33 Soc2 Jobs - Page 2

We are seeking an experienced Cloud Validation Testing Engineer to ensure the reliability, performance, and security of cloud-based applications and infrastructure. The ideal candidate should have strong expertise in cloud platforms (AWS, Azure, GCP), automation testing, performance validation, and security compliance. This role involves validating cloud-based solutions, conducting functional and non-functional testing, and ensuring adherence to cloud best practices. Key Responsibilities: Develop and execute Cloud Validation Test Plans to ensure the functionality, scalability, and security of cloud-based applications. Perform functional, performance, security, and compliance testing of cloud solutions. Automate cloud testing processes using tools like Selenium, JMeter, Postman, Robot Framework, and Terraform. Validate cloud infrastructure, networking, and data pipelines across AWS, Azure, or GCP. Conduct API testing for cloud services using Postman, REST Assured, or similar tools. Ensure adherence to cloud compliance standards (ISO, SOC2, HIPAA, PCI-DSS, etc.). Perform load, stress, and scalability testing using JMeter, Gatling, or K6. Implement CI/CD testing automation within DevOps pipelines using Jenkins, GitHub Actions, or Azure DevOps. Identify and troubleshoot cloud performance bottlenecks, latency issues, and service failures. Work closely with developers, cloud architects, and security teams to improve system reliability. Validate disaster recovery, backup, and failover mechanisms for cloud environments. Required Skills & Qualifications: 6+ years of experience in software testing and cloud validation. Strong expertise in AWS, Azure, or GCP cloud platforms. Hands-on experience with automation frameworks like Selenium, Robot Framework, or Cypress. Proficiency in Python, Java, or PowerShell for test automation. Experience with cloud monitoring tools (CloudWatch, Azure Monitor, Google Stackdriver). Knowledge of Kubernetes, Docker, and microservices testing. Strong understanding of API testing, performance testing, and cloud security validation. Experience working in Agile and DevOps environments.

We are seeking an experienced Cloud Validation Testing Engineer to ensure the reliability, performance, and security of cloud-based applications and infrastructure. The ideal candidate should have strong expertise in cloud platforms (AWS, Azure, GCP), automation testing, performance validation, and security compliance. This role involves validating cloud-based solutions, conducting functional and non-functional testing, and ensuring adherence to cloud best practices. Key Responsibilities: Develop and execute Cloud Validation Test Plans to ensure the functionality, scalability, and security of cloud-based applications. Perform functional, performance, security, and compliance testing of cloud solutions. Automate cloud testing processes using tools like Selenium, JMeter, Postman, Robot Framework, and Terraform. Validate cloud infrastructure, networking, and data pipelines across AWS, Azure, or GCP. Conduct API testing for cloud services using Postman, REST Assured, or similar tools. Ensure adherence to cloud compliance standards (ISO, SOC2, HIPAA, PCI-DSS, etc.). Perform load, stress, and scalability testing using JMeter, Gatling, or K6. Implement CI/CD testing automation within DevOps pipelines using Jenkins, GitHub Actions, or Azure DevOps. Identify and troubleshoot cloud performance bottlenecks, latency issues, and service failures. Work closely with developers, cloud architects, and security teams to improve system reliability. Validate disaster recovery, backup, and failover mechanisms for cloud environments. Required Skills & Qualifications: 6+ years of experience in software testing and cloud validation. Strong expertise in AWS, Azure, or GCP cloud platforms. Hands-on experience with automation frameworks like Selenium, Robot Framework, or Cypress. Proficiency in Python, Java, or PowerShell for test automation. Experience with cloud monitoring tools (CloudWatch, Azure Monitor, Google Stackdriver). Knowledge of Kubernetes, Docker, and microservices testing. Strong understanding of API testing, performance testing, and cloud security validation. Experience working in Agile and DevOps environments.

Job Title: DevOps/SRE Architect (On-Premises Infrastructure) Location: Bangalore Experience: 10+ years Positions: 2 Department: Engineering DevOps & IT Infrastructure Employment Type: Full-Time (Work from Office) About YSECIT YSECIT is driving innovation through cutting-edge software and hardware solutions. Our DevOps/SRE team is responsible for ensuring high availability, security, and scalability of on-premises infrastructure across multiple global data centers . As a DevOps/SRE Architect , you will be responsible for designing, implementing, and optimizing on-prem DevOps pipelines, Kubernetes clusters, and security frameworks in a multi-data center environment . Key Responsibilities 1. DevOps Strategy & On-Prem Infrastructure Design Architect, design, and implement DevOps frameworks for on-premises deployments . Ensure high availability, redundancy, and failover strategies across multiple global data centers . Standardize infrastructure as code (IaC) for on-prem data center automation . Define backup and disaster recovery (DR) strategies for global locations. 2. On-Premises Kubernetes & Network Architecture Design, configure, and optimize secure multi-node Kubernetes clusters (RHEL-based) . Implement TLS and HTTPS-based security for cluster communication. Manage on-prem load balancing, DNS, and reverse proxies (Nginx/Traefik) . Enforce RBAC, Network Policies, and Service Mesh (Istio/Linkerd) for enhanced security. 3. CI/CD Pipelines & Deployment Automation Architect fully automated CI/CD pipelines using GitLab CI/CD for on-prem deployments . Implement ArgoCD, Helm, and Kustomize for managing Kubernetes manifests. Optimize zero-downtime deployments using blue-green & canary releases . Automate infrastructure provisioning using Terraform & Ansible . 4. Security & Compliance in On-Prem Data Centers Implement Zero Trust Security models across DevOps infrastructure. Enforce container security scanning, vulnerability management, and RBAC policies . Integrate SAST, DAST, and compliance scanning tools into CI/CD. Ensure ISO 27001, SOC2, and internal compliance for data center security. 5. Observability & Incident Response Set up centralized logging for all on-prem infrastructure. Implement Prometheus & Grafana for real-time monitoring and alerting. Design highly available logging, monitoring, and backup solutions . Define incident response processes and playbooks to minimize downtime. 6. Collaboration & Mentorship Lead and mentor DevOps Engineers and SRE teams across multiple locations. Work closely with hardware, security, and software teams to optimize system performance. Establish best practices for DevOps, SRE, and automation across global teams. Key Skills & Technologies Must-Have: On-Prem Kubernetes (K8s) & RHEL-based Clusters GitLab CI/CD – Pipeline automation for on-prem infrastructure Terraform & Ansible – Infrastructure as Code (IaC) for bare-metal and VMs ArgoCD & Helm – GitOps and Kubernetes package management Prometheus & Grafana – Observability, alerting, and monitoring ELK/EFK Stack – Centralized logging and log analytics Network Security & Load Balancing – HAProxy, Nginx, Traefik Security Hardening & Compliance – RBAC, SAST, DAST, TLS/HTTPS Good-to-Have: Experience managing multi-data center infrastructure Familiarity with service mesh technologies (Istio/Linkerd) Knowledge of on-premises storage & backup solutions Experience with VM provisioning automation (Proxmox, VMware, Bare Metal) Qualifications Bachelor’s or Master’s degree in Computer Science, IT, or related fields. 10+ years of experience in on-prem DevOps/SRE roles . Proven expertise in designing high-availability Kubernetes clusters for on-premises. Experience in setting up DevOps pipelines in multi-data center environments. Strong understanding of network security, system performance, and automation . Excellent troubleshooting, problem-solving, and stakeholder communication skills . Why Join YSECIT? Opportunity to architect large-scale on-premises DevOps infrastructure Work with cutting-edge technologies in a high-security environment Lead global DevOps strategies across multiple data centers Competitive salary, growth opportunities, and mission-critical projects How to Apply? Send your resume to manushree.raju@ysecit.com with the subject line: Application for DevOps/SRE Architect (On-Prem) – YSECIT

Greetings From Bahwan CyberTek (BCT), Job Title: Senior Associate \ Assistant Manager Location: Bangalore, Chennai, Coimbatore Position Summary: This position is primarily responsible for execution of various engagement objectives within assigned areas and assists where necessary to complete the overall engagement. The individual may be responsible for day-to-day execution of engagement objectives on smaller engagements. This role requires the ability to supervise teams of 1 3 Associate staff members to ensure they receive direction and resources in the event engagement issues arise. This requires a basic understanding of the clients industry (e.g. inventory / distribution, oil & gas, financial institutions) and pertinent regulations, and the ability to learn unfamiliar industries and regulations. The individual should have a solid understanding of the role that information technology plays in financial reporting and other critical business cycles. This position should have a solid understanding of IT general controls including security administration, program change management, program development and computer operations, and should develop a better than basic understanding of the interaction of systems and financial processes. Skills: Experience in ITGC, SOC 1, SOC 2 Audit and SOX 404 preferred. CISA or CISA candidate, CISSP or CISSP candidate, CIA or CIA candidate, and/or CPA or CPA candidate. 2- 3 + years or more equivalent experience (public accounting / external audit, internal audit, information technology and/or staff accountant responsibilities). Excellent written and oral communications skills. Team orientation and strong interpersonal skills. Basic familiarity with GAAP, GAAS and IIA standards. Proficient at Microsoft Office product suite. Knowledge of IT controls and how they affect the control environment. COBIT, COSO, and related standards preferred. Greater than basic understanding of Sarbanes Oxley Section 404, and the role that information technology plays in compliance. Greater than basic understanding of systems infrastructure and security, connectivity, remote access, and data mining. Greater than basic understanding of financial reporting, transaction cycles and business processes. Greater than basic understanding of fundamental layers of information systems including network infrastructure, computer operating systems, database management systems, and computer applications. Experience supervising 1 to 3 or more individuals.

Greetings from Analytix Solutions!!! We are looking to hire a Senior Executive for our Information Security team. This is a unique opportunity to be a part of a growing team where individual contributions directly impact overall business performance. Please refer supportive details mentioned below : Company Name: Analytix Business Solutions (US Based MNC) Company At Glance: We are a premier knowledge process outsourcing unit based in Ahmedabad, fully owned by Analytix Solutions LLC, headquartered in the USA. Our Service delivery units cater to the finance and accounting, information technology, Audio Visuals, US Healthcare Services, web marketing, data processing and automation outsourcing needs of our clients. Address : Analytix Solutions Block-A, 2nd Floor, Sun Westbank, Near Vallabh Sadan Riverfront, Opp. City Gold Cinema, Ashram Road, Ahmedabad, Gujarat 380015. Here you can refer to the detailed Job description. Job Summary : The ideal candidate will have 2 to 4 years of experience in managing information security audits, Specialization in VAPT having hands on penetration testing, being capable of performing scan on IT infrastructure, Cloud, Web Application, Generating comprehensive VAPT reports. Candidate must have capability to handle Information security operations, and handling SOC2, ISO, and HIPAA audits. This role is essential in maintaining and enhancing our security framework and ensuring compliance with various standards. Key Responsibilities : Hands on VAPT skills, must lead the VAPT management having through technical knowledge of VAPT tools, technologies Must be able to scan Own/client infrastructure depending on need arises Mobile Application Scan Web application scan IT /Network Infrastructure Scan Cloud Infrastructure scan Must have capability to showcase VAPT reports and remediation steps to senior leadership team. Manage and conduct information security audits, including SOC2, ISO, and HIPAA. Oversee daily security operations and ensure the integrity of information systems. Develop, implement, and maintain security policies, procedures, and guidelines. Monitor and respond to security incidents and alerts. Collaborate with various departments to ensure compliance with security standards. Stay updated with the latest security trends, threats, and technologies. Qualifications & Skill Requirements : Bachelors degree in information security, Computer Science, or a related field. 2 to 4 Years of hands on experience in VAPT. Familiarity with security tools and technologies. Excellent problem-solving and analytical skills. Strong communication and interpersonal skills. ISO27001 Lead auditor/implementer, VAPT certificates. Our EVP (Employee Value proposition) : 5 Days working Total 24 Earned & Casual leaves and 8 public holidays Compensatory Off Opportunity to work with USA clients Career progression and Learning & Development Loyalty Bonus Benefits Medical Reimbursement Standard Salary as per market norms Magnificent & Dynamic Culture

What You'll Do We are looking for a visionary Head of Business Technology India to lead the strategic development of technology programs. You will demand a leader with a ability to build, mentor, and scale teams in India while establishing a global support desk and overseeing development teams. You will improve innovation, increase operational efficiency, and ensure understanding of global our goals. In addition to being and advocate of best practices, this opportunity requires in-depth understanding of functional and technical aspects of business process, integration methodologies, security architecture and reporting constructs in all areas including the architecture of Salesforce (CRM, Service Cloud, CPQ), Gainsight and enterprise customer support chat platforms. You will report to VP, Business Technology. What Your Responsibilities Will Be You will build, lead, and mentor technology teams (Development, Admins, Service Desk) in India. Foster a culture of collaboration, innovation and learning. Design and implement a 24/7 global technical support desk to enhance customer service delivery. Oversee software development teams, ensuring agile practices and project delivery. Architect and deploy enterprise solutions (SFDC, CRM platforms, customer support systems) to improve operations. Manage digital transformation plans aligned with organizational goals. Ensure appropriate development, configuration and testing and support of system functionality for: o Quote to Cash - Salesforce CPQ, Dell Boomi, Salesforce Billing o Lead to Sale - Salesforce CRM, other middleware (ZoomInfo, LeanData, LinkedIn Sales Navigator) o Onboarding to Renewal - Salesforce Service Cloud, Gainsight, Drift Chatbot, Salesforce Communities. Partner with global leadership to align India operations with international standards. Manage vendor relationships and negotiate contracts for cost-effective technology solutions. Identify automation opportunities to improve system performance and user experience. Establish Goals to measure team productivity and service quality. Collaborate with and manage agreements for Service providers. Negotiate the best agreement for Avalara and our customers. What You'll Need To Be Successful Experience in solution design and enterprise architecture with experience leading technology transformation, automation and scaling strategies at enterprise companies 15+ years in technology leadership roles, including hands-on experience with SFDC, CRM platforms (e.g., Salesforce, HubSpot), and customer support systems (e.g., Zendesk, Freshdesk). Experience building 50+ member teams and managing global support operations. Experience in solution design and enterprise architecture with experience leading technology transformation, automation and scaling strategies at enterprise companies Proficiency in cloud platforms and DevOps practices. Grasp of ITIL frameworks and SaaS product lifecycle management. Solid grasp in an Agile development environment with engineering principles. Experience with data and creating systems that meet security and compliance requirements. Experience with SOX, PCI, SOC2, and IT audit controls of a public company. Degree in Computer Science, Computer Engineering, Information Systems or other related field. Certifications in SFDC, ITIL or PMP/PgMP.

About the role: The IT Identity and Access Manager is responsible for safeguarding sensitive company data and systems by managing user identities, access permissions, and security protocols. Key Qualifications Minimum 15+ years of experience in Identity and access Management Minimum 5+ years of Experience in managing the IDAM platform for a global organization in the leadership role Experience in designing, implementing, and operating IDAM and PAM solutions within enterprise environments. Extensive knowledge of IDAM technologies such as IGA, RBAC, PAM, SSO, IDP and directory services Strong knowledge of security frameworks and security concepts such as defence-in-depth techniques, threat vectors, common exploits Knowledge of cybersecurity compliance frameworks such as CIS Controls, NIST, ISO 27001, GDPR, SOC2 Type2 Functional understanding of networking protocols, cloud, and server administration Knowledge of the network security, end point security, Cyber Threat, SOC and vulnerability management Demonstrate commitment to high standards of ethics and values, regulatory compliance, and business integrity. Excellent management and communication skills to drive growth of the team and individuals Strong decision-making, problem-solving abilities, and leadership abilities to manage multiple, often conflicting priorities to successful completion Industry standard security certifications like CISSP, CISA or CISM is a plus.

Role & responsibilities Risk Consulting helps clients across various industries by addressing the increasingly complex strategic, operational, compliance, and governance challenges faced by those responsible for managing or overseeing dynamic businesses. Risk Consulting major offerings includes AML & Regulatory Compliance; ERP Advisory; Automation and Analytics; Enterprise Risk Management; Internal Audit; SOX Advisory; Contract Compliance; Credit Reviews; Information & Technology Audits; Cybersecurity risk management; Third-party risk management; IT due diligence; SOC1 / SOC2; Security and Privacy Risk; Governance Risk and Compliance; PCI; Cyber Transformation; Manage Security Services; Secure Architecture Solutions; Cyber Testing; Digital Forensics and Incident Response; and Cyber Threat Intelligence. Qualification and Minimum Entry Requirements Chartered Accountant with relevant 1 2 years’ experience in SSAE 18, SOC reports, IT General Controls and IT Application Controls. Candidate should have basic to intermediate knowledge of financials, operations and technology and its related risks Candidate should have basic knowledge for SOC 1, SOC 2, IT General Controls, and IT Application Controls Qualified to pursue a job-relevant certification (CIA, CISA) Strong Data Analytical skills including advanced Excel skills (VLOOKUP’s, pivot tables, and basic formulas), Word and PowerPoint MS Visio skills to develop process and data flow diagrams Strong multi-tasking and project management skills Excellent verbal and written communication (English) as the position requires frequent communications with RSM International clients Position and Key Responsibilities As an Associate in RSM’s growing Technology Risk Consulting, you will have the opportunity to develop into a seasoned consultant through a high degree of client and industry exposure, career development and mentorship opportunities, and a diverse and inclusive culture. The fast-paced and dynamic environment in which we operate will provide you with daily challenges and exciting opportunities. In the Technology Risk Consulting Practice, our consultants help our clients with design and optimization of controls utilizing a general knowledge of business processes, accounting, and information technologies by identifying and prioritizing risk and transform their technology risk management and assurance capabilities to be aligned to the key risks and strategies of their organization. Develop an understanding of the RSM Technology Risk Consulting approach, methodology and tools Develop an understanding of the industry leading frameworks and methodologies for Sarbanes-Oxley, COSO, COBIT Demonstrate understanding of business processes, internal control risk management, IT controls, and related regulatory and compliance standards Perform technology risk assessments and reviewing, documenting, evaluating control’s design and operating effectiveness, IT internal audit consulting activities (internal audits over ERP systems, IT security, and other IT systems), perform external audit assurance activities, and perform service organization control services activities related to SSAE18 SOC 1 and SOC 2 reporting services Performing risk analysis by reviewing the information security policy documents against industry standards/ regulatory requirements and drafting risk reports, which summarize the information security assessment including any risks to the organization Execute components of IT audits under offshore delivery model in an effective and efficient manner Use problem solving and critical thinking skills to quickly identify internal control deficiencies, evaluate their risk implications, and draw the appropriate conclusions to best advise our clients Exercise professional skepticism, judgment and adhere to the code of ethics while on engagements Ensure that documentation is compliant with quality standards of the firm Work collaboratively as a part of the team and communicate effectively with RSM consulting professionals, supervisors, and senior management in the U.S. on a daily basis Manage multiple concurrent engagements and ensure service excellence through prompt responses to internal and external clients Provide timely, high quality client service that meets or exceeds client expectations including coordinating the development and execution of the consulting work plan and client deliverables Understand RSM US and RSM Delivery Center's LOB’s and work as a team in providing an integrated service delivery Ensure professional development through ongoing education Open to work on other solution sets considering business requirements