384 Vulnerability Jobs - Page 10

Company RNTBCI PL Job Description Job Summary As a Cybersecurity Cloud Specialist within the Renault Group IT Cybersecurity team, you will be a key reference for cybersecurity architectures, technical requirements, and solutions across cloud platforms such as GCP, AWS, and Azure. Your role involves assessing cloud platforms to ensure they meet cybersecurity requirements, utilizing Renault Groups tools and policies. This includes auditing existing cloud environments, identifying security gaps, and proposing improvements. You will be responsible for operating Cloud Security Posture Management tools, including Google Security Command Center and Checkpoint Cloud Guard, with the potential to integrate additional cybersecurity tools in the future. Staying updated on new threats, technologies, and opportunities is essential. In this role, you will act as a guide, helper, informer, trainer, and trouble-shooter, providing valuable support and expertise to the team. Key Responsibilities: Cloud Security Posture Management Tooling: Handle compliance alerts Identify relevant asset owners and contact them to mitigate issues Follow up with stakeholders Provide technical support for corrections Generate reports (KPIs, dashboards) Develop and maintain Python scripts Check configured cyber rules, monitor their effectiveness, and propose improvements Conduct regular reviews of cloud security rules and policies to ensure compliance with security standards and best practices. Perform technical risk assessments and vulnerability analysis on cloud policies and identified gaps. Develop and execute assessment plans to improve security standards and the security posture of cloud platforms. Bring expertise in micro-segmentation in cloud platforms (e. g. , GKE clusters). Document and communicate processes and standards. Assist in the investigation and resolution of security incidents related to cloud platforms. Coordinate with corporate security and IT teams to implement corrective actions. Stay updated with the latest cloud technologies, security trends, and regulatory requirements. Provide recommendations to enhance security measures. Participate in security audits and assessments to ensure ongoing compliance and effectiveness. Knowledge, Skills, and Experience Requirements: Proficiency in cloud platforms and about cybersecurity practices on these platforms (priority #1 GCP, then AWS and Azure, potentially OCI). Strong understanding of network security principles and practices, micro-segmentation, hardening Knowledge of risk assessment and vulnerability analysis techniques. Familiarity with Google SCC (Security Command Center) and / or Checkpoint CloudGuard CSPM, or other CSPM like Wiz. Knowledge of scripting tools, like Python Excellent analytical, problem-solving, and communication skills. Ability to work independently and collaboratively in a team environment. May require on-call availability for critical security incidents. Ability to work under pressure and manage multiple tasks simultaneously. Qualifications, Certifications, and Education Requirements: Bachelor s degree in computer science, Information Technology, Cybersecurity, or a related field. SPECIFY INDUSTRY EXPERIENCE & KEY SKILL SET REQUIREMENT: 8+ years of experience in firewall management and security policy validation. Hands-on experience with major cloud platforms (priority #1 GCP, then AWS and Azure). Relevant cybersecurity and cloud cybersecurity certifications Job Family Information Technologies & Systems Renault Group is committed to creating an inclusive working environment and the conditions for each of us to bring their passion, perform to the full and grow, whilst being themselves. We find strength in our diversity and we are engaged to ensure equal employment opportunities regardless of race, colour, ancestry, religion, gender, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity, etc. If you have a disability or special need requiring layout of the workstation or work schedule, please let us know by completing this form. By submitting your CV or application, you authorise Renault Group to use and store information about you for the purposes of following up your application or future employment. This information will only be used by Renault Group companies as described in the Group Privacy Policy .

Not Applicable Specialism Microsoft Management Level Senior Associate & Summary At PwC, our people in cybersecurity focus on protecting organisations from cyber threats through advanced technologies and strategies. They work to identify vulnerabilities, develop secure systems, and provide proactive solutions to safeguard sensitive data. As a cybersecurity generalist at PwC, you will focus on providing comprehensive security solutions and experience across various domains, maintaining the protection of client systems and data. You will apply a broad understanding of cybersecurity principles and practices to address diverse security challenges effectively. & Summary We are looking for experienced members with strong analytical and problemsolving abilities willingness and to learn new technologies and adapt to changing project requirements ability to prioritize tasks and manage time effectively to meet deadlines good verbal and written communication skills ability to work collaboratively in a team setting Responsibilities 1. Review application source code based on the industry standard security frameworks and organizations internal security policy. 2. Running the source code scan and analyzing the results derived from the SAST platform. 3. Coordinate with application development teams to ensure identified gaps are fixed in proper time. 4. Work with the application development team to eliminate false positives, to clarify compensating security controls. 5. Closely work with issue management team to ensure proper remediation plans are in places with well documented records. 6. Collaborate with senior developers and architects to ensure security best practices and secured design patterns are followed. 7. Work closely with other team members, including project leads, regional leads and territory security leadership team. 8. Provide regular updates on progress and issues to project managers and stakeholders Mandatory skill sets 1. Strong knowledge of secure coding practices and common security vulnerabilities (e.g., OWASP Top 10). 2. Strong knowledge of Industry standard SAST tools (e.g. Veracode, Fortify on Demand). 3. Strong knowledge of Industry standard SCA tools (e.g. Blackduck). 4. Strong knowledge in manual and toolbased code review process, focusing on OWASP methodology. 5. Strong Knowledge of security vulnerability identification and remediation methodologies. 6. Familiarity with industry standard security frameworks and policies. 7. Strong knowledge of DevSecOps practices and integration of security within CI/CD pipelines. Preferred skill sets Desirable Skills 1. CEH, CISM, CCSK Years of experience required 57 yrs Education qualification BTech/BE/MTech from reputed institution/university as per the hiring norms Education Degrees/Field of Study required Bachelor of Technology, Master of Engineering Degrees/Field of Study preferred Required Skills Static Application Security Testing (SAST) Accepting Feedback, Accepting Feedback, Active Listening, Agile Methodology, Analytical Thinking, Azure Data Factory, Communication, Creativity, Cybersecurity, Cybersecurity Framework, Cybersecurity Policy, Cybersecurity Requirements, Cybersecurity Strategy, Embracing Change, Emotional Regulation, Empathy, Encryption Technologies, Inclusion, Intellectual Curiosity, Learning Agility, Managed Services, Optimism, Privacy Compliance, Regulatory Response, Security Architecture {+ 8 more} Travel Requirements Government Clearance Required?

Qtech SoftwareCompany Our Solutions PartnersLet's Connect Qtech Software > Careers Careers Nurturing Talent. Creating Possibilities Nurturing Talent At Qtech software, we are invested in employee growth. We offer opportunities that help you explore the limits of your true potential. Our talent is proactively appreciated and developed. Open Door Policy We have an open-door policy and believe in a flat hierarchy. Inputs and feedback are welcome and we encourage a healthy amount of interaction with your seniors and peers. Global Exposure With clients in over 70+ countries, the scope of your achievements and projects is truly global. For those willing to go the extra mile our advancement trajectory is rapid. A young family. Qtech Software is a family of 180+ individuals. We are 19 years young and driven by a passion to digitally empower our customers and communities, transform.Specialized expertise Our teams include product and project managers, business analysts, quality assurance executives, UI & UX Specialists, developers, and testers. Together we offer bleeding-edge, end-to-end solutions for your business goals. Driven by whats next At Qtech we are inspired by the impossible! To solve fundamental real-world problems that remain unchallenged. Our creed Passionate for excellence, united by technology. Stories that Inspire Us Nitin journey at Qtech Software - Marathon of Multiple RolesA marathon of multiple roles Nitin Jain completed 12 years at Qtech Software. Read his amazing journey which involves travel to multiple countries & multi-faceted roles. Read moreVinay Shinde's Career journey ar Qtech SoftwareThe ride of a lifetime Vinay Shinde shares about his 12+ years at Qtech Software. Read this incredible story to find out more about team Qtech and Vinay's journey Read more Current Openings Cybersecurity AnalystConduct Vulnerability Assessments: Identifying potential weaknesses in applications and systems using automated tools and manual techniques. Perform Penetration Tests: Simulating attacks to evaluate the effectiveness of security controls and identify exploitable vulnerabilities. Analyze Findings: Interpreting assessment and testing results to determine the severity and impact of identified vulnerabilities. Report Findings: Documenting vulnerabilities, providing detailed reports with remediation recommendations, and tracking the closure of identified issues. Collaborate with Teams: Working with developers, IT, and security teams to implement security measures and address identified vulnerabilities. Stay Updated: Keeping abreast of the latest security threats, vulnerabilities, and industry best practices. Test Various Application Types: Performing security assessments on web applications, mobile applications, APIs (REST, SOAP, XML, JSON), and potentially cloud-based services. Understand Security Standards and Frameworks: Familiarity with OWASP, NIST, ISO 27001, PCI DSS, and other relevant standards is crucial. Use Security Testing Tools: Proficiency in tools like Burp Suite, OWASP ZAP, Nmap, Nessus, AppScan, Acunetix, Veracode, CheckMarx, etc. Responsibilities: The responsibilities cover the full range of testing work, from websites, mobile apps, and infrastructure testing to social engineering. In this role, the candidate is expected to: test software and hosted platforms, to identify vulnerabilities Carry out penetration testing of web applications, mobile applications, and internal infrastructure analyze code to assess its level of security and to find specific vulnerabilities Manage the security testing process perform complex simulated attacks on networks or systems Stay updated with the latest threats/vulnerabilities produce written technical reports along with an executive summary to a professional standard Research potential vulnerabilities formally brief clients and colleagues Understanding the role of AIML in cybersecurity Qualification: Minimum 3 to 5 years hands-on experience in SAST, DAST, VAPT Certifications like CEH, CompTIA Security+, and OSCP will be considered and added advantages. Familiarity with SAST, DAST, and IAST tools Understanding of Red/Blue teaming and threat hunting Technical skills Using common vulnerability scanning and penetration testing tools, such as NMAP, NESSUS, SQLMAP, and Burp Suite Writing test plans Producing test data Secure code analysis Internal and external penetration testing Behavioral Skills: Ability to work under pressure Good communication skills, with the ability to explain technical issues in a non-technical way, verbally and in writing Influencing internal stakeholders and clients, including those with very different levels of technical knowledge Working to deadlines and prioritizing work appropriately Working independently while remaining part of a team self-discipline to stay strictly within the project scope

What Youll Do Drive international B2B sales across North America, Europe, and APAC marketsSell a wide suite of cybersecurity services, including: Information Security Compliance (ISO 27001, ISO 13485) Data Protection (GDPR, HIPAA, HITRUST) Vulnerability Assessments & Penetration Testing (VAPT)Threat Detection & ResponseCloud Infrastructure & Security Services Manage the entire sales cycle: prospecting, solutioning, pitching, negotiation, and closureBuild and maintain CXO-level relationships with decision-makersCollaborate with technical consultants to tailor solutions for client pain pointsMonitor emerging cyber threats and evolving compliance mandates to create relevant value propositions Who You Are 8–12 years of proven experience in international sales for IT or cybersecurity servicesHands-on experience in end-to-end solution selling with high-value deal closuresDeep understanding of cybersecurity frameworks, data protection regulations, and compliance standardsStrong communication, negotiation, and consultative selling skillsBased in or willing to relocate to Ahmedabad for a full-time office roleSelf-driven, strategic, and performance-focused with a flair for storytelling Why Join Us? Niche focus on cybersecurity for regulated industries Agile, innovation-driven work culture backed by Communication Crafts Direct access to leadership and opportunity to shape global growth Attractive performance incentives & career growth roadmap Apply for this job sharer with someone awesome VI

As an Offensive Security Consultant, you'll be reporting to a Vice President in our APAC Offensive Security team and deliver projects for some of the biggest enterprises in the world. You will perform various web application, API, mobile, and infrastructure penetration tests. You will also draft reports based on the assessment results and gathered evidence and help address client inquiries regarding these results. In addition to the execution of traditional security assessments, you will participate in their refinement and improvement. Below are the roles and responsibilities for the Consultant, Offensive Security role based in India: Day to day responsibilities Execute offensive security and consultative engagements for our clients applications, cloud assets, and infrastructure Author deliverables such as vulnerability reports and executive reports Engage with our clients to understand their requirements, update them on project status, answer their queries, and present your findings and recommendations Keep your skills and knowledge up to date with the latest trends in cybersecurity and emerging technology Willingness to work in EST Time zone Essential traits 2+ years in cybersecurity, with at least 1 year in penetration testing, cloud security, or red teaming A strong understanding of offensive security methodology and vulnerability frameworks such as the OWASP Top 10, MITRE ATT&CK, PTES, or others An ability to analyze root causes and deliver technological recommendations to our clients Prerequisites bachelors degree or college diploma in information security, computer science or engineering, software engineering, or IT/System/Network administration Excellent oral and written communication skills Experience working both as part of a team and independently

UNDP has been working in India since 1951 in almost all areas of human development. Together with the Government of India and development partners, we have worked towards eradicating poverty, reducing inequalities, strengthening local governance, enhancing community resilience, protecting the environment, supporting policy initiatives and institutional reforms, and accelerating sustainable development for all. With projects and programmes in every state and union territory in India, UNDP works with national and subnational government, and diverse development actors to deliver people-centric results, particularly for the most vulnerable and marginalized communities. As the integrator for collective action on the Sustainable Development Goals (SDGs) within the UN system, we are committed to supporting the Government of India s national development vision and priorities and accelerating the achievement of the SDGs for the people and the planet. UNDP India s new Country Programme (2023-2027) builds on our prior work and aims to provide an integrated approach to development solutions in three strategic portfolios: Strong, accountable and evidence-led institutions for accelerated achievement of the SDGs. Enhanced economic opportunities and social protection to reduce inequality, with a focus on the marginalized. Climate-smart solutions, sustainable ecosystems and resilient development for reduced vulnerability. South-South cooperation, gender equality and social inclusion are promoted across the pillars. The programme is supported by a framework of renewed partnerships and blended finance solutions, strategic innovation and accelerator labs, and data and digital architecture. You are invited to join a team of future-smart development professionals to support India in achieving the national and globally agreed goals. As part of the UNDP team, your focus will be to work with diverse stakeholders to find country-specific solutions that lead to sustainable development and reach those furthest behind first. Office/Unit/Project Description The UNDP India Country Programme Document CPD (2023-2027) signed with the Government of India (GoI) aims at transformative change and development impact at scale. In line with this, UNDP has initiated active support to many state governments in mainstreaming SDGs within their schemes and programmes as a part of an UN system- wide to SDG roll out for visioning and planning in India. UNDP has done some pioneering work on localizing SDGs in States like Uttarakhand, Haryana, Punjab, Karnataka, Tamil Nadu and Northeast. The focus of the agency is to support the States in Localization & Integration and to provide technical capacity in the implementation framework for SDGs. In view of India s commitment to the 2030 Agenda, the Economic and Statistical Organization (ESO), Department of Planning has come up with vision document focusing on sectoral growth aligned with SDGs and is in the process of developing State Indicator Framework also. State level consultations are underway to align the global goals with the planning process of the State. To implement the ambitious targets set for itself in SDG VISION 2030, the Government of Nagaland (GoN) has already started the process of integrating the SDGs into the planning and development process of the state and has set up and has partnered with UNDP to establish SDG Coordination Centre (SDGCC) under the Department of Planning and Transformation. Since 2019 UNDP has a team of experts as part of the SDGCC and working closely with relevant government departments, technical agencies, UN agencies, civil society organization and academic institutions to provide the requisite impetus to the state government s initiative in rolling out the SDGs. With the SDG Nagaland vision in place and the monitoring dashboard launched, the SDGCC is expected to enhance its financial and non-financial resources and work to accelerate the progress of achievement of the global goals. Job Purpose and Scope of Work Main Purpose: The Project Associate- Resource Mobilisation & Partnership Development in Nagaland is designed to work under the overall leadership and guidance of the Policy Specialist, SDG Acceleration Unit, UNDP India and coordinate with the SDGCC team to develop and implement strategies for mobilizing financial and non-financial resources to support SDG Vision 2030 in Nagaland. The incumbent will play a key role in building partnerships with the private sector, philanthropies, industry associations, multilateral agencies, and government stakeholders to secure funding and technical collaborations for SDG initiatives in the state. Duties and Responsibilities: Under the overall supervision of the Policy Specialist, SDG Acceleration Unit, UNDP India the incumbent will: Support in the identification and mapping of relevant stakeholders Building strategic alliances and engaging donors to secure funding opportunities and strengthen partnerships for sustainable development financing. Assist in identification and development of new innovative initiatives, partnerships and approaches to support SDG priority indicators based on research and best global practices. Support in Identifying the entry points for innovations (e.g. innovations dashboard, hackathons for development, foresight and innovations summit) and facilitating integration in overall SDGCC and UNDP programming. Mapping and analysis of the contributions of private sector entities, CSR initiatives, and philanthropic organizations in Nagaland towards achieving the SDGs Conduct an environmental scan to identify opportunities for private sector partnerships through partner-specific analysis, assessment of needs, and evaluation of comparative strengths. Assist in establishing and maintaining strategic contacts and association with relevant partners, follow proactively engagement ideas and work closely with GoN SDGCC Team. Strengthening government partnerships through providing high quality and strategic communications support. Coordinating with direct stakeholders and team members to maintain consistent engagement and alignment with project objectives, enabling a collaborative approach to achieving the SDG targets. Assist in stakeholder coordination & resource mobilization Assist in researching and mapping donor priorities and funding trends to identify potential partnership and fundraising opportunities. Coordinate with internal teams and external partners to support the development and maintenance of strategic relationships with government agencies, private sector entities, multilateral institutions, and civil society organizations. Help organize and facilitate stakeholder engagement activities, including meetings, events, dialogues, and knowledge-sharing sessions. Provide logistical and documentation support for partnership development and donor engagement initiatives. Assist in monitoring and tracking partnership activities and donor communications to ensure timely follow-ups and reporting. Conduct background research and analysis to support evidence-based decision-making and resource mobilisation planning. Demonstrate familiarity with Environmental, Social, and Governance (ESG) standards and sustainability frameworks relevant to development partnerships. Contribute to capacity-building initiatives for government and institutional stakeholders, particularly in partnership development and strategy implementation. Help coordinate and support multi-stakeholder engagement, particularly in government or international development settings, with strong communication and interpersonal skills. Support business development with a focus on achieving the following results: Creating content for the SDG Private sector partner platform involving companies, business forums, industry associations and banking sector, Strengthening the engagement of partnerships with private sector, civil society, philanthropies, multilateral stakeholders and mobilizing financial and non-financial resources. Implementing relevant financial instruments to attract private investment and engage donors to accelerate financing for the SDGs. Organizing partnership engagement meetings and events to showcase SDG priorities and indicators to foster collaborations and encouraging targeted investments in critical sectors. Supporting the development of project proposals, concept notes, and background materials related to SDG priority indicators Support knowledge building and knowledge sharing Participate in training and organize briefings on internal procedures for the project staff. Provide support to other capacity building activities, including to the design and delivery of tools, materials for workshops, or platforms that tap into the collective intelligence of communities and mobilize action. Provide support in the dissemination and sharing of relevant data and lessons learned within the CO and regionally. Keep pulse on emerging best practices nationally, regionally, and internationally that relate to the work of the assigned project. Make sound contributions to knowledge networks and communities of practice. Support compiling and systematizing project knowledge, products and tools as well as their wide distribution to partners. The incumbent performs other duties within their functional profile as deemed necessary for the efficient functioning of the Office and the Organization. Institutional Arrangement [1] Reporting To: Policy Specialist, NPSA 9, SDG Acceleration & Finance Unit, UNDP India. Reportees to this position (if applicable): NA [1] NPSA holders hired under a National implementation modality, remain under the administrative supervision of UNDP, even if daily supervision is ensured by the national counterpart. Competencies Core Achieve Results: LEVEL 1: Plans and monitors own work, pays attention to details, delivers quality work by deadline Think Innovatively: LEVEL 1: Open to creative ideas/known risks, is pragmatic problem solver, makes improvements Learn Continuously: LEVEL 1: Open minded and curious, shares knowledge, learns from mistakes, asks for feedback Adapt with Agility: LEVEL 1: Adapts to change, constructively handles ambiguity/uncertainty, is flexible Act with Determination: LEVEL 1: Shows drive and motivation, able to deliver calmly in face of adversity, confident Engage and Partner: LEVEL 1: Demonstrates compassion/understanding towards others, forms positive relationships Enable Diversity and Inclusion: LEVEL 1: Appreciate/respect differences, aware of unconscious bias, confront discrimination Cross-Functional & Technical competencies Thematic Area Name Definition Business Direction and Strategy Strategic Thinking Ability to develop effective strategies and prioritized plans in line with UNDP s objectives, based on the systemic analysis of challenges, potential risks and opportunities, linking the vision to reality on the ground, and creating tangible solutions. learn from a variety of sources to anticipate and effectively respond to both current and future trends; demonstrate foresight. Data Data analysis Ability to extract, analyse and visualize data (including Real-Time Data) to form meaningful insights and aid effective decision making Business Management Project Management Ability to plan, organize, prioritize and control resources, procedures and protocols to achieve specific goals Business Management Partnership Management . Build and maintain partnerships with wide networks of stakeholders, Governments, civil society and private sector partners, experts and others in line with UNDP strategy and policies Partnership Management Multi- stakeholder engagement and funding Knowledge and ability to forge multi-stakeholder partnerships, and remove any obstacles to resource mobilization and multi- stakeholder funding platforms Partnership Management Relationship management Ability to engage with a wide range of public and private partners, build, sustain and/or strengthen working relations, trust and mutual understanding Digital Story telling Ability to empathize with peoples perceptions, motivations, feelings and mental models and craft narratives to build an emotive argument for change accordingly. Ability to present data, insights or information in compelling ways to mobilize resources, talent or action. Ability to choose media and channels that is fit for purpose to reach specific target audiences. Minimum Qualifications of the Successful NPSA Min. Education requirements Secondary education is required. Or A university degree (bachelor s degree) or equivalent in Public Relations, Rural Development, Economics, Communications, Development Economics, Statistics, Mathematics, Public Administration, Business Administration, Public policy or related Social Science field will be given due consideration, but it is not a requirement. Min. years of relevant work experience Minimum 6 years (with secondary education) or 3 years (with bachelor s degree) of experience of working with government at the national level or sub-national level in resource mobilization, private sector, corporate communication, government, responsible for lead formulation and partnerships is required. Required skills Demonstrated experience with government in resource mobilization, including developing proposals and engaging with donors, CSR entities, and philanthropic organizations. Experience in preparing high-quality project proposals, concept notes, and investment pitch materials tailored to potential partners. Desired skills in addition to the competencies covered in the Competencies section Experience in innovative financing models for resource mobilization. Exposure to partnership development with private sector, business forums, or philanthropic foundations. Experience in capacity building for government and institutional partners on partnership strategies. Proven experience and strong understanding of SDG-related financing mechanisms and ability to align resource mobilization strategies with development priorities Demonstrated experience in stakeholder engagement, partnership tracking tools, and relationship management. Experience and knowledge of the working structure, rules, regulations, policies, and procedures of UN/UNDP. Required Language(s) Fluency in English is required. Fluency in Nagamese is desirable. Professional Certificates N/A Remuneration starting at INR 11,73,913.44 (Annual) / INR 97,826.12 (Monthly) as per the scale depending on qualifications and experience. The remuneration is excluding 8.33% pension amount paid over and above the salary Equal opportunity As an equal opportunity employer, UNDP values diversity as an expression of the multiplicity of nations and cultures where we operate and, as such, we encourage qualified applicants from all backgrounds to apply for roles in the organization. Our employment decisions are based on merit and suitability for the role, without discrimination. UNDP is also committed to creating an inclusive workplace where all personnel are empowered to contribute to our mission, are valued, can thrive, and benefit from career opportunities that are open to all. Sexual harassment, exploitation, and abuse of authority UNDP does not tolerate harassment, sexual harassment, exploitation, discrimination and abuse of authority. All selected candidates, therefore, undergo relevant checks and are expected to adhere to the respective standards and principles. Right to select multiple candidates UNDP reserves the right to select one or more candidates from this vacancy announcement. We may also retain applications and consider candidates applying to this post for other similar positions with UNDP at the same grade level and with similar job description, experience and educational requirements. Scam alert UNDP does not charge a fee at any stage of its recruitment process. For further information, please see www.undp.org/scam-alert.

Software Services helps build First Americans product suite that encompasses the best in class Title Insurance, Settlement and Mortgage solutions platforms. Leverages technology product stack across Microsoft platform predominantly to develop, enhance and maintain the best in class applications. The R & D division delivers solutions for the title insurance industry leveraging the best of NLP, AI and ML. Job Summary Competencies: Responsible for the quality and quantity of the engineering output. Responsible for the continuous, iterative improvement of our engineering team. Responsible for the overall planning, execution, and success of complex technical projects. Work closely with product management team to ensure were building the best products. When necessary, act as Programmer, QA, Architect, PM, etc for short periods of time. Run and / or participate in project kick-offs. Work with your team to choose the tools, architecture, and platforms used to deliver projects. Define & implement quality standards. Attract, nurture, coach, and retain talent. Ensure every assigned engineer has a career progression plan with regular check-in points and real-time feedback. Ensure engineers are provided with continuous and valuable learning opportunities. Contribute to defining and building the vision for our engineering organization. Contribute to defining quality standards for our work. Contribute to creating training and learning material and opportunities for engineers. Talk to engineers to ease out concerns early, then fix them when possible. Resolve conflicts or performance problems with engineers. Embody the engineering culture and contribute to its advancement, inspiring everyone to live up to it. Maintainer and contributor to our company engineering internal and public artifacts such as our quality standards and guidelines. Represent the engineering organization with other departments and ensure we provide engineering support wherever necessary in the company. Support team happiness Technical Skills: Should have worked on complex distributed architectural enterprise applications. Very good hands-on in .net core, Web API, Angular, SQL, and cloud either AWS/Azure Should have prior experience in handling a team size of 15-25 developers and architects. Should have experience with the process of choosing from the design patterns and platforms and Should be well versed with the security frameworks, assessing vulnerabilities, Secured Code, SSL/Non SSL, Vulnerability tests amongst the areas being proficient at. Should have prior experience working with agile teams. Should have lead a team of Application and database developers and is competent to train/assist them on all their Technical requirements that come up as part of their day to day assignments Should be proficient at Cloud concepts & guiding principles - Various cloud solution like AWS or AZURE and their key features, advantages and disadvantages . Identify production and non-production application issues and assist team with optimal solution. Identify opportunities to fine-tune and optimize applications of .Net developed projects, including periodic code review. Should Contribute to the development of new techniques and plans within area of expertise. Educational Qualification: Minimum of 15 years of formal education - Graduate / Postgraduate in Computer Science / Information Technology Professional work experience of 11 to 18 years in Microsoft technologies and at least 2-4 years as a technical manager. FAI is committed to create an environment that respects, supports, and inspires all individuals. We do not discriminate on the basis of color, religion, sex, gender identity, sexual orientation and age. At FAI, we celebrate diversity and believe that an inclusive workforce benefits employees, the organization, and our community. We are an Equal Opportunity Employer

Our story At Alight, we believe a company s success starts with its people. At our core, we Champion People, help our colleagues Grow with Purpose and true to our name we encourage colleagues to Be Alight. Our Values: Champion People - be empathetic and help create a place where everyone belongs. Grow with purpose - Be inspired by our higher calling of improving lives. Be Alight - act with integrity, be real and empower others. It s why we re so driven to connect passion with purpose. Alight helps clients gain a benefits advantage while building a healthy and financially secure workforce by unifying the benefits ecosystem across health, wealth, wellbeing, absence management and navigation. With a comprehensive total rewards package, continuing education and training, and tremendous potential with a growing global organization, Alight is the perfect place to put your passion to work. Join our team if you Champion People, want to Grow with Purpose through acting with integrity and if you embody the meaning of Be Alight. Learn more at careers.alight.com . As a Senior Cloud Security Analyst , you will play a critical role in ensuring the security and compliance of our cloud infrastructure. You ll collaborate with cross-functional teams to design, implement, and maintain robust security measures across our cloud platforms. Your expertise will be instrumental in safeguarding our systems, data, and applications. You will assist in the wider operational activities including but not limited to validating and addressing identified security risks, Data Security, SOC1/SOC2 Audits, Client Audits, security certifications, vulnerability testing and support management teams during security incident events. You should be confident and capable of explaining the risk and remediation positions for threats as part of the global security incident management process related to cloud security. Duties & Responsibilities Cloud Security Posture Management (CSPM): Drive remediation of open security risks. Collaborate with the Information Security and compliance team to develop global cloud security architecture and maturity standards. Evaluate and respond to alerts and events from security tools, fine-tuning configurations to minimize false positives. Develop event response documentation and processes for the Security Operations Center. Work closely with Cloud Operations teams to define and implement security standards and best practices. Maintain documentation and diagrams for security tools, system environments, and cloud operations. Host Configuration Management: Conduct regular scans of host configurations to identify configuration violations and ensure compliance with security policies and CIS Benchmarks. Develop and implement remediation plans for identified violations. Collaborate with IT and DevOps teams to ensure secure configurations are maintained. Cloud Workload Protection: Perform vulnerability assessment on container images and containerized environments using industry standard tools. Identify, assess, assign, and report vulnerabilities throughout the container lifecycle. Work with development teams to ensure vulnerabilities are addressed in a timely manner. Implement security controls and best practices for container orchestration platforms. Combine security assessment tools with automation to proactively identify and remediate vulnerabilities. Collaborate with functional-area architects and security specialists to ensure adequate controls are in place. Incident Response Monitoring: Monitor and analyze security logs and events. Respond promptly to security incidents, investigating and containing threats. Work within a DevOps security model to automate incident response. Serve as a subject matter expert (SME) for security tools and processes. Position Requirements: Bachelor s or Master s degree in Computer Science, Engineering, Information Security, or similar boot camp certifications. Relevant certifications (e.g., AWS, CISSP, CCSP, CISM, GSEC) are highly desirable. Proven experience in cloud security, vulnerability management, and/or incident response. Strong knowledge of cloud platforms (e.g., AWS, Azure, Google Cloud-optional). Familiarity with security assessment tools (e.g. Host Configuration Management, Cloud Security Posture Management (CSPM), cloud native tools, Vulnerability scanners, etc). Experience with developing and managing software application(s), APIs, or cloud infrastructure Familiarity with one to many programing languages and infrastructure as Code (IAC) Ability to collaborate effectively with cross-functional global teams. Alight requires all virtual interviews to be conducted on video. Flexible Working So that you can be your best at work and home, we consider flexible working arrangements wherever possible. Alight has been a leader in the flexible workspace and Top 100 Company for Remote Jobs 5 years in a row. Benefits We offer programs and plans for a healthy mind, body, wallet and life because it s important our benefits care for the whole person. Options include a variety of health coverage options, wellbeing and support programs, retirement, vacation and sick leave, maternity, paternity & adoption leave, continuing education and training as well as several voluntary benefit options. By applying for a position with Alight, you understand that, should you be made an offer, it will be contingent on your undergoing and successfully completing a background check consistent with Alight s employment policies. Background checks may include some or all the following based on the nature of the position: SSN/SIN validation, education verification, employment verification, and criminal check, search against global sanctions and government watch lists, credit check, and/or drug test. You will be notified during the hiring process which checks are required by the position. Our commitment to Inclusion We celebrate differences and believe in fostering an environment where everyone feels valued, respected, and supported. We know that diverse teams are stronger, more innovative, and more successful. At Alight, we welcome and embrace all individuals, regardless of their background, and are dedicated to creating a culture that enables every employee to thrive. Join us in building a brighter, more inclusive future. As part of this commitment, Alight will ensure that persons with disabilities are provided reasonable accommodations for the hiring process. If reasonable accommodation is needed, please contact alightcareers@alight.com . Equal Opportunity Policy Statement Alight is an Equal Employment Opportunity employer and does not discriminate against anyone based on sex, race, color, religion, creed, national origin, ancestry, age, physical or mental disability, medical condition, pregnancy, marital or domestic partner status, citizenship, military or veteran status, sexual orientation, gender, gender identity or expression, genetic information, or any other legally protected characteristics or conduct covered by federal, state, or local law. In addition, we take affirmative action to employ, disabled persons, disabled veterans and other covered veterans. Alight provides reasonable accommodations to the known limitations of otherwise qualified employees and applicants for employment with disabilities and sincerely held religious beliefs, practices and observances, unless doing so would result in undue hardship. Applicants for employment may request a reasonable accommodation/modification by contacting their recruiter. Authorization to work in the Employing Country Applicants for employment in the country in which they are applying (Employing Country) must have work authorization that does not now or in the future require sponsorship of a visa for employment authorization in the Employing Country and with Alight. Note, this job description does not restrict managements right to assign or reassign duties and responsibilities of this job to other entities; including but not limited to subsidiaries, partners, or purchasers of Alight business units. We offer you a competitive total rewards package, continuing education & training, and tremendous potential with a growing worldwide organization. ."

Job Title: SOC Analyst Work Type: Permanent Location: DLF Downtown - Gurgaon It s more than a career at NAB. It s about more meaningful work, more global opportunities and more innovation beyond boundaries . Your job is just one part of your life. When you bring your ideas, energy, and hunger for growth, you ll be recognised and rewarded for your contribution in return. You ll have our support to excel for our customers, deliver positive change for our communities and grow your career. NAB has established NAB Innovation Centre India as a centre for operations and technology excellence to support NAB deliver faster, better, and more personalized experience to customers and colleagues. At NAB India, we re ramping-up and growing at a very fast pace. Our passionate leaders recruit and develop high performing people, empowering them to deliver exceptional outcomes to make a positive difference in the lives of our customers and our communities. Your New Role: Respond to cyber-security threats, vulnerabilities, events and incidents Perform incident response investigations to resolution Support the team in meeting operational metrics and requirements Identify tactical detection/mitigation strategies across the environment Continuously contribute to the operational efficiency and maturity of the team, processes, detection use cases and response playbooks Maintain an up-to-date knowledge of cyber threats Research, new techniques, new tooling/development Contribute to continuous learning and knowledge sharing within the team Work in a business hours + rostered on-call environment As required, support internal stakeholders and projects Act as technical contributor during major security incidents Work with Threat Intelligence, Detection and Automation teams to prioritise and develop detection capability Work with the Red Team to actively test and validate detection/response capabilities Work in a business hours, non business hours, weekend shifts + rostered on-call environment Other related activities as required by Management or CSOC Leads What will you Bring 5+ years of experience in a SOC, Offensive Security, intelligence, detection, hunting and/or SOAR role Incident response methodologies and techniques Detection and mitigation strategies for a broad range of cyber threats, including malware, DDOS, hacking, phishing, lateral movement and data exfiltration Common enterprise technologies, such as Windows, Linux, Active Directory, DNS, DHCP, web proxies, SMTP, TCP/IP, AWS and Azure Malware analysis and reverse engineering, including dynamic and static analysis Ability to perform vulnerability assessments and penetration testing, including network, infrastructure and application exploitation Operational usage of common analysis and response tooling, including Splunk, FireEye, Crowdstrike, Phantom, Akamai etc NIST framework MITRE ATT&CK, Lockheed Martin Cyber Kill Chain or similar methodologies A diverse and inclusive workplace works better for everyone: Our goal is to foster a culture that fills us with pride, rooted in trust and respect. NAB is committed to creating a positive and supportive environment where everyone is encouraged to embrace their true, authentic selves. A diverse and inclusive workplace where our differences are celebrated, and our contributions are valued. It s a huge part of what makes NAB such a special place to be. More focus on you: We re committed to delivering a positive experience for our colleagues and a workplace you can be proud of. We support our colleagues to balance their careers and personal life through flexible working arrangements such as hybrid working and job sharing and competitive financial and lifestyle benefits. We invest in our colleagues through world class development programs (Distinctive Leadership and Career Qualified in Banking), and empower you to learn, grow and pursue exciting career opportunities Join NAB India: This is your chance to join NAB India and along with your experience and expertise to help shape an innovation driven organisation that focuses on making a positive impact in the lives of its customers, colleagues and communities To know more about us please click here To know more about NAB Global Innovation Centres please click here We re on LinkedIn: NAB Innovation Centre India

OPL, is a revolutionary digital credit infrastructure company that develops and integrates cutting-edge technology to automate and digitize lending for both borrowers and lenders. The company addresses the challenges of credit distribution to MSMEs and retail borrowers. To expand its digital footprint and utilize its infrastructure, the company is diversifying into several industry segments. Job Description: As the VP Security / Deputy CISO, you will be responsible for developing and implementing the companys information security strategy to ensure the confidentiality, integrity, and availability of our systems and data. You will lead a team of cybersecurity professionals and work closely with other departments to identify risks, implement security measures, and respond to security incidents. Key Responsibilities: Develop and implement the companys information security strategy, policies, and procedures. Lead a team of cybersecurity professionals, providing guidance, mentorship, and support. Conduct regular risk assessments and vulnerability assessments to identify and prioritize security risks. Implement security controls and measures to mitigate risks and ensure compliance with relevant regulations and standards. Monitor and analyze security events and incidents and respond promptly to security breaches or incidents. Oversee security awareness and training programs for employees to promote a culture of security awareness. Collaborate with other departments, including IT, legal, and compliance, to integrate security into all aspects of the business. Stay current with emerging cybersecurity threats, technologies, and best practices, and recommend appropriate security solutions and enhancements. Prepare and present reports on the companys security posture, incidents, and initiatives to senior management and stakeholders. Qualifications: Bachelors degree in computer science, information technology, cybersecurity, or a related field. Advanced degree or professional certifications (e.g., CISSP, CISM, CISA) preferred. Proven experience (15+ years) in a senior cybersecurity leadership role, with a track record of developing and implementing effective security strategies. Strong technical knowledge of cybersecurity technologies, tools, and best practices. Excellent leadership, communication, and interpersonal skills, with the ability to collaborate and influence stakeholders at all levels of the organization. Strong analytical and problem-solving skills, with the ability to prioritize and manage multiple projects and tasks effectively. Experience working in a regulated industry (e.g., finance, healthcare, government) preferred. Knowledge of relevant regulations and standards (e.g., GDPR, HIPAA, ISO 27001:2022) and experience with compliance assessments and audits. If you believe that the future lies in innovation and have the ability to come up with ideas that are unconventional in the fintech space, you can apply to be a part of the OPL team.

NVIDIA has been transforming computer graphics, PC gaming, and accelerated computing for more than 25 years. It s a unique legacy of innovation that s fueled by great technology and amazing people. Today, we re tapping into the unlimited potential of AI to define the next era of computing. An era in which our GPU acts as the brains of computers, robots, and self-driving cars that can understand the world. Doing what s never been done before takes vision, innovation, and the world s best talent. As an NVIDIAN, you ll be immersed in a diverse, supportive environment where everyone is inspired to do their best work. Come join the team and see how you can make a lasting impact on the world. Embark on an outstanding journey with NVIDIA, where your ambition will drive the future of AI computing and security! Seeking a Software Security Compiler Engineer! NVIDIAs GPU invention in 1999 revolutionized computer graphics and parallel computing. What youll be doing: Understand, modify, and improve GCC, LLVM, and NVIDIA proprietary compilers with respect to code hardening and security. Address vulnerabilities by crafting countermeasures and implementing industry-standard solutions. Review, coordinate, and implement security measures. Analyze source and assembly code for vulnerabilities. Be part of a team at the forefront of deep-learning compiler technology spanning architecture design and support through functional languages. Collaborate with global compiler, hardware, and application teams to coordinate improvements and resolve issues. What we need to see: 8+ Years of experience with bachelors or masters degree in Computer Science/Engineering or equivalent experience. Proficiency in software security and code hardening techniques. Excellent C and C++ programming skills. Solid compiler knowledge and experience. Experience in a collaborative engineering development environment. Strong communication and documentation skills, self-motivated. Ways to stand out from the crowd: Proficiency in compiler design and verification techniques. Hands-on experience in Intermediate Representations (LLVM IR/MLIR/Tensor IR) and compiler backend modules. Expertise in threat modeling and vulnerability analysis of system software (Compilers/Assemblers & Operating Systems). Understanding of security tooling like Static Analyzer Checkers, Compiler Instrumentation, Sanitizers, and Fuzzer Mutators. Experience in implementing offensive testing techniques against compiler mitigations. With competitive salaries and a generous benefits package, NVIDIA is widely considered to be one of the technology world s most desirable employers. Our diverse team of dedicated, capable, and professional people is our greatest asset! If youre a creative and autonomous engineer with a real passion for technology, we want to hear from you!

Job Title: Splunk SME Designation : Senior Engineer/ Assistant Manager Company: Cumulus Systems Pvt. Ltd. Pune, India. Salary: As per Industry Company Overview: Cumulus Systems engages in providing End-to-End Software Development Lifecycle involving Business Requirements Analysis, Solution Architecture Design, Development, Testing, Deployment and Postproduction Support. Its cross-domain storage performance management platform called MARS (Measure Analyze Recommend Solve) monitors and helps manage large-scale, heterogeneous IT infrastructure across the entire enterprise. Job Roles Responsibilities: 1. Splunk Platform Implementation and Configuration: Lead the deployment, configuration, and integration of Splunk with various data sources and security tools. Ensure that Splunk instances (indexers, forwarders, search heads) are set up correctly and optimized for performance. Customize Splunk for different security use cases (e. g. , monitoring, incident detection, compliance reporting). 2. Data Collection and Ingestion: Configure data inputs, forwarders, and data parsers for various log sources (e. g. , network devices, firewalls, endpoints, servers). Set up log forwarding and ensure efficient and secure data collection from a wide range of security and IT systems. Ensure data normalization and correlation to make it usable for analysis and detection. 3. Search and Query Optimization: Design and develop complex SPL (Search Processing Language) queries to analyze security data. Optimize searches for performance and efficiency, especially when working with large datasets. Create and maintain reports, dashboards, and alerts for security monitoring and incident response. 4. Incident Detection and Response: Use Splunk to monitor security events in real-time, identifying potential threats and anomalies. Configure and fine-tune Splunks correlation searches and alerts to ensure accurate detection of security incidents (e. g. , intrusions, breaches). Work with security operations teams to investigate incidents and provide actionable insights from Splunk data. 5. Security Monitoring and Threat Intelligence Integration: Integrate external threat intelligence feeds into Splunk to enhance security monitoring. Leverage Splunk s machine learning capabilities to identify patterns of suspicious activity. Create custom detection rules, machine learning models, and analytics to detect emerging threats. 6. Reporting and Compliance: Generate and deliver automated security reports (e. g. , for compliance frameworks like GDPR, PCI-DSS, HIPAA). Ensure that Splunk data is properly indexed, categorized, and stored to support compliance and auditing requirements. Create dashboards and visualizations for executives, managers, and technical teams to track security posture. 7. Splunk Tuning and Optimization: Perform regular health checks of the Splunk environment to ensure high availability, scalability, and performance. Tune Splunk configurations (indexing, search, data storage) to maintain optimal performance, especially during peak event loads. Troubleshoot and resolve issues related to Splunk performance, data accuracy, or integration challenges. 8. Collaboration and Knowledge Sharing: Work with other security teams (e. g. , SOC, Incident Response, Threat Intelligence) to align Splunk s capabilities with organizational security needs. Provide training, mentoring, and best practices for other Splunk users and administrators. Stay up to date with new features, apps, and updates to Splunk, and share knowledge with the team. 9. Documentation and Standards: Maintain comprehensive documentation for Splunk configurations, use cases, search queries, and data pipelines. Develop standard operating procedures (SOPs) for various Splunk-related tasks (e. g. , creating reports, handling incidents, data ingestion). Document Splunk customizations, integration processes, and automation to ensure consistency across teams. Skills: 1. Experience and Technical Expertise: Strong experience (3+ years) working with Splunk in a security operations environment. Deep knowledge of Splunks components (indexers, forwarders, search heads, and deployment servers). Experience in creating and tuning SPL queries, developing Splunk apps, and managing Splunk Enterprise Security (ES). Hands-on experience in data parsing, normalization, and event correlation using Splunk. Proficient in integrating third-party tools, such as firewalls, intrusion detection systems (IDS), and vulnerability scanners, with Splunk. 2. Security Knowledge: Strong understanding of SIEM use cases for security monitoring and incident detection. Knowledge of network security, endpoint security, cloud security, and threat intelligence integration within a SIEM context. Experience in detecting and responding to cybersecurity threats (e. g. , malware, DDoS attacks, insider threats, APTs). 3. Cloud and Hybrid Environments: Experience with hybrid environments, where on-premises and cloud data sources are integrated into Splunk. Familiarity with deploying and managing Splunk in cloud environments (e. g. , AWS, Azure, Google Cloud). 4. Collaboration and Communication: Strong communication skills to work with cross-functional teams (SOC, IT, Compliance, etc. ) and translate security data into actionable business insights. Ability to communicate technical information effectively to both technical and non-technical stakeholders. 5. Problem-Solving and Troubleshooting: Strong troubleshooting skills, particularly when dealing with complex data integration or performance issues in a Splunk environment. Ability to identify root causes of security issues and design effective solutions using Splunk. 6. Data Analytics and Reporting Skills: Ability to design and build custom dashboards, reports, and alerts to provide actionable insights from security data. Proficiency in data visualization to communicate findings to both technical and non-technical stakeholders. Knowledge of KPI and metric tracking for security and operational effectiveness. 7. Scripting and Automation: Proficiency in scripting languages such as Python, Bash, or PowerShell for automation tasks. Experience with Splunk REST API or SDKs to automate processes or integrate Splunk with other tools in the ecosystem. Experience: 5+ Years

Some careers shine brighter than others. If you re looking for a career that will help you stand out, join HSBC, and fulfil your potential. Whether you want a career that could take you to the top, or simply take you in an exciting new direction, HSBC offers opportunities, support and rewards that will take you further. HSBC is one of the largest banking and financial services organizations in the world, with operations in 64 countries and territories. We aim to be where the growth is, enabling businesses to thrive and economies to prosper, and, ultimately, helping people to fulfil their hopes and realize their ambitions. We are currently seeking an experienced professional to join our team in the role of Consultant Specialist. In this role you will: Coaches the team in Agile practices that they have agreed to, i. e. Standups, retrospectives, reviews and ensures that they are followed Constantly works with the Product Owner and Business Analyst to re-prioritize the backlog as and when there are changes in scope or bugs arise or any issues surface Ensure the backlog is transparent, understood, and ready to be consumed by the team Actively plan for and participate in PI Planning meetings Evaluate budget for any feature that stands as a candidate for upcoming PI Clarifies to the team, the value which the customer hope to receive Facilitating the team to self-organize, enabling continuous improvement of change and run activities, aligned to the product roadmap and customer expectations Shield the team from interruptions during sprints to ensure that agile process doesn t impede team progress. Provide support across the end-to-end delivery and run lifecycle, utilizing their skills and expertise to carry out software development, testing and operational support activities with the ability to move between these according to demand Work as IT Service Owner delegate (ITSO) for Talent Intelligence systems, working closely with third-party service providers. Manages dependencies on other teams e. g. other Pods Ensures that Agile principles are supported by the relevant Agile practices, and that the practices do not become stale Creates a working environment where team members feel safe to raise any form of impediments to them Facilitates raising of Risks, Issues, Assumptions and Dependencies and escalating relevant ones through the Project Manager Helps the team focus on continuous improvement, take responsibility for their actions, and mentors team members to become problem solvers for themselves Ensure service resilience, service sustainability and recovery time objectives are met for all the software solutions delivered. Monitor ICE Exceptions, Unix/Linux Patching, Cyclic Patching, Performance and Stress testing for services, Data Backup Recovery Plans and Tests, DR Tests and Role-swaps Plans and Tests, Vulnerability Planning and Resolution Management. Requirements To be successful in this role, you should meet the following requirements: In-depth knowledge of Agile methodologies, SAFE, Scrum including certification. Running of Agile ceremonies and proficient in Agile tools. Ideally would have experience of handling IT Service Owner activities either as an owner or delegate. Excellent communication and interpersonal skills. Good deadline management and skills to highlight risk and propose mitigation plan. Team player, approachable and open to feedback. Strong leadership and management qualities with the ability to motivate and lead by example. Ability and experience of leading teams and pull them together to achieve common objectives Ability to prioritize work effectively and deliver within agreed service levels in a diverse and ever-changing environment High levels of judgment and decision making, being able to rationalize and present the background and reasoning for direction taken Excellent organization awareness Knowledge and experience in working with 3rd party vendors would be an added advantage You ll achieve more when you join HSBC. .

Job Description:- Information Security Risk Specialist Experience: 7 to 9 years Location: Bengaluru Key Responsibilities: Develop, implement, and maintain an enterprise-wide information security risk management program. Identify, assess, and document information security risks, ensuring alignment with business objectives. Perform risk assessments, vulnerability analyses, and impact evaluations on IT systems and processes. Collaborate with cross-functional teams to establish risk mitigation strategies and action plans. Monitor, track, and report on risk metrics and key performance indicators (KPIs). Stay updated on regulatory requirements and ensure compliance with standards such as ISO 27001, NIST, GDPR, etc. Develop and maintain comprehensive process documentation and generate reports tailored to the needs of various stakeholders. Drive security awareness programs and train employees on risk management practices. Prepare and present detailed risk assessment reports to senior management. Lead incident response planning and participate in cybersecurity investigations when necessary. Qualifications: Education: Bachelor s degree in Information Security, Cyber Security, Computer Science, Information Science, or a related field. Advanced degrees (e.g., Master s) or certifications (e.g., CISSP, CRISC, CISM, CEH) are a plus. Experience: 5+ years of experience in information security, risk management, or related domains. Skills and Competencies: Comprehensive understanding of frameworks such as ISO 27001, NIST Cybersecurity Framework, COSO, and COBIT. Proven analytical expertise in evaluating and prioritizing risks effectively. Advanced proficiency in utilizing security tools for risk assessment and mitigation. Strong preference for candidates with certifications like CISSP, CISM, CRISC, or equivalent. Exceptional communication and presentation skills, with a proven ability to collaborate effectively across diverse teams. Demonstrated problem-solving capabilities, including critical thinking and informed decision-making under pressure. Skilled in leading security initiatives and managing projects across global teams. A strategic mindset paired with keen attention to detail. Resourceful and decisive under high-pressure situations. An effective team player with exceptional interpersonal and collaboration skills.

3 The Senior IT Cybersecurity Engineer is responsible for the technical design of IT cybersecurity architectural guidelines and standards, as well as the secure implementation of IT digital technologies across platforms and product lines in Chevron. The primary responsibility is to assure IT solutions are "secure by design", and continuously improving our defenses as threats and technologies change. Key responsibilities: Responsibilities include but are not limited to: Enable digital transformation by ensuring secure-by-design principles are incorporated in the IT digital capabilities across the enterprise. Establish cybersecurity governance for IT technologies across all technology functions Lead security research proposals and proofs of concept for emerging technologies Consult as a subject matter expert on cybersecurity risk assessments for IT technologies Define cybersecurity architectures for IT solutions Serve as a subject matter expert in one or more cybersecurity domains, including, but not limited to, Network Security, Cloud Security, Endpoint Security, Application Security, Data Security, and Identity and Access Management. Required Qualifications: Minimum 2 years related work experience in cybersecurity with increasing levels of responsibility. Technical experience in one or more cybersecurity domains, including, but are not limited to, Network Security, Cloud Security, Endpoint Security, Application Security, Data Security, and Identity and Access Management. General understanding of the cyber threat landscape, including cyber-criminal and cyber-espionage threats. Previous experience administering cybersecurity technologies and/or supporting cybersecurity operations. Preferred Qualifications: Knowledge of industry-accepted cyber security frameworks such as NIST 800-53, MITRE ATTCK, and the Cyber Kill Chain. Experience in conducting and/or leading cybersecurity assessments (risk, vulnerability) and creating a detailed mitigation plan and recommendations to address gaps identified Ability to influence and motivate teams, and work with a variety of disciplines, cultures, and environments. Demonstrated ability to work effectively, and communicate effectively at all levels with operations, design, projects, vendors, peers, etc. Communicates in a clear, concise, understandable manner both orally and in writing. Chevron participates in E-Verify in certain locations as required by law.

What we offer: Group Summary: Magna is more than one of the world s largest suppliers in the automotive space. We are a mobility technology company built to innovate, with a global, entrepreneurial-minded team. With 65+ years of expertise, our ecosystem of interconnected products combined with our complete vehicle expertise uniquely positions us to advance mobility in an expanded transportation landscape. Job Responsibilities: The System Admin SAP Security Analyst will work closely with the global ISOL (Industrial Solution) Team and their Manager to ensure the smooth operation and security of the SAP systems. Main Tasks: Collaborate with the ISOL Team Analyst and Manager to develop and implement SAP/B2B and global Security strategies and solutions. SAP/ B2B Security: Manage and monitor the SAP & B2B security Implement and maintain security policies and procedures. Support / Conduct regular security reviews and audits. Audit and ISAE3402 Certification Prepare and conduct internal and external audits. Ensure compliance with ISAE3402 certification requirements. Document and report audit findings. User Administration: Manage user accounts and access rights in SAP B2B systems. Implement and monitor user administration processes. Train and support end-users on security-related issues. Change Management: Manage and document change requests in SAP B2B systems. Ensure adherence to change management processes. Collaborate with other IT teams to implement changes. Collaboration and Communication: Work closely with other IT and business teams to ensure system integrity. Communicate security policies and procedures to relevant stakeholders. Assist in the development and implementation of security strategies. Ensure compliance with ISAE 3402 requirements for SAP systems and integrate ISAE3402 processes and control set. Handle audits related to ISOL security, providing necessary documentation and evidence. Support internal and external audits. Project management for risk and compliance tasks, including SAST/GRC and authorization clean-up, as well as other MAGNA ISOL projects. Monitor and analyze security incidents, conducting audits and vulnerability assessments to identify and address potential risks and vulnerabilities. Collaborate with IT teams and external partners to ensure compliance with security standards. Manage relationships with external vendors and consultants for security-related projects and services. Stay up to date with the latest developments and trends in ISLO Landscape, Azure, and SAP, B2B security. Provide technical guidance and support to other team members as needed. Required Qualifications: Bachelors degree in Computer Science or a related field Well-grounded experience in SAP Basis Administration and or B2B Well-grounded in IT Infrastructure Connection SAP and or B2B technical system Know-How SAP Certification Minimum of 3 years of experience in managing and supporting SAP systems, with a focus on SAP in Azure Strong knowledge of ISAE3402 certification requirements and audit processes. Experience in user administration and change management. Excellent analytical and problem-solving skills. Strong communication and teamwork abilities. Certifications in relevant areas (e.g., SAP Certified Technology Associate) are a plus. English and one other language (preferably elementary German) Awareness, Unity, Empowerment: At Magna, we believe that a diverse workforce is critical to our success. That s why we are proud to be an equal opportunity employer. We hire on the basis of experience and qualifications, and in consideration of job requirements, regardless of, in particular, color, ancestry, religion, gender, origin, sexual orientation, age, citizenship, marital status, disability or gender identity. Magna takes the privacy of your personal information seriously. We discourage you from sending applications via email or traditional mail to comply with GDPR requirements and your local Data Privacy Law. Worker Type: Regular / Permanent Group: Magna Corporate

Learn the internals of the BlueRock hypervisor and security features of the product and ramp up quickly Develop test cases and write test programs to test OS functionality and performance Build guest OS images and OS security tools from sources Build custom tools and kernel driver programs to test product security features and other components Test product features with different Linux Distros and Container Runtimes Write automated regression tests in Python and integrate to PyTest framework Identify functional/performance issues and report them in internal system with all required artifacts Participate in technical discussion with teams in Germany and the US You could be a great fit for this role if you have: (Must Haves) BE/BTECH/M.TECH (CS/ECE/IS/EEE) 1 to 3 years experience Strong in Linux internals Strong in virtualization concepts Familiar with writing test plans and different test methodologies Familiar with writing scripts in Shell and Python Experience in writing automated tests in PyTest framework Familiarity with OS functional and benchmarking test tools Experience in developing test tools in C/C++ to test OS functionality and performance Familiar with Linux Containers and container orchestration technologies Familiar with testing in AWS, Azure, GKE Cloud environment. Familiar with GRUB, PXE, UEFI and other boot infrastructure Good problem analysis and debugging skills. Open minded with excellent communication, interpersonal skills, and inter-cultural awareness Nice to have: Familiar with tools like gcc/clang, gdb, objdump Familiar with different linux distributions, building custom kernels Familiar with Linux security concepts like LSM, SELinux, AppArmor

Have you successfully performed and executed application security scanning and vulnerability triage for web applications to deliver Cyber Security projectsDo you have experience working in a process-based frameworkDo you have proven ability to solve issues, supporting both technical and process needsAre you motivated to work in a complex, diverse and global environmentWe may be looking for you! We re looking for Application Security Specialist to: drive DevSecOps application on-boarding and adoption of Application Security services support application development teams with the triage, analysis and remediation of identified vulnerabilities support Application Security governance and the enhancement of application security testing policies, frameworks and best practices in order to improve application security controls and processes develop creation of security training and enablement across the organization open to flexible/agile working You ll be working in the Cyber Hygiene organization in Pune, India. This is a global team, diverse and collaborative, that works across business divisions to keep our technology, applications and the businesses they support secure. As an Application Security Specialist, you ll play an important role in the adoption of security scanning solutions as part of DevSecOps within in the UBS applications portfolio. You ll partner with development and engineering teams, CISO and Risk Managers to ensure applications are secure. understand the value of diversity in the workplace and are dedicated to fostering an inclusive culture in all aspects of working life so that people from all backgrounds receive equal treatment, realize their full potential and can bring their full, authentic selves to work bachelor s degree in Computer Sciences, Information Technology, or related subject; alternatively an equivalent education or experience in one of these topics a proven track record of overall 5+ years of relevant experience in Application Security Testing, Information Technology, Application Development, or Information Security strong understanding and experience with project planning and execution, application on-boarding or service adoption, and agile delivery hands on experience with Application Security solutions (SAST, SCA, IAST, DAST, API) and vulnerability analysis. Hands on experience with implementing security controls in the CI/CD pipeline strong communication skills and the ability to collaborate with development and project teams, and senior stakeholders experience in working in international environments, preferably in financial industry

1 The Lead IT Cybersecurity Engineer is responsible for the technical design of IT cybersecurity architectural guidelines and standards, as well as the secure implementation of IT digital technologies across platforms and product lines in Chevron. The primary responsibility is to assure IT solutions are "secure by design", with a high focus on delivering secure digital capabilities and retiring legacy technology when possible. Key Responsibilities: Responsibilities include but are not limited to: Enable digital transformation by ensuring secure-by-design principles are incorporated in the IT digital capabilities across the enterprise Establish cybersecurity governance for IT technologies across all technology functions Lead security research proposals and proofs of concept for emerging technologies Consult as a subject matter expert on cybersecurity risk assessments for IT technologies Define cybersecurity architectures for IT solutions Serve as a subject matter expert in one or more cybersecurity domains, including, but not limited to, Network Security, Cloud Security, Endpoint Security, Application Security, Data Security, and Identity and Access Management Required Qualifications: Minimum 5 years related work experience in cybersecurity with increasing levels of responsibility Technical experience in one or more cybersecurity domains, including, but are not limited to, Network Security, Cloud Security, Endpoint Security, Application Security, Data Security, and Identity and Access Management General understanding of the cyber threat landscape, including cyber-criminal and cyber-espionage threats Previous experience administering cybersecurity technologies and/or supporting cybersecurity operations Preferred Education: Bachelor s degree or master s degree in Cybersecurity, Information Technology, Information Systems, or Computer Science Certifications in IT Cybersecurity are highly preferred (e.g., GISP, GREM, ISSEP, OSCP or other similar certification) Certifications in SAFe Scaled Agile or related scrum/agile project management framework is desirable Preferred Qualifications: Knowledge of industry-accepted cyber security frameworks such as NIST 800-53, MITRE ATTCK, and the Cyber Kill Chain Experience in conducting and/or leading cybersecurity assessments (risk, vulnerability) and creating a detailed mitigation plan and recommendations to address gaps identified Ability to influence and motivate teams, and work with a variety of disciplines, cultures, and environments Demonstrated ability to work effectively, and communicate effectively at all levels with operations, design, projects, vendors, peers, etc Communicates in a clear, concise, understandable manner both orally and in writing Chevron participates in E-Verify in certain locations as required by law.

Visa is seeking a Controls Monitoring & Testing Analyst within its Technology Risk Management program to review and assess Cybersecurity and Technology risks. The candidate will perform Risk Assessments, Design Effectiveness Assessments, and Operational Effectiveness Testing for key technology threat vectors such as security configuration management, firewall configuration, application, user access management, and availability & reliability. Responsibilities include managing stakeholder engagement plans, participating in process walkthroughs, tracking/reporting deliverables, and producing high-quality work papers for all lines of defense and risk stakeholders. Additionally, the candidate will interpret data from source systems to perform statistical sampling and aggregate assessment across various risk management levers, collaborate with technology partners, and distill information into management and executive-level reporting. Key Responsibilities: Technology & Cybersecurity Controls Testing: Perform independent technology and cybersecurity controls testing. Document testing results in detailed workpapers. Prepare management reports based on testing outcomes. Communicate findings with stakeholders. Automation for Continuous Monitoring: Develop automation for continuous controls monitoring/auditing for technology and cybersecurity. Monitor the results of automated controls, perform investigation and follow-ups as needed. Risk & Control Self-Assessment (RCSA): Execute RCSA Risk Business Partner (RBP) controls quality review and sample-based testing. Conduct Key Risk Indicator (KRI) testing. Training, Metrics Alignment & Reporting: Develop and track risk management training. Align metrics with reporting dashboards. Develop reporting and stakeholder communication. Bachelor s degree with 5 years of work experience in cyber, risk controls, or equivalent. Experience with technology and cyber processes and functions (e.g., Vulnerability, Availability & Reliability Risk, Cyber Defense, Third Par

Integrate security controls into the CI/CD pipelines to ensure automated, continuous security in application deployments Collaborate with DevOps teams to create automated security checks using tools such as Bicep, Terraform, and Ansible Monitor and maintain infrastructure as code (IaC) security standards using Bicep and Terraform for both cloud platforms Manage and maintain infrastructure security and monitoring systems Develop and maintain CI/CD pipelines across multiple environments Implement and manage SAST and DAST tools to identify and remediate security vulnerabilities in the codebase Conduct vulnerability assessments, threat detection, and security risk analysis Understand and remediate system vulnerabilities and security issues Collaborate with team members to improve the company s engineering tools, systems, procedures, and data security Create and maintain security related documentation Support incident response and problem management teams by providing containment actions and incident analysis Ensure secure, scalable, and highly available infrastructure in line with best practices Develop and enforce cloud security policies, procedures, and controls that align with organizational standards and compliance Secure cloud platforms through robust identity management, encryption, and monitoring mechanisms

We are seeking a passionate and proactive Security Expert to serve as the Security Lead for OCI Data Integration and Intelligent Datalake teams. We are seeking a passionate and proactive Security Expert to serve as the Security Lead for OCI Data Integration and Intelligent Datalake teams, playing a pivotal role in integrating security seamlessly across product management, development, and compliance functions. This individual will be the bridge between development, security, and compliance teams ensuring smooth alignment with security architecture standards and fostering a strong, proactive security culture across the organization. Key Responsibilities: Conduct baseline security checks, ensuring alignment with enterprise security architecture standards. Work to improve security processes, tools, and automation. Conducting vulnerability assessments, penetration tests, and security audits to identify weaknesses in applications, infrastructure, and services. Oversee exception management processes, including identifying, assessing, and documenting risk exceptions. Analyze and triage monthly security tickets including Fortify findings, third-party assessments, malware scans, and more. Contribute to PCI DSS compliance efforts, ensuring controls are in place and audit ready. Play a key role during security incidents or crises by coordinating response and communication. Work closely with developers to remediate security issues including vulnerability fixes, version updates, OS hardening, and secure coding guidance accelerating product security compliance and 3P readiness. Perform regular Security Design reviews and operational monitoring in collaboration with relevant component teams. Represent the organization in audit programs, ensuring accurate and timely evidence collection, documentation, and stakeholder engagement. Qualifications: Bachelor s degree in computer science or a related field. 10+ years of experience in application/product security, risk management, or related roles. Experience in both offensive and defensive security, particularly in web application security, cloud security, and threat modeling. Solid understanding of secure software development lifecycle (SSDLC), common vulnerabilities, and remediation strategies. Experience with tools such as Fortify, SAST/DAST scanners, malware scanners, and ticketing platforms. Knowledge of industry frameworks. Strong collaboration and communication skills; able to work effectively across engineering, compliance, and security teams. Security certifications (e.g., CISSP, CISM). Familiarity with audit and compliance program management.

Job Purpose : This position will report to the CBTS Security organization and support company applications, systems, and vendors with security operations, administration, and general maintenance. This is a shift-based position and will have well-defined working hours. The position supports CBTS and its security strategy and objectives by providing security monitoring and remediation. It provides services to mitigate cyber risks to CBTS and protects company information, systems, products, facilities, and assets. Essential Functions: (70%) Security Implementation and Operations - Monitor security alerts and events and follow playbooks to respond to and escalate security incidents. Communicate with employees to remediate discovered risks. Support Security applications and infrastructure. Review systems and applications. Assist with vulnerability scans. Perform maintenance activities for applications and infrastructure. Perform incident/event response. Assist with documentation and policy creation. (10%) Innovative Solutions - Designs creative solutions that use technologies and processes to mitigate risks to information, systems, products, facilities, and assets. (10%) Risk Management - Identifies and facilitates remediation of potential security risks. (10%) Technical Training - A SOC analyst I is expected to keep up to date on the latest security trends and technologies. Time will be available for continued training. Education Four years of college resulting in a bachelor s degree or equivalent Certifications, Accreditations, Licenses N/A Experience 0-2 Years Special Knowledge, Skills, and Abilities Technical knowledge (security and compliance) - working experience with network, compute, and/or application security technologies. Strong knowledge of the OSI model Good communication, documentation, and presentation skills Inquisitive, motivated, and creative Planning and organizing Self-starter and takes initiative.

Techgen Cyber Solution Pvt. Ltd. is offering an exciting Cybersecurity Internship for aspiring professionals eager to gain hands-on experience in the world of ethical hacking, system hardening, and threat analysis. This internship is ideal for students or recent graduates looking to kickstart their career in cybersecurity under the mentorship of industry experts. Key Responsibilities Assist in conducting vulnerability assessments and penetration testing. Monitor and report suspicious network activity under supervision. Support in securing web applications, APIs, and backend infrastructure. Research and stay updated with the latest cyber threats and tools. Help draft basic security reports and recommendations. Learn and follow company protocols for threat detection and response. Requirements Basic knowledge of cybersecurity principles and concepts. Understanding of networks, firewalls, and operating systems (Windows/Linux). Familiarity with tools like Wireshark, Burp Suite, Nmap, or Kali Linux. Awareness of OWASP Top 10 vulnerabilities. Strong willingness to learn and adapt quickly. Preferred Qualifications Pursuing or recently completed a degree in Cybersecurity, IT, or related field. Certifications like CEH, CompTIA Security+, or any online course completion is a plus. Good communication skills and ability to document findings clearly. Job Category: Cyber Security Job Type: Job Location: Apply for this position Allowed Type(s): .pdf, .doc, .docx By using this form you agree with the storage and handling of your data by this website. *

YASH Technologies is a leading technology integrator specializing in helping clients reimagine operating models, enhance competitiveness, optimize costs, foster exceptional stakeholder experiences, and drive business transformation. At YASH, we re a cluster of the brightest stars working with cutting-edge technologies. Our purpose is anchored in a single truth - bringing real positive changes in an increasingly virtual world and it drives us beyond generational gaps and disruptions of the future. We are looking forward to hire Cyber Security Professionals in the following areas : Job Description: Experience required - 5+ years Security Defect Management - Analyzing, validating, communicating, and consulting on security defects identified by both automated and manual sources such as CodeQL, Rapid7 Web Application Security, penetration testing, bug bounty, etc. In other words, our security engineers are partners to software engineers who require accurate information on why a vulnerability exists and what they can do about it. Engineering Consulting - Serving as a best friend to software engineers, architects, product owners, and leaders, provide contextually-aware guidance to help these groups make good decisions when implementing new features and remediating existing issues. Tool Enablement - Enabling and monitoring automated defect detection tooling (CodeQL, Rapid7, etc.) at the repository or application level according to established process. Security Test Onboarding Management - Collecting and communicating required scope and access information for penetration testing and security assurance assessments, as well as handling the output of these assessments via our Defect Management Process. Maturity Measurement - Consulting with software engineers on practices which will improve their application s security maturity according to scorecards and maturity models established by Cat Digital. Correction of Error - Authoring, in close partnership with software engineers, correction of error reports which help engineers and architects across Cat Digital avoid similar mistakes in their own applications. Basic Qualifications Two of three: 5+ years of experience as a software engineer (in any language or framework) or software engineering manager 5+ years of experience as a software development-focused cybersecurity professional 5+ years of experience working on a major cloud platform (AWS, Azure, GCP, or Salesforce) as a software engineer, cloud/DevOps engineer, security engineer, or architect. As well as: Experience analyzing and remediating security findings from automated and manual sources such as Static Application Security Testing (SAST), Dynamic Application Security Testing (DAST), penetration testing, Software Composition Analysis (SCA), etc. Experience leveraging one or more of the following resources to support secure coding and decision-making: OWASP Top 10 MITRE Common Weakness Enumeration (CWE) Top 25 OWASP Application Security Verification Standard (ASVS) Other industry-standard best practice guides or frameworks Experience building or supporting web applications and API s including Single Page Applications (SPA) and RESTful API s. Proficiency in one or more programming languages. Candidates must also demonstrate the following attributes: Decision-Making Ability - Our engineers make sound, justifiable, customer-first decisions to determine which security issues to raise to software engineers/leaders and support work prioritization decisions. Strong Communication - Our engineers relate complex technical concepts to non-technical audiences and technical audiences without a security background. Additionally, the Cat Digital team spans the globe, and our engineers must collaborate effectively with engineers from a number of locations and cultural backgrounds. Active Participation - Software engineering is not a spectator sport . The input and experience our engineers bring to the table are valued and should be shared freely. Similarly, engineers are relied upon to complete complex assignments at a high level of quality with limited supervision. At YASH, you are empowered to create a career that will take you to where you want to go while working in an inclusive team environment. We leverage career-oriented skilling models and optimize our collective intelligence aided with technology for continuous learning, unlearning, and relearning at a rapid pace and scale. Our Hyperlearning workplace is grounded upon four principles Flexible work arrangements, Free spirit, and emotional positivity Agile self-determination, trust, transparency, and open collaboration All Support needed for the realization of business goals, Stable employment with a great atmosphere and ethical corporate culture