45 Threat Management Jobs - Page 2

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Splunk Security Information and Event Management (SIEM) Good to have skills : NAMinimum 7.5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to assess security needs, documenting the implementation of cloud security controls, and transitioning to cloud security-managed operations. You will engage in strategic discussions to align security measures with organizational objectives, ensuring a robust security posture in the cloud environment. Roles & Responsibilities:- Expected to be an SME.- Collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Provide solutions to problems for their immediate team and across multiple teams.- Facilitate training sessions to enhance team knowledge and skills in cloud security.- Monitor and evaluate the effectiveness of implemented security measures and recommend improvements. Professional & Technical Skills: - Must To Have Skills: Proficiency in Splunk Security Information and Event Management (SIEM).- Strong understanding of cloud security principles and best practices.- Experience with security incident response and threat management.- Familiarity with compliance frameworks such as ISO 27001, NIST, or GDPR.- Ability to analyze security logs and identify potential threats. Additional Information:- The candidate should have minimum 7.5 years of experience in Splunk Security Information and Event Management (SIEM).- This position is based at our Pune office.- A 15 years full time education is required. Qualification 15 years full time education

Security Architect -The selected Security Architect would be responsible for a specific project or several projects within an organization, focusing on the security aspects of software applications. They would be responsible for translating client security requirements into application features, ensuring the timely delivery of secure software applications, and protecting against potential threats. They would be responsible for understanding client security needs, designing secure prototypes, developing security protocols, performing security testing, and maintaining technical documentation related to security architecture. Location Bengaluru Educational Qualifications -BE/B Tech/ M.E/M Tech/MS/MCA/MSc Requirements . Work Experience 10+ Years Requirements Skills: Minimum 5 years of experience in IT security Knowledge on HSM architecture including application integration. Sound Knowledge of IT security and processes and best practices (eg.ITIL, ISO 27001). Excellent understanding of cryptographic algorithms with hands-on implementation experience. Good skills in any of the following Language : C,C++,JAVA,GO,RUST Job Profile/Duties a) Security Design and Architecture- Develop and implement enterprise-level security architecture. Design secure network solutions to protect systems and data. Create architectural frameworks that align with compliance and risk management requirements. b) Risk Assessment and Threat Modeling Identify potential threats, vulnerabilities, and risks to the IT infrastructure. Conduct regular risk assessments and develop mitigation plans. Lead threat modeling activities for critical systems and applications. c) Security Policies and Standards Define and enforce security policies, procedures, and best practices. Ensure compliance with regulatory standards (e.g., ISO 27001, NIST, GDPR). d) Collaboration and Advisory Work closely with IT, DevOps, and business teams to integrate security into systems and workflows. Provide technical guidance to security engineers and analysts. e) Security Awareness and Training Promote security awareness and training across the organization. Stay updated with the latest cybersecurity trends, threats, and technologies. f) Monitoring and Reporting Monitor the performance of security systems. Report on security incidents, metrics, and compliance status to senior management.

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Email Security Good to have skills : NAMinimum 2 year(s) of experience is required Educational Qualification : 15 years full time education Summary :We are seeking a detail-oriented and proactive Application Security Analyst to join our security team. The ideal candidate will have hands-on experience with Black Duck software composition analysis and a strong background in conducting thorough source code reviews to identify and mitigate security vulnerabilities. This role involves collaborating closely with development teams to ensure secure coding practices and maintaining the security posture of applications throughout the SDLC.Key Responsibilities:- Perform security assessments and vulnerability analysis of applications using Black Duck to identify open-source component risks and compliance issues.- Conduct in-depth source code reviews to detect security flaws, including injection attacks, authentication weaknesses, insecure data handling, and other common vulnerabilities.- Collaborate with developers, DevOps, and QA teams to remediate identified security vulnerabilities and integrate security controls into development processes.- Develop and enforce security policies and best practices for secure coding and application security.- Support threat modeling, risk assessments, and security testing activities throughout the software development lifecycle (SDLC).- Stay updated with the latest application security trends, vulnerabilities, tools, and mitigation techniques.- Provide security training and awareness sessions for development teams.- Create clear and concise documentation on findings, recommendations, and remediation strategies. Professional & Technical Skills: - Must To Have Skills: Proficiency in Email Security.- Strong understanding of cloud security principles and practices.- Experience with security frameworks such as NIST, ISO 27001, or CIS.- Knowledge of risk assessment methodologies and security compliance requirements.- Familiarity with incident response and threat management processes. Additional Information:- The candidate should have minimum 2 years of experience in Email Security.- This position is based at our Bengaluru office.- A 15 years full time education is required. Qualification 15 years full time education

Say hello to possibilities. Its not everyday that you consider starting a new career. We’re RingCentral, and we’re happy that someone as talented as you is considering this role. First, a little about us, we’re the global leader in cloud-based communications and collaboration software. We are fundamentally changing the nature of human interaction—giving people the freedom to connect powerfully and personally from anywhere, at any time, on any device. We’re a $2 billion company that’s growing at 30+% annually. Job Type: Full-Time Department: Security This is a great opportunity to work at a rapidly growing, market leading Unified Communications as-a-service company. RingCentral provides Voice-over-IP (VoIP), hosted PBX, voicemail, SMS, e-fax, and HD video meeting solutions for business. About this role: As a SOC Analyst at RingCentral, your primary responsibilities are to implement a comprehensive security monitoring, incident response and threat intelligence program for RingCentral’s global cloud service, corporate and development environments. You will also be collaboratively providing feedback to improve security operations processes, generating actionable analysis and threat intelligence from tools, logs, and other data sources, ensuring strong documentation is in place to support ongoing SOC activities, and reporting your observations to other Security, Operations and IT personnel. Successful Candidates will: Have proven skills in application security, security monitoring, incident response and intrusion analysis Have strong knowledge of the diverse methods and technologies used to attack web/mobile/desktop applications, SaaS infrastructure, and data Think critically, work well under pressure, and possess strong analytical, written, verbal, and interpersonal skills Demonstrated track record of quality processes in candidate’s work history Be strongly self-motivated with an aptitude for both individual and team-oriented work Have experience following and refining standard operating procedures and playbooks Responsibilities: Monitor security events, analyze and investigate alarms, and maintain day-to-day operational activities of a secure cloud environment Engage teams within and outside of RingCentral to mitigate and resolve cases Maintain relevant documentation and audit artifacts Identify and track suspicious system activity Identify trends and patterns, and present them to Security Engineers to enhance our processes and systems This role participates in on-call rotations Qualifications / Requirements: 3+ years in a security engineering, SRE, or SOC roles in a cloud services environment Experience with SIEM Experience investigating security incidents Basic knowledge AWS or GCP Experience with IDS, case management, and related tools and practices Experience with Linux, RedHat preferred Basic knowledge of broad security topics such as encryption, application security, malware, ransomware, etc. Knowledge of network, VoIP and web related protocols (e.g., TCP/IP, UDP, IPSEC, HTTP, HTTPS, SIP, RTP) Preferred Skills/Experience: Any combination of the following certifications: GCIA (GIAC Certified Intrusion Analyst) GCIH (GIAC Certified Incident Handler) GCFA (GIAC Certified Forensic Analyst) GNFA (GIAC Certified Network Forensic Analyst) GCFE (GIAC Forensic Examiner) GASF (GIAC Advanced Smartphone Forensics) GICA GCTI (GIAC Certified Cyber Threat Intelligence) GPEN (GIAC Certified Pentester) GWAPT (GIAC Certified Web Application Pentester) GPYC (GIAC Certified Python Coder) OSCP (Offensive Security Certified Pentester) Experience using Crowdstrike, Cloudflare, FirePower, Splunk, ELK, Imperva, Syslog, packet capture, and Windows Event Log tools and similar tools Knowledge of current hacking techniques, malicious code trends, botnets, exploits, malware, DDoS, and data breach events Strong knowledge of Microsoft Windows Experience automating security tasks, including scripting, programming and/or SecDevOps Experience working with global teams

Warm Greetings from SP Staffing!! Role :SOC Analyst Experience Required :3 to 8 yrs Work Location :Bangalore Required Skills, Security operations SOC1, SOC2 , FFIEC , GDPR Interested candidates can send resumes to nandhini.spstaffing@gmail.com

The Cybersecurity Operations Manager will act as the primary point of contact and liaison for coordinating all cybersecurity-related operations within the Organisation. This role bridges the gap between business partners, country-level stakeholders, information technology team and the broader security teams within the organization. The individual will ensure the effective implementation, monitoring, and enhancement of security measures, aligning industry best practices with the organizations overarching cybersecurity strategy. Is responsible for managing and optimizing the technology portfolio of enterprise data protection infrastructure, ensuring the reliability and efficiency of associated systems/services, and managing operations team. This role involves planning, partner management, project management, and collaboration with various departments to support business objectives. Is accountable for the cybersecurity objectives and deliverables within the business unit. Adapts business unit, department, site or sub-function plans and priorities to address resource and operational challenges. Decisions are guided by policies, procedures and business unit, department or sub-function plan; receives guidance from manager. Provides technical guidance to employees, colleagues, and/or customers The Cybersecurity Operations Manager will work closely with the SOC (Security Operations Centre) & Managed Security Services team to detect, analyse, respond and mitigate cybersecurity incidents. Stakeholder Coordination Serve as the primary liaison between business units, IT & functional leadership, and group cyber security teams. Facilitate communication and alignment of cybersecurity initiatives across various stakeholders. Stakeholder engagement & relationship building. Collaborate with IT & business project team to incorporate security by design principle in all the digital projects. Operational Oversight Manage and maintain the technology portfolio of enterprise information protection services. Ensure regular maintenance and timely upgrades of security systems & services to prevent downtime and enhance performance. Collaborate, lead and mentor the IT operations team, providing guidance and support to ensure high performance in delivering security services. Plan and execute Cybersecurity projects, ensuring they are completed on time and within budget. Work with business, internal IT and 3rd party vendor teams to promote and adopt security best practices. Implement and monitor security measures to protect data and ensure compliance Monitor security system performance and troubleshoot issues to maintain optimal operation. Responsible for managing all service and change requests relating to security Manage relationships with Security/ IT vendors and service providers to ensure quality and cost-effective services. Work with Security partners to conduct and review regular security assessments (Pen tests, Vulnerability scans etc) of vendors and solutions (SaaS, IaaS providers, Managed Security Service Provider) Incident Detection & Response Accountable for Security Incident Management. Maintain and improve security incident response procedures and playbooks. Oversee the daily monitoring and review of security event activities and cyber threat landscape to ensure ongoing and continued maturity of the organizations security controls in close coordination with SOC & MSS team Manage resolution of cyber security incidents and coordinate with engineering support for security systems. Identify and diagnose potential threats, including root cause analysis and after-action reviews to ensure security controls defend the enterprise against potential cyber threats Collect and analyses cybersecurity threats to develop a deep understanding and awareness of cyber threats and actors tactics, techniques and procedures (TTP) to derive and report indicators that help organisations detect and predict cyber incidents and protect systems and network from cyber threats. Proactively searches for undetected threats in networks and systems, identifies their indicators of compromise (IOCs), and recommend mitigation plan Reporting and Documentation Develop & streamline process and procedures for efficient security operations. Provide regular reports & metrics on service operations Perform routine audits on security of the infrastructure and present findings. Governance & Compliance Conduct periodic service review meetings with relevant stakeholders – both internal & external. Ensure adherence to security controls and policies Facilitate & drive Information Security Management System (ISMS) process across the organisation. Develop and manage the IT operations budget, ensuring efficient allocation of resources. Knowledge and experience At least 10+ years of experience in Cybersecurity with hands-on capability is network & other security technologies. Knowledge & skills in managing security policies & standards in Microsoft Azure, Active Directory, Office 365, SharePoint platforms Comprehensive understanding of Information Security Frameworks (e.g., ISO 27001, NISTCSF and Cyber Essentials) and Privacy regulations, including DPDPA & GDPR Experience working with 3rd party partners including upstream service providers. Working knowledge of SIEM, Identity and Access Management and Data Loss Prevention tools Experience in managing vulnerability and patch management process Working knowledge of different security architectures (SOA, Microservices etc) and potential security issues related to them PaaS, IaaS, SaaS and Hybrid cloud solutions. Knowledge of security technologies such as IDS/IPS and Firewalls Strong experience in delivering IT and OT risk assessment, developing control frameworks and implementation of security controls & process specific to OT/ IoT Key competencies/behaviours Strong written and oral communication skills Demonstrates a high level of flexibility. Proactive; Influencer; Collaborative Ability to prioritise effectively and see the big picture. Ability to adapt to new technologies and learn quickly. Problem identification, analysis and evaluation Detail oriented, organised, and able to handle multiple priorities and timelines simultaneously. Qualifications Bachelor’s degree in computer science or equivalent CISSP, CSSP, CISM, Cybersecurity or similar certifications desirable but not essential Leading Security Framework understanding (NIST, ISO etc) Equal Opportunity Employer Biocon Biologics is committed to equal opportunity in the terms and conditions of employment for all employees and job applicants without regard to race, colour, religion, sex, sexual orientation, age, gender identity or gender expression, national origin, disability or veteran status. Biocon Biologics also complies with all applicable national, state and local laws governing non-discrimination in employment as well as work authorisation and employment eligibility verification requirements of the Immigration and Nationality Act.

Objective: Serve as L1/L2/L3 level core security domains. Lead architecture reviews, complex troubleshooting, performance tuning, threat modeling, and support design/implementation changes. Technologies Supported Domain Platform DDoS Protection Radware DefensePro / Cloud DDoS NGFW Palo Alto (Panorama, Cortex XSOAR) SIEM & IDAM OpenText ArcSight / CyberRes WAF & LB Radware AppWall / Alteon VX Endpoint Security Trend Micro Apex One / Vision One VAPT Tenable.io / SecurityCenter HSM Thales Luna / payShield APM & Logging Elastic Stack (ELK + Observability) Advanced Skill Set Expert in one or more: DDoS, NGFW, SIEM, WAF, VAPT Protocol-level packet analysis Threat intelligence and hunting workflows SIEM correlation strategy and content development Complex API integrations and automation scripting (Python/Shell) Familiarity with Zero Trust, MITRE ATT&CK, SOAR

Dear Candidate, We are seeking a Security Operations Engineer to monitor, detect, investigate, and respond to security incidents and threats across systems and networks. Key Responsibilities: Monitor alerts and logs using SIEM tools (Splunk, QRadar, Sentinel). Analyze security incidents, conduct root cause analysis, and coordinate response. Support threat hunting and vulnerability assessments. Maintain and tune security tools (IDS/IPS, endpoint protection, firewalls). Document incident reports and provide remediation recommendations. Required Skills & Qualifications: Experience in a Security Operations Center (SOC) or similar role. Strong knowledge of cybersecurity concepts and incident response. Familiarity with EDR tools (CrowdStrike, Carbon Black) and log analysis. Scripting and automation skills for detection and response tasks. Security certifications such as CEH, CompTIA Security+, or GCIA are beneficial. Soft Skills: Strong troubleshooting and problem-solving skills. Ability to work independently and in a team. Excellent communication and documentation skills. Note: If interested, please share your updated resume and preferred time for a discussion. If shortlisted, our HR team will contact you. Srinivasa Reddy Kandi Delivery Manager Integra Technologies

Job Overview: We are looking for a seasoned Senior Network Security Engineer with hands-on experience in Check Point, FortiGate, and Cisco ASA firewalls along with cloud networking on Azure and AWS. This is an onsite role involving the design, implementation, and support of secure, enterprise-grade and hybrid cloud networks. Key Skills: Firewall Management: Check Point, FortiGate, Cisco ASA Cloud Networking: Azure, AWS Network Protocols: BGP, OSPF, NAT, VPN (IPSec, SSL), SD-WAN Security Tools: IDS/IPS, Azure Firewall, AWS WAF Automation: Terraform, Ansible, Python, Bash, PowerShell Cisco Routing & Switching: VLANs, ACLs, HSRP/VRRP, STP, QoS Compliance: NIST, ISO 27001, PCI DSS, HIPAA, Zero Trust Architecture Monitoring: SolarWinds, AWS CloudWatch, Azure Monitor Responsibilities: Design, deploy & manage multi-vendor firewalls and cloud network security. Implement VPNs, firewall segmentation, and high availability (HA) configurations. Automate deployments & policy enforcement via scripting or IAC tools. Work across datacenter, cloud, and hybrid environments to ensure compliance and performance. Conduct firewall audits and support incident response. Collaborate with DevOps, cloud, and network teams. Train and mentor junior engineers. Preferred Certifications: Security: CCSA/CCSE, NSE4/NSE7, CCNP/CCIE Security Cloud: AWS Advanced Networking, Azure Network Engineer Associate Why Join Us: Dynamic and collaborative work environment Skill development, certification support & mentorship Meal & transport allowance Clear career progression into SME, Solutions Architect, or Management roles

Vice President - Cyber Security Operations Job Statement: NopalCyber makes cybersecurity manageable, affordable, reliable, and powerful for companies that need to be resilient and compliant. Managed extended detection and response (MXDR), attack surface management (ASM), breach and attack simulation (BAS), and advisory services fortify your cybersecurity across both offense and defense. AI-driven intelligence in our Nopal360 platform, our NopalGo mobile app, and our proprietary Cyber Intelligence Quotient (CIQ) lets anyone quantify, track, and visualize their cybersecurity posture in real-time. Our service packages, which are each tailored to a clients needs and budget, and external threat analysis, which provides critical intelligence, help to democratize cybersecurity by making enterprise-grade defenses and security operations available to organizations of all sizes. NopalCyber lowers the barrier to entry while raising the bar for security and service. We are looking for a proven, high energy, results oriented Cybersecurity Operations Leader, where you will be a key advisor for our clients, analyzing business requirements to design and implement ideal security solutions for their needs. As an established SecOps Leader, you will span operational, tactical, and strategic levels as well as tasks that tackle difficult problems that businesses are facing when building out and improving their security posture. This is an opportunity for you to showcase your strong communication skills and experience in SOC operations, security governance & advisory, security risk management, security architecture, and cyber incident response programs. Job responsibilities: Service Delivery Management: Oversee the end-to-end delivery of Managed XDR, Attack Surface Reduction, and Advisory services to clients, ensuring high-quality outcomes and client satisfaction. SOC Operations Leadership: Lead and manage Security Operations Center (SOC) operations, ensuring effective monitoring, incident management, and response processes are in place. Incident & Escalation Management: Take responsibility for escalations arising from security event monitoring, incident management, and response. Ensure timely resolution and process improvements. SLA & Process Compliance: Ensure that service level agreements (SLAs) are met, while also driving process adherence, continuous improvements, and operational excellence. Governance & Metrics: Establish and refine operational foundations, defining key metrics and KPIs to drive governance, quality, and efficiency. Influence operational change to improve performance. Threat Management & Detection: Lead efforts in threat management, modeling, and hunting. Identify threat vectors and develop use cases and detection rules to enhance security monitoring capabilities. Team Training & Development: Ensure that the team’s skill development and training needs are adequately addressed to maintain cutting-edge security expertise. Cybersecurity Maturity & Resilience: Assist clients in identifying potential threats, vulnerabilities, and deficiencies, advising on measures to enhance their cybersecurity maturity and resilience. Solution Design & Communication: Evaluate client needs, create tailored security solutions, and effectively communicate the value proposition of complex security concepts to both technical and non-technical stakeholders. Security Assessments: Plan and execute IT security assessments of on-premise/cloud IT assets. Understand organizational objectives, policies, and regulations to identify risk areas and prepare comprehensive review programs. Stakeholder Communication: Possess strong communication skills to engage with senior management, board members, technical teams, and key client stakeholders to convey complex security concepts effectively. Sales & Proposal Support: Contribute to sales pursuits, proposals, and the development of security practice eminence. Drive business growth through strategic client relationships. Project Delivery: Lead and deliver complex security projects in a fast-paced, team-driven environment. Knowledge Sharing & Collaboration: Foster a collaborative environment by promoting and participating in forums that enhance the firm’s collective knowledge and assist clients with complex challenges. Enterprise Security Leadership: Provide leadership and strategic direction to the organization’s information security initiatives. Cybersecurity Strategy & Technology Update: Regularly update and refine the cybersecurity strategy to incorporate new technologies and emerging threat information. Client Relationship Management: Establish and maintain strong client relationships to further expand the service portfolio and ensure long-term client success. Job specifications: 1. Qualification: A bachelor’s degree in a related field (e.g., Computer Science, Cybersecurity, or Information Technology) and a minimum of 15 years of relevant work experience. Certifications Certified Information Systems Security Professional (CISSP) or Certified Information Systems Auditor (CISA). Cloud security certifications from major Cloud Service Providers (AWS Certified Solutions Architect, Microsoft Azure Architect, Google Cloud Architect), or Certified Cloud Security Professional (CCSP) / Certificate of Cloud Security Knowledge (CCSK). 2. Desired Skills: Desired Skills & Experience : SOC Expertise: Strong understanding of SOC operations, design, and management. Experience with domain administration, network architecture, and change control procedures. Risk Management Knowledge: Familiarity with IT risk management standards and frameworks, including ISO 31000, NIST Cybersecurity Framework, ISO 27001/27002, GDPR, PCI DSS, SOC 1/SOC 2, COBIT, and HITRUST. Networking & Security Technologies: Knowledge of networking (TCP/IP, OSI model), operating systems (Windows, UNIX, mainframe), security technologies (firewalls, IDS/IPS), and programming languages (C, Java, Perl, Shell). Threat Landscape Awareness: In-depth understanding of cyber-attacks, threat vectors, risk management, and incident response. Security Solutions Proficiency: Hands-on experience with MDR, EDR, XDR, SIEM, Vulnerability Management, IDS/IPS, NTA, UEBA, DLP, and other security technologies. Penetration Testing Tools: Familiarity with penetration testing and application security tools (Kali Linux, Metasploit, Burp Suite, Nessus, NMAP). Security Frameworks & Methodologies: Understanding of OWASP, the MITRE Attack Framework, Cyber Kill Chain, and the SDLC (Software Development Lifecycle). Cloud Security Expertise: Advanced knowledge of cloud security practices and implementations. Vendor/Partner & Client Management: Strong experience in vendor/partner management, client management, and the ability to lead client relationships effectively. Offerings Development: Ability to research and develop innovative security risk-based offerings that meet client needs. Shaping Client Expectations: Expertise in managing and shaping client expectations throughout engagement cycles.

Job Title: Senior Security Analyst Threat Hunting & Incident Response Location: Bangalore (Rotational Shifts) Mode of work- 5 days WFO Experience: 8+ Years Job Type: Full-time Job Description: We are looking for a highly skilled and experienced Senior Security Analyst to join our client's Cybersecurity team. This role involves leading incident response activities, performing proactive threat hunting, and enhancing our overall security posture through innovative detection strategies and forensic investigations. Key Responsibilities: Lead end-to-end security incident response, including analysis, containment, mitigation, and reporting. Design and implement detective controls for emerging threats and vulnerabilities. Perform proactive threat hunting across multiple platforms and environments. Continuously enhance SIEM/SOAR/XDR alert use cases and threat detection capabilities. Research emerging threats, vulnerabilities, and attack techniques to improve defenses. Participate in a 24/7 on-call rotation to support incident response and critical investigations. Document incident response activities and produce detailed reports for stakeholders. Conduct post-incident reviews to drive improvements in tools, processes, and readiness. Collaborate across teams to improve the organization’s threat detection and response maturity. Required Qualifications: Bachelor’s degree in Computer Science, Cybersecurity, or related field. Minimum 8 years of experience in Security Operations, Incident Response, or Threat Detection. Strong experience with threat hunting methodologies and frameworks. Hands-on expertise with tools such as SIEM, SOAR, XDR (e.g., Cortex XSIAM, Torq). Working knowledge of MITRE ATT&CK , NIST frameworks, and cyber kill chain concepts. Preferred Skills & Experience: Strong understanding of network and endpoint security, defense-in-depth, and current threat trends. Experience with cloud security (AWS, Azure, GCP) and public cloud defense techniques . Exposure to Endpoint Detection & Response (EDR) tools, forensic analysis, and log correlation. Proficiency in scripting languages (e.g., Python, PowerShell ) for automation and analysis. Relevant certifications such as CISSP, GIAC (GCIA, GCIH, GCFA), CEH are a plus. Strong analytical mindset with the ability to assess risk and prioritize response. Excellent written and verbal communication skills.

Key Responsibilities. [Management & Operations] Ensure timely and effective response to fraud, cyber, safety incidents, reducing financial and reputational risks. Oversees all Programs of the Security, Safety & Fraud Centre of Excellence ensuring appropriate staffing, capacity planning, and training for the team. Coordinates the delivery teams and follows up on requirements to run a high performing operation. Identifies and manages resource requirements, priorities, dependencies and milestones in order to deliver on objectives. Drives the creation and optimisation of delivery plans in line with functional objectives, customer requirements and any associated change management requirement. Proactively identifies and removes blockers/impediments and consistently maintains a solution-focused approach. Leads the design, production and socialization of a strategic roadmap for the Security, Safety & Fraud Centre of Excellence that demonstrably meets the needs of the Security, Safety & Fraud leadership and capability leads. [People and Team Management] Manages, develops, and coaches a team of high performing professionals working to protect Booking.com and our customers. Responsible for developing team members and identifying opportunities for skill development and training. This will be done in coordination with Capability Leads Coaches individuals and team(s) using the Booking.com values on Think Customer First, Own It, Learn Forever, Succeed Together, and Do the Right Thing. Creates the working environment that attracts, engages and develops people to their full potential and retains them. This includes ensuring all staff are supported in their growth, through constant feedback, coaching and mentoring programs. Supports the Security, Safety & Fraud capabilities in ensuring metrics are in place to measure ongoing performance Cultivates a positive, collaborative and inclusive team culture. Experience in managing managers. [Service and Operations Management of the Security , Safety & Fraud Centre of Excellence] Manages and is responsible for the quality and efficiency of delivery of the operations of the Centre of Excellence Translates Security, Safety & Fraud priorities from a business perspective by leveraging understanding of the organizations operations. Owns and is responsible for ensuring constant optimisation of playbooks, SOPs and other relevant Centre of Excellence documentation. Acts as primary escalation point to Capability Leads for incidents and any other operations related issues. Works only during office working hours, but is on call during escalations as deemed necessary. Ensures control effectiveness is monitored within the capability area and takes corrective action when needed. Responsible for the Security, Safety & Fraud Capability Center to ensure capabilities are effectively utilized and identify gaps in process or procedure and implement new solutions accordingly. [Collaboration and Stakeholder Management] Acts as focal point between Capability leads based in Amsterdam and Bangalore Capability delivery teams: Responsible for managing the internal and external stakeholder relationships within the Centre of Excellence team. Develops and manages agreed performance metrics Drives continuous improvements and operational efficiency within the Centre of Excellence, ensuring the appropriate resources and budget are applied to each topic and that the organization and people are set up to deliver. Leads in identifying & driving initiatives effectively involving multiple stakeholders. Knowledge and skills. Level of Education Bachelors or Masters Degree in Information Systems Management, Computer Science, Economics or Risk Management or related field. Professional security management certification in one or more of the following areas preferred: CISSP, CISA, CISM, GISO, GCIH, CIPP. Years of relevant Job Knowledge 8-12 years Requirements of special knowledge/skills People Management (L4) Expertise Stakeholder Management (L4) Expertise Business Management (L4) Expertise Operations (L4) Expertise Product Management (L3) Independence Technical Specialization (specify per sub competence and Level) Data Privacy Awareness (L3) Independence Security & Risk Governance - (L4) Expertise Threat Management - (L2) Experience Vendor Management (L4) Expertise Demonstrated leader with team-oriented interpersonal skills; ability to effectively interface with a broad range of topics, people and roles. Accept responsibility and personal accountability. 8-12 years of experience as a technologist, ideally with specialization in security, safety or fraud Demonstrated experience designing, architecting, and implementing Security, Safety & Fraud programs and/or technology platforms Consulting or product background is a pre Experience in managing Engineering teams and/or Analytics teams and/or Risk Management teams is a pre.

About the Role An experienced Cybersecurity Risk & Compliance Analyst to proactively address and manage the risks of the increasingly sophisticated cyber threats. This role aims to strengthen our overall security posture, ensure we meet compliance obligations (like SOC2, HITRUST, PCI DSS), and reduce our risk exposure by shifting towards more proactive measures. Your Area of Focus Threat & Vulnerability Management: l Systematically scan our systems/applications for vulnerabilities. l Analyze findings, prioritize risks based on impact. l Maintain crucial asset inventories (including SBOM/HBOM). l Collaborate closely with IT/DevOps to track and ensure timely remediation of vulnerabilities (patching, configuration changes). Manage Third-Party Penetration Testing Partners: l Develop and maintain a process for ensuring testing coverage for inscope systems. l Collaborate with internal engineering and product teams to define the scope for each penetration test. l Once a vulnerability has been remediated, coordinate with the penetration testing partner to perform retesting and validate the effectiveness of the fix. Governance, Risk & Compliance (GRC) Support: l Manage evidence gathering and preparation for audits (SOC2, HITRUST, PCI DSS, etc.). Reduce audit burden on technical teams. l Assist in developing and maintaining security policies and standards relevant to our operations. l Track compliance status and identify gaps. Risk Management: l Conduct regular risk assessments to find potential security weaknesses and control gaps. l Maintain a risk register and track mitigation efforts. l Monitor emerging technology risks (e.g., GenAI) and assess their potential impact on our environment. Ensure we stay ahead of new threat vectors. Security Support & Guidance: l Serve as a point of contact for security-related questions and provide guidance on best practices. l Support incident investigations and customer security inquiries/audits. Your Professional Qualifications l Solid experience 3 years in cybersecurity, specifically focusing on risk management and compliance. l Strong understanding of vulnerability management, risk assessment methodologies (NIST RMF, ISO 27001). l Experience with compliance frameworks (SOC2, HITRUST, PCI DSS mandatory). l Excellent analytical skills and ability to collaborate effectively across teams (especially IT/DevOps). Perks & Benefits Healimpilo offers best in market perks and benefits to its Employees. Healimpilo is an equal opportunity employer. All applicants will be considered for employment without attention to age, race, color, religion, sex, sexual orientation, gender identity, national origin, veteran or disability status.

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Security Information and Event Management (SIEM) Good to have skills : NAMinimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to document the implementation of cloud security controls and facilitating the transition to cloud security-managed operations. You will engage in discussions to align security strategies with organizational objectives, ensuring that all security measures are effectively integrated into the cloud environment. Your role will also require you to stay updated on the latest security trends and technologies to enhance the overall security posture of the organization. Roles & Responsibilities:- Expected to be an SME.- Collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Provide solutions to problems for their immediate team and across multiple teams.- Develop and maintain comprehensive documentation of security architecture and controls.- Conduct regular assessments and audits to ensure compliance with security policies and standards. Professional & Technical Skills: - Must To Have Skills: Proficiency in Security Information and Event Management (SIEM).- Strong understanding of cloud security principles and best practices.- Experience with security incident response and threat management.- Familiarity with regulatory compliance frameworks such as GDPR, HIPAA, or PCI-DSS.- Knowledge of network security protocols and technologies. Additional Information:- The candidate should have minimum 5 years of experience in Security Information and Event Management (SIEM).- This position is based at our Gurugram office.- A 15 years full time education is required. Qualification 15 years full time education

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Network Security Operations Good to have skills : NAMinimum 12 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to assess security needs, documenting the implementation of cloud security controls, and overseeing the transition to cloud security-managed operations. You will engage in strategic discussions to align security measures with organizational objectives, ensuring a robust security posture in the cloud environment. Roles & Responsibilities:- Expected to be an SME.- Collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Expected to provide solutions to problems that apply across multiple teams.- Facilitate training sessions to enhance team knowledge and skills in security practices.- Monitor and evaluate the effectiveness of implemented security measures and recommend improvements. Professional & Technical Skills: - Must To Have Skills: Proficiency in Network Security Operations.- Strong understanding of cloud security principles and frameworks.- Experience with security compliance standards and regulations.- Ability to design and implement security architectures for cloud environments.- Familiarity with incident response and threat management processes. Additional Information:- The candidate should have minimum 12 years of experience in Network Security Operations.- This position is based at our Bengaluru office.- A 15 years full time education is required. Qualification 15 years full time education

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Security Information and Event Management (SIEM) Good to have skills : NAMinimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to document the implementation of cloud security controls and facilitating the transition to cloud security-managed operations. You will engage in discussions to align security strategies with organizational objectives, ensuring that all security measures are effectively integrated into the cloud environment. Your role will also require you to stay updated on the latest security trends and technologies to enhance the overall security posture of the organization. Roles & Responsibilities:- Expected to be an SME.- Collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Provide solutions to problems for their immediate team and across multiple teams.- Develop and maintain comprehensive documentation of security architecture and frameworks.- Conduct regular assessments and audits to ensure compliance with security policies and standards. Professional & Technical Skills: - Must To Have Skills: Proficiency in Security Information and Event Management (SIEM).- Strong understanding of cloud security principles and best practices.- Experience with security incident response and threat management.- Familiarity with regulatory requirements and compliance frameworks.- Ability to design and implement security controls in cloud environments. Additional Information:- The candidate should have minimum 5 years of experience in Security Information and Event Management (SIEM).- This position is based at our Bengaluru office.- A 15 years full time education is required. Qualification 15 years full time education

Role & responsibilities Deploy, configure, and manage endpoint protection solutions (e.g., EDR, antivirus, DLP). Monitor and respond to endpoint security alerts and events. Conduct regular endpoint vulnerability scans and assist in remediation efforts. Support incident response activities involving compromised endpoints. Analyze security incidents and recommend improvements to reduce risk. Collaborate with IT teams to ensure secure system configurations and patch management. Document processes, procedures, and security incidents. Assist in compliance efforts related to endpoint security. Keep up to date with the latest security threats and trends impacting endpoint devices.

As a Senior Cybersecurity Specialist with an MSSP, you will play a pivotal role in designing, implementing, and managing Security Operations Center (SOC) architecture for multiple client environments while actively monitoring, detecting, and responding to advanced cyber threats You will work with cutting-edge technologies such as SIEM, EDR/XDR, and PAM solutions to provide comprehensive security services to clients This hybrid role requires a combination of SOC architecture expertise, incident response skills, and the ability to deliver tailored solutions in a managed services environment, Key Responsibilities SOC Architecture & Implementation: Design and implement scalable and multi-tenant SOC architectures to support client environments, ensuring compliance with MSSP best practices, Deploy, configure, and maintain SIEM solutions (e-g , Seceon, Splunk, QRadar) for real-time threat monitoring across diverse client infrastructures, Manage and integrate EDR/XDR tools (e-g , CrowdStrike, Sentinel One) and PAM solutions (e-g , CyberArk, Beyond Trust) to secure privileged accounts and endpoints, Customize SOC processes and workflows to address unique client needs, including playbook creation, automation, and escalation pathways, Develop KPIs and metrics to measure the SOCs performance and ensure SLA compliance for MSSP clients, Threat Detection & Incident Response Proactively monitor and analyze security alerts and events for multiple clients using SOC tools like SIEM and EDR, Conduct advanced threat hunting and forensic investigations across client networks to identify vulnerabilities and mitigate risks, Lead incident response efforts for clients, including containment, eradication, and recovery, while documenting root causes and lessons learned, Develop custom correlation rules, dashboards, and reports in SIEM tools to enhance threat detection capabilities for clients, Client Support & Engagement Act as the primary point of contact for clients regarding SOC operations, incident response, and cybersecurity posture, Conduct regular security assessments and provide detailed reports with actionable recommendations tailored to each client, Provide thought leadership and advisory services to clients on emerging threats, regulatory compliance (e-g , GDPR, ISO 27001), and cybersecurity trends, Participate in onboarding and training sessions to educate clients on security best practices and SOC processes, Strategic Planning & Continuous Improvement Stay informed about the latest cybersecurity threats, trends, and technologies to continuously enhance MSSP services, Identify opportunities for process improvement, including the use of automation, AI/ML, and orchestration tools to improve SOC efficiency, Mentor and guide junior analysts and architects, fostering a high-performance MSSP team, Required Skills Proven experience in SOC architecture design, implementation, and multi-tenant management for MSSP clients, Hands-on expertise with SIEM solutions (e-g , Seceon, Splunk, QRadar) and EDR/XDR platforms (e-g , CrowdStrike, Sentinel One), Strong knowledge of PAM solutions (e-g , CyberArk, Beyond Trust) and their role in securing client infrastructures, Advanced skills in threat hunting, log analysis, and incident response, Familiarity with MSSP environments, including SLA management, multi-client support, and customization of security services, Deep understanding of cybersecurity frameworks (e-g , NIST, CIS Controls) and regulatory requirements (e-g , GDPR, PCI DSS), Proficiency in Zero Trust Architecture (ZTA), IAM, cloud security (AWS, Azure, GCP), and hybrid infrastructures, Excellent client-facing communication skills, with the ability to simplify technical concepts and build trust with stakeholders, Qualifications Bachelors or Masters degree in Cybersecurity, Information Technology, or related field, 4+ years of hands-on experience in cybersecurity, including SOC operations, architecture, and multi-client threat management in an MSSP environment, Industry certifications such as CISSP, CISM, CEH, or vendor-specific credentials (e-g , Splunk Certified Architect, CrowdStrike Certified Expert, CyberArk Defender), Why Join Us Opportunity to work with cutting-edge cybersecurity technologies in a fast-paced MSSP environment, Collaborate with industry experts and gain exposure to diverse industries and client challenges, Competitive salary, performance-based incentives, and professional growth opportunities, Apply Now

Cloud Security Associate Architect Looking forward to advance your career and Upgrade Yourself? We are growing and we are hiring, come join us! About the role: In this opportunity as Cloud Security Associate Architect, you will: Individual Contributor Role, a subject matter expert with Proficiency in enterprise security architecture and Cloud Infrastructure Well versed with industry Specific, Regulatory, Regional Compliances and Standards Be able to Translate Key Use Cases and Business Requirements into Secure Architecture with cyber security controls Well Versed with one or more of cloud platforms (AWS, Azure, Google or Oracle) and related architecture concepts and secure design principles Conversant with the new age SaaS Based, AI ML Driven technologies, platforms and solutions across enterprises and relevant security constraints, solutions and requirements Helps improve cyber security risk posture in compliance with NIST Zero Trust, Least Privilege, Defence In Depth, Layered Security Principles from perimeter to end point cloud edge network security Risk Assess, and Drive architecture, design and implementation of cyber security platforms and solutions with architectural excellence, thought leadership with authority You're a fit for the role of Cloud Security Associate Architect if your background includes: About you: Cyber Security Controls Definition & Solutions Architecture Design based on industry specific and regulatory standards & compliances such as ISO27001, NIST 800-53, PCI-DSS, HIPAA and Data Privacy Standards viz GDPR, CCPA etc Pre-acquisition Pre-Onboarding - 3rd Party Integration Risk Assessment & Due Diligence of vendor technologies Cloud security architecture reviews, across cloud hybrid multi-cloud platforms Design & ensure delivery of high quality cyber security processes and tools across cloud infrastructure covering but not limited to Secure business Process & Applications Integration; 3rd Party Vendor Integration Risk Assessment; Network Security Segmentation & Zoning across environments, regions, VPCs and security groups; Secure Access Network Connect; Remote Access VPN & Private Links DirectConnect etc; Perimeter Protection - Layer 4-7 Security WAF/LB/ADDoS and Web/Email/API Gateway; Secure End Points and Secure Workspace; Secure Hosts and Compute Workloads; Containers Microservices Security; Identity Access Governance; Secure Access for Employees, Vendors & Customers; Data Privacy Protection Encryption Anonymization Tokenization etc; Logging, Auditing and Monitoring; Security Incident Response Management; Cyber Threat Intelligence; Threat Hunting Threat Management; Insider Threats and Breach Risk Detection and Cyber Forensic; Defensive Security and Engineering; Vulnerability and Threat Management thereby reducing attack surface improving cyber risk posture of enterprise following Secure Change Configuration management Processes Authoritatively drive continuous improvements in key cyber defence capabilities by streamlining technology acquisition and deployment, engineering solutions and driving deployment of innovative processes and controls Designs and executes cyber security plans, activities, and policies that protect Thomson Reuters information infrastructure, customer base, and products. Assists in maturing cyber defense capabilities, enforces organizational security principles and industry recognized best practices, and demonstrates responsible resource management. Works independently or leads functional project teams to implement security controls, monitor and mitigate threats, tune and optimize security appliances, coordinate with enterprise information services teams, interface with product teams, or other tasks associated with cyber defence and cyber fusion centers. Understands and have proven experience around cloud and cloud security architectures and related compliances and standards. The role demands knowledge and experience around cloud security architectures and solutions design, review and risk assessment

Why you would love this job The Development family is responsible for creating, designing, deploying, and supporting applications, programs, and software solutions. May include research, new development, prototyping, modification, reuse, re-engineering, maintenance, or any other activities related to software products used internally or externally on product platforms supported by the firm. The software development process requires in-depth subject matter expertise in existing and emerging development methodologies, tools, and programming languages. Software Developers work closely with business partners and / or external clients in defining requirements and implementing solutions. What you will do Lead technical processes and designs considering reliability, data integrity, maintainability, reuse, extensibility, usability, and scalability. Review code of development team to ensure quality and adherence to best practices and standards. Collaborate with Infrastructure partners to identify and deploy optimal hosting environments. Define scalability and performance criteria for assigned applications. Ensure application meets the performance, privacy, and security requirements. Verify test plans to ensure compliance with performance and security requirements. Support business and technical presentations in relation to technology platforms and business solutions. Mitigate risk by following established procedures and monitoring controls. Help develop solutions that balance cost and delivery while meeting business requirements. implement technology-specific best practices that are consistent with corporate standards. Partner with cross-functional teams to ensure the success of product strategy and project deliverables. Drive new technical and business process improvements. Estimate total costs of modules/projects covering both hours and expense. Research and evaluate specific technologies, and applications, and contributes to the solution design. Construct application Architecture encompassing end-to-end designs. Mitigates risk by following established procedures and monitoring controls, spotting key errors, and demonstrating strong ethical behavior. Qualifications Bachelor's degree required with Masters, or equivalent experience preferred Minimum of 3 years of related experience Talent required for success: 3+ Years of Active Development Experience/ Expertise in Java/J2EE Based Applications proven ability with Hibernate, JPA, Spring, Spring MVC Exposure to XML/XSD, JSON and similar data presentation components Familiarity with Microservices based architecture and distributed systems. Ability to develop and work with REST APIs using Spring Boot framework. Knowledge of IBM MQ and messaging protocols such as JMS Understanding of Unix/Linux OS including shell scripting Strong database and PL/SQL skills Experience with CI/CD technologies like GIT, Jenkins, JoCoCo and Maven Experience with UI frameworks - Angular, NodeJS and NPM is a plus Experience with CSS, HTML, JavaScript, and similar UI frameworks (jQuery, React Angular) is a plus Familiarity with Agile development methodology