154 Soc2 Jobs

5–8 yrs InfoSec exp. with IT & SOC1/2 audits,ISO 27001.Strong in OWASP, VAPT,IAM (AD & cloud).Expert AWS security(IAM,GuardDuty,CloudTrail,Security Hub).Knowledge of CNAPP tools(Wiz/Orca/Prisma/CrowdStrike),CSPM, Networking(TCP/IP,VPN,DNS,Zero Trust)

Role Summary The Assistant Manager Network Security & INOC will lead the Internal Network Operations Center (INOC) team to ensure continuous IT service availability, robust cyber security practices, and seamless IT infrastructure support. This role is responsible for implementing information security standards, improving IT processes, monitoring and managing infrastructure, and supporting 24/7 mission-critical operations across on-premises and cloud environments. Key Responsibilities IT & Security Operations Lead INOC team to ensure availability, performance, and security of IT services and infrastructure. Implement and enforce Information Security & Cyber Security policies and compliance st...

ZS is a place where passion changes lives. As a management consulting and technology firm focused on improving life and how we live it, we transform ideas into impact by bringing together data, science, technology and human ingenuity to deliver better outcomes for all. Here you'll work side-by-side with a powerful collective of thinkers and experts shaping life-changing solutions for patients, caregivers and consumers, worldwide. ZSers drive impact by bringing a client-first mentality to each and every engagement. We partner collaboratively with our clients to develop custom solutions and technology products that create value and deliver company results across critical areas of their busines...

Position Summary - The position is a member of Risk & Compliance team within HCL Technologies. The DCO will be aligned to critical service delivery engagements and will be responsible for ensuring compliance in accordance to client, organizational & regulatory security requirements. Key Responsibilities - Perform the following functions: Required to have excellent understanding of the IT Control framework, in particular risk assessment and control selection Working experience in any two of the compliance programs (PCI DSS,HIPPA,ISO 27001,SOC2, SOX,NIST,FISMA,COBIT) Lead teams and efforts to ensure effective execution of periodic risk assessments and drive integration of remediation efforts w...

Design secure enterprise architectures ensuring compliance, threat mitigation, and resilience. Lead cybersecurity frameworks, implement Zero Trust models, and integrate security in CI/CD and cloud environments. Required Candidate profile Certified security architect with expertise in SIEM, vulnerability management, cloud security, and compliance frameworks. Strong leadership in designing and governing InfoSec solutions.

About Groww We are a passionate group of people focused on making financial services accessible to every Indian through a multi-product platform. Each day, we help millions of customers take charge of their financial journey. Customer obsession is in our DNA. Every product, every design, every algorithm down to the tiniest detail is executed keeping the customers needs and convenience in mind. Our people are our greatest strength. Everyone at Groww is driven by ownership, customer-centricity, integrity and the passion to constantly challenge the status quo. Are you as passionate about defying conventions and creating something extraordinary as we are Let's chat. Our Vision Every individual d...

Key Responsibilities: Lead and inspire the Customer Trust Operations Team, encouraging strategic thinking and excellence in delivering responses to customer inquiries. Develop and maintain strong relationships with internal stakeholders, ensuring alignment and collaboration across the organization. Support customer meetings and audit calls, presenting Thomson Reuters security posture and addressing inquiries with confidence and expertise. Identify and implement new ways of working, utilizing technology to automate and improve processes within the team. Oversee the development and maintenance of standardized responses and security collateral, ensuring accuracy and completeness. Collaborate wi...

As a Senior Manager of Information Security at HMH Technology India Pvt. Ltd., you will play a crucial role in refining, managing, and executing the strategic product/application security roadmap to ensure the security of HMH products and applications. Reporting to the Chief Information Security Officer, you will lead a high-performing team in creating remediation plans, performing security reviews, and recommending security solutions. Your responsibilities will include: - Bringing a deep background and broad experience in Information Security, Application Security, & Application Development - Leading the team in developing and implementing product and application standard security review pr...

As a Staff Security Operations Engineer at valantic, you will be responsible for securing systems, managing corporate security posture, and enhancing operational efficiency through advanced detection and response capabilities. - Monitor and respond to security alerts from various sources, including SOC escalations, for swift and effective incident handling. - Manage and optimize SIEM and SOAR tools like Azure Sentinel to ensure comprehensive visibility and effective security orchestration. - Support audits for compliance frameworks such as TISAX, SOC2, and ISO by collaborating with Engineering, GRC, and other teams. - Strengthen the security framework by deploying new detection mechanisms, r...

Job Summary We are seeking a proactive and results-driven Business Development Executive (BDE) to drive enterprise adoption of MatterAI. You will identify, engage, and convert engineering leaders and technical decision-makers at high-growth startups and large organizations. This role requires a blend of strategic outreach, technical fluency, and consultative selling to position MatterAI as the essential AI agent for secure, scalable code review. Key Responsibilities ? Execute outbound sales campaigns via cold email and cold calling to engineering executives and technical leaders ? Articulate MatterAI's value proposition, including code quality, security, and review efficiency improvements ? ...

Role Overview: As a Governance and Compliance Support at Amagi, your role is crucial in building sustainable governance and compliance practices. Your success in this role depends on your understanding of the company's vendor landscape and compliance requirements. Your focus will be on establishing repeatable internal compliance validation processes and conducting vendor security risk reviews. Key Responsibilities: - Support products in maintaining SOC2 compliance through regular internal assessments - Engage with vendors for routine security and risk reviews - Continuously monitor and score vendor risks - Monitor the effectiveness of security controls and identify deviations - Implement Ama...

As a Technical Manager at FlocCare, you will play a crucial role in leading our engineering organization focused on AI-powered healthcare solutions. Your responsibilities will involve managing a diverse team of AI Engineers, DevOps, and Full-stack Developers, ensuring technical delivery, and fostering a culture of innovation and continuous learning. **Role Overview:** In this role, you will directly manage three pods consisting of AI/ML, DevOps, and Full-stack development teams. Your key responsibilities will include recruiting top engineering talent, setting growth paths and performance goals, and creating a culture of accountability and innovation within the team. **Key Responsibilities:**...

Summary Of Role Here Equifax is searching for a Manager to join the newly created A/NZ Security Enablement & Readiness Team. As a valued member of the Group Security team, you will manage the A/NZ Security Enablement team that will support the A/NZ Security team in providing advice and guidance on security matters impacting the A/NZ business. Your team will assist in identifying, prioritising and evaluating risks and controls in an effort to increase the efficiency and effectiveness of our security practices. Working in a collaborative environment where your contributions directly impact Equifax A/NZ's security and resilience, this role offers a passionate individual with an exciting growth ...

Notice - Immediate Joiner Requirements:- • 10+ years of experience in software development, with 5+ years in a technical leadership or delivery management role, preferably in SaaS or enterprise environments. • Strong understanding of modern web technologies (React, Angular, .NET Core, or equivalent frameworks). • Proficiency in API development and integration, particularly RESTful and JSON-based architectures. • Working knowledge of Oracle Cloud Infrastructure (OCI) or Oracle Customer Cloud Service (CCS) integration is highly desirable. • Familiarity with AWS or other major cloud platforms for hosting, CI/CD, and deployment management. • Experience overseeing QA and release cycles using tool...

As a Security & Compliance Specialist, you will be responsible for overseeing the development, evaluation, and implementation of governance, risk, and compliance in the Information Security department. Your key responsibilities will include: - Providing operational and conformance checking of implemented information security, undertaking specific audit tasks, and ensuring audit lifecycle compliance. - Undertaking regular conformance checking tasks to ensure compliance meets acceptable security levels in various audits. - Managing critical tasks and requests from security projects to ensure successful project delivery and resource management. - Working with Technology, Business, and Third Par...

Job Title: GRC Analyst Position Summary As a GRC Analyst, you will play a pivotal role in supporting and enabling Governance, Risk, and Compliance (GRC) operations across our cybersecurity services. Your primary focus will be to enhance risk management processes, strengthen compliance frameworks, and support strategic initiatives that drive the organization's security posture and business resilience. You will act as a key collaborator between technical teams, business units, and executive leadership, translating compliance requirements into actionable plans. Key Responsibilities Governance Enablement & Strategy Support the design, implementation, and continuous improvement of the organizatio...

About Astra: Astra is a cybersecurity SaaS company that makes pentests simple with its AI-led Offensive Pentest Platform. Our continuous vulnerability scanner emulates hacker behavior with over 15,000 security tests, enabling CTOs and CISOs to achieve continuous security at scale, remediate vulnerabilities faster, and seamlessly embed security into DevOps pipelines. In 2024 alone, Astra uncovered 2.5M+ vulnerabilities, saving customers more than $110M in potential losses. Trusted by 1000+ companies in 70+ countries including Loom, MamaEarth, Dream11, OLX Autos, and Canara Robeco Astra has been recognized globally by President Franois Hollande (La French Tech) and Prime Minister Narendra Modi...

Job Description: As a Security Risk Assessor, your main responsibility will be to conduct third-party/supplier security risk assessments. This includes interpreting security assurance reports like SOC2 and pen test reports, as well as reviewing security requirements in contracts. You will also need to have an understanding of outsourced solutions and associated information classification, assess supplier security controls based on ISO27001/2 standards, and identify and document security risks. Key Responsibilities: - Conduct third-party/supplier security risk assessments - Interpret security assurance reports such as SOC2 and pen test reports - Review security requirements in contracts - Und...

Job Description About the Company - Xiarch is a decade old company founded by the alumni of IVY league universities. It is a CERT-IN Impaneled & ISO 9001-2015, 27001-2013 certified Global Consulting firm and is an acronym for Xtreme InfoSec Auditors, Researchers, Consultants and Hackers. Headquartered in New Delhi, we have our delivery centers at Gurugram (Haryana) and Mumbai (Maharashtra)in India. Our vast clientele includes 2000+ customers. Spanning across Asia, India, North America, Africa, and Middle East regions around the globe and many fortune 500 customers. We provide pure-play cybersecurity services in all major domains which includes VAPT, Vulnerability assessments, Penetration Tes...

We are hiring for one of the Big 4. IT Audit with knowledge of IT governance practices Good to have knowledge of other IT regulations, standards and benchmarks used by the IT industry (e.g. NIST, PCI-DSS, ITIL, OWASP, SOX, COBIT, SSAE18/ISAE 3402 etc.) Technical Knowledge of IT Audit Tools with excellent knowledge of IT Audit process and methodology Prior IT Audit experience in areas of ITGC, SOX 404, SOC-1 and SOC-2 Audits and Application Controls Exposure to Risk Management and Governance Frameworks/ Systems will be an added advantage Exposure to ERP systems will be added advantage Strong project management, communication (written and verbal) and presentation skills Knowledge of security m...

Role & responsibilities Responsible for setting the company's technology vision, strategy, and roadmap to ensure the successful development, deployment, and scaling of our software platform. Lead all aspects of technology and product innovation, ensuring that Architecture, engineering practices, and technology stack support business growth and deliver exceptional customer experiences. Technology Strategy & Leadership Define and implement the overall technology roadmap aligned with the companys business goals. Evaluate and adopt emerging technologies to keep the platform competitive and scalable. Collaborate closely with the executive team to drive product and business innovation. Product & P...

This position will support our IT Audit Group. CohnReznicks specialized SOC practitioners focus on conducting SOC1, SOC2 and SOC3 audits for third-party service providers, while also conducting internal control assessments, attestations, penetration tests, and firewall assessments. Role Responsibilities include but not limited to : Participates in planning and scoping of IT audits for both SOC engagements and ICFR audits. Comfortable leading technology walkthroughs in IT general controls and application control Develops test procedures for execution and prepares relevant documentation Executes testing of IT general controls and application controls based on internal and industry standards an...

Job Summary/Objective Set up & Maintain Azure Hybrid Cloud Core Infrastructure. Install, maintain & upgrade MS SQL Server Database on Azure Cloud in a Secure, HA & DR : : Azure Cloud Administration. Active Directory (AD), ADFS Administration. Azure Devops CI/CD Pipelines Security setup Skill. MS SQL Server Administration. Window Server Administration. Proficient PowerShell Scripting / .NET Programming. Knowledge of Project Management Documentation Artifacts for SDLC & Change Management. Good Document writing Skill on Microsoft Excel & PowerPoint Preparation. Programming Experience in .NET Environment (Nice to Have). Work Experinece on Azure Security Centre, Azure Defender, and Azure Sentinel...

The GRC Lead will lead the strategic governance, risk management, and compliance agenda to strengthen the organization's cybersecurity resilience and ensure regulatory compliance. Acting as a key leader and collaborator, the GRC Lead will own the development, implementation, and continuous improvement of the GRC framework, ensuring alignment with business goals, regulatory mandates, and industry best practices. This role will manage GRC operations, lead cross-functional teams, engage executive leadership, and steer strategic risk decisions to safeguard organizational resilience. Key Responsibilities Strategic Governance & Leadership : Lead the design, execution, and maturation of the organiz...

JD Overview JOB DESCRIPTION This position Security & IT-GRC Analyst Summary - Individual will primarily be responsible to research, evaluate, design, configure, implement, maintain and monitor the Crowdstrike falcon complete platform and other security systems and product solutions and triage security incidents related to such platforms. The role will also be responsible for general security administration duties including CrowdStrike , O365 Security, Security configuration management, Security Policy Management, continuous monitoring and improvement and cross-platform intelligence generation and reporting. Details - The role will be responsible for designing, building, and monitoring core C...