92 Sonatype Jobs

Sonatype is the software supply chain security company. We provide the world’s best end-to-end software supply chain security solution, combining the only proactive protection against malicious open source, the only enterprise grade SBOM management and the leading open source dependency management platform. This empowers enterprises to create and maintain secure, quality, and innovative software at scale. As founders of Nexus Repository and stewards of Maven Central, the world’s largest repository of Java open-source software, we are software pioneers and our open source expertise is unmatched. We empower innovation with an unparalleled commitment to build faster, safer software and harness AI and data intelligence to mitigate risk, maximize efficiencies, and drive powerful software development. More than 2,000 organizations, including 70% of the Fortune 100 and 15 million software developers, rely on Sonatype to optimize their software supply chains. About The Role We are seeking a skilled Information Security Engineer to join our team and play a crucial role in securing our digital assets. This role offers an exciting opportunity to work with cutting-edge security tools, collaborate with global teams, and contribute to strengthening our cybersecurity framework. Key Responsibilities Conduct vulnerability scans, analyze results, and support remediation efforts. Manage security incidents, including response, resolution, and prevention. Proactively protect digital assets, mitigating risks before breaches occur. Implement, configure, and upgrade security tools and systems. Evaluate, integrate, and configure security technologies to enhance protection. Collaborate with technical teams, product managers, and third-party vendors on security initiatives. Respond to cybersecurity alerts, monitor logs, and manage security events. Perform technical risk assessments on software, tools, and third-party integrations. Identify vulnerabilities in infrastructure and provide risk-based recommendations. What We’re Looking For 8+ years of experience in software development or security engineering. 7+ years of experience in DevOps and security operations. 7+ years handling incident response and escalation. Strong understanding of vulnerability management and scanning tools. Familiarity with common security frameworks, protection methods, and DevSecOps. Experience with SAST, DAST, SCA, or related security testing tools. Hands-on experience conducting security reviews (architecture, source code, infrastructure). Experience deploying automated/custom vulnerability scans. Knowledge of cloud and infrastructure security principles. Bonus Skills (Good To Have) Knowledge of web application security (e.g., OWASP Top 10). Understanding of security architecture principles. Familiarity with threat modeling frameworks and security assessments. Relevant certifications such as: SANS Certifications: GSEC, GCIH, GCLD, GCID, GMON (ISC)² Certifications: CISSP, CC, SSCP, CCSP, CAP, CSSLP Why Join Us? Work with a global team at the forefront of cybersecurity. Exciting career growth opportunities with industry-leading experts. Work-from-home flexibility with a strong work-life balance. Continuous learning & certification support to advance your skills. At Sonatype, we value diversity and inclusivity. We offer perks such as parental leave, diversity and inclusion working groups, and flexible working practices to allow our employees to show up as their whole selves. We are an equal-opportunity employer, and we do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status. If you have a disability or special need that requires accommodation, please do not hesitate to let us know.

Sonatype is the software supply chain security company. We provide the world’s best end-to-end software supply chain security solution, combining the only proactive protection against malicious open source, the only enterprise grade SBOM management and the leading open source dependency management platform. This empowers enterprises to create and maintain secure, quality, and innovative software at scale. As founders of Nexus Repository and stewards of Maven Central, the world’s largest repository of Java open-source software, we are software pioneers and our open source expertise is unmatched. We empower innovation with an unparalleled commitment to build faster, safer software and harness AI and data intelligence to mitigate risk, maximize efficiencies, and drive powerful software development. More than 2,000 organizations, including 70% of the Fortune 100 and 15 million software developers, rely on Sonatype to optimize their software supply chains. Who We Are At Sonatype, we help organizations build better, more secure software by enabling them to understand and control their software supply chains. Our products are trusted by thousands of engineering teams globally, providing critical insights into dependency health, license risk, and software security. We’re passionate about empowering developers—and we back it with data. The Opportunity We’re looking for a Data Engineer with full stack expertise to join our growing Data Platform team. This role blends data engineering, microservices, and fullstack development to deliver end-to-end services that power analytics, machine learning, and advanced search across Sonatype. You will design and build data-driven microservices and workflows using Java, Python, and Spring Batch, implement frontends for data workflows, and deploy everything through CI/CD pipelines into AWS ECS/Fargate. Y ou’ll also ensure services are monitorable, debuggable, and reliable at scale, while clearly documenting designs with Mermaid-based sequence and dataflow diagrams . This is a hands-on engineering role for someone who thrives at the intersection of data systems, fullstack development, ML, and cloud-native platforms. What You’ll Do Design, build, and maintain data pipelines, ETL/ELT workflows, and scalable microservices. Development of complex web scraping (playwright) and realtime pipelines (Kafka/Queues/Flink)Develop end-to-end microservices with backend (Java 5+, Python 5+, Spring Batch 2+) and frontend (React or any). Deploy, publish, and operate services in AWS ECS/Fargate using CI/CD pipelines (Jenkins, GitOps). Architect and optimize data storage models in SQL (MySQL, PostgreSQL) and NoSQL stores. Implement web scraping and external data ingestion pipelines. Enable Databricks and PySpark-based workflows for large-scale analytics. Build advanced data search capabilities (fuzzy matching, vector similarity search, semantic retrieval). Apply ML techniques (scikit-learn, classification algorithms, predictive modeling) to data-driven solutions. Implement observability, debugging, monitoring, and alerting for deployed services. Create Mermaid sequence diagrams, flowcharts, and dataflow diagrams to document system architecture and workflows. Drive best practices in fullstack data service development, including architecture, testing, and documentation. What We’re Looking For 2+ years of experience as a Data Engineer or a Software Backend engineering role. Strong programming skills in Python, Scala, or JavaHands-on experience with HBase or similar NoSQL columnar stores. Hands-on experience with distributed data systems like Spark, Kafka, or Flink. Proficient in writing complex SQL and optimizing queries for performance. Experience building and maintaining robust ETL/ELT pipelines in production. Familiarity with workflow orchestration tools (Airflow, Dagster, or similar). Understanding of data modeling techniques (star schema, dimensional modeling, etc.). Familiarity with CI/CD pipelines (Jenkins or similar)Ability to visualize and communicate architectures using Mermaid diagrams. Bonus Points Experience working with Databricks, dbt, Terraform, or Kubernetes. Familiarity with streaming data pipelines or real-time processing. Exposure to data governance frameworks and tools. Experience supporting data products or ML pipelines in production. Strong understanding of data privacy, security, and compliance best practices Why You’ll Love Working Here Data with purpose: Work on problems that directly impact how the world builds secure software Modern tooling: Leverage the best of open-source and cloud-native technologies Collaborative culture: Join a passionate team that values learning, autonomy, and impact At Sonatype, we value diversity and inclusivity. We offer perks such as parental leave, diversity and inclusion working groups, and flexible working practices to allow our employees to show up as their whole selves. We are an equal-opportunity employer, and we do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status. If you have a disability or special need that requires accommodation, please do not hesitate to let us know.

Sonatype is the software supply chain security company. We provide the world’s best end-to-end software supply chain security solution, combining the only proactive protection against malicious open source, the only enterprise grade SBOM management and the leading open source dependency management platform. This empowers enterprises to create and maintain secure, quality, and innovative software at scale. As founders of Nexus Repository and stewards of Maven Central, the world’s largest repository of Java open-source software, we are software pioneers and our open source expertise is unmatched. We empower innovation with an unparalleled commitment to build faster, safer software and harness AI and data intelligence to mitigate risk, maximize efficiencies, and drive powerful software development. More than 2,000 organizations, including 70% of the Fortune 100 and 15 million software developers, rely on Sonatype to optimize their software supply chains. Who We Are At Sonatype, we help organizations build better, more secure software by enabling them to understand and control their software supply chains. Our products are trusted by thousands of engineering teams globally, providing critical insights into dependency health, license risk, and software security. We’re passionate about empowering developers—and we back it with data. The Opportunity We’re looking for a Senior Data Engineer with full stack expertise to join our growing Data Platform team. This role blends data engineering, microservices, and fullstack development to deliver end-to-end services that power analytics, machine learning, and advanced search across Sonatype. You will design and build data-driven microservices and workflows using Java, Python, and Spring Batch, implement frontends for data workflows, and deploy everything through CI/CD pipelines into AWS ECS/Fargate. You’ll also ensure services are monitorable, debuggable, and reliable at scale, while clearly documenting designs with Mermaid-based sequence and dataflow diagrams. This is a hands-on engineering role for someone who thrives at the intersection of data systems, fullstack development, ML, and cloud-native platforms. What You’ll Do Design, build, and maintain data pipelines, ETL/ELT workflows, and scalable microservices. Development of complex web scraping (playwright) and realtime pipelines (Kafka/Queues/Flink)Develop end-to-end microservices with backend (Java 5+, Python 5+, Spring Batch 2+) and frontend (React or any). Deploy, publish, and operate services in AWS ECS/Fargate using CI/CD pipelines (Jenkins, GitOps). Architect and optimize data storage models in SQL (MySQL, PostgreSQL) and NoSQL stores. Implement web scraping and external data ingestion pipelines. Enable Databricks and PySpark-based workflows for large-scale analytics.Build advanced data search capabilities (fuzzy matching, vector similarity search, semantic retrieval). Apply ML techniques (scikit-learn, classification algorithms, predictive modeling) to data-driven solutions.Implement observability, debugging, monitoring, and alerting for deployed services.Create Mermaid sequence diagrams, flowcharts, and dataflow diagrams to document system architecture and workflows. Drive best practices in fullstack data service development, including architecture, testing, and documentation. What We’re Looking For 5+ years of experience as a Data Engineer or a Software Backend engineering role. Strong programming skills in Python, Scala, or JavaHands-on experience with HBase or similar NoSQL columnar stores. Hands-on experience with distributed data systems like Spark, Kafka, or Flink. Proficient in writing complex SQL and optimizing queries for performance. Experience building and maintaining robust ETL/ELT pipelines in production. Familiarity with workflow orchestration tools (Airflow, Dagster, or similar). Understanding of data modeling techniques (star schema, dimensional modeling, etc.). Familiarity with CI/CD pipelines (Jenkins or similar). Ability to visualize and communicate architectures using Mermaid diagrams. Bonus Points Experience working with Databricks, dbt, Terraform, or Kubernetes. Familiarity with streaming data pipelines or real-time processing. Exposure to data governance frameworks and tools. Experience supporting data products or ML pipelines in production. Strong understanding of data privacy, security, and compliance best practices At Sonatype, we value diversity and inclusivity. We offer perks such as parental leave, diversity and inclusion working groups, and flexible working practices to allow our employees to show up as their whole selves. We are an equal-opportunity employer, and we do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status. If you have a disability or special need that requires accommodation, please do not hesitate to let us know.

Senior Associate, Information Security Analyst At BNY, our culture allows us to run our company better and enables employees’ growth and success. As a leading global financial services company at the heart of the global financial system, we influence nearly 20% of the world’s investible assets. Every day, our teams harness cutting-edge AI and breakthrough technologies to collaborate with clients, driving transformative solutions that redefine industries and uplift communities worldwide. Recognized as a top destination for innovators and champions of inclusion, BNY is where bold ideas meet advanced technology and exceptional talent. Together, we power the future of finance – and this is what #LifeAtBNY is all about. Join us and be part of something extraordinary. We’re seeking a future team member for the role of Senior Associate, Information Security Analyst to join our WEALTH SERVICES ENGINEERING SDG team. This role is located in CHENNAI, TN. In this role, you’ll make an impact in the following ways: Actively contribute to the organizational Vulnerability Management program Perform Design reviews and provide approvals to initiatives Perform Dynamic, Static scans and Software Composition Analysis for a specified inventory of applications Perform Ethical Hacking for a specified inventory of applications Provide metrics on Vulnerability reduction and Scan progression Prepare reports for Senior Management on the current risk posture of the organization Provide support to audits and client queries on the Vulnerability Management process, procedures and its execution Provide support to Application Managers and Developers during each Sprint To be successful in this role, we’re seeking the following: Bachelor’s or Master’s degree in Computer Science Engineering, OR Electronics and Communications Engineering, OR related discipline 3 to 7 years of work experience in Application Security domain is required. Should be able to identify security flaws in design, source code and deployed applications with ease Should have working knowledge of tools such as Microsoft Threat Modeler, HCL AppScan, OpenText Fortify, Sonatype Nexus IQ, Portswigger Burp Suite, OpenText WebInspect Strong written communication skills Should have prior experience working in and as a team Should keep pace with current vulnerability trends by researching on industry standards and best practices At BNY, our culture speaks for itself, check out the latest BNY news at: BNY Newsroom BNY LinkedIn Here’s a few of our recent awards : America’s Most Innovative Companies, Fortune, 2025 World’s Most Admired Companies, Fortune 2025 “Most Just Companies”, Just Capital and CNBC, 2025 Our Benefits and Rewards : BNY offers highly competitive compensation, benefits, and wellbeing programs rooted in a strong culture of excellence and our pay-for-performance philosophy. We provide access to flexible global resources and tools for your life’s journey. Focus on your health, foster your personal resilience, and reach your financial goals as a valued member of our team, along with generous paid leaves, including paid volunteer time, that can support you and your family through moments that matter. BNY is an Equal Employment Opportunity/Affirmative Action Employer - Underrepresented racial and ethnic groups/Females/Individuals with Disabilities/Protected Veterans.

Req ID: 334549 NTT DATA strives to hire exceptional, innovative and passionate individuals who want to grow with us. If you want to be part of an inclusive, adaptable, and forward-thinking organization, apply now. We are currently seeking a Sr.Dotnet Developer to join our team in Ban/Hyd/Chn/Gur/Noida, Karnātaka (IN-KA), India (IN). Required Skills Thourough understanding and commitment to the continuous improvement philosophy Agile Development practices Solid Principles Hand on Experience with C#4.0, .Net Framework 4+, .Net Core, .Net 5+ ASP.NET 4 & ASP.NET WEB API Linq MVC, Blazor Javascript, Jquery, HTML, CSS SQL Server 2016 and above Entity Framework Test Driven Development Beneficial Skills Real time messaging Data Warehousing Rest API NHibernate Web Services Sonarqube Sonatype Nexus Version control (ex Git) CI/CD Control-M About NTT DATA NTT DATA is a $30 billion trusted global innovator of business and technology services. We serve 75% of the Fortune Global 100 and are committed to helping clients innovate, optimize and transform for long term success. As a Global Top Employer, we have diverse experts in more than 50 countries and a robust partner ecosystem of established and start-up companies. Our services include business and technology consulting, data and artificial intelligence, industry solutions, as well as the development, implementation and management of applications, infrastructure and connectivity. We are one of the leading providers of digital and AI infrastructure in the world. NTT DATA is a part of NTT Group, which invests over $3.6 billion each year in R&D to help organizations and society move confidently and sustainably into the digital future. Visit us at us.nttdata.com Whenever possible, we hire locally to NTT DATA offices or client sites. This ensures we can provide timely and effective support tailored to each client's needs. While many positions offer remote or hybrid work options, these arrangements are subject to change based on client requirements. For employees near an NTT DATA office or client site, in-office attendance may be required for meetings or events, depending on business needs. At NTT DATA, we are committed to staying flexible and meeting the evolving needs of both our clients and employees. NTT DATA recruiters will never ask for payment or banking information and will only use @nttdata.com and @talent.nttdataservices.com email addresses. If you are requested to provide payment or disclose banking information, please submit a contact us form, https://us.nttdata.com/en/contact-us. NTT DATA endeavors to make https://us.nttdata.com accessible to any and all users. If you would like to contact us regarding the accessibility of our website or need assistance completing the application process, please contact us at https://us.nttdata.com/en/contact-us. This contact information is for accommodation requests only and cannot be used to inquire about the status of applications. NTT DATA is an equal opportunity employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status. For our EEO Policy Statement, please click here. If you'd like more information on your EEO rights under the law, please click here. For Pay Transparency information, please click here.

Sonatype is a leader in software supply chain management, helping organizations develop secure and high-quality applications faster. Our products empower development teams to automate security, compliance, and governance across the software lifecycle. We are looking for a Full Stack Principal Software Engineer to join our growing team in India. This role is for someone who thrives in designing and building scalable applications, leading technical strategy, and mentoring teams while working with modern front-end and back-end technologies. Responsibilities Architect & Develop: Design and implement scalable, high-performance software solutions for Sonatype’s platform. Full Stack Development: Build and maintain front-end applications using modern frameworks (React, Angular, Vue.js ) and back-end services using Java, Spring Boot, and cloud-native technologies. Technical Leadership: Provide technical guidance, conduct code reviews, and mentor engineers to improve software quality and performance. Scalability & Security: Ensure software solutions adhere to best practices for security, scalability, and performance. Cloud & DevOps: Deploy and manage applications on cloud platforms (AWS, Azure, GCP) using Kubernetes, Docker, and CI/CD pipelines. Collaboration: Work cross-functionally with product managers, UX designers, and other engineers to deliver customer-centric solutions. Required Skills 10+ years of experience in full-stack development with expertise in Java, Spring Boot, and modern front-end frameworks. Strong experience with microservices architecture and cloud-based development. Deep knowledge of front-end technologies such as React.js , Angular, TypeScript, JavaScript, HTML, CSS. Experience with database technologies like PostgreSQL, MySQL, MongoDB. Hands-on experience with Docker, Kubernetes, CI/CD tools (Jenkins, GitHub Actions, ArgoCD, etc.). Strong understanding of API design, GraphQL/REST, and authentication protocols (OAuth, JWT, SAML). Experience leading development teams, mentoring engineers, and driving technical decisions. Excellent problem-solving skills and ability to work in an agile, fast-paced environment. Fluency in English - spoken and written Preferred Qualifications Experience with Sonatype products (e.g., Nexus Repository, Lifecycle). Knowledge of DevSecOps practices and software security best practices. Familiarity with serverless computing (AWS Lambda, Azure Functions). Contributions to open-source projects or active participation in the software development community. Why Join Sonatype Impactful Work: Shape the future of secure software development. Innovative Environment: Work with cutting-edge technologies and a passionate team. Career Growth: Opportunities for leadership and technical advancement. Join us at Sonatype India and be part of a mission-driven company revolutionizing software supply chain security! Things that we are proud of 2023 Forrester Leader in SCA #1 ranked SCA 2022 Frost & Sullivan Technology Innovation Leader Award: Sonatype earned Frost & Sullivan’s 2022 Global Technology Innovation Leadership Award in Development and Operations (DevOps) Security. NVTC 2022 Cyber Company of the Year: Sonatype was named Commercial Cyber Company of the Year and a Capital Cyber Award-winner by the Northern Virginia Technology Council (NVTC) 2022 Annual Peer Award: Sonatype’s Nexus Lifecycle won a PeerSpot Silver Peer Award as a leading Enterprise Technology solution in the Software Composition Analysis category. 2022 Best in Biz Award: Sonatype CEO Wayne Jackson was recognized as a Silver Winner in the Best in Biz Awards' Executive of the Year category. Tech Ascension Awards: Sonatype was named the Best DevOps Security Solution for Nexus Lifecycle and Nexus Firewall (Software Composition Analysis). BuiltIn Best Places to Work: Sonatype was named to the Washington DC 100 Best Places to Work list and Washington DC Best Midsize Places to Work list. Company Wellness Week - We shut down company operations for a week to enable all employees to spend time pursuing personal growth and enjoying much needed and deserved rest. Diversity & Inclusion Working Groups Parental Leave Policy Paid Volunteer Time Off (VTO) LI-AL1

Calling all innovators – find your future at Fiserv. We’re Fiserv, a global leader in Fintech and payments, and we move money and information in a way that moves the world. We connect financial institutions, corporations, merchants, and consumers to one another millions of times a day – quickly, reliably, and securely. Any time you swipe your credit card, pay through a mobile app, or withdraw money from the bank, we’re involved. If you want to make an impact on a global scale, come make a difference at Fiserv. Job Title Tech Lead, Software Development Engineering About Your Role At Fiserv, we are dedicated to transforming financial services technology to benefit our clients. As a Software Development Engineering - Sr Professional I, you will play a critical role in designing, developing, and maintaining high-quality software applications. You will work with cross-functional teams to deliver solutions that align with our business goals and client needs. What You'll Do Implement new features and functionality, as well as optimize and refactor existing code. Write clean, efficient and well documented code. Work with appropriate frameworks, libraries and tools (e.g. Spring Boot, Maven, Gradle). Stay updated on the latest trends and technologies in the Java ecosystem. Automate development processes, such as continuous integration / continuous deployment (CI/CD) pipelines. Resolve complex technical issues, whether in the development stage or in production environment. Analyze logs and error reports to trace problems and apply fixes. Contribute to innovation initiatives, proposing new technologies or approaches. Experience You'll Need To Have Java 17+ Spring Boot 3, Quarkus REST API (Open API 3) Apache Kafka (Cloudera or Confluent), Amazon MSK Hibernate, JPA Hazelcast, Redis Maven, GitLab CI/CD, ArgoCD, Nexus Junit, Mockito Sonatype Lifecycle, Fortify, WebInspect, SonarQube Dynatrace, Splunk AWS, Kubernetes, Docker Jira, Confluence IntelliJ IDEA Ultimate What You Will Need To Have In-depth knowledge of Java: This includes understanding the latest versions of Java, core concepts like object-oriented programming, multithreading, exception handling, collections framework, and Java memory management (garbage collection, etc.). Professional Experience: 5+ years of hands-on experience in Java development. Spring Framework: Experience with Spring Boot, Spring Security, and Spring Data, Spring MVC. Build Tools: Knowledge of build automation tools like Maven or Gradle. Web Services: Proficiency with RESTful services and related technologies like JSON, XML. Version Control: Knowledge of Git or other version control systems. Unit Testing: Familiarity with testing tools like Junit and Mockito. What Would Be Great To Have Leadership and Mentorship: Ability to guide and mentor junior developers, conduct code reviews, and lead technical discussions. Team Collaboration: Experience working in agile teams, contributing to sprint planning, standups, and retrospectives. Adaptability: Ability to quickly learn new technologies and adapt to changing project Experience That Would Be Great To Have Experience in the financial services industry Thank You For Considering Employment With Fiserv. Please Apply using your legal name Complete the step-by-step profile and attach your resume (either is acceptable, both are preferable). Our Commitment To Diversity And Inclusion Fiserv is proud to be an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, gender, gender identity, sexual orientation, age, disability, protected veteran status, or any other category protected by law. Note To Agencies Fiserv does not accept resume submissions from agencies outside of existing agreements. Please do not send resumes to Fiserv associates. Fiserv is not responsible for any fees associated with unsolicited resume submissions. Warning About Fake Job Posts Please be aware of fraudulent job postings that are not affiliated with Fiserv. Fraudulent job postings may be used by cyber criminals to target your personally identifiable information and/or to steal money or financial information. Any communications from a Fiserv representative will come from a legitimate Fiserv email address.

Description and Requirements "At BMC trust is not just a word - it's a way of life!" Hybrid Description and Requirements "At BMC trust is not just a word - it's a way of life!" We are an award-winning, equal opportunity, culturally diverse, fun place to be. Giving back to the community drives us to be better every single day. Our work environment allows you to balance your priorities, because we know you will bring your best every day. We will champion your wins and shout them from the rooftops. Your peers will inspire, drive, support you, and make you laugh out loud! We help our customers free up time and space to become an Autonomous Digital Enterprise that conquers the opportunities ahead - and are relentless in the pursuit of innovation! The Control-M product line is BMC’s orchestration and automation platform. It helps the world's largest companies to automate time-sensitive, business-critical workflows. We orchestrate data and machine learning pipelines, supply chains, production lines, financial transactions, and other processes in complex IT environments worldwide. We continuously grow by adding and implementing the most cutting-edge technologies, conducting innovative Just Do It marathons, thinking about new features to add and investing in our employee training programs! The BMC Product Security Group (PSG) is looking for a passionate Product Development Engineer with strong engineering skills and a deep understanding of secure software development practices. This role is ideal for someone with a solid foundation in Java development , DevSecOps , container orchestration , and security tooling , who is passionate about integrating security into the software development lifecycle. You will work closely with product, engineering, and security teams to embed security into every phase of the product lifecycle—from development to deployment. Here is how, through this exciting role, YOU will contribute to BMC's and your own success: Develop and maintain secure, high-quality Java code for tools, integrations, or product features. Design and implement secure CI/CD pipelines with DevSecOps practices. Manage containerization and orchestration using Docker and Kubernetes. Automate security-related tasks and processes using Python or other scripting languages. Collaborate with development teams to integrate security controls and static/dynamic analysis tools into CI/CD workflows. Implement and manage product security tools (e.g., SAST, DAST, SCA, container scanning). Advocate for security best practices across engineering teams through training, documentation, and tooling. Monitor the security landscape for new vulnerabilities, tools and threats relevant to our tech stack To ensure you’re set up for success, you will bring the following skillset & experience: 5+ years of experience in software engineering or product security engineering. Strong proficiency in Java and experience developing secure applications. Hands-on experience with containers (Docker) and Kubernetes in production environments. Deep understanding of DevSecOps principles and secure SDLC. Proficiency in scripting languages like Python, Bash, or similar. Familiarity with security tools such as Fortify, JFrog, Checkmarx, Aqua, Sonatype, Blackduck etc. Experience with CI/CD tools (e.g., Jenkins, GitHub Actions, GitLab CI). Solid grasp of application and cloud security principles. Knowledge of cloud-based development, AI/ML, GenAI frameworks is a plus CA-DNP Our commitment to you! BMC’s culture is built around its people. We have 6000+ brilliant minds working together across the globe. You won’t be known just by your employee number, but for your true authentic self. BMC lets you be YOU! If after reading the above, You’re unsure if you meet the qualifications of this role but are deeply excited about BMC and this team, we still encourage you to apply! We want to attract talents from diverse backgrounds and experience to ensure we face the world together with the best ideas! BMC is committed to equal opportunity employment regardless of race, age, sex, creed, color, religion, citizenship status, sexual orientation, gender, gender expression, gender identity, national origin, disability, marital status, pregnancy, disabled veteran or status as a protected veteran. If you need a reasonable accommodation for any part of the application and hiring process, visit the accommodation request page. BMC Software maintains a strict policy of not requesting any form of payment in exchange for employment opportunities, upholding a fair and ethical hiring process. At BMC we believe in pay transparency and have set the midpoint of the salary band for this role at 2,117,800 INR. Actual salaries depend on a wide range of factors that are considered in making compensation decisions, including but not limited to skill sets; experience and training, licensure, and certifications; and other business and organizational needs. The salary listed is just one component of BMC's employee compensation package. Other rewards may include a variable plan and country specific benefits. We are committed to ensuring that our employees are paid fairly and equitably, and that we are transparent about our compensation practices. ( Returnship@BMC ) Had a break in your career? No worries. This role is eligible for candidates who have taken a break in their career and want to re-enter the workforce. If your expertise matches the above job, visit to https://bmcrecruit.avature.net/returnship know more and how to apply.

Sonatype is the software supply chain security company. We provide the world’s best end-to-end software supply chain security solution, combining the only proactive protection against malicious open source, the only enterprise grade SBOM management and the leading open source dependency management platform. This empowers enterprises to create and maintain secure, quality, and innovative software at scale. As founders of Nexus Repository and stewards of Maven Central, the world’s largest repository of Java open-source software, we are software pioneers and our open source expertise is unmatched. We empower innovation with an unparalleled commitment to build faster, safer software and harness AI and data intelligence to mitigate risk, maximize efficiencies, and drive powerful software development. More than 2,000 organizations, including 70% of the Fortune 100 and 15 million software developers, rely on Sonatype to optimize their software supply chains. The Opportunity We’re looking for a Senior Data Engineer to join our growing Data Platform team. This role is a hybrid of data engineering and business intelligence, ideal for someone who enjoys solving complex data challenges while also building intuitive and actionable reporting solutions. You’ll play a key role in designing and scaling the infrastructure and pipelines that power analytics, dashboards, machine learning, and decision-making across Sonatype. You’ll also be responsible for delivering clear, compelling, and insightful business intelligence through tools like Looker Studio and advanced SQL queries. What You’ll Do Design, build, and maintain scalable data pipelines and ETL/ELT processes. Architect and optimize data models and storage solutions for analytics and operational use. Create and manage business intelligence reports and dashboards using tools like Looker Studio, Power BI, or similar. Collaborate with data scientists, analysts, and stakeholders to ensure datasets are reliable, meaningful, and actionable. Own and evolve parts of our data platform (e.g., Airflow, dbt, Spark, Redshift, or Snowflake). Write complex, high-performance SQL queries to support reporting and analytics needs. Implement observability, alerting, and data quality monitoring for critical pipelines. Drive best practices in data engineering and business intelligence, including documentation, testing, and CI/CD. Contribute to the evolution of our next-generation data lakehouse and BI architecture. What We’re Looking For 5+ years of experience as a Data Engineer or in a hybrid data/reporting role. Strong programming skills in Python, Java, or Scala. Proficiency with data tools such as Databricks, data modeling techniques (e.g., star schema, dimensional modeling), and data warehousing solutions like Snowflake or Redshift. Hands-on experience with modern data platforms and orchestration tools (e.g., Spark, Kafka, Airflow). Proficient in SQL with experience in writing and optimizing complex queries for BI and analytics. Experience with BI tools such as Looker Studio, Power BI, or Tableau. Experience in building and maintaining robust ETL/ELT pipelines in production. Understanding of data quality, observability, and governance best practices. 5+ years of experience as a Data Engineer or in a hybrid data/reporting role. Strong programming skills in Python, Java, or Scala. Hands-on experience with modern data platforms and orchestration tools (e.g., Spark, Kafka, Airflow). Proficient in SQL with experience in writing and optimizing complex queries for BI and analytics. Experience with BI tools such as Looker Studio, Power BI, or Tableau. Familiarity with data modeling techniques (star schema, dimensional modeling, etc.). Experience in building and maintaining robust ETL/ELT pipelines in production. Understanding data quality, observability, and governance best practices. Bonus Points Experience with dbt, Terraform, or Kubernetes. Familiarity with real-time data processing or streaming architectures. Understanding of data privacy, compliance, and security best practices in analytics and reporting. Why You’ll Love Working Here Data with purpose: Work on problems that directly impact how the world builds secure software. Full-spectrum impact: Use both engineering and analytical skills to shape product, strategy, and operations. Modern tooling: Leverage the best of open-source and cloud-native technologies. Collaborative culture: Join a passionate team that values learning, autonomy, and real-world impact. At Sonatype, we value diversity and inclusivity. We offer perks such as parental leave, diversity and inclusion working groups, and flexible working practices to allow our employees to show up as their whole selves. We are an equal-opportunity employer, and we do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status. If you have a disability or special need that requires accommodation, please do not hesitate to let us know.

Country India State Maharashtra City Pune Date Published 22-Aug-2025 Job ID 45565 Travel up to 10% Looking for details about our benefits? Description and Requirements "At BMC trust is not just a word - it's a way of life!" We are an award-winning, equal opportunity, culturally diverse, fun place to be. Giving back to the community drives us to be better every single day. Our work environment allows you to balance your priorities, because we know you will bring your best every day. We will champion your wins and shout them from the rooftops. Your peers will inspire, drive, support you, and make you laugh out loud! We help our customers free up time and space to become an Autonomous Digital Enterprise that conquers the opportunities ahead - and are relentless in the pursuit of innovation! The Control-M product line is BMC’s orchestration and automation platform. It helps the world's largest companies to automate time-sensitive, business-critical workflows. We orchestrate data and machine learning pipelines, supply chains, production lines, financial transactions, and other processes in complex IT environments worldwide. We continuously grow by adding and implementing the most cutting-edge technologies, conducting innovative Just Do It marathons, thinking about new features to add and investing in our employee training programs! The BMC Product Security Group (PSG) is looking for a passionate Product Development Engineer with strong engineering skills and a deep understanding of secure software development practices. This role is ideal for someone with a solid foundation in Java development, DevSecOps, container orchestration, and security tooling, who is passionate about integrating security into the software development lifecycle. You will work closely with product, engineering, and security teams to embed security into every phase of the product lifecycle—from development to deployment. Here is how, through this exciting role, YOU will contribute to BMC's and your own success: Develop and maintain secure, high-quality Java code for tools, integrations, or product features. Design and implement secure CI/CD pipelines with DevSecOps practices. Manage containerization and orchestration using Docker and Kubernetes. Automate security-related tasks and processes using Python or other scripting languages. Collaborate with development teams to integrate security controls and static/dynamic analysis tools into CI/CD workflows. Implement and manage product security tools (e.g., SAST, DAST, SCA, container scanning). Advocate for security best practices across engineering teams through training, documentation, and tooling. Monitor the security landscape for new vulnerabilities, tools and threats relevant to our tech stack To ensure you’re set up for success, you will bring the following skillset & experience: 5+ years of experience in software engineering or product security engineering. Strong proficiency in Java and experience developing secure applications. Hands-on experience with containers (Docker) and Kubernetes in production environments. Deep understanding of DevSecOps principles and secure SDLC. Proficiency in scripting languages like Python, Bash, or similar. Familiarity with security tools such as Fortify, JFrog, Checkmarx, Aqua, Sonatype, Blackduck etc. Experience with CI/CD tools (e.g., Jenkins, GitHub Actions, GitLab CI). Solid grasp of application and cloud security principles. Knowledge of cloud-based development, AI/ML, GenAI frameworks is a plus Our commitment to you! BMC’s culture is built around its people. We have 6000+ brilliant minds working together across the globe. You won’t be known just by your employee number, but for your true authentic self. BMC lets you be YOU! If after reading the above, You’re unsure if you meet the qualifications of this role but are deeply excited about BMC and this team, we still encourage you to apply! We want to attract talents from diverse backgrounds and experience to ensure we face the world together with the best ideas! BMC is committed to equal opportunity employment regardless of race, age, sex, creed, color, religion, citizenship status, sexual orientation, gender, gender expression, gender identity, national origin, disability, marital status, pregnancy, disabled veteran or status as a protected veteran. If you need a reasonable accommodation for any part of the application and hiring process, visit the accommodation request page. BMC Software maintains a strict policy of not requesting any form of payment in exchange for employment opportunities, upholding a fair and ethical hiring process. At BMC we believe in pay transparency and have set the midpoint of the salary band for this role at 2,117,800 INR. Actual salaries depend on a wide range of factors that are considered in making compensation decisions, including but not limited to skill sets; experience and training, licensure, and certifications; and other business and organizational needs. The salary listed is just one component of BMC's employee compensation package. Other rewards may include a variable plan and country specific benefits. We are committed to ensuring that our employees are paid fairly and equitably, and that we are transparent about our compensation practices. (Returnship@BMC) Had a break in your career? No worries. This role is eligible for candidates who have taken a break in their career and want to re-enter the workforce. If your expertise matches the above job, visit to https://bmcrecruit.avature.net/returnship know more and how to apply.

📍 Location : Pune / Hyderabad 🧠 Experience : 5–7 Years 💼 Type : Permanent 📄 Job Description We are seeking a skilled CyberSecurity Business Analyst – IAM & Secrets Management to join our dynamic cybersecurity team. This role is responsible for managing and enhancing the Identity & Access Management (IAM) controls with a focus on Secrets Management , access governance, and compliance reporting in a highly regulated environment. 🔐 Key Responsibilities 🔑 IAM & Secrets Management Define and enhance secrets management controls across machine-to-machine authentication systems. Support IAM operations by maintaining access governance for credentials, keys, and tokens. Provide subject matter expertise (SME) on secrets and credential management tools and best practices. 📊 Control Monitoring & MI Reporting Work with IAM Control Owners to define and track KPIs/KCIs/KRIs. Maintain dashboards and generate periodic reporting for Cybersecurity leadership and stakeholders. 🔄 Risk, Governance & Compliance Evaluate IAM controls against regulatory frameworks such as GDPR, SOX, PCI DSS, ISO 27001. Identify cybersecurity exposure risks and support remediation planning. Implement strong governance processes for continuous compliance and risk reduction. 🤝 Stakeholder Management Collaborate with business units, IT, cybersecurity, and operations teams across global regions. Provide support during audits and external reviews. Lead cross-functional teams to define IAM standards, policies, and procedures. 📈 Continuous Improvement & Documentation Recommend improvements for IAM and Secrets Management efficiency, security, and scalability. Prepare and maintain key project artifacts: project charters, plans, dashboards, reports, and closure documents. ✅ Required Skills & Experience 5–7 years in Cybersecurity, IAM, or Access Governance roles. Strong knowledge of IAM controls, credential governance, and secrets management frameworks. Hands-on experience in: Application Security tools: MicroFocus Fortify (SAST/DAST), Checkmarx, Black Duck/Sonatype IQ, Veracode, Synopsys Strong understanding of risk management and compliance metrics (KPIs, KRIs, KCIs). Familiarity with project management and governance frameworks. Excellent communication and presentation skills. Certifications such as CISSP, CISM, or other IAM-related credentials are preferred. 📌 Mandatory Skills Application Security – MicroFocus Fortify (SCA, SAST, DAST) Application Security – Open Source Tools (Black Duck, Sonatype IQ) Application Security – Veracode, Synopsys, Checkmarx IAM Governance, KPIs/KCIs, Risk Management Regulatory Framework Awareness (SOX, ISO 27001, PCI DSS, GDPR)

📍 Location : Pune / Hyderabad 🧠 Experience : 5–7 Years 💼 Type : Permanent 📄 Job Description We are seeking a skilled CyberSecurity Business Analyst – IAM & Secrets Management to join our dynamic cybersecurity team. This role is responsible for managing and enhancing the Identity & Access Management (IAM) controls with a focus on Secrets Management , access governance, and compliance reporting in a highly regulated environment. 🔐 Key Responsibilities 🔑 IAM & Secrets Management Define and enhance secrets management controls across machine-to-machine authentication systems. Support IAM operations by maintaining access governance for credentials, keys, and tokens. Provide subject matter expertise (SME) on secrets and credential management tools and best practices. 📊 Control Monitoring & MI Reporting Work with IAM Control Owners to define and track KPIs/KCIs/KRIs. Maintain dashboards and generate periodic reporting for Cybersecurity leadership and stakeholders. 🔄 Risk, Governance & Compliance Evaluate IAM controls against regulatory frameworks such as GDPR, SOX, PCI DSS, ISO 27001. Identify cybersecurity exposure risks and support remediation planning. Implement strong governance processes for continuous compliance and risk reduction. 🤝 Stakeholder Management Collaborate with business units, IT, cybersecurity, and operations teams across global regions. Provide support during audits and external reviews. Lead cross-functional teams to define IAM standards, policies, and procedures. 📈 Continuous Improvement & Documentation Recommend improvements for IAM and Secrets Management efficiency, security, and scalability. Prepare and maintain key project artifacts: project charters, plans, dashboards, reports, and closure documents. ✅ Required Skills & Experience 5–7 years in Cybersecurity, IAM, or Access Governance roles. Strong knowledge of IAM controls, credential governance, and secrets management frameworks. Hands-on experience in: Application Security tools: MicroFocus Fortify (SAST/DAST), Checkmarx, Black Duck/Sonatype IQ, Veracode, Synopsys Strong understanding of risk management and compliance metrics (KPIs, KRIs, KCIs). Familiarity with project management and governance frameworks. Excellent communication and presentation skills. Certifications such as CISSP, CISM, or other IAM-related credentials are preferred. 📌 Mandatory Skills Application Security – MicroFocus Fortify (SCA, SAST, DAST) Application Security – Open Source Tools (Black Duck, Sonatype IQ) Application Security – Veracode, Synopsys, Checkmarx IAM Governance, KPIs/KCIs, Risk Management Regulatory Framework Awareness (SOX, ISO 27001, PCI DSS, GDPR)

📍 Location : Pune / Hyderabad 🧠 Experience : 5–7 Years 💼 Type : Permanent 📄 Job Description We are seeking a skilled CyberSecurity Business Analyst – IAM & Secrets Management to join our dynamic cybersecurity team. This role is responsible for managing and enhancing the Identity & Access Management (IAM) controls with a focus on Secrets Management , access governance, and compliance reporting in a highly regulated environment. 🔐 Key Responsibilities 🔑 IAM & Secrets Management Define and enhance secrets management controls across machine-to-machine authentication systems. Support IAM operations by maintaining access governance for credentials, keys, and tokens. Provide subject matter expertise (SME) on secrets and credential management tools and best practices. 📊 Control Monitoring & MI Reporting Work with IAM Control Owners to define and track KPIs/KCIs/KRIs. Maintain dashboards and generate periodic reporting for Cybersecurity leadership and stakeholders. 🔄 Risk, Governance & Compliance Evaluate IAM controls against regulatory frameworks such as GDPR, SOX, PCI DSS, ISO 27001. Identify cybersecurity exposure risks and support remediation planning. Implement strong governance processes for continuous compliance and risk reduction. 🤝 Stakeholder Management Collaborate with business units, IT, cybersecurity, and operations teams across global regions. Provide support during audits and external reviews. Lead cross-functional teams to define IAM standards, policies, and procedures. 📈 Continuous Improvement & Documentation Recommend improvements for IAM and Secrets Management efficiency, security, and scalability. Prepare and maintain key project artifacts: project charters, plans, dashboards, reports, and closure documents. ✅ Required Skills & Experience 5–7 years in Cybersecurity, IAM, or Access Governance roles. Strong knowledge of IAM controls, credential governance, and secrets management frameworks. Hands-on experience in: Application Security tools: MicroFocus Fortify (SAST/DAST), Checkmarx, Black Duck/Sonatype IQ, Veracode, Synopsys Strong understanding of risk management and compliance metrics (KPIs, KRIs, KCIs). Familiarity with project management and governance frameworks. Excellent communication and presentation skills. Certifications such as CISSP, CISM, or other IAM-related credentials are preferred. 📌 Mandatory Skills Application Security – MicroFocus Fortify (SCA, SAST, DAST) Application Security – Open Source Tools (Black Duck, Sonatype IQ) Application Security – Veracode, Synopsys, Checkmarx IAM Governance, KPIs/KCIs, Risk Management Regulatory Framework Awareness (SOX, ISO 27001, PCI DSS, GDPR)

📍 Location : Pune / Hyderabad 🧠 Experience : 5–7 Years 💼 Type : Permanent 📄 Job Description We are seeking a skilled CyberSecurity Business Analyst – IAM & Secrets Management to join our dynamic cybersecurity team. This role is responsible for managing and enhancing the Identity & Access Management (IAM) controls with a focus on Secrets Management , access governance, and compliance reporting in a highly regulated environment. 🔐 Key Responsibilities 🔑 IAM & Secrets Management Define and enhance secrets management controls across machine-to-machine authentication systems. Support IAM operations by maintaining access governance for credentials, keys, and tokens. Provide subject matter expertise (SME) on secrets and credential management tools and best practices. 📊 Control Monitoring & MI Reporting Work with IAM Control Owners to define and track KPIs/KCIs/KRIs. Maintain dashboards and generate periodic reporting for Cybersecurity leadership and stakeholders. 🔄 Risk, Governance & Compliance Evaluate IAM controls against regulatory frameworks such as GDPR, SOX, PCI DSS, ISO 27001. Identify cybersecurity exposure risks and support remediation planning. Implement strong governance processes for continuous compliance and risk reduction. 🤝 Stakeholder Management Collaborate with business units, IT, cybersecurity, and operations teams across global regions. Provide support during audits and external reviews. Lead cross-functional teams to define IAM standards, policies, and procedures. 📈 Continuous Improvement & Documentation Recommend improvements for IAM and Secrets Management efficiency, security, and scalability. Prepare and maintain key project artifacts: project charters, plans, dashboards, reports, and closure documents. ✅ Required Skills & Experience 5–7 years in Cybersecurity, IAM, or Access Governance roles. Strong knowledge of IAM controls, credential governance, and secrets management frameworks. Hands-on experience in: Application Security tools: MicroFocus Fortify (SAST/DAST), Checkmarx, Black Duck/Sonatype IQ, Veracode, Synopsys Strong understanding of risk management and compliance metrics (KPIs, KRIs, KCIs). Familiarity with project management and governance frameworks. Excellent communication and presentation skills. Certifications such as CISSP, CISM, or other IAM-related credentials are preferred. 📌 Mandatory Skills Application Security – MicroFocus Fortify (SCA, SAST, DAST) Application Security – Open Source Tools (Black Duck, Sonatype IQ) Application Security – Veracode, Synopsys, Checkmarx IAM Governance, KPIs/KCIs, Risk Management Regulatory Framework Awareness (SOX, ISO 27001, PCI DSS, GDPR)

📍 Location : Pune / Hyderabad 🧠 Experience : 5–7 Years 💼 Type : Permanent 📄 Job Description We are seeking a skilled CyberSecurity Business Analyst – IAM & Secrets Management to join our dynamic cybersecurity team. This role is responsible for managing and enhancing the Identity & Access Management (IAM) controls with a focus on Secrets Management , access governance, and compliance reporting in a highly regulated environment. 🔐 Key Responsibilities 🔑 IAM & Secrets Management Define and enhance secrets management controls across machine-to-machine authentication systems. Support IAM operations by maintaining access governance for credentials, keys, and tokens. Provide subject matter expertise (SME) on secrets and credential management tools and best practices. 📊 Control Monitoring & MI Reporting Work with IAM Control Owners to define and track KPIs/KCIs/KRIs. Maintain dashboards and generate periodic reporting for Cybersecurity leadership and stakeholders. 🔄 Risk, Governance & Compliance Evaluate IAM controls against regulatory frameworks such as GDPR, SOX, PCI DSS, ISO 27001. Identify cybersecurity exposure risks and support remediation planning. Implement strong governance processes for continuous compliance and risk reduction. 🤝 Stakeholder Management Collaborate with business units, IT, cybersecurity, and operations teams across global regions. Provide support during audits and external reviews. Lead cross-functional teams to define IAM standards, policies, and procedures. 📈 Continuous Improvement & Documentation Recommend improvements for IAM and Secrets Management efficiency, security, and scalability. Prepare and maintain key project artifacts: project charters, plans, dashboards, reports, and closure documents. ✅ Required Skills & Experience 5–7 years in Cybersecurity, IAM, or Access Governance roles. Strong knowledge of IAM controls, credential governance, and secrets management frameworks. Hands-on experience in: Application Security tools: MicroFocus Fortify (SAST/DAST), Checkmarx, Black Duck/Sonatype IQ, Veracode, Synopsys Strong understanding of risk management and compliance metrics (KPIs, KRIs, KCIs). Familiarity with project management and governance frameworks. Excellent communication and presentation skills. Certifications such as CISSP, CISM, or other IAM-related credentials are preferred. 📌 Mandatory Skills Application Security – MicroFocus Fortify (SCA, SAST, DAST) Application Security – Open Source Tools (Black Duck, Sonatype IQ) Application Security – Veracode, Synopsys, Checkmarx IAM Governance, KPIs/KCIs, Risk Management Regulatory Framework Awareness (SOX, ISO 27001, PCI DSS, GDPR)

📍 Location : Pune / Hyderabad 🧠 Experience : 5–7 Years 💼 Type : Permanent 📄 Job Description We are seeking a skilled CyberSecurity Business Analyst – IAM & Secrets Management to join our dynamic cybersecurity team. This role is responsible for managing and enhancing the Identity & Access Management (IAM) controls with a focus on Secrets Management , access governance, and compliance reporting in a highly regulated environment. 🔐 Key Responsibilities 🔑 IAM & Secrets Management Define and enhance secrets management controls across machine-to-machine authentication systems. Support IAM operations by maintaining access governance for credentials, keys, and tokens. Provide subject matter expertise (SME) on secrets and credential management tools and best practices. 📊 Control Monitoring & MI Reporting Work with IAM Control Owners to define and track KPIs/KCIs/KRIs. Maintain dashboards and generate periodic reporting for Cybersecurity leadership and stakeholders. 🔄 Risk, Governance & Compliance Evaluate IAM controls against regulatory frameworks such as GDPR, SOX, PCI DSS, ISO 27001. Identify cybersecurity exposure risks and support remediation planning. Implement strong governance processes for continuous compliance and risk reduction. 🤝 Stakeholder Management Collaborate with business units, IT, cybersecurity, and operations teams across global regions. Provide support during audits and external reviews. Lead cross-functional teams to define IAM standards, policies, and procedures. 📈 Continuous Improvement & Documentation Recommend improvements for IAM and Secrets Management efficiency, security, and scalability. Prepare and maintain key project artifacts: project charters, plans, dashboards, reports, and closure documents. ✅ Required Skills & Experience 5–7 years in Cybersecurity, IAM, or Access Governance roles. Strong knowledge of IAM controls, credential governance, and secrets management frameworks. Hands-on experience in: Application Security tools: MicroFocus Fortify (SAST/DAST), Checkmarx, Black Duck/Sonatype IQ, Veracode, Synopsys Strong understanding of risk management and compliance metrics (KPIs, KRIs, KCIs). Familiarity with project management and governance frameworks. Excellent communication and presentation skills. Certifications such as CISSP, CISM, or other IAM-related credentials are preferred. 📌 Mandatory Skills Application Security – MicroFocus Fortify (SCA, SAST, DAST) Application Security – Open Source Tools (Black Duck, Sonatype IQ) Application Security – Veracode, Synopsys, Checkmarx IAM Governance, KPIs/KCIs, Risk Management Regulatory Framework Awareness (SOX, ISO 27001, PCI DSS, GDPR)

📍 Location : Pune / Hyderabad 🧠 Experience : 5–7 Years 💼 Type : Permanent 📄 Job Description We are seeking a skilled CyberSecurity Business Analyst – IAM & Secrets Management to join our dynamic cybersecurity team. This role is responsible for managing and enhancing the Identity & Access Management (IAM) controls with a focus on Secrets Management , access governance, and compliance reporting in a highly regulated environment. 🔐 Key Responsibilities 🔑 IAM & Secrets Management Define and enhance secrets management controls across machine-to-machine authentication systems. Support IAM operations by maintaining access governance for credentials, keys, and tokens. Provide subject matter expertise (SME) on secrets and credential management tools and best practices. 📊 Control Monitoring & MI Reporting Work with IAM Control Owners to define and track KPIs/KCIs/KRIs. Maintain dashboards and generate periodic reporting for Cybersecurity leadership and stakeholders. 🔄 Risk, Governance & Compliance Evaluate IAM controls against regulatory frameworks such as GDPR, SOX, PCI DSS, ISO 27001. Identify cybersecurity exposure risks and support remediation planning. Implement strong governance processes for continuous compliance and risk reduction. 🤝 Stakeholder Management Collaborate with business units, IT, cybersecurity, and operations teams across global regions. Provide support during audits and external reviews. Lead cross-functional teams to define IAM standards, policies, and procedures. 📈 Continuous Improvement & Documentation Recommend improvements for IAM and Secrets Management efficiency, security, and scalability. Prepare and maintain key project artifacts: project charters, plans, dashboards, reports, and closure documents. ✅ Required Skills & Experience 5–7 years in Cybersecurity, IAM, or Access Governance roles. Strong knowledge of IAM controls, credential governance, and secrets management frameworks. Hands-on experience in: Application Security tools: MicroFocus Fortify (SAST/DAST), Checkmarx, Black Duck/Sonatype IQ, Veracode, Synopsys Strong understanding of risk management and compliance metrics (KPIs, KRIs, KCIs). Familiarity with project management and governance frameworks. Excellent communication and presentation skills. Certifications such as CISSP, CISM, or other IAM-related credentials are preferred. 📌 Mandatory Skills Application Security – MicroFocus Fortify (SCA, SAST, DAST) Application Security – Open Source Tools (Black Duck, Sonatype IQ) Application Security – Veracode, Synopsys, Checkmarx IAM Governance, KPIs/KCIs, Risk Management Regulatory Framework Awareness (SOX, ISO 27001, PCI DSS, GDPR)

📍 Location : Pune / Hyderabad 🧠 Experience : 5–7 Years 💼 Type : Permanent 📄 Job Description We are seeking a skilled CyberSecurity Business Analyst – IAM & Secrets Management to join our dynamic cybersecurity team. This role is responsible for managing and enhancing the Identity & Access Management (IAM) controls with a focus on Secrets Management , access governance, and compliance reporting in a highly regulated environment. 🔐 Key Responsibilities 🔑 IAM & Secrets Management Define and enhance secrets management controls across machine-to-machine authentication systems. Support IAM operations by maintaining access governance for credentials, keys, and tokens. Provide subject matter expertise (SME) on secrets and credential management tools and best practices. 📊 Control Monitoring & MI Reporting Work with IAM Control Owners to define and track KPIs/KCIs/KRIs. Maintain dashboards and generate periodic reporting for Cybersecurity leadership and stakeholders. 🔄 Risk, Governance & Compliance Evaluate IAM controls against regulatory frameworks such as GDPR, SOX, PCI DSS, ISO 27001. Identify cybersecurity exposure risks and support remediation planning. Implement strong governance processes for continuous compliance and risk reduction. 🤝 Stakeholder Management Collaborate with business units, IT, cybersecurity, and operations teams across global regions. Provide support during audits and external reviews. Lead cross-functional teams to define IAM standards, policies, and procedures. 📈 Continuous Improvement & Documentation Recommend improvements for IAM and Secrets Management efficiency, security, and scalability. Prepare and maintain key project artifacts: project charters, plans, dashboards, reports, and closure documents. ✅ Required Skills & Experience 5–7 years in Cybersecurity, IAM, or Access Governance roles. Strong knowledge of IAM controls, credential governance, and secrets management frameworks. Hands-on experience in: Application Security tools: MicroFocus Fortify (SAST/DAST), Checkmarx, Black Duck/Sonatype IQ, Veracode, Synopsys Strong understanding of risk management and compliance metrics (KPIs, KRIs, KCIs). Familiarity with project management and governance frameworks. Excellent communication and presentation skills. Certifications such as CISSP, CISM, or other IAM-related credentials are preferred. 📌 Mandatory Skills Application Security – MicroFocus Fortify (SCA, SAST, DAST) Application Security – Open Source Tools (Black Duck, Sonatype IQ) Application Security – Veracode, Synopsys, Checkmarx IAM Governance, KPIs/KCIs, Risk Management Regulatory Framework Awareness (SOX, ISO 27001, PCI DSS, GDPR)

📍 Location : Pune / Hyderabad 🧠 Experience : 5–7 Years 💼 Type : Permanent 📄 Job Description We are seeking a skilled CyberSecurity Business Analyst – IAM & Secrets Management to join our dynamic cybersecurity team. This role is responsible for managing and enhancing the Identity & Access Management (IAM) controls with a focus on Secrets Management , access governance, and compliance reporting in a highly regulated environment. 🔐 Key Responsibilities 🔑 IAM & Secrets Management Define and enhance secrets management controls across machine-to-machine authentication systems. Support IAM operations by maintaining access governance for credentials, keys, and tokens. Provide subject matter expertise (SME) on secrets and credential management tools and best practices. 📊 Control Monitoring & MI Reporting Work with IAM Control Owners to define and track KPIs/KCIs/KRIs. Maintain dashboards and generate periodic reporting for Cybersecurity leadership and stakeholders. 🔄 Risk, Governance & Compliance Evaluate IAM controls against regulatory frameworks such as GDPR, SOX, PCI DSS, ISO 27001. Identify cybersecurity exposure risks and support remediation planning. Implement strong governance processes for continuous compliance and risk reduction. 🤝 Stakeholder Management Collaborate with business units, IT, cybersecurity, and operations teams across global regions. Provide support during audits and external reviews. Lead cross-functional teams to define IAM standards, policies, and procedures. 📈 Continuous Improvement & Documentation Recommend improvements for IAM and Secrets Management efficiency, security, and scalability. Prepare and maintain key project artifacts: project charters, plans, dashboards, reports, and closure documents. ✅ Required Skills & Experience 5–7 years in Cybersecurity, IAM, or Access Governance roles. Strong knowledge of IAM controls, credential governance, and secrets management frameworks. Hands-on experience in: Application Security tools: MicroFocus Fortify (SAST/DAST), Checkmarx, Black Duck/Sonatype IQ, Veracode, Synopsys Strong understanding of risk management and compliance metrics (KPIs, KRIs, KCIs). Familiarity with project management and governance frameworks. Excellent communication and presentation skills. Certifications such as CISSP, CISM, or other IAM-related credentials are preferred. 📌 Mandatory Skills Application Security – MicroFocus Fortify (SCA, SAST, DAST) Application Security – Open Source Tools (Black Duck, Sonatype IQ) Application Security – Veracode, Synopsys, Checkmarx IAM Governance, KPIs/KCIs, Risk Management Regulatory Framework Awareness (SOX, ISO 27001, PCI DSS, GDPR)

📍 Location : Pune / Hyderabad 🧠 Experience : 5–7 Years 💼 Type : Permanent 📄 Job Description We are seeking a skilled CyberSecurity Business Analyst – IAM & Secrets Management to join our dynamic cybersecurity team. This role is responsible for managing and enhancing the Identity & Access Management (IAM) controls with a focus on Secrets Management , access governance, and compliance reporting in a highly regulated environment. 🔐 Key Responsibilities 🔑 IAM & Secrets Management Define and enhance secrets management controls across machine-to-machine authentication systems. Support IAM operations by maintaining access governance for credentials, keys, and tokens. Provide subject matter expertise (SME) on secrets and credential management tools and best practices. 📊 Control Monitoring & MI Reporting Work with IAM Control Owners to define and track KPIs/KCIs/KRIs. Maintain dashboards and generate periodic reporting for Cybersecurity leadership and stakeholders. 🔄 Risk, Governance & Compliance Evaluate IAM controls against regulatory frameworks such as GDPR, SOX, PCI DSS, ISO 27001. Identify cybersecurity exposure risks and support remediation planning. Implement strong governance processes for continuous compliance and risk reduction. 🤝 Stakeholder Management Collaborate with business units, IT, cybersecurity, and operations teams across global regions. Provide support during audits and external reviews. Lead cross-functional teams to define IAM standards, policies, and procedures. 📈 Continuous Improvement & Documentation Recommend improvements for IAM and Secrets Management efficiency, security, and scalability. Prepare and maintain key project artifacts: project charters, plans, dashboards, reports, and closure documents. ✅ Required Skills & Experience 5–7 years in Cybersecurity, IAM, or Access Governance roles. Strong knowledge of IAM controls, credential governance, and secrets management frameworks. Hands-on experience in: Application Security tools: MicroFocus Fortify (SAST/DAST), Checkmarx, Black Duck/Sonatype IQ, Veracode, Synopsys Strong understanding of risk management and compliance metrics (KPIs, KRIs, KCIs). Familiarity with project management and governance frameworks. Excellent communication and presentation skills. Certifications such as CISSP, CISM, or other IAM-related credentials are preferred. 📌 Mandatory Skills Application Security – MicroFocus Fortify (SCA, SAST, DAST) Application Security – Open Source Tools (Black Duck, Sonatype IQ) Application Security – Veracode, Synopsys, Checkmarx IAM Governance, KPIs/KCIs, Risk Management Regulatory Framework Awareness (SOX, ISO 27001, PCI DSS, GDPR)

📍 Location : Pune / Hyderabad 🧠 Experience : 5–7 Years 💼 Type : Permanent 📄 Job Description We are seeking a skilled CyberSecurity Business Analyst – IAM & Secrets Management to join our dynamic cybersecurity team. This role is responsible for managing and enhancing the Identity & Access Management (IAM) controls with a focus on Secrets Management , access governance, and compliance reporting in a highly regulated environment. 🔐 Key Responsibilities 🔑 IAM & Secrets Management Define and enhance secrets management controls across machine-to-machine authentication systems. Support IAM operations by maintaining access governance for credentials, keys, and tokens. Provide subject matter expertise (SME) on secrets and credential management tools and best practices. 📊 Control Monitoring & MI Reporting Work with IAM Control Owners to define and track KPIs/KCIs/KRIs. Maintain dashboards and generate periodic reporting for Cybersecurity leadership and stakeholders. 🔄 Risk, Governance & Compliance Evaluate IAM controls against regulatory frameworks such as GDPR, SOX, PCI DSS, ISO 27001. Identify cybersecurity exposure risks and support remediation planning. Implement strong governance processes for continuous compliance and risk reduction. 🤝 Stakeholder Management Collaborate with business units, IT, cybersecurity, and operations teams across global regions. Provide support during audits and external reviews. Lead cross-functional teams to define IAM standards, policies, and procedures. 📈 Continuous Improvement & Documentation Recommend improvements for IAM and Secrets Management efficiency, security, and scalability. Prepare and maintain key project artifacts: project charters, plans, dashboards, reports, and closure documents. ✅ Required Skills & Experience 5–7 years in Cybersecurity, IAM, or Access Governance roles. Strong knowledge of IAM controls, credential governance, and secrets management frameworks. Hands-on experience in: Application Security tools: MicroFocus Fortify (SAST/DAST), Checkmarx, Black Duck/Sonatype IQ, Veracode, Synopsys Strong understanding of risk management and compliance metrics (KPIs, KRIs, KCIs). Familiarity with project management and governance frameworks. Excellent communication and presentation skills. Certifications such as CISSP, CISM, or other IAM-related credentials are preferred. 📌 Mandatory Skills Application Security – MicroFocus Fortify (SCA, SAST, DAST) Application Security – Open Source Tools (Black Duck, Sonatype IQ) Application Security – Veracode, Synopsys, Checkmarx IAM Governance, KPIs/KCIs, Risk Management Regulatory Framework Awareness (SOX, ISO 27001, PCI DSS, GDPR)

📍 Location : Pune / Hyderabad 🧠 Experience : 5–7 Years 💼 Type : Permanent 📄 Job Description We are seeking a skilled CyberSecurity Business Analyst – IAM & Secrets Management to join our dynamic cybersecurity team. This role is responsible for managing and enhancing the Identity & Access Management (IAM) controls with a focus on Secrets Management , access governance, and compliance reporting in a highly regulated environment. 🔐 Key Responsibilities 🔑 IAM & Secrets Management Define and enhance secrets management controls across machine-to-machine authentication systems. Support IAM operations by maintaining access governance for credentials, keys, and tokens. Provide subject matter expertise (SME) on secrets and credential management tools and best practices. 📊 Control Monitoring & MI Reporting Work with IAM Control Owners to define and track KPIs/KCIs/KRIs. Maintain dashboards and generate periodic reporting for Cybersecurity leadership and stakeholders. 🔄 Risk, Governance & Compliance Evaluate IAM controls against regulatory frameworks such as GDPR, SOX, PCI DSS, ISO 27001. Identify cybersecurity exposure risks and support remediation planning. Implement strong governance processes for continuous compliance and risk reduction. 🤝 Stakeholder Management Collaborate with business units, IT, cybersecurity, and operations teams across global regions. Provide support during audits and external reviews. Lead cross-functional teams to define IAM standards, policies, and procedures. 📈 Continuous Improvement & Documentation Recommend improvements for IAM and Secrets Management efficiency, security, and scalability. Prepare and maintain key project artifacts: project charters, plans, dashboards, reports, and closure documents. ✅ Required Skills & Experience 5–7 years in Cybersecurity, IAM, or Access Governance roles. Strong knowledge of IAM controls, credential governance, and secrets management frameworks. Hands-on experience in: Application Security tools: MicroFocus Fortify (SAST/DAST), Checkmarx, Black Duck/Sonatype IQ, Veracode, Synopsys Strong understanding of risk management and compliance metrics (KPIs, KRIs, KCIs). Familiarity with project management and governance frameworks. Excellent communication and presentation skills. Certifications such as CISSP, CISM, or other IAM-related credentials are preferred. 📌 Mandatory Skills Application Security – MicroFocus Fortify (SCA, SAST, DAST) Application Security – Open Source Tools (Black Duck, Sonatype IQ) Application Security – Veracode, Synopsys, Checkmarx IAM Governance, KPIs/KCIs, Risk Management Regulatory Framework Awareness (SOX, ISO 27001, PCI DSS, GDPR)

📍 Location : Pune / Hyderabad 🧠 Experience : 5–7 Years 💼 Type : Permanent 📄 Job Description We are seeking a skilled CyberSecurity Business Analyst – IAM & Secrets Management to join our dynamic cybersecurity team. This role is responsible for managing and enhancing the Identity & Access Management (IAM) controls with a focus on Secrets Management , access governance, and compliance reporting in a highly regulated environment. 🔐 Key Responsibilities 🔑 IAM & Secrets Management Define and enhance secrets management controls across machine-to-machine authentication systems. Support IAM operations by maintaining access governance for credentials, keys, and tokens. Provide subject matter expertise (SME) on secrets and credential management tools and best practices. 📊 Control Monitoring & MI Reporting Work with IAM Control Owners to define and track KPIs/KCIs/KRIs. Maintain dashboards and generate periodic reporting for Cybersecurity leadership and stakeholders. 🔄 Risk, Governance & Compliance Evaluate IAM controls against regulatory frameworks such as GDPR, SOX, PCI DSS, ISO 27001. Identify cybersecurity exposure risks and support remediation planning. Implement strong governance processes for continuous compliance and risk reduction. 🤝 Stakeholder Management Collaborate with business units, IT, cybersecurity, and operations teams across global regions. Provide support during audits and external reviews. Lead cross-functional teams to define IAM standards, policies, and procedures. 📈 Continuous Improvement & Documentation Recommend improvements for IAM and Secrets Management efficiency, security, and scalability. Prepare and maintain key project artifacts: project charters, plans, dashboards, reports, and closure documents. ✅ Required Skills & Experience 5–7 years in Cybersecurity, IAM, or Access Governance roles. Strong knowledge of IAM controls, credential governance, and secrets management frameworks. Hands-on experience in: Application Security tools: MicroFocus Fortify (SAST/DAST), Checkmarx, Black Duck/Sonatype IQ, Veracode, Synopsys Strong understanding of risk management and compliance metrics (KPIs, KRIs, KCIs). Familiarity with project management and governance frameworks. Excellent communication and presentation skills. Certifications such as CISSP, CISM, or other IAM-related credentials are preferred. 📌 Mandatory Skills Application Security – MicroFocus Fortify (SCA, SAST, DAST) Application Security – Open Source Tools (Black Duck, Sonatype IQ) Application Security – Veracode, Synopsys, Checkmarx IAM Governance, KPIs/KCIs, Risk Management Regulatory Framework Awareness (SOX, ISO 27001, PCI DSS, GDPR)

📍 Location : Pune / Hyderabad 🧠 Experience : 5–7 Years 💼 Type : Permanent 📄 Job Description We are seeking a skilled CyberSecurity Business Analyst – IAM & Secrets Management to join our dynamic cybersecurity team. This role is responsible for managing and enhancing the Identity & Access Management (IAM) controls with a focus on Secrets Management , access governance, and compliance reporting in a highly regulated environment. 🔐 Key Responsibilities 🔑 IAM & Secrets Management Define and enhance secrets management controls across machine-to-machine authentication systems. Support IAM operations by maintaining access governance for credentials, keys, and tokens. Provide subject matter expertise (SME) on secrets and credential management tools and best practices. 📊 Control Monitoring & MI Reporting Work with IAM Control Owners to define and track KPIs/KCIs/KRIs. Maintain dashboards and generate periodic reporting for Cybersecurity leadership and stakeholders. 🔄 Risk, Governance & Compliance Evaluate IAM controls against regulatory frameworks such as GDPR, SOX, PCI DSS, ISO 27001. Identify cybersecurity exposure risks and support remediation planning. Implement strong governance processes for continuous compliance and risk reduction. 🤝 Stakeholder Management Collaborate with business units, IT, cybersecurity, and operations teams across global regions. Provide support during audits and external reviews. Lead cross-functional teams to define IAM standards, policies, and procedures. 📈 Continuous Improvement & Documentation Recommend improvements for IAM and Secrets Management efficiency, security, and scalability. Prepare and maintain key project artifacts: project charters, plans, dashboards, reports, and closure documents. ✅ Required Skills & Experience 5–7 years in Cybersecurity, IAM, or Access Governance roles. Strong knowledge of IAM controls, credential governance, and secrets management frameworks. Hands-on experience in: Application Security tools: MicroFocus Fortify (SAST/DAST), Checkmarx, Black Duck/Sonatype IQ, Veracode, Synopsys Strong understanding of risk management and compliance metrics (KPIs, KRIs, KCIs). Familiarity with project management and governance frameworks. Excellent communication and presentation skills. Certifications such as CISSP, CISM, or other IAM-related credentials are preferred. 📌 Mandatory Skills Application Security – MicroFocus Fortify (SCA, SAST, DAST) Application Security – Open Source Tools (Black Duck, Sonatype IQ) Application Security – Veracode, Synopsys, Checkmarx IAM Governance, KPIs/KCIs, Risk Management Regulatory Framework Awareness (SOX, ISO 27001, PCI DSS, GDPR)

📍 Location : Pune / Hyderabad 🧠 Experience : 5–7 Years 💼 Type : Permanent 📄 Job Description We are seeking a skilled CyberSecurity Business Analyst – IAM & Secrets Management to join our dynamic cybersecurity team. This role is responsible for managing and enhancing the Identity & Access Management (IAM) controls with a focus on Secrets Management , access governance, and compliance reporting in a highly regulated environment. 🔐 Key Responsibilities 🔑 IAM & Secrets Management Define and enhance secrets management controls across machine-to-machine authentication systems. Support IAM operations by maintaining access governance for credentials, keys, and tokens. Provide subject matter expertise (SME) on secrets and credential management tools and best practices. 📊 Control Monitoring & MI Reporting Work with IAM Control Owners to define and track KPIs/KCIs/KRIs. Maintain dashboards and generate periodic reporting for Cybersecurity leadership and stakeholders. 🔄 Risk, Governance & Compliance Evaluate IAM controls against regulatory frameworks such as GDPR, SOX, PCI DSS, ISO 27001. Identify cybersecurity exposure risks and support remediation planning. Implement strong governance processes for continuous compliance and risk reduction. 🤝 Stakeholder Management Collaborate with business units, IT, cybersecurity, and operations teams across global regions. Provide support during audits and external reviews. Lead cross-functional teams to define IAM standards, policies, and procedures. 📈 Continuous Improvement & Documentation Recommend improvements for IAM and Secrets Management efficiency, security, and scalability. Prepare and maintain key project artifacts: project charters, plans, dashboards, reports, and closure documents. ✅ Required Skills & Experience 5–7 years in Cybersecurity, IAM, or Access Governance roles. Strong knowledge of IAM controls, credential governance, and secrets management frameworks. Hands-on experience in: Application Security tools: MicroFocus Fortify (SAST/DAST), Checkmarx, Black Duck/Sonatype IQ, Veracode, Synopsys Strong understanding of risk management and compliance metrics (KPIs, KRIs, KCIs). Familiarity with project management and governance frameworks. Excellent communication and presentation skills. Certifications such as CISSP, CISM, or other IAM-related credentials are preferred. 📌 Mandatory Skills Application Security – MicroFocus Fortify (SCA, SAST, DAST) Application Security – Open Source Tools (Black Duck, Sonatype IQ) Application Security – Veracode, Synopsys, Checkmarx IAM Governance, KPIs/KCIs, Risk Management Regulatory Framework Awareness (SOX, ISO 27001, PCI DSS, GDPR)