems design and implementation Stakeholder Collaboration o Work closely with product managers, business analysts, and other stakeholders to understand requirements and translate them into technical solutions. o Make presentations to the Senior Management, Business Owners and other Stakeholders and help them in decision making process. o Communicate architectural vision and strategy to both technical and non-technical audiences. Innovation & Strategy o Stay current with emerging technologies and industry trends. o Drive innovation by identifying opportunities for technical improvement and modernization. o Lead proof-of-concept initiatives and evaluate feasibility of new approaches. o Proactively share and seek knowledge within their Guild/Program to drive reuse of patterns/libraries/practices and enhance productivity Technical Qualifications Bachelors or Masters degree in Computer Science, Engineering, or related field. 10+ years of software development experience, with at least 3 years in an architectural role. Proven experience designing and implementing large-scale distributed systems. Expertise in Java & J2EE Technologies, DB Technologies, Microservices, APIs, and Dev Ops tools Strong understanding of software development methodologies (Agile, DevOps). Excellent problem-solving, communication, and leadership skills. Prior experience in Payment Industry and Payment Processing Domain is a big plus. Experience in Mastercard Enterprise Standards, Shared Services (API Gateway, CaaS, Axon etc.), SOAR review process will be a big plus.

Responsibilities Work in a 24x7 Security Operation Centre (SOC) environment. Provide analysis and trending of security log data from various security devices. Coordinate incident response on a daily basis. Perform threat analysis to improve detection capabilities. Conduct forensic investigations and develop recovery plans. Develop and implement advanced defensive strategies and countermeasures. Engage in threat hunting to identify potential threats that may have bypassed defenses. Communicate effectively through written and visual documents for diverse audiences. Requirements Minimum of 6+ years of experience in Cybersecurity. At least 6 years of working in a Security Operations Center (SOC). Proficient in Incident Management and Response, handling escalations. In-depth knowledge of security concepts such as cyber-attacks, threat vectors, and risk management. Knowledge of various operating system flavors including Windows, Linux, and Unix. Knowledge of TCP/IP protocols and network analysis. Experience with SIEM, SSL, Packet Analysis, HIPS/NIPS, and network monitoring tools. Nice-to-haves Hands-on experience with Splunk. Experience with Proofpoint and Azure security. Ability to suggest fine-tuning of existing security use cases.

This Position reports to: IS Service Owner for Cloud Security Your role and responsibilities (Mandatory) In this role, you will have the opportunity to successfully develop and implement security measures for ABB in your area of responsibility. Each day, you will protect ABB from rapidly escalating threats. You will also showcase your expertise by staying vigilant in combating security threats, taking charge of the organizations cybersecurity, and keeping track of existing security infrastructure to ensure systems that protect vital information are secured. The work model for the role is #LI #Onsite This role is contributing to the IS Services in India. You will be mainly accountable for: Identify business requirements and plan corresponding cloud-security solutions for PAAS, IAS and SAAS cloud platforms. Reviewing cloud architecture and configurations to ensure compliance with security best practices and industry standards. Planning appropriate security controls in line with ABB cloud security framework. Ensuring regulatory and Industry compliance are met in cloud deployments. Manage CASB platforms such as Zscaler & Microsoft. Govern integration activities with other platform such as SOAR, SIEM, Service Now etc. with CSPM/CNAPP platform. Planning and implementing cloud security technologies in Collaborating with business stakeholders (application teams, cloud infrastructure teams etc.) to develop and implement effective cloud security strategies. Review Issues/alerts and help various Technical Teams to fix the issues with formal root cause identification. Qualifications for the role Masters/bachelors degree in information management/ engineering, computer systems, business engineering or similar Fluent spoken and written English 10+ years of Information Security experience where At least 5 years in Azure cloud security 5+ years of experience in configuring Platform native security controls. Hands on working experience in CASB solutions

Work with cross functional, multidisciplinary team of stakeholders to support strategy definition and direction for Product Offerings on IBM Power. Be an integral part of the Product Management process, including but not limited to: market and competitive analysis, customer and business partner engagement, understand innovative differentiators, assist with business outcomes, customer and partner success, support product and go-to-market readiness Required education Bachelor's Degree Preferred education Bachelor's Degree Required technical and professional expertise 5+ years of experience working on security offerings (EDR/XDR, SOAR, SIEM, Cyber Security, data encryption, compliance) For Outbound/GTM candidates, prior Sales/Technical Sales experience is a plus This role involves strategic planning, product roadmap creation and prioritization, and cross-functional collaboration with IbM Research.IBMSW. IBM Consulting & IBMinfrastructure 3+ years of experience in product management 3+ years of experience working with clients and understanding theirs needs, use cases, ability to converse with security SMEs, analyze and understand customer application landscape. Knowledge of complex security issues and challenges, growing regulatory compliance requirements, and underlying technologies & solutions to remediate risks Preferred technical and professional experience 2-3 years of experience working with end to end security stack (from hardware to application layer) Strong communication skills Growth minded, resourceful and a team-player Go-to-market experience a plus

About ColorTokens At ColorTokens , we empower businesses to stay operational and resilient in an increasingly complex cybersecurity landscape. Breaches happenbut with our cutting-edge ColorTokens Xshield platform , companies can minimize the impact of breaches by preventing the lateral spread of ransomware and advanced malware. We enable organizations to continue operating while breaches are contained, ensuring critical assets remain protected. Our innovative platform provides unparalleled visibility into traffic patterns between workloads, OT/IoT/IoMT devices, and users, allowing businesses to enforce granular micro-perimeters, swiftly isolate key assets, and respond to breaches with agility. Recognized as a Leader in the Forrester Wave: Microsegmentation Solutions (Q3 2024) , ColorTokens safeguards global enterprises and delivers significant savings by preventing costly disruptions. Join us in transforming cybersecurity. Learn more at www.colortokens.com. Job Summary: Colortokens is seeking a SOC Manager to lead our Security Operations Center (SOC), leveraging Next-Gen SIEM to detect, respond to, and mitigate security threats. The ideal candidate will have deep expertise in modern SIEM platforms, threat intelligence, and incident response while managing customers and a team of security analysts. Job Title: SOC Manager Location: Bangalore Job Type: Full-time Department: Managed Services Key Responsibilities: 1. SOC Leadership & Operations Oversee 24/7 security monitoring, detection, and response operations. Manage, mentor, and train a team of SOC analysts, engineers, and incident responders. Develop and optimize SOC processes, playbooks, and runbooks for effective incident handling. Ensure continuous threat monitoring, analysis, and escalation in accordance with SLAs. 2. SIEM & Security Analytics Management Implement, manage, and optimize Next-Gen SIEM solutions (eg: Stellar Cyber, Cortex, Chronicle etc) Develop advanced detection rules, correlation logic, and behavioural analytics for real-time threat detection. Integrate SIEM with EDR, NDR, SOAR, Threat Intelligence, and Cloud Security tools. Ensure log management, normalization, and enrichment from various sources (firewalls, endpoints, cloud, IAM, etc.). 3. Threat Detection, Incident Response & Forensics Lead security investigations, threat hunting, and forensics analysis. Work with SOC analysts to triage and escalate security incidents (MITRE ATT&CK-based). Oversee the incident response process and conduct post-mortem analysis for continuous improvement. Collaborate with threat intelligence teams to enrich SIEM detections with contextual threat data. 4. Compliance, Reporting & Automation Ensure SOC operations align with regulatory standards (ISO 27001, NIST, GDPR, SOC 2, etc.). Develop automated detection & response workflows using SOAR (Security Orchestration, Automation, and Response). Generate SIEM dashboards, security reports, and executive summaries for stakeholders. Conduct tabletop exercises and Red/Blue team drills to enhance security readiness. 5. Customer & Stakeholder Engagement Act as the primary point of contact for key customers, ensuring high-quality service delivery. Collaborate with OEMs to address cybersecurity risks. Present threat intelligence reports, risk assessments, and incident trends to executive stakeholders. Drive continuous improvement initiatives based on customer feedback and security landscape changes. Customer SLA management and ensure CSAT of greater than 4.5/5 6. Business Support Work with pre-sales teams to respond to customer RFI/RFPs Responsible for upsell and cross-sell activities Enable/train sales teams across regions 7. Required Skills & Experience: Technical Expertise: 12-15 years of experience in SOC operations, SIEM, and cybersecurity incident response. Hands-on expertise with Next-Gen SIEM platforms. Proficiency in SOAR, EDR, XDR, Cloud Security (AWS/Azure/GCP), and threat intelligence tools. Strong knowledge of MITRE ATT&CK, Cyber Kill Chain, and NIST frameworks. Experience in log analysis, anomaly detection, and SIEM rule creation. Scripting skills in Python, PowerShell, or Regex for automation. Leadership & Soft Skills: Strong leadership experience in managing and mentoring SOC teams. Excellent incident response and crisis management abilities. Effective communication with technical and non-technical stakeholders including customers. Ability to collaborate with IT, DevOps, and security teams to enhance security posture. Preferred Certifications: ? CISSP (Certified Information Systems Security Professional) ? GCIA (GIAC Certified Intrusion Analyst) ? GCIH (GIAC Certified Incident Handler) ? SIEM Vendor Certifications Skills: SOC Manager, SOC Process, CISSP, Pre-Sales Activities, SOC Setup Experience. Show more Show less

Monitor,analyze security events,alerts across various platforms. Investigate potential security incidents,escalate as appropriate,following defined incident response processes. Correlate events from multiple sources to identify patterns or anomalies Required Candidate profile Lead,participate in threat hunting activities to proactively identify potential threats vulnerabilities Serve as the administrator for SOC tools including SIEM, EDR, SOAR,threat intelligence platforms Perks and benefits To be disclosed post interview

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Email Security Good to have skills : NAMinimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to document the implementation of cloud security controls and facilitating the transition to cloud security-managed operations. You will engage in discussions to align security strategies with organizational objectives, ensuring that all security measures are effectively integrated into the cloud environment. Your role will also require you to stay updated on the latest security trends and technologies to enhance the overall security posture of the organization. Roles & Responsibilities:-Monitor email traffic for suspicious activities.-Configure and manage email security platforms-Analyze and respond to phishing attacks, spam, and malware delivered via email-Implement and maintain email authentication protocols (SPF, DKIM, DMARC).-develop and enforce email security policies (e.g., email encryption,-Respond to email-related security incidents.-Conduct forensic analysis of email-based attacks.-Work with SOC teams during breach investigations.-Conduct phishing user training.-Automate detection and response using SOAR tools.-Analysis of Email Header and Email body analysis Professional & Technical Skills: - Email protocols:SMTP, IMAP, POP3 -DNS records:SPF, DKIM, DMARC Additional Information:- The candidate should have minimum 5 years of experience in Email Security.- This position is based at our Bengaluru office.- A 15 years full time education is required. Qualification 15 years full time education

Strong understanding of enterprise risk management and third-party/vendor risk management.Project management skills to track GRC initiatives, audits, and remediation efforts. Required Candidate profile Lead compliance activities with SEBI, NCIPC, CERT-IN, and other applicable Indian regulatory bodies; ensure alignment with global standards like ISO 27001, SOC 2, and NIST Cybersecurity Framework.

Your Role Configure and customize FortiSOAR to automate and orchestrate security workflows across enterprise environments. Develop and maintain automation playbooks using Python and scripting languages aligned with security use cases. Integrate various security tools and platforms using APIs, Ansible, and custom scripts to enhance SOC capabilities. Monitor, analyze, and troubleshoot automated security processes to proactively address threats and improve response times. Collaborate with IT and security teams to align FortiSOAR configurations with organizational goals and compliance needs. Your Profile 9 to 12 years of experience in security automation and orchestration using FortiSOAR. Experience in Python and scripting languages with integration of security tools and platforms. Develop, create, and maintain automation playbooks based on security use cases. Integration expertise using APIs, Ansible, and Python for security software and toolsets. Basic understanding of networking and security concepts to support automation workflows. What you will love working at Capgemini Work on enterprise-scale security automation and orchestration using Forti SOAR, Python, and Ansible. Collaborate with global teams to develop and maintain playbooks and integrate security tools via APIs and scripts. Clear career progression paths from engineering roles to security architecture and consulting. Be part of mission-critical projects that enhance threat detection, response automation, and compliance for Fortune 500 clients.

Monitoring & Analysis: Continuously monitor security tools (XDR, WAF, DLP, etc.) and analyse alerts to identify potential threats.Threat Hunting: Conduct proactive threat hunting activities to identify and mitigate risks before they escalate. Required Candidate profile Configuration & Optimization: Configure, fine-tune, and optimize security technologies to enhance detection and prevention capabilities.Candidate must work 24x7 in shift duties.

You will be responsible for overseeing the bank's security incident response and management program. This includes developing and testing incident response plans, coordinating responses to security incidents, and ensuring timely reporting to the RBI when required. Additionally, you will need to implement measures for continuous monitoring of the bank's information systems to detect and respond to security incidents promptly. It is crucial to utilize threat intelligence to stay informed about emerging threats and take necessary actions to safeguard the bank's systems. Your role will also involve configuring and managing SOC solutions such as XDR, SIEM, SOAR, Threat Intelligence, etc. It is essential to have hands-on experience in this area to effectively manage and optimize these solutions. Furthermore, you will be required to assess cyber threats and fine-tune SOC, SIEM, XDR alerts to enhance the bank's security posture and ensure timely detection and response to potential security incidents. Overall, your expertise in security incident management, continuous monitoring, threat intelligence utilization, and SOC solutions will play a critical role in maintaining the bank's security resilience and protecting against cyber threats.,

Job Description: As a cybersecurity professional at SNS India, you will be responsible for understanding various cybersecurity threats and solutions. Your role will involve having knowledge of the security products and services offered by our company. You should be able to effectively translate complex technical concepts into easy-to-understand explanations for clients. Understanding the client's business landscape and security posture will be crucial in identifying opportunities and recommending appropriate solutions. In this role, you will demonstrate proof-of-concepts (POCs) to showcase the value of our offerings. Collaborating with the sales team, you will identify potential customer needs and challenges. Your participation in customer meetings and presentations will be essential to showcase how our solutions can address those needs. Additionally, you will be responsible for creating technical proposals and quotes to support our clients" cybersecurity requirements. Requirements: - Excellent communication and presentation skills - Strong analytical and problem-solving abilities - Ability to build trust and rapport with clients - Up-to-date industry knowledge - Professional appearance Technologies to be known: - Firewall - Endpoint security - DLP - SASE - SSO/MFA - WAF - SOAR - SIEM Join us at SNS India, a leading cybersecurity company dedicated to providing information and network security solutions. Visit www.snsin.com to learn more about our mission and services.,

As a Technical Specialist/Presales Specialist Cyber Security at Techjockey, you will play a crucial role in ensuring the technical accuracy of proposed solutions for specific opportunities or projects. Engaging closely with clients, you will establish yourself as their trusted advisor by collaborating to define, design, and detail the technical aspects and feasibility of the solutions. You will be involved in presenting the latest cybersecurity trends to customers and demonstrating how they can secure their data, network, applications, endpoints, and cloud infrastructure. Your responsibilities will also include engaging with clients at various levels of their organization, collaborating with OEMs for business opportunities, conducting technical sessions on cybersecurity with customers and the in-house team, writing responses to client RFPs, and defining and delivering Proof of Concepts. Your success in this role will be supported by your experience in technical sales, delivery, and demonstrating Proof of Concepts in cybersecurity solutions and methodologies such as ZTNA, PAM, DC, SIEM, SOAR, XDR, EDR, WAF, RASP, SSO, Data Protection, Fraud Prevention, Identity & Access Management, or Cloud Security. At Techjockey, you will thrive in a flat, collegial work environment that values a work hard, play hard attitude. You will have the opportunity for rapid growth by embracing continuous learning and working with a dynamic team of recruitment enthusiasts. You can expect 360-degree exposure to recruitment strategies, high ownership of your work, and a range of perks including health insurance benefits, career development plans, a friendly work environment, fun-filled employee engagement activities, and flexible work timings. Join us at Techjockey for a rewarding career where you can make a difference in the cybersecurity domain and enjoy a vibrant work culture that fosters personal and professional growth.,

Job description This position is responsible for the leadership of the India Information Security (IS) department as part of the Global Information Security Directorate. Areas of responsibility will include coordination with the other IS Departments to ensure standard enforcement of security polices and controls, interfacing with local India IT teams and business leaders, and mitigating risks to the organizations information assets. Responsibilities : Manage India Information Security team s day to day operations. Support the global Security Operations (SecOps) department to safeguard digital assets by assisting with detecting, investigating, and resolving cybersecurity threats Assist the global Governance, Risk Compliance (GRC) department with enforcing cybersecurity policies, overseeing cybersecurity risk, facilitating cybersecurity compliance audits, and conducting cybersecurity awareness training. Assist the global Cybersecurity Infrastructure and Design (CID) department with management and maintenance of the cybersecurity systems, platforms, and controls. Implement Secure Software Development Lifecycle (SSDLC) in India office by enforcing the compliance of global policies, processes, procedures and principles. Qualifications Bachelor s degree in Cyber/Information Security or Information Technology, Computer Science, Computer Engineering Professional certifications such as CISSP, CISM, or equivalent multi-domain cybersecurity focused certification. At least 10 years of experience in IT security management, with a proven track record of managing teams in global matrix environment Experience with security technologies: EDR, SIEM, SOAR, CASM, CASB, CSPM, IAM, PAM Excellent communication and interpersonal skills to effectively engage internal stakeholders. Demonstrated ability to analyze complex security issues, devise solutions, and enforce established security controls. Strong leadership skills to drive standardization of processes, procedures, and principles.

The candidate will be responsible for design, develop, test, and deliver high performant, high available and secured APIs / Microservices based on the architecture guidelines and the selected tooling. Responsible for the development of reusable, testable and standard compliant code. Define the logical design of the functional modules. Design data models for the API. Responsible for documenting the design and code. Responsible to develop quick prototype to identifying the feasibility of the technology. Analyze, track provide updates on the latest trends in the market by staying up to date with new technology trends in the API landscape. Required to adhere to established development standards/practices. Helping in evaluation of third-party products and/or building quick prototypes to prove the technical feasibility. Responsible to facilitate integration with front-end apps. Must-Have 5+ years of development experience with good experience in API /microservices development. Expertise in building scalable distributed API systems in the cloud environment. Experience in REST/SOAP API development. Must have solid hands-on development abilities to convert functional concepts into a working model. Strong hands-on development experience and proficiency in Java and/or Node. Expertise in application frameworks like SpringBoot/NestJS/ etc. Expertise in databases like PostgreSQL/MongoDB/MySQL/Oracle etc. Must have an In-depth understanding of SOA/EAI/ESB concepts. Expertise in one or more cloud platforms like AWS/Azure/GCP. Hands-on experience with API management software like Azure API Management or Mulesoft, or APIGEE. Expertise in integrating the defined Non-Functional Requirements (security, performance etc.) in the solution. Expertise in Docker (Writing Docker files, managing versions of the images) and integration using Kubernetes cluster. Expertise in Test Driven Development and testing frameworks like Jest/JUnit. Expertise in CICD practices building release pipelines. Experienced setting up code quality, code coverage, unit testing, and integration testing in CICD pipelines. Worked in Agile environment and familiar with Scrum/Kanban/Lean etc. Proven track record in troubleshooting issues and identifying the solution Good to have Airline/Aviation Industry experience. Experience with Amadeus DAPI expertise or Amadeus Loyalty APIs. Being full-stack engineer Technology experience in large-scale distributed systems, analytics and visualization, and AI/Machine learning. Domain experience in over-the-top media services/retail/e-commerce. Experience in micro services/service mesh architecture and best practices in deploying highly scalable and resilient applications/platforms on the cloud. Experience with gRPC/Protocol buffers. Experience in building API/microservices that integrate with various data storages like RDBMS/NoSQL document store/Columnar storages. Proficiency in domain-driven design. Experience in service mesh, event-driven architecture. Experience in GraphQL. Experience in Messaging Queues (RabbitMQ, Kafka etc) Qualifications Bachelors degree from an accredited institution.

The candidate will be responsible for design, develop, test, and deliver high performant, high available and secured APIs / Microservices based on the architecture guidelines and the selected tooling. Responsible for the development of reusable, testable and standard compliant code. Define the logical design of the functional modules. Design data models for the API. Responsible for documenting the design and code. Responsible to develop quick prototype to identifying the feasibility of the technology. Analyze, track provide updates on the latest trends in the market by staying up to date with new technology trends in the API landscape. Required to adhere to established development standards/practices. Helping in evaluation of third-party products and/or building quick prototypes to prove the technical feasibility. Responsible to facilitate integration with front-end apps. Must-Have 5+ years of development experience with good experience in API /microservices development. Expertise in building scalable distributed API systems in the cloud environment. Experience in REST/SOAP API development. Must have solid hands-on development abilities to convert functional concepts into a working model. Strong hands-on development experience and proficiency in Java and/or Node. Expertise in application frameworks like SpringBoot/NestJS/ etc. Expertise in databases like PostgreSQL/MongoDB/MySQL/Oracle etc. Must have an In-depth understanding of SOA/EAI/ESB concepts. Expertise in one or more cloud platforms like AWS/Azure/GCP. Hands-on experience with API management software like Azure API Management or Mulesoft, or APIGEE. Expertise in integrating the defined Non-Functional Requirements (security, performance etc.) in the solution. Expertise in Docker (Writing Docker files, managing versions of the images) and integration using Kubernetes cluster. Expertise in Test Driven Development and testing frameworks like Jest/JUnit. Expertise in CICD practices building release pipelines. Experienced setting up code quality, code coverage, unit testing, and integration testing in CICD pipelines. Worked in Agile environment and familiar with Scrum/Kanban/Lean etc. Proven track record in troubleshooting issues and identifying the solution Good to have Airline/Aviation Industry experience. Experience with Amadeus DAPI expertise or Amadeus Loyalty APIs. Being full-stack engineer Technology experience in large-scale distributed systems, analytics and visualization, and AI/Machine learning. Domain experience in over-the-top media services/retail/e-commerce. Experience in micro services/service mesh architecture and best practices in deploying highly scalable and resilient applications/platforms on the cloud. Experience with gRPC/Protocol buffers. Experience in building API/microservices that integrate with various data storages like RDBMS/NoSQL document store/Columnar storages. Proficiency in domain-driven design. Experience in service mesh, event-driven architecture. Experience in GraphQL. Experience in Messaging Queues (RabbitMQ, Kafka etc) Qualifications Bachelors degree from an accredited institution.

The candidate will be responsible for design, develop, test, and deliver high performant, high available and secured APIs / Microservices based on the architecture guidelines and the selected tooling. Responsible for the development of reusable, testable and standard compliant code. Define the logical design of the functional modules. Design data models for the API. Responsible for documenting the design and code. Responsible to develop quick prototype to identifying the feasibility of the technology. Analyze, track provide updates on the latest trends in the market by staying up to date with new technology trends in the API landscape. Required to adhere to established development standards/practices. Helping in evaluation of third-party products and/or building quick prototypes to prove the technical feasibility. Responsible to facilitate integration with front-end apps. Must-Have 5+ years of development experience with good experience in API /microservices development. Expertise in building scalable distributed API systems in the cloud environment. Experience in REST/SOAP API development. Must have solid hands-on development abilities to convert functional concepts into a working model. Strong hands-on development experience and proficiency in Java and/or Node. Expertise in application frameworks like SpringBoot/NestJS/ etc. Expertise in databases like PostgreSQL/MongoDB/MySQL/Oracle etc. Must have an In-depth understanding of SOA/EAI/ESB concepts. Expertise in one or more cloud platforms like AWS/Azure/GCP. Hands-on experience with API management software like Azure API Management or Mulesoft, or APIGEE. Expertise in integrating the defined Non-Functional Requirements (security, performance etc.) in the solution. Expertise in Docker (Writing Docker files, managing versions of the images) and integration using Kubernetes cluster. Expertise in Test Driven Development and testing frameworks like Jest/JUnit. Expertise in CICD practices building release pipelines. Experienced setting up code quality, code coverage, unit testing, and integration testing in CICD pipelines. Worked in Agile environment and familiar with Scrum/Kanban/Lean etc. Proven track record in troubleshooting issues and identifying the solution Good to have Airline/Aviation Industry experience. Experience with Amadeus DAPI expertise or Amadeus Loyalty APIs. Being full-stack engineer Technology experience in large-scale distributed systems, analytics and visualization, and AI/Machine learning. Domain experience in over-the-top media services/retail/e-commerce. Experience in micro services/service mesh architecture and best practices in deploying highly scalable and resilient applications/platforms on the cloud. Experience with gRPC/Protocol buffers. Experience in building API/microservices that integrate with various data storages like RDBMS/NoSQL document store/Columnar storages. Proficiency in domain-driven design. Experience in service mesh, event-driven architecture. Experience in GraphQL. Experience in Messaging Queues (RabbitMQ, Kafka etc)

As a SOC Manager at UnifyApps in Gurugram, Haryana, you will play a crucial role in leading the establishment and continuous operations of our Security Operations Center (SOC). Your strategic expertise will be instrumental in building a high-performing SOC team from the ground up, defining operational processes, selecting and deploying security tools, and overseeing daily threat detection, incident response, and continuous monitoring efforts. Your responsibilities will include defining the SOC vision, operating model, and roadmap in alignment with organizational security goals. You will be responsible for building and leading the SOC team, which involves tasks such as hiring, training, mentoring, and performance management. Additionally, you will need to select, implement, and integrate essential security technologies including SIEM, SOAR, EDR, threat intelligence platforms, and log management tools. Documenting SOC processes, including incident detection, triage, escalation, response, and reporting workflows will also be a key aspect of your role. In your role, you will oversee 24/7 SOC operations to ensure timely detection, analysis, and response to security threats and incidents. Establishing and maintaining incident response playbooks and standard operating procedures will be crucial in your operations management. Collaboration with IT, DevOps, Risk, and Compliance teams will be essential to ensure end-to-end security visibility and coverage. You will continuously optimize alerting rules, automation, and response capabilities using threat intelligence and lessons learned. Your governance and reporting duties will involve tracking key SOC metrics, presenting regular reports and dashboards to senior leadership on SOC performance, threats detected, and incident trends. Ensuring compliance with internal policies and external regulatory requirements such as ISO 27001, SOC 2, GDPR, etc., will also be part of your responsibilities. Leading post-incident reviews, driving root cause analysis, and implementing improvements will be crucial for maintaining a robust security posture. As a technology leader, you are expected to stay updated with the latest cyber threats, tactics, and techniques to ensure the SOC's preparedness and agility. Evaluating and recommending new tools, frameworks, and methodologies to enhance detection and response capabilities will be part of your role. You will drive the integration and optimization of various data sources and security telemetry into the SOC ecosystem. To qualify for this role, you should have a Bachelor's or Master's degree in Computer Science, Information Security, or a related field. You should have 8-12 years of overall experience in cybersecurity, with at least 3-5 years in SOC operations. Proven experience in setting up and scaling SOC teams and processes from scratch is essential. Hands-on experience with SIEMs, SOAR platforms, EDR tools, and threat intelligence platforms is required. A strong understanding of cyberattack vectors, incident response, and threat hunting methodologies is also necessary. Additionally, you should possess strong leadership and team management skills, excellent problem-solving and analytical abilities, and effective communication and stakeholder management skills across technical and non-technical teams. Experience working in regulated environments is considered a plus. If you are ready to take on this challenging role and contribute to the security operations at UnifyApps, please fill out the application form [here](https://forms.gle/7y5AkKZgKYNYjnU77).,

Key Deliverables : Lead and coordinate security incident response, ensuring effective triage, investigation, and communication. Develop and maintain incident response playbooks and runbooks for evolving threat scenarios. Automate workflows for detection, incident analysis, and response to improve efficiency. Improve security detection capabilities by creating rules, performing threat hunting, and identifying attack vectors. Role Responsibilities : Conduct root cause analysis and recommend improvements to prevent future security incidents. Collaborate with cross-functional teams to enhance detection and response capabilities. Provide expert input on designing and implementing security controls and automation tools. Utilize advanced knowledge of cloud security, SIEM, SOAR, and other tools to monitor and manage incidents.

Your role at Avient Corporation as the Senior Manager of Security Operations and Identity Management involves overseeing the security monitoring and administration of identity management processes. You will lead a global team responsible for 24x7 alerting, triage, investigation, and Incident Response, ensuring compliance with regulations and frameworks across all divisions and markets. Additionally, you will manage the Cyber Threat Intelligence program and identity lifecycle functions to automate processes and enhance cyber maturity. Key Responsibilities: - Ensure that SIEM and SOAR environments cover known and emerging MITRE ATT&CK techniques - Manage the global SOC team and monitor Key Performance Indicators (KPIs) for continuous improvement - Track SOC Maturity and collaborate with the CISO to develop a roadmap for enhancing SOC capabilities and automation - Oversee forensics, litigation support, and e-discovery capabilities in response to Legal requests - Lead the team in implementing best practices for identity lifecycle functions and IAM architecture design - Collaborate with vendors, partners, and 3rd parties to deliver capabilities that meet target levels of cyber maturity and efficiency Qualifications: - Hold security certifications such as CISSP, CISM, GCIH, GSEC, etc - Have experience with modern cloud detection and response tools and processes - Possess Operational Technology (OT) experience In alignment with Avient's values, we believe in fostering a diverse and inclusive work environment where all employees are encouraged to lead, innovate, and drive growth. We promote equality of opportunity and base decisions on qualifications, abilities, experience, and performance, ensuring a fair and supportive workplace for all individuals. Join Avient to contribute your unique perspective and expertise towards shaping a sustainable future through innovative materials solutions.,

About The Company Expedia Group brands power global travel for everyone, everywhere. We design cutting-edge tech to make travel smoother and more memorable, and we create groundbreaking solutions for our partners. Our diverse, vibrant, and welcoming community is essential in driving our success. Why Join Us To shape the future of travel, people must come first. Guided by our Values and Leadership Agreements, we foster an open culture where everyone belongs, differences are celebrated and know that when one of us wins, we all win. We provide a full benefits package, including exciting travel perks, generous time-off, parental leave, a flexible work model (with some pretty cool offices), and career development resources, all to fuel our employees' passion for travel and ensure a rewarding career journey. We&aposre building a more open world. Join us. About The Role Expedia Group is seeking a highly skilled Security Engineer to join our Security Solutions Engineering team. In this role, you will be instrumental in designing, implementing, and maintaining critical security systems that protect our infrastructure and data across cloud and on-premise environments. This is a highly visible position that requires a deep understanding of complex technical environments and the ability to develop simple, effective security solutions. You will work closely with cross-functional teams to deliver security initiatives from conception through deployment, ensuring our security posture remains robust and proactive against emerging threats. Qualifications The ideal candidate will possess a Bachelor&aposs or Master&aposs degree in a relevant technical field or equivalent professional experience. You should have at least three years of experience in security engineering and operations support within mission-critical environments. Hands-on experience with AWS cloud services such as EC2, VPC, S3, IAM, CloudFormation, and Lambda is essential, along with a strong understanding of AWS security best practices. Familiarity with security tools like Web Content Filtering, Web Application Firewalls, Intrusion Detection Systems, Vulnerability Management, Endpoint Detection & Response, SIEM, and SOAR platforms is highly preferred. Additional qualifications include a solid understanding of network and system design principles, the ability to analyze security logs and artifacts, and experience with scripting languages such as Python, Java, Perl, or Ruby. Strong organizational, communication, and interpersonal skills are necessary to interact effectively with stakeholders and team members. A proactive, innovative mindset focused on reducing technical debt and automating routine tasks will set you apart. Responsibilities Design, implement, and maintain endpoint detection and response systems, including anti-malware agents, advanced threat protection, and data loss prevention tools. Manage web content filtering solutions, both on-premise and cloud-based, to ensure seamless internet security. Oversee vulnerability management processes for data center and cloud assets, ensuring timely patching and compliance. Integrate and analyze threat intelligence feeds from sources such as Recorded Future to identify emerging threats. Develop and implement threat detection strategies, including user behavior analysis and security investigations. Configure and optimize SIEM and SOAR solutions, ensuring effective security monitoring and incident response. Secure container environments through discovery, security policies, and vulnerability assessments. Manage network security measures, including Web Application Firewalls, Intrusion Prevention Systems, and AWS GuardDuty. Conduct security audits and utilize orchestration tools to automate security workflows. Proactively monitor, analyze, and improve security systems to enhance our overall security posture. Develop detailed project plans, technical documentation, and comprehensive test plans for security initiatives. Collaborate with business and technical teams to resolve complex security challenges and implement best practices. Influence and improve engineering practices within and beyond the security team to foster a security-first culture. Benefits Expedia Group offers a comprehensive benefits package designed to support our employees' well-being and professional growth. This includes competitive health insurance plans, travel perks that allow you to explore the world, generous paid time off, parental leave policies, and flexible work arrangements to promote work-life balance. We also provide career development resources such as training programs, mentorship opportunities, and internal mobility options to help you achieve your career goals. Our inclusive culture encourages collaboration, innovation, and continuous learning, making Expedia a great place to grow your career while pursuing your passion for travel. Equal Opportunity Expedia Group is committed to creating an inclusive work environment where diversity is valued and all employees are treated with respect. We provide equal employment opportunities to all qualified applicants regardless of race, religion, gender, sexual orientation, national origin, disability, age, or any other protected status. We believe that a diverse workforce fosters innovation and drives our success. We encourage individuals from all backgrounds to apply and join our mission to build a more open and connected world. Show more Show less

We have a opening for the Job Position Automation DevSeCops. ROLE- AUTOMATION DEVSECOPS LOCATION- PUNE & TRIVENDRUM JOB DESCRIPTION: Automation and DevSecOps Engineer We take pride in delivering the comprehensive Information Security Services to our Internal customers. The Security services are based on Security platforms hosted on SaaS and IaaS platforms on private and public cloud service providers. The DevOps engineer will work in developing and implementing infrastructure in support of Web and backend applications deployment in Information Security Services division. This position will closely work with TechOps team, Cloud providers and OEMs to ensure integration and automation towards efficient, clean and reusable code base to empower DevOps in our Security Services area. Job Summary, Technical Skills && Major Responsibilities Key Skills: Collaborate with development and operations teams to design, build, and deploy applications/scripts that automate routine manual processes, with a strong focus on security orchestration and automated response (SOAR) capabilities. Proficient in developing Python scripts to automate routine tasks using cron jobs, scheduler services, or any workflow management tools, particularly in the context of security automation. Ability to work closely with the operations team to understand, support, and resolve all technical challenges in routine operations, with a focus on enhancing security measures through automation. Identify areas for improvement in existing programs and develop modifications that enhance security and automate response actions. Possess strong analytical and debugging skills, especially in the context of security incident response and automation. Demonstrated experience in integrating REST API frameworks with third-party applications, particularly for security orchestration purposes. Knowledge of DevOps tools like Jenkins, Terraform, AWS CloudFormation, and Kubernetes, with an emphasis on their use in security automation. Hands-on experience working with DBMS like MySQL, PostgreSQL, and NoSQL, with a focus on secure data management. Comfortable working with Linux OS, especially in environments requiring secure configurations and automated security responses. Keen interest and proven track record in automation both on-premise and in the cloud, with a focus on security orchestration and automated response. Expertise in Git, Jenkins, and JIRA is a plus, particularly in the context of managing security-related projects. Mandatory Skills Primarily Skill required: Deep understanding of security concepts and the ability to work with security analysts to implement automation requirements for security orchestration and automated response. Scripting Python (Mandatory), JavaScript/Shell scripting, with a focus on security automation. Jenkins, GitHub Actions - CI/CD, with a focus on automating security processes. Containerized infrastructure management Docker, Podman, K8s, with an emphasis on secure deployments. AWS, Azure ability to provision and manage infrastructure securely. Version control systems - Git, with a focus on managing security-related code and configurations. Good to have Entry level security certification (CompTIA Security+ or similar) Ansible knowledge Understanding of reporting tools e.g. Grafana Initial exposure for Google Security Operations (SIEM+SOAR) suite Educational & Professional Qualifications Bachelors / Masters full-time degree in a Technical stream Experience 3 to 5 years of high-tech industry and/or IT work experience in product engineering, development and/or support functions. Other skills (Preferable technical skills /Soft skills) Experience with managing projects in multiple technological and business environments using Agile Strong oral/written communication, time management, problem solving, and analytical skill Excellent communication skills Good inter-personal skills Demonstrated ability to work under intense pressure when resolving complex issues with strict deadlines Ability to lead and execute large,