2646 Soc Jobs - Page 9

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Endpoint Extended Detection and Response Good to have skills : NAMinimum 2 year(s) of experience is required Educational Qualification : 15 years full time education Summary :We are looking for a motivated and skilled Endpoint Security Engineer with 3 plus years of experience in managing and securing endpoints using Microsoft Defender for Endpoint, Symantec Endpoint Protection, and DLP solutions. The ideal candidate will play a critical role in enhancing the security posture of our endpoints across the enterprise. Roles & Responsibilities:- Configure, manage, and monitor Microsoft Defender for Endpoint and Symantec Endpoint Protection.- Implement, manage, and tune Data Loss Prevention (DLP) policies and rules across endpoints and email gateways.- Investigate, analyze, and respond to security alerts and endpoint incidents.- Coordinate with SOC and IT teams for triage and remediation of malware, ransomware, and other endpoint-based threats.- Conduct endpoint vulnerability assessments and patch validation in coordination with vulnerability management teams.- Maintain endpoint protection baselines and enforce policy compliance across user devices.- Generate reports on endpoint protection status, incident trends, and DLP violations.- Ensure continuous improvement of endpoint threat detection and response processes.- Participate in root cause analysis (RCA) of endpoint-related security events. Professional & Technical Skills: -Strong knowledge and hands-on experience with:-Microsoft Defender for Endpoint / Microsoft 365 Defender-Symantec Endpoint Protection (SEP)-DLP solutions (Microsoft Purview DLP, Symantec DLP, or equivalent)-Understanding of endpoint threat vectors, malware, and mitigation techniques.-Familiarity with SIEM tools and EDR workflows.-Basic scripting knowledge (PowerShell, Python, or batch scripting) for automation and investigation tasks.-Strong troubleshooting skills related to endpoint protection agents and policies. Additional Information:- The candidate should have minimum 2 years of experience in Endpoint Extended Detection and Response.- This position is based at our Pune office.- A 15 years full time education is required. Bachelors degree in Cybersecurity, Computer Science, Information Technology, or a related field Preferred certifications:Microsoft SC-200 (Microsoft Security Operations Analyst) ,Symantec Endpoint Protection certification (if available) and CompTIA Security plus. Qualification 15 years full time education

Project Role : Security Advisor Project Role Description : Provide enterprise-level advice to make organizations cyber resilient. Assist in navigating the complex landscape of cyber threats, ensuring robust digital asset protection while maintaining trust with stakeholders. Must have skills : Operational Technology (OT) Security Good to have skills : NAMinimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary Skilled and detail-oriented IT/OT Security Engineer with hands-on experience in Armis for asset visibility and risk management across IT and Operational Technology environments. The ideal candidate will also have expertise in ServiceNow ITSM for incidents, problems, and change management processes.This role is critical for ensuring security and operational resilience across both enterprise and industrial networks, supporting continuous monitoring, risk analysis, and workflow automation. You will work closely with IT, OT, and security teams to ensure accurate asset inventory, threat detection, and efficient incident resolution.Key Responsibilities:IT/OT Security (Armis):Deploy, configure, and manage the Armis platform for complete visibility of IT/OT/IoT devices.Monitor device behavior, identify threats, and respond to anomalies in real time.Integrate Armis with SIEM and other security tools to enhance detection and response capabilities.Collaborate with OT/ICS teams to ensure non-intrusive visibility into critical infrastructure.Conduct asset risk assessments and report on vulnerable or non-compliant devices.ServiceNow ITSM:Utilize ServiceNow ITSM for ticket management (Incidents, Problems, Changes).Automate workflows and ensure timely resolution and proper escalation of security incidents.Integrate asset and threat data from Armis into ServiceNow for centralized incident management.Support audits and compliance efforts related to IT/OT security (e.g., NIST, ISO, NERC CIP). Professional & Technical Skills: Platform Health & Incident Management:Real-time monitoring of OT platform infrastructure, incident triage and investigation, patching, upgrades, and configuration/backup lifecycle management.Vulnerability & Asset Reporting:Monthly vulnerability assessments and reporting using Armis; asset enrichment, validation, and reporting in alignment with enterprise standards.Policy & Alert Management:Policy and rule maintenance, alert fine-tuning based on SOC feedback, and continuous baseline updates to reflect known good changes across ELC sites.Security Event Triage:Support for security incident enrichment, alert prioritization, and collaboration with SOC and ELC teams to suppress noise and escalate meaningful events.Vendor & Lifecycle Coordination:Vendor engagement for RMA, feature requests, and escalated troubleshooting; coordination of platform lifecycle activities and tool enhancements.Tools & Platforms:Armis (OT visibility and asset intelligence).Good-to-Have Skills: Experience with security policy governance and compliance frameworks.Roles and ResponsibilitiesPlatform Support:Monitor the health of OT platform infrastructure and ensure high availability.Lead incident management and root cause investigations.Oversee patch management and platform upgrades.Manage configuration backups and restoration processes.Coordinate with vendors for RMA, feature enhancements, and troubleshooting.Vulnerability Reporting:Generate and deliver monthly vulnerability assessment reports using Armis in the agreed format.Track and report remediation progress and risk posture improvements.Asset Management:Enrich asset metadata and validate asset inventory with client stakeholders.Provide accurate and timely asset reports for compliance and operational use.Policy Management:Maintain and update platform security policies and rules.Fine-tune security alerts based on SOC feedback and operational insights.Continuously update baselines to reflect known good changes at client stake holders sites.Security Incident Management:Support alert enrichment by providing contextual data from Armis.Partner with client stake holders and SOC teams to triage, tune, and respond to alerts.Deprioritize noisy alarms and escalate meaningful security events.Primary SkillOT Platform Security Operations with ArmisExperience8+ years of experience in cybersecurity or infrastructure operations, with at least 3 years in a Specialist role focused on OT platform support and security.Demonstrated expertise in Armis for asset visibility, vulnerability reporting, and alert enrichment in OT environments.Strong background in incident management, patching, configuration backup, and vendor coordination.Ability to stay current with emerging OT threats, security technologies, and industry best practices Educational QualificationBachelors degree in computer science, Information Security, or related field. Vendor Training, certifications or badges like Armis Cyber Defense Core Qualification 15 years full time education

Description Job Title: Information Security Analyst/ Analyst Identity Governance and Compliance Department: Information Security Governance, Risk & Compliance (GRC) Experience: Level: 2 4 years Employment Type: Full-time Key Responsibilities: Manage the Identity Governance and compliance activities, including periodic User Access Reviews (UAR) and RBAC activities. Ensure IAM practices comply with internal policies and external regulatory requirements. Maintain and enhance identity governance policies, standards, and procedures. Provide subject matter expertise on Active Directory (AD), including group policies and access provisioning/deprovisioning. Align identity governance practices with frameworks such as PCI DSS, ISO 27001, NIST CSF, and COBIT. Engage with IT, HR, and business units to enforce least privilege principles and maintain accurate access records. Conduct regular training sessions for the SM team on security controls and client requirements. Coordinate SME involvement in quarterly meetings and training initiatives. Maintain and organize SharePoint and Jira spaces for audit readiness and evidence management. Participate in incident management, change control meetings, and cloud migration initiatives. Engage in SOC operations and threat tracking. Drive continuous improvement initiatives in identity governance and GRC processes. Lead the annual review of security information presentations in collaboration with Compliance. Required Qualifications: Bachelor s degree in Information Security, Computer Science, or a related field. 2 4 years of experience in Information Security, with a focus on Identity Governance and Compliance. Strong understanding of User Access Review (UAR) processes and tools. Experience with Active Directory (AD) and identity lifecycle management. Familiarity with regulatory and compliance frameworks: PCI DSS, ISO 27001, NIST, COBIT. Excellent analytical, documentation, and communication skills. Ability to work independently and collaboratively in a fast-paced environment. Preferred Qualifications: Relevant certifications such as CISSP, CISA, CISM, CRISC, or GIAC. Experience with IAM tools (e.g., SailPoint, Saviynt, Okta, Azure AD). Prior experience supporting internal or external audits. Knowledge of GRC tools and platforms. Understanding of legal and regulatory standards such as FERPA, CIS, and data protection laws. Knowledge of Cloud Identity (AWS or Azure Identity).

Cyderes (Cyber Defense and Response) is a pure-play, full life-cycle cybersecurity services provider with award-winning managed security services, identity and access management, and professional services designed to manage the cybersecurity risks of enterprise clients. We specialize in multi-technology, complex environments with the in speed and agility needed to tackle the most advanced cyber threats. We leverage our global scale and decades of experience to accelerate our clients cyber outcomes through a full lifecycle of cybersecurity services. We are a global company with operating centers in the United States, Canada, the United Kingdom, and India. About the Job: The IAM Security Analyst will be responsible for performing user provisioning/de-provisioning activities, troubleshooting and quality control tasks. They will ensure all Service Requests by our external clients are performed & documented by the agreed upon procedures. They will produce reports on the quality of work performed by the Service provider and propose process/documentation enhancements in order to improve the end-user experience for all supported clients Responsibilities: Receive requests from external ticketing systems with initial provisioning information for new hire or modifications to existing users. Use appropriate tools (e.g., RBAC Matrix) to determine role, appropriate level of access to applications, and other requirements. If access level is different from standard, obtain explanation from requester and work with them to obtain signoff from approver (or their delegate). Monitor Service Level achievement and proactively address tickets as required before they are escalated. Monitor onboarding/off boarding service requests and ensure the execution is proceeding. Manage completion of requests by meeting established SLA timelines Follow-up when needed to ensure access completion to client satisfaction As required, provide relevant, timely updates to the requester on the status of provisioning a new user with access rights and applications Participate in projects as necessary Substitute or cover other specialists as needed Requirements: Should be willing to work in PST time zone . 2+ years experience working in a Service Desk Tier I or SOC capacity A good command of IAM tools, Active Directory and Microsoft Suite in general Excellent verbal and written communication skills Proficiency in Microsoft Exchange, Microsoft Excel & Remote access technology Exposure to service request ticketing systems an asset Knowledge of ITIL v3 (ITIL practitioner certification) an asset Strong business acumen with an understanding of the link between business need and technology Flexibility to learn and adapt to new technologies and processes Ability to adapt in a dynamic environment Ability to work under tight deadlines Proven track record in working with multiple initiatives at the same time Proactive approach to problem solving and coordination Must be detail oriented, self-motivated and resourceful Office 365 knowledge asset Cyderes i s an Equal Opportunity Employer (EOE). Qualified applicants are considered for employment without regard to race, religion, color, sex, age, disability, sexual orientation, genetic information, national origin, or veteran status. Note: This job posting is intended for direct applicants only. We request that outside recruiters do not contact us regarding this position.

About Us: Our purpose is to help clients exceed their financial health goals. Across the reimbursement cycle, our scalable solutions and clinical expertise help solve programmatic needs. Enabling our teams with leading technology allows analytics to guide our solutions and keeps us accountable achieving goals. We build long-term careers by investing in YOU. We seek to create an environment that cultivates your professional development and personal growth, as we believe your success is our success. ESSENTIAL DUTIES AND RESPONSIBILITIES: Note: The essential duties and responsibilities below are intended to describe the general duties and responsibilities of this position and are not intended to be an exhaustive statement of duties. This position may perform all or most of the primary duties listed below. Specific tasks, responsibilities or competencies may be documented in the Team Member s performance objectives as outlined by the Team Member s immediate Leadership Team Member. Role Overview: The Manager will lead and manage 24x7 cybersecurity and SOC operations, ensuring round-the-clock protection of the organizations critical infrastructure. This role demands deep expertise in network security, threat detection, and incident response , while also managing a team working in rotational shifts. Key Responsibilities: Oversee end-to-end SOC operations , including real-time monitoring, incident triage, and escalation. Lead network security strategy and governance including firewalls, intrusion detection/prevention systems (IDS/IPS) , and VPN infrastructure. Manage and mentor a 24x7 cyber defense team, ensuring effective shift coverage and performance. Drive threat intelligence integration and lead response to advanced persistent threats. Conduct regular audits, vulnerability assessments, and penetration tests. Ensure compliance with relevant cybersecurity regulations and frameworks (e.g., ISO 27001, NIST, HIPAA). Collaborate with IT, Risk, and Compliance teams for coordinated risk mitigation. Requirements: 8+ years in cybersecurity, with 3+ years in a leadership role. Experience running or managing a 24x7 SOC . Strong expertise in SIEM tools , threat detection, and mitigation strategies. Relevant certifications: CISSP, CISM, CEH , or equivalent. Excellent leadership and communication skills. PHYSICAL DEMANDS: Note: Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions as described. Regular eye-hand coordination and manual dexterity is required to operate office equipment. The ability to perform work at a computer terminal for 6-8 hours a day and function in an environment with constant interruptions is required. At times, Team Members are subject to sitting for prolonged periods. Infrequently, Team Member must be able to lift and move material weighing up to 20 lbs. Team Member may experience elevated levels of stress during periods of increased activity and with work entailing multiple deadlines. A job description is only intended as a guideline and is only part of the Team Member s function. The company has reviewed this job description to ensure that the essential functions and basic duties have been included. It is not intended to be construed as an exhaustive list of all functions, responsibilities, skills and abilities. Additional functions and requirements may be assigned by supervisors as deemed appropriate. PHYSICAL DEMANDS: Note: Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions as described. Regular eye-hand coordination and manual dexterity is required to operate office equipment. The ability to perform work at a computer terminal for 6-8 hours a day and function in an environment with constant interruptions is required. At times, Team Members are subject to sitting for prolonged periods. Infrequently, Team Member must be able to lift and move material weighing up to 20 lbs. Team Member may experience elevated levels of stress during periods of increased activity and with work entailing multiple deadlines. A job description is only intended as a guideline and is only part of the Team Member s function. The company has reviewed this job description to ensure that the essential functions and basic duties have been included. It is not intended to be construed as an exhaustive list of all functions, responsibilities, skills and abilities. Additional functions and requirements may be assigned by supervisors as deemed appropriate.

At Securonix, we re on a mission to secure the world by staying ahead of cyber threats, reinforcing all layers of our platform with AI capabilities. Our Securonix Unified Defense SIEM provides organizations with the first and only AI-Reinforced solution built with a cybersecurity mesh architecture on a highly scalable data cloud. Enhanced by Securonix EON s AI capabilities, our innovative cloud-native solution delivers a seamless CyberOps experience, empowering organizations to scale their security operations and keep up with evolving threats. Recognized as a five-time leader in the Gartner Magic Quadrant for SIEM and highly rated on Gartner Peer Insights , our award-winning Unified Defense SIEM provides organizations with 365 days of hot data for rapid search and investigation, threat content-as-a-service, proactive defense through continuous peer and partner collaboration, and a fully integrated Threat Detection, Investigation, and Response (TDIR) experience all within a single platform. Built on a cloud-native architecture, the platform leverages the Snowflake Data Cloud for unparalleled scalability and performance. Securonix is proud to be a cybersecurity unicorn and featured in CRNs 2024 Security 100 list . Backed by Vista Equity Partners , one of the largest private equity firms with over $100 billion in assets under management, we have a unique advantage in driving innovation and growth. With a global footprint, we serve more than 1,000 customers worldwide , including 10% of the Fortune 100 . Our network of 150+ partners and Managed Security Service Providers (MSSPs) enables us to deliver unmatched security solutions on a global scale. At Securonix, we are driven by our core values and place our people at the heart of everything we do: Winning as One Team : We work together with universal respect to achieve aligned outcomes Customer Driven Innovation : We innovate to stay ahead of the market and create value for our customers Agility in Action : We embrace change and are unified in our purpose and objectives amidst change Join us as we redefine cybersecurity, innovate fearlessly, and grow together as one team. Primary Skill Sets: Python, Log Analysis, SIEM, JIRA, Ticket Management Secondary Skill Sets: MITRE Framework, NOC, SOC, Playbooks Summary: We are looking at passionate threat detection engineers who like to fight bad-guys by helping organizations detect attackers within the shortest MTD possible. You will be part of the Securonix Detection Engineering team that is responsible for building the security analytics content, anomaly and threat detection models for the Securonix Next Generation SIEM platform and responding and providing awareness of advanced cyber and insider threats to our community. Our teams mission is to continuously develop detection methods to address the constantly-shifting threat landscape and detect the latest real-world cyberattacks. Responsibilities of the Role: Learn the platform capabilities and internals to be able to support troubleshoot issues with detection content Triage customer tickets and provide technical support for issues in customer environment associated to detection content Provide on-call support during weekdays and weekends Proactively monitor reports and dashboards tracking content metrics from the field and flag issues Help generate or collect sample logs relevant for resolution of detection tickets Document RCAs for issues resolved Ensure detection content is sufficiently tested and validated before pushing to production Submit clear documentation around the detection content developed Responsible for maintaining policies and threat-models in the Securonix platform Skills Required: At-least 1 year of prior experience in building threat detection content for SIEM platforms like ArcSight, QRadar, Splunk, LogRhythm, etc. Understanding of the different MITRE ATT&CK Matrices Strong fundamentals in network and operating systems concepts Experience working with offensive security testing tools Ability to automate basic tasks using scripting languages like Python Experience in GIT and SVN based code management Strong written and verbal communication skills Additional Skills (Good to Have): Prior investigations and response / SOC experience Information security professional certifications (OSCP, CEH, etc.) Developer or contributor to open-source attack or defense cyber-security tools Benefits: As a full-time employee with Securonix, you will be eligible for the following employee benefits: Health Insurance with a total sum insured is INR 7,50,000 Coverage: Self, Spouse, 2 kids, Dependent parents, or parents-in-law Personal Accident with total sum insured is INR 10,00,000 Term Life Insurance with a sum assured for employees is 5 times fixed base pay is covered. Securonix, Inc. provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, gender, sexual orientation, gender identity, national origin, age, disability, genetic information, marital status, amnesty or status as a covered veteran in accordance with applicable federal, state and local laws. Securonix complies with applicable state and local laws governing non-discrimination in employment in every location in which the company has facilities. This policy applies to all terms and conditions of employment, including hiring, placement, promotion, termination, layoff, recall, and transfer, leaves of absence, compensation and training. Securonix expressly prohibits any form of unlawful employee harassment based on race, color, religion, gender, sexual orientation, national origin, age, genetic information, disability or veteran status. Improper interference with the ability of Securonix employees to perform their expected job duties is absolutely not tolerated.

Project Role : Security Engineer Project Role Description : Apply security skills to design, build and protect enterprise systems, applications, data, assets, and people. Provide services to safeguard information, infrastructures, applications, and business processes against cyber threats. Must have skills : Security Information and Event Management (SIEM), Splunk Security Information and Event Management (SIEM) Good to have skills : NAMinimum 3 year(s) of experience is required Educational Qualification : 15 years full time education Summary :We are looking for a proactive and detail-oriented SOC Analyst (Incident Response) to join our Security Operations Center (SOC) team. In this role, you will be responsible for detecting, analyzing, and responding to cybersecurity incidents using a combination of technology solutions and processes. Roles & Responsibilities:- Monitor security alerts and events from various sources (SIEM, EDR, firewall logs, IDS/IPS, etc.) to detect potential security incidents.- Triage, investigate, and respond to incidents following standard operating procedures (SOPs) and incident response playbooks.- Perform in-depth analysis of security incidents to identify root causes, scope, and impact.- Escalate complex incidents to appropriate stakeholders and support containment, eradication, and recovery efforts.- Work with internal teams and external partners to contain and remediate threats.- Contribute to continuous improvement of detection capabilities and IR processes.- Maintain incident documentation and provide detailed reports post-incident.- Stay current with emerging threats, vulnerabilities, and incident response best practices. Professional & Technical Skills: - 25 years of experience in a Security Operations Center (SOC) or similar cybersecurity role.- Strong understandin of security technologies such as SIEM, EDR, IDS/IPS, firewalls, and antivirus.- Experience with incident detection, triage, analysis, and response.- Familiarity with MITRE ATT&CK framework and other threat models.- Knowledge of operating systems (Windows/Linux), networking protocols, and cloud environments.- Strong analytical and problem-solving skills.- Excellent verbal and written communication skills.- Industry certifications such as CEH, GCIH, GCIA, or CompTIA Security+ are a plus. Additional Information:- The candidate should have minimum 3 years of experience in Splunk, QRadar or any SIEM tool.- This position is based at our Bengaluru office.- A 15 years full time education is required. Qualification 15 years full time education

About Marvell . Your Team, Your Impact As a member of Hw board design team, the candidate will be responsible for Designing, Developing, and maintaining various components of the design phases. The member will also have an opportunity to Design and Develop next-gen SSD/HDD and Compute based SoC products, Platform, and Infrastructure. What You Can Expect Develop board and system level design specification based on technical marketing requirements to deliver a cost-effective solution for Custom Compute & Storage Business Unit. Define and architect the board and perform schematic capture. Work with silicon design and package team and board CAD team on package ball assignments and board routing and layer count optimization with SI/PI. Familiar with signal and power integrity simulation and methodology on high speed serial interfaces. Capture place and route constraints for PCB layout, stack-up and document board design guidelines. Key member of hardware platform bring-up team. Will work closely with design engineer, firmware and software engineers on initial functional verification and debug activities. Validate board design functionality and qualify high-speed interfaces with correlation with SI/PI simulation results. Provide reference platform design characterization and design guideline documentation for customers. Review customer designs with FAEs and board Layout group Work closely with FAE s on customer issues and lead root cause and corrective action for hardware design issues. What Were Looking For BE/BTech or ME/MTech in Electrical, Electronics or ETC/E&TC BE/BTech with 5-10 years of experience, or ME/MTech with 2-5 years of experience in designing complex & dense boards for client market using OrCAD tool . Direct experience with DDR3/4, PCIe Gen3/4, SATA3 , SPI, I2C interface design Hands on experience with bus and network analyzers, high-speed oscilloscopes, TDR and spectrum analyzer. Expertise in 3D/2D EM simulation tools and transmission line theory Must have effective interpersonal and teamwork skills and excellent verbal and written communication skills. Strong debug, analysis, problem-solving skills with experience leading root cause and corrective action across teams. Inherent sense of urgency and accountability. Must have the ability to multi-task in a fast-paced environment Additional Compensation and Benefit Elements With competitive compensation and great benefits, you will enjoy our workstyle within an environment of shared collaboration, transparency, and inclusivity. We re dedicated to giving our people the tools and resources they need to succeed in doing work that matters, and to grow and develop with us. For additional information on what it s like to work at Marvell, visit our Careers page. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability or protected veteran status. #LI-CP1

The Manager will lead and manage 24x7 cybersecurity and SOC operations, ensuring round-the-clock protection of the organization's critical infrastructure. This role demands deep expertise in network security, threat detection, and incident response , while also managing a team working in rotational shifts. Shift: 24x7 Rotational Previous exp in Team management important Requirements: 8+ years in cybersecurity, with 3+ years in a leadership role. Experience running or managing a 24x7 SOC . Strong expertise in SIEM tools , threat detection, and mitigation strategies. Relevant certifications: CISSP, CISM, CEH , or equivalent. Excellent leadership and communication skills.

As STA engineer , the role would expect the candidate to have deployment of new features and or methodologies related to STA and ECO domain . Scope of the work would cover (but not limited to) STA flow/methodology development, continuous efficiency improvement, Flow development/Support for ECO convergence with tools in STA and ECO domain (PrimeTime, Tempus, Tweaker, PrimeClosure to name a few). There would be challenges for timing convergence at both block and Top level on cutting edge technology on high performance designs would have to be resolved for ensuring successful design tapeouts on time with high quality. Basic Hands-on on Scripting is a must to have for candidate. Specific skills & knowledge Bachelor or Master in Electronics Engineering and specialization in VLSI domain. 5-8 years of hands-on experience in SoC and IP level objectives on low geometry nodes (5/14/16/28/40nm). Experience in Synopsys Cadence tools, low geometry node issues, working with EDA team in reviewing & resolving blocking issues in project Proven experience in delivering timing closure methodology of mixed signal SoC with high speed PHYs, IOs, PMU IP etc. closing analog / digital interfaces timing & signal integrity issues Experience in customizing flows & methodology to meet low power & area objectives of SoC and leading team to execute on time Ability to use scripting languages / automation of Physical Implementation methodology creation and deployment Should have proven experience in demonstrating strong technical leadership to deliver on commitment, anticipation of challenges, assertive communication and excellent team player. Excellent communication skills with proven experience in international relationships

BASIC INFORMATION ON THE POSITION Position Name: Deputy Manager - ESGC PURPOSE OF THE ROLE To ensure Information Security Management System and Risk management framework including Business continuity are effectively planned & established in line with the business objectives. The job exists to ensure compliance to IS requirements, both from customer and organization. If this role did not exist, ensuring compliance to IS requirements is not possible. KEY RESPONSIBILITIES AND ACCOUNTABILITIES Compliance to client information security requirements as agreed in the MSA by ensuring that requirements are captured, documented, implemented and verified Ensure customer audits are cleared successfully without any critical non-conformances Propose cost effective solution and maintain compliance cost Contain Revenue Leakage by ensuring reduction in revenue leakages resulting from IS incidents and effective implementation of controls Ensure operational excellence through the following: 1. Develop and manage ISMS (Information Security Management System) framework including Business continuity and awareness 2. Identify and implement applicable industry practices (IT act and amendments, Data Privacy and Data Security framework etc) 3. Establish and implement measurement program to assess effectiveness of the framework/system 4. Ensure all internal / external audits are planned and successfully cleared. 5. Monitor and track all internal/external audit findings to closure. Highlight open findings and accepted risks Enable Innovation through Automation and New initiatives Ensure Effective People Management by keeping the team engaged and having diverse workforce, Creating accountability & ownership in the team, handling team members grievances and ensuring team attrition is within targets Ensure Capability Development in the team by upgrading competency (skills) in the team in line with the current industry practices and business objectives including both managerial and technical capability EDUCATION QUALIFICATION Degree: BE/M.tech or MBA Certifications: CISA/ CISM Certification - ISO27001 lead auditors certification MINIMUM EXPERIENCE REQUIRED Overall (in years): 10- 15 years Relevant (in years): 8-12 years DOMAIN/ FUNCTIONAL SKILLS Good understanding of various IS standards, framework such as ISO27001, PCIDSS, HIPAA, NIST, SOC/SSAE16 Standards & ISO27005, ISO 22301 Guidelines - Knowledge of risk management (ISO31000, ISO27005), business processes - Knowledge of IT Security, physical and environmental security and HR security controls - Knowledge of regulatory requirements

About the Team The Compliance team at Meesho is like the Avengers safeguarding Meesho's S.H.I.E.L.D. As an Associate Compliance Manager, youll take the lead in fortifying our systems and ensuring they remain secure and compliant. After all, when 5% of Indian households shop with us, its important to build resilient systems to manage millions of orders every day. Weve done this with zero downtime! Sounds impossible? Well, thats the kind of Engineering muscle that has helped Meesho become the e-commerce giant that it is today. We value speed over perfection, and see failures as opportunities to become better. Weve taken steps to inculcate a strong Founders Mindset across our engineering teams, making us grow and move fast. We place special emphasis on the continuous growth of each team member - and we do this with regular 1-1s and open communication. As an AssociateCompliance Manager, you will be part of self-starters who thrive on teamwork and constructive feedback. We know how to party as hard as we work! If we arent building unparalleled tech solutions, you can find us debating the plot points of our favourite books and games or even gossipping over chai. So, if a day filled with building impactful solutions with a fun team sounds appealing to you, join About the Role As an Associate Manager , youll play a key individual contributor role in driving security policies, ensuring adherence to compliance frameworks, and mitigating risks within Meeshos internal and external environments. Youll manage end-to-end compliance activities, oversee audits, and contribute to building a secure and compliant ecosystem. As part of the Security Compliance team, youll own and be accountable for the overall Information Security framework and program, helping to uphold the highest standards of security and privacy. What you will do Lead and own the end-to-end security compliance and certification charter. Define, roll out, and enforce Information Security policies and procedures. Define and ensure adherence to data privacy and data protection laws (e.g., DPDP). Collaborate with third-party vendors to maintain robust third-party security practices. Ensure compliance with IT Act, e-commerce guidelines, and regulations related to cryptography, information security, and data privacy. Conduct periodic information security awareness training programs for employees. Oversee information security risk management and privacy impact assessments. Develop and maintain Business Continuity Plans (BCP) and conduct Business Impact Assessments (BIA) to ensure organizational resilience Draft and enforce Data Protection Agreements and Information Security Agreements. Manage and coordinate internal and external audit-related activities. Collect and present audit evidence to ensure successful compliance assessments. Develop, implement, and maintain internal audit policies and procedures in line with standards such as ISO 27001, SOC 2, PCI DSS, or any other opted frameworks. Audit data, systems, and processes for policy and regulatory compliance. Provide actionable insights and reporting on the effectiveness of compliance programs. Conduct vendor audits and produce comprehensive reports. Plan and execute ad-hoc audits as necessary. What you will need Educational Qualification : Bachelor's/Master's degree in Computer Science, Information Security, or a related technical field. Experience : 47 years in information security, compliance, or audit roles. Demonstrated experience in startup environments or knowledge of regulatory frameworks (e.g., PCI DSS, ISO 27001). Strong problem-solving skills and hands-on experience implementing compliance standards. Familiarity with frameworks like ISO27001, NIST, Cyber Kill Chain, and MITRE ATT&CK. Working knowledge of cloud platforms (AWS, GCP) is highly advantageous. Excellent project planning, stakeholder management, and communication skills. Ability to adapt to evolving regulatory landscapes and implement best practices. Certifications like ISO Lead Auditor/Implementer, CISSP, CISM, CISA, or CCSP are a plus. Curious about life at Meesho? and they've made us the top-rated e-commerce workplace on Glassdoor. Our Mission Democratising internet commerce for everyone- Meesho (Meri shop) started with a single idea in mind -to be an e-commerce destination for the next billion Indian consumers and enable 100 million small businesses to succeed online. We provide sellers with a range of industry-first benefits such as zero commission and the lowest shipping cost. Over million sellers are registered on Meesho, growing their business by tapping the companys massive customer base, state-of-the-art tech infrastructure, pan-India logistics at the lowest cost through third-party logistics providers in an 'Everyday Lowest Cost' channel for sellers. Affordable, relatable merchandise mirroring local markets has helped us make inroads with first-time internet users in the country. We cater to an underserved and unique customer base and cover every serviceable pincode in the country. Our unique business model and continuous innovation has enabled us to become the first Indian horizontal E-commerce company.

Exp. in a SOC, incident detection and response,SIEM platform and EDR. understanding of networking principles, TCP/IP, WANs, LANs, and Internet protocols (SMTP, HTTP, FTP, POP, LDAP). cloud security concepts & platforms (e.g., AWS, Azure, GCP).

Bachelors or Masters degree in Electrical, Electronics or Computer Science Engineering Expertise in C++ programming Expertise in system side / low level programming Expertise in post silicon diagnostics development Expertise in post silicon diagnostics validation Expertise in data / address bus architecture, caches, memory management. Expertise in PC Hardware, SoC, Chipsets, CPU, GPU, BIOS, firmware etc. Expertise in x86 / computer architecture Expertise in OS internals Strong knowledge of software development life cycle Preferred resources with valid regional work permit Location : - Belgrade, Penang, New York, Bengaluru

Male Candidates Only Rotational Shift Work From Office only Early joiners Only (0-30 days notice) Configuration experience is a must - Configure and install various network devices and services (e.g., routers, switches, firewalls, load balancers, VPN, QoS) preferably Cisco Devices and Aruba Experience in SDWAN, Firewalls and Aruba is non negotiable. If you meet the above pls. read on... Key Responsibilities: ~Knowledge & experience on routing protocols like BGP, OSPF, Static Routing, BFD etc ~Knowledge of ACI & should know terminology like Vlan,. ~Switching technology, Vlan, Spanning-tree, VTP, ACL , SDWAN etc. ~Knowledge of Multicast routing, PIM, IGMP protocols, SPT etc. ~Experience & hands on with Switches and Firewalls of different vendors like Cisco,- Nexus, Aruba, Meraki, FortiGate , Fortinet, PaloAlto ~Should experience & knowledge of Nexus family eg. VPC, VDC, MEC, Orphan port management. ~Excellent knowledge of TCP/IP, IPSec, PPP, HSRP, VRRP, redundancy protocol, IPSLA and SNMP protocols. ~Monitoring tool NMS, whatsupGold, Multiping, SolarWinds. ~WLC management ~Troubleshooting & Coordinating with Cisco TAC, Arista TAC, and Huawei TAC and follow up with them regarding the issues. ~Monitor system resource utilization, trending, and capacity planning. ~Provide Level1-2 support and troubleshooting to resolve issues. ~Work within established configuration and change management policies to ensure awareness, approval and success of changes made to the network infrastructure. ~Select and implement security tools, policies, and procedures in conjunction with the companys security team. ~Liaise with vendors and other IT personnel for problem resolution. ~Design and deploy company LANs, WANs, and wireless networks, including servers, routers, switches, UPSs, and other hardware. ~Design, implement, and support firewalls, site-to-site VPNs, and remote-access VPNs. ~Perform server and security audits, and system backups and recovery. ~Exposure to AWS Environment ~Proven hands-on network engineering experience ~CCNA or higher (CCNP highly valued) ~Solid understanding of the OSI or TCP/IP model ~Good understanding of networking protocols (e.g., IPSEC, HSRP, BGP, OSPF, 802.11, QoS) What you will bring to the team: ~Minimum 1.5+ Years of experience with relevant certifications. ~L1 engineer with good DC R& S experience (approx. 1-5 years of exp.) ~Configure and install various network devices and services (e.g., routers, switches, firewalls, load balancers, VPN, QoS) preferably Cisco Devices ~Perform network maintenance and system upgrades including service packs, patches, hot fixes and security configurations. ~Monitor performance and ensure system availability and reliability. ~Oversee new and existing equipment, hardware, and software upgrades. ~Hands-on experience with monitoring, network diagnostic and network analytics tools ~University degree in Computer Science or a related subject ~Bachelor of Degree.

About the Team The Compliance team at Meesho is like the Avengers safeguarding Meesho's S.H.I.E.L.D. As an Associate Compliance Manager, youll take the lead in fortifying our systems and ensuring they remain secure and compliant. After all, when 5% of Indian households shop with us, its important to build resilient systems to manage millions of orders every day. Weve done this with zero downtime! Sounds impossible? Well, thats the kind of Engineering muscle that has helped Meesho become the e-commerce giant that it is today. We value speed over perfection, and see failures as opportunities to become better. Weve taken steps to inculcate a strong Founders Mindset across our engineering teams, making us grow and move fast. We place special emphasis on the continuous growth of each team member - and we do this with regular 1-1s and open communication. As an AssociateCompliance Manager, you will be part of self-starters who thrive on teamwork and constructive feedback. We know how to party as hard as we work! If we arent building unparalleled tech solutions, you can find us debating the plot points of our favourite books and games or even gossipping over chai. So, if a day filled with building impactful solutions with a fun team sounds appealing to you, join About the Role As an Associate Manager , youll play a key individual contributor role in driving security policies, ensuring adherence to compliance frameworks, and mitigating risks within Meeshos internal and external environments. Youll manage end-to-end compliance activities, oversee audits, and contribute to building a secure and compliant ecosystem. As part of the Security Compliance team, youll own and be accountable for the overall Information Security framework and program, helping to uphold the highest standards of security and privacy. What you will do Lead and own the end-to-end security compliance and certification charter. Define, roll out, and enforce Information Security policies and procedures. Define and ensure adherence to data privacy and data protection laws (e.g., DPDP). Collaborate with third-party vendors to maintain robust third-party security practices. Ensure compliance with IT Act, e-commerce guidelines, and regulations related to cryptography, information security, and data privacy. Conduct periodic information security awareness training programs for employees. Oversee information security risk management and privacy impact assessments. Develop and maintain Business Continuity Plans (BCP) and conduct Business Impact Assessments (BIA) to ensure organizational resilience Draft and enforce Data Protection Agreements and Information Security Agreements. Manage and coordinate internal and external audit-related activities. Collect and present audit evidence to ensure successful compliance assessments. Develop, implement, and maintain internal audit policies and procedures in line with standards such as ISO 27001, SOC 2, PCI DSS, or any other opted frameworks. Audit data, systems, and processes for policy and regulatory compliance. Provide actionable insights and reporting on the effectiveness of compliance programs. Conduct vendor audits and produce comprehensive reports. Plan and execute ad-hoc audits as necessary. What you will need Educational Qualification : Bachelor's/Master's degree in Computer Science, Information Security, or a related technical field. Experience : 4-7 years in information security, compliance, or audit roles. Demonstrated experience in startup environments or knowledge of regulatory frameworks (e.g., PCI DSS, ISO 27001). Strong problem-solving skills and hands-on experience implementing compliance standards. Familiarity with frameworks like ISO27001, NIST, Cyber Kill Chain, and MITRE ATT&CK. Working knowledge of cloud platforms (AWS, GCP) is highly advantageous. Excellent project planning, stakeholder management, and communication skills. Ability to adapt to evolving regulatory landscapes and implement best practices. Certifications like ISO Lead Auditor/Implementer, CISSP, CISM, CISA, or CCSP are a plus.

The SOC Tier 2 Analyst serves as the primary escalation point for the Tier 1 SOC team, responsible for advanced threat detection, investigation, and incident response coordination. This role acts as a technical lead, ensuring that security incidents are properly triaged, investigated, and remediated while continuously improving security operations processes. The SOC Tier 2 Analyst plays a critical role in cybersecurity defense, supporting real-time monitoring, forensic analysis, and threat hunting. They will assist incident responders across all lifecycle phases, from detection to post-incident reviews, and contribute to SOC process optimizations. Roles & Responsibilities: Act as the primary escalation point for SOC Tier 1 analysts, providing technical expertise and guidance in incident handling. Perform deep-dive analysis of security events, leveraging SIEM, EDR, IDS/IPS, and other security tools. Identify common attack techniques (MITRE ATT&CK framework) and investigate anomalies to detect advanced persistent threats (APTs). Assist in security incident response, leading containment, eradication, and recovery efforts. Conduct artifact analysis to determine the root cause and scope of security incidents. Collaborate with Threat Intelligence and Threat Hunting teams to improve detection rules and incident response playbooks. Develop and refine SOC standard operating procedures (SOPs) to enhance security event triage and response. Work with engineering teams to fine-tune security controls and improve overall SOC efficiency. Mentor and train Tier 1 analysts to improve SOC maturity and ensure effective knowledge transfer. Support security audits, compliance initiatives, and reporting efforts as required. Basic Qualifications and Experience: Master s degree in Information Technology or Cybersecurity OR Bachelor s degree with 1 year of experience in Security Operations or related field OR Diploma with 2 years of experience in Security Operations or a related field Functional Skills: Must-Have Skills: Strong understanding of SOC operations, including event triage, escalation, and investigation. Experience analyzing cybersecurity threats and understanding attacker TTPs (Tactics, Techniques, and Procedures). Proficiency in security tools such as SIEM (Splunk, QRadar, Sentinel), EDR (CrowdStrike, Defender ATP), IDS/IPS, and firewall logs. Experience in incident response across all phases (detection, containment, eradication, recovery). Knowledge of Windows and Linux security, including log analysis, PowerShell, and Bash scripting. Good-to-Have Skills: Experience in 24/7 SOC operations and shift leadership. Knowledge of forensic tools (Volatility, Autopsy, FTK) and malware analysis techniques. Understanding of cloud security monitoring (AWS, Azure, GCP). Familiarity with MITRE ATT&CK, NIST Cybersecurity Framework, and CIS controls. Threat hunting experience to proactively detect unknown threats. Professional Certifications: CompTIA Security+ (preferred) CEH (preferred) GSEC (preferred) GCFA (preferred) MTA Security Fundamentals (preferred) CISSP (preferred) Soft Skills: Strong communication and collaboration skills, particularly when working with global teams. Ability to manage and prioritize tasks effectively in a high-pressure environment. Critical thinking and problem-solving abilities, especially in incident response situations. A commitment to continuous learning and knowledge sharing.

Job Requirements Key Responsibilities: Execute floorplanning, power planning, placement, CTS, routing, DRC/LVS, and timing closure for blocks/subsystems. Work on multi-voltage designs using UPF, level shifters, isolation cells, and retention strategies. Perform timing analysis and closure using PrimeTime and support IR/EM/Noise closure under guidance. Collaborate with DFT/RTL/STA teams to resolve integration and physical challenges. Run power optimization techniques at synthesis and post-route stage. Support subsystem-level integration and participate in debug and convergence discussions. Write scripts (Python, Tcl) for flow automation, data mining, and report generation. Required Skills: Hands-on experience with full RTL-to-GDS flow using Fusion Compiler, Innovus. Working knowledge of low power flows, UPF, VCLP, power intent checks. Familiarity with timing closure concepts, signal integrity, and power optimization. Good scripting skills in Python/Tcl/Perl for design automation. Enthusiastic team player with strong analytical and debugging skills. Work Experience Key Responsibilities: Execute floorplanning, power planning, placement, CTS, routing, DRC/LVS, and timing closure for blocks/subsystems. Work on multi-voltage designs using UPF, level shifters, isolation cells, and retention strategies. Perform timing analysis and closure using PrimeTime and support IR/EM/Noise closure under guidance. Collaborate with DFT/RTL/STA teams to resolve integration and physical challenges. Run power optimization techniques at synthesis and post-route stage. Support subsystem-level integration and participate in debug and convergence discussions. Write scripts (Python, Tcl) for flow automation, data mining, and report generation. Required Skills: Hands-on experience with full RTL-to-GDS flow using Fusion Compiler, Innovus. Working knowledge of low power flows, UPF, VCLP, power intent checks. Familiarity with timing closure concepts, signal integrity, and power optimization. Good scripting skills in Python/Tcl/Perl for design automation. Enthusiastic team player with strong analytical and debugging skills.

Who We Are At Kyndryl, we design, build, manage and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl? We are always moving forward – always pushing ourselves to go further in our efforts to build a more equitable, inclusive world for our employees, our customers and our communities. The Role Are you a tech-savvy problem-solver with a passion for ensuring optimal network performance? If so, look no further – Kyndryl is seeking a Network Support Specialist who will be the go-to expert for installing, maintaining, and troubleshooting computer networks. As our Network Support Specialist, you'll be working in a complex, multi-vendor environment, and will use your analytical skills to identify and resolve network issues, make configuration changes, and implement security policies. This role requires someone who can think on their feet, test and apply corrective actions (including emergency changes), and participate in change reviews as needed. And with the ever-changing nature of technology, you'll be constantly learning and growing in your role. You will work alongside a talented team of experts to plan and execute routine network changes, troubleshoot and solve network issues and outages, and maintain excellent communication with our end customers, project managers, and service engineers. You’ll be responsible for maintaining network components, monitoring network performance, and maintaining network security. You will also be providing user support for network-related issues, ensuring that our customers receive the highest level of support possible. If you're ready to take on a fast-paced and rewarding role in the world of network support, apply to join the Kyndryl team today! Responsibility are Implement and maintain VPNs, IPSec tunnels, and SSL VPNs using Palo Alto and FortiGate technologies.Proficiency in routing protocols BGP, OSPF Configure proxy and network access control (NAC) solutions.Hands-on experience with FortiManager, and FortiAnalyzerCreate and Perform firmware upgrades, patches, and routine maintenance on firewalls.cIntegrate firewall solutions with SIEM, IDS/IPS, endpoint protection, and cloud security tools.Monitor network performance and security systems, responding to security incidents and conducting root cause analysis.Investigate and respond to security breaches, malware infections, and intrusion attempts. Implement network virtualization, micro-segmentation, distributed fire walling (DFW) .Troubleshoot and optimize NSX networking components, including VXLAN, Overlay, Edge Services Gateway (ESG), and Distributed Logical Routers (DLR) and Configure NSX Security Policies, NAT, VPN, Load Balancing, and Firewall rules Expertise in NSX-T components such as Transport Zones, Edge Nodes, and T0/T1 Gateways. Your Future at Kyndryl Every position at Kyndryl offers a way forward to grow your career, from Junior Administrator to Architect. We have training and up skilling programs that you won’t find anywhere else, including hands-on experience, learning opportunities, and the chance to certify in all four major platforms. One of the benefits of Kyndryl is that we work with customers in a variety of industries, from banking to retail. Whether you want to broaden your knowledge base or narrow your scope and specialize in a specific sector, you can find your opportunity here. Who You Are You’re good at what you do and possess the required experience to prove it. However, equally as important – you have a growth mindset; keen to drive your own personal and professional development. You are customer-focused – someone who prioritizes customer success in their work. And finally, you’re open and borderless – naturally inclusive in how you work with others Required Technical and Professional Experience : Total 10+ years of experience. Experience in cybersecurity, SOC, or security engineering roles. Hands-on experience with WAF, IBM DAM, IBM GDE, Force point Proxy, DLP , Email Gateway. Strong knowledge of network security, endpoint security Qualification: BSc. B.E./B. Tech, M.E. /M. Tech Preferred Technical and Professional Experience : Experience with DAM solutions such as IBM Guardium Ability to monitor and audit database activities for unauthorized access and suspicious activities Experience with Thales CipherTrust Understanding of key management solutions (KMS) and Hardware Security Modules (HSMs) Certifications : PCNSE, NSE4 ,WAF, Network Virtualization (VCTA-NV) , Force point DLP, Web Security Administrator Certification , CEH , CompTIA Security+ Being You Diversity is a whole lot more than what we look like or where we come from, it’s how we think and who we are. We welcome people of all cultures, backgrounds, and experiences. But we’re not doing it single-handily: Our Kyndryl Inclusion Networks are only one of many ways we create a workplace where all Kyndryls can find and provide support and advice. This dedication to welcoming everyone into our company means that Kyndryl gives you – and everyone next to you – the ability to bring your whole self to work, individually and collectively, and support the activation of our equitable culture. That’s the Kyndryl Way. What You Can Expect With state-of-the-art resources and Fortune 100 clients, every day is an opportunity to innovate, build new capabilities, new relationships, new processes, and new value. Kyndryl cares about your well-being and prides itself on offering benefits that give you choice, reflect the diversity of our employees and support you and your family through the moments that matter – wherever you are in your life journey. Our employee learning programs give you access to the best learning in the industry to receive certifications, including Microsoft, Google, Amazon, Skillsoft, and many more. Through our company-wide volunteering and giving platform, you can donate, start fundraisers, volunteer, and search over 2 million non-profit organizations. At Kyndryl, we invest heavily in you, we want you to succeed so that together, we will all succeed. Get Referred! If you know someone that works at Kyndryl, when asked ‘How Did You Hear About Us’ during the application process, select ‘Employee Referral’ and enter your contact's Kyndryl email address.

Position Summary: We are seeking an experienced and strategic SOC L3 Manager to lead our Tier 3 Security Operations Center (SOC) team. This individual will oversee advanced threat detection, incident response, threat hunting, and security investigations. The SOC L3 Manager will serve as a technical expert and mentor, guiding analysts through the resolution of complex security incidents and collaborating with cross-functional teams to enhance the organizations security posture. Key Responsibilities: Lead and manage the SOC L3 (Tier 3) team in handling high-severity incidents, threat intelligence analysis, and proactive threat hunting. Oversee the development and execution of incident response playbooks and procedures. Coordinate and lead incident investigations, ensuring thorough root cause analysis and appropriate remediation. Collaborate with other security teams (e.g., threat intelligence, vulnerability management, red team) to identify and mitigate emerging threats. Provide expert-level analysis and technical guidance during security events. Work closely with SOC Tier 1 and Tier 2 teams to improve escalation workflows and reduce response time. Maintain and optimize detection logic and use case development in SIEM/SOAR platforms. Review and improve incident reports, metrics, and KPIs to ensure continuous improvement. Ensure compliance with industry standards and regulatory requirements (e.g., NIST, ISO 27001, GDPR). Participate in the evaluation and implementation of advanced security tools and technologies. Train, mentor, and develop the technical capabilities of SOC L3 team members.

Be part of the solution at Technip Energies and embark on a one-of-a-kind journey. You will be helping to develop cutting-edge solutions to solve real-world energy problems. We are currently seeking Cybersecurity Risk Analyst to join our team based in Noida. The IT Risk Analyst reports directly to the IT Risk Manager and is in charge for Risk identification, assessment, mitigation and follow-up processes for both IT and OT environments. About us: Technip Energies is a global technology and engineering powerhouse. With leadership positions in LNG, hydrogen, ethylene, sustainable chemistry, and CO2 management, we are contributing to the development of critical markets such as energy, energy derivatives, decarbonization, and circularity. Our complementary business segments, Technology, Products and Services (TPS) and Project Delivery, turn innovation into scalable and industrial reality. Through collaboration and excellence in execution, our 17,000+ employees across 34 countries are fully committed to bridging prosperity with sustainability for a world designed to last. Global Business Services India At Technip Energies, we are continually looking for ways to become more efficient, and ways to improve our quality, customer focus and cost competitiveness. The Global Business Services (GBS) organization is key to executing this strategy, by standardizing our processes and centralizing our services. Our Vision : A customer-focused, cost-efficient, innovative, and high performing organization that drives functional excellence. GBS provide streamlined and consistent services to our internal customers in the domain of Finance and Accounting, Human Resources, Business Functional Support, Procurement and Legal. Our services fit our global organization and allow us to focus on business strategy and priorities. GBS also maintains continuous improvement plans to enhance our customer-oriented service culture. Responsibilities: Responsible for Digiteam and cybersecurity risk identification, assessment, mitigation and follow-up Maintains the documentation relating to risk management processes. Responsible for maintaining a Risk Register at group level Responsible for risk management Indicators (KRI) calculation and communication relating to the whole cybersecurity department. Collaborate with Security Operations Center (SOC) teams to analyze incident trends and integrate findings into risk assessments. Support the development and implementation of risk treatment plans, including technical controls and compensating measures About you At least 5 years of experience in IT Risk Management Certifications (preferred but not mandatory): ITIL, CRISC (Certified in Risk and Information Systems Control), CISM (Certified Information Security Manager), ISO 27005 Risk Manager Certification or equivalent on filed experience. Hands-on experience conducting cybersecurity risk assessments in hybrid environments (on-premises and cloud). Experience working with DevSecOps teams to integrate risk management into CI/CD pipelines. Familiarity with incident response processes and post-incident risk re-evaluation. Technical Skills Strong understanding of cyber threat intelligence and its application in risk management. Familiarity with GRC platforms (e.g., SureCloud, ServiceNow GRC) for risk tracking and reporting. Experience with vulnerability management tools (e.g., Tenable, Qualys, Rapid7) and interpreting scan results. Knowledge of cloud security frameworks (e.g., CSA CCM, Azure Security Benchmark, AWS Well-Architected Framework). Understanding secure architecture principles and ability to review system designs for risk exposure. Familiarity with compliance frameworks such as GDPR, SOX, and industry-specific standards (e.g., IEC 62443 for OT). Familiarity with ISO2700x, NIST, CIS frameworks. What s next

Sr. Associate - SOC - Netskope: Elevate Your Impact Through Innovation and Learning Evalueserve is a global leader in delivering innovative and sustainable solutions to a diverse range of clients, including over 30% of Fortune 500 companies. With a presence in more than 45 countries across five continents, we excel in leveraging state-of-the-art technology, artificial intelligence, and unparalleled subject matter expertise to elevate our clients' business impact and strategic decision-making. Our team of over 4, 500 talented professionals operates in countries such as India, China, Chile, Romania, the US, and Canada. Our global network also extends to emerging markets like Colombia, the Middle East, and the rest of Asia-Pacific. Recognized by Great Place to Work in India, Chile, Romania, the US, and the UK in 2022, we offer a dynamic, growth-oriented, and meritocracy-based culture that prioritizes continuous learning and skill development and work-life balance. Curious to know what its like to work at Evalueserve? Watch this video What you will be doing at Evalueserve Threat and Vulnerability analysis. Analysis and response to hardware and software vulnerabilities. Manage security tools Knowledge of Cloud security Comprehensive knowledge on Vulnerability scanning tool UEBA and SOAR Audit and Compliance support Incident Response on Cybersecurity Knowledge of EDR, identity threat protection, Exposure management, RFM and unmanaged assets Knowledge of SIEM (Security Information and Event Management) and use cases. Monitoring network activity and ensuring no suspicious activities are happening. Collaborating with other departments to ensure system security. Identifying vulnerabilities and recommending changes to strengthen security. Conduct detailed analysis of incidents and create reports and dashboards. Handling incident alerts and collaborating with right stakeholders. Analyses all the attack alerts and come up with proper analysis What were looking for: About 4 - 8 years of work experience Knowledge of Proxy, secure web gateway (Policies, Rules) and related security alerts. Working experience of Endpoint DLP, Cloud DLP and CASB. Critical thinking and problem-solving abilities Monitoring and auditing the companys systems. Follow us on https://www.linkedin.com/compan y/evalueserve/ Click here to learn more about what our Leaders talking on achievements AI-powered supply chain optimization solution built on Google Cloud. How Evalueserve is now Leveraging NVIDIA NIM to enhance our AI and digital transformation solutions and to accelerate AI Capabilities . Know more about how Evalueserve has climbed 16 places on the 50 Best Firms for Data Scientists in 2024! Want to learn more about our culture and what its like to work with us? Write to us at: careers@evalueserve.com Disclaimer: The following job description serves as an informative reference for the tasks you may be required to perform. However, it does not constitute an integral component of your employment agreement and is subject to periodic modifications to align with evolving circumstances. Please Note :We appreciate the accuracy and authenticity of the information you provide, asit plays a key role in your candidacy. As part of the Background Verification Process, we verify your employment, education, and personal details. Please ensure allinformation is factual and submitted on time. For any assistance, your TA SPOCis available to support you .

Tessolve Semiconductor Pvt Ltd is looking for Post Silicon Validation Engineer to join our dynamic team and embark on a rewarding career journey Collaborate with cross-functional teams to achieve strategic outcomes Apply subject expertise to support operations, planning, and decision-making Utilize tools, analytics, or platforms relevant to the job domain Ensure compliance with policies while improving efficiency and outcomes

" Security Operations (SecOps) Engineer Location: Bangalore Team: Security & Compliance Reports to: Engineering Manager Platform & Security About Josys Josys is on a mission to redefine enterprise IT operations through automation, visibility, and security. As we continue to scale globally, securing our cloud-native infrastructure and application ecosystem is more critical than ever. We are looking for a passionate Security Operations Engineer to join our security team and help strengthen our defenses and practices across the cloud. Job Summary As a Senior SecOps Engineer , youll lead the design and implementation of security controls across cloud infrastructure, CI/CD pipelines, and application layers. You ll act as a subject matter expert in both preventive and detective controls, vulnerability management, and compliance enforcement. We are looking for someone hands-on with a deep understanding of cloud and application security especially across AWS, data privacy, and regulatory frameworks . Key Responsibilities 1. Cloud Security Monitoring & Compliance Configure and optimize AWS-native security tools like Security Hub, GuardDuty, Config, CloudTrail for real-time detection and compliance. Drive Cloud Gap Assessments and security posture reviews across multi-account AWS environments. Ensure alignment with standards like CIS, ISO 27001, SOC 2 , and regulatory requirements including GDPR and data residency controls . 2. Incident Response & Remediation Lead investigation and remediation efforts in partnership with L1 support and SRE teams . Perform root cause analysis , implement fixes, and establish preventive controls. Build runbooks, define escalation processes, and improve incident response automation . 3. Secure DevOps & CI/CD Integration Integrate automated security tools in CI/CD for both infrastructure and applications (e.g., SAST, DAST, IaC scanning). Implement IaC policy enforcement using tools such as tfsec, Checkov, or OPA . Embed security gates and practices early in the software development lifecycle. 4. Penetration Testing & Vulnerability Management Conduct or coordinate regular penetration testing using tools like Burp Suite, OWASP ZAP , or via third-party assessors. Manage end-to-end vulnerability lifecycle , from discovery through remediation. Translate findings into developer-friendly guidance and track fixes to closure. 5. Continuous Improvement & Security Awareness Stay current with cloud security trends, vulnerabilities, and threats . Drive security awareness training and contribute to improving engineering security hygiene. Influence architectural decisions by embedding security principles into project planning. Required Qualifications 5 8 years of experience in cloud security, application security, or security operations roles. Deep knowledge of AWS security architecture, IAM, networking, and encryption practices . Hands-on experience with security testing tools like Burp Suite, OWASP ZAP , Nmap, and cloud-native monitoring tools. Strong grasp of compliance frameworks including GDPR, SOC 2, ISO 27001 , and data residency considerations . Solid scripting or automation skills (e.g., Python, Bash, Terraform). Must hold at least one relevant certification: AWS Certified Security Specialty CISSP (Certified Information Systems Security Professional) CCSP (Certified Cloud Security Professional) Nice to Have Experience with container security (e.g., EKS, Docker) and runtime protection tools . Familiarity with security operations platforms (e.g., Splunk, ELK, or SIEM tools ). Experience working in fast-paced SaaS or DevOps-centric environments . Why Join Us Work on a global SaaS platform at the cutting edge of IT automation and cloud security. Lead initiatives that shape how modern enterprises manage risk. Join a culture of ownership, innovation, and collaboration. Remote-friendly work culture with high-impact opportunities.

Job Title: Senior Software Engineer II (DevSecOps) Department: Technology Reports to: Software Engineering Manager / Infrastructure Manager Experience: 3+ years Location: Ahmedabad, India-Remote Overview As a DevSecOps Engineer at Genea, you will be a key player in shaping the secure delivery and operation of our SaaS products. You will ensure that security is embedded across our CI/CD pipelines, infrastructure, and software lifecycle while enabling developer productivity. You will champion secure-by-default practices and work closely with engineering teams to automate and monitor security controls, ensuring compliance and reliability at scale. Genea is an engineering company at heart. We hire people with a broad set of technical skills who are ready to take on some technology s greatest challenges and make an impact on Genea s end users. A DevSecOps Engineer s approach should be customer-centric, security-focused, and results-driven. Transparency, teamwork, and dedication are essential qualities for this role. Duties and Responsibilities: Embed security best practices into CI/CD pipelines and infrastructure as code. Design, implement, and maintain security scanning and monitoring tools for vulnerabilities across containers, applications, and cloud environments. Work with developers to integrate security tools and policies without impacting delivery velocity. Develop and enforce policies for secrets management, IAM least privilege, and secure artifact storage. Support audits (e.g., SOC 2) by maintaining evidence of security controls. Monitor, triage, and respond to security events, coordinating with engineering and management. Drive incident response and post-mortem processes for security-related issues. Perform code and infrastructure reviews from a security perspective. Automate compliance checks and security benchmarks (CIS, OWASP, etc.). Contribute to documentation, runbooks, and internal knowledge sharing. Participate in or lead infrastructure and architecture reviews, advising on secure designs. Be available to support urgent production or security events outside of business hours. Qualifications: Bachelor s degree in computer science, Information Security, or a related field. 3+ years of experience in DevOps, Cloud Infrastructure, or Security Engineering. Hands-on experience with AWS/Azure/GCP cloud security services and policies. Experience implementing vulnerability management (SCA, SAST, DAST) and container security tools (like Trivy, AWS Inspector, Aqua). Working knowledge of Infrastructure as Code (Terraform, CloudFormation, or similar). Experience managing CI/CD pipelines (GitHub Actions, Jenkins, or equivalent). Understanding of networking security, encryption, certificate management, and IAM. Familiarity with regulatory and compliance standards (SOC2, GDPR, etc.) is a plus. Strong scripting skills in Python, Bash, or similar. Experience with incident management and security monitoring tools (like GuardDuty, CloudTrail, ELK, etc.). Knowledge of Agile/Scrum development processes. Competencies: Security-First Mindset - Champions secure design and is vigilant about risk. Problem Solving - Identifies and resolves infrastructure or security issues quickly. Teamwork - Balances team and individual priorities; collaborates across teams to embed security. Adaptability - Handles shifting priorities, compliance changes, and evolving threat landscapes. Professionalism & Ethics - Upholds trust, integrity, and transparent communication. Technical Mastery - Continuously develops technical skills and shares knowledge. Oral & Written Communication - Clearly documents and explains security concepts to non-security teams. Perks and benefits we offer: Work Your Way: Enjoy a flexible working environment that suits your lifestyle. Time Off: 24 days of PTO and 10 holidays to unwind and pursue your passions. Comprehensive Leave Options: Including maternity, paternity, adoption, wedding, and bereavement leaves to support you during important life events. Health & Safety First: Benefit from family health insurance and personal accident coverage beyond your CTC. Top Workplace Honors: Celebrated as a Top Workplace from 2021 to 2024. Balanced Workweek: Embrace a balanced life with our 5-day work schedule