384 Vulnerability Jobs - Page 6

We are seeking a highly skilled OT Security Expert with 4-6 years of experience to join our team in the automotive industry. The ideal candidate will have hands-on experience in OT security, proficiency with the Otorio tool, and the ability to draft process documents. This role requires a deep understanding of operational technology security and its application within the automotive sector. Bachelors degree in Computer Science, Information Technology, Cybersecurity, or a related field. 4-6 years of experience in OT security, preferably within the automotive industry. Hands-on experience with the Otorio tool and other OT security technologies. Strong understanding of OT systems, networks, and protocols. Experience in drafting and maintaining process documents and security protocols. Relevant certifications such as GICSP, ISA 62443 related are highly desirable. Key Responsibilities: Develop and implement OT security strategies and policies to protect automotive manufacturing systems and networks. Conduct risk assessments and vulnerability analyses to identify and mitigate security threats. Utilize the Otorio tool to monitor, detect, and respond to security incidents within OT environments. Draft and maintain comprehensive process documents, including security protocols, incident response plans, and compliance reports. Collaborate with cross-functional teams to ensure the integration of security measures into automotive production processes. Provide training and guidance to staff on OT security best practices and procedures. Stay updated with the latest industry trends, threats, and technologies in OT security. Design and implement network segmentation and access control measures to safeguard OT systems. Perform regular security audits and assessments to ensure compliance with industry standards and regulations. Develop and execute incident response plans to effectively address and recover from security breaches. Work closely with IT and engineering teams to ensure seamless integration of OT security measures with existing infrastructure. Conduct forensic analysis and root cause investigations of security incidents to prevent future occurrences. Participate in the development and testing of disaster recovery and business continuity plans.

We are seeking a highly skilled and experienced Senior AWS DevOps Engineer with a strong background in cloud infrastructure, automation, and DevOps practices. The ideal candidate will have at least 7 years of hands-on experience in AWS, Docker, CI/CD pipelines, containerization, and security audits. You will be responsible for designing, implementing, and managing scalable cloud solutions while ensuring high availability, security, and performance. 7+ years of experience in a DevOps role with a focus on AWS cloud services. Hands-on experience with IaC tools such as Terraform, CloudFormation, or Ansible. Proficient in managing JIRA instances, including workflow customization, permissions management, and Strong scripting skills in Python, Bash, or similar languages. Proficient in AWS services, including EC2, S3, RDS, Lambda, VPC, IAM, CloudFormation, CloudFront, et Extensive experience with Docker, Kubernetes, and managing containerized applications in production In-depth knowledge of security best practices, including conducting security audits, vulnerability Excellent communication, problem-solving, and team collaboration skills. Ability to work in a fast-p

Experience - 2-4 years Location - Bengaluru/Hyderabad Position Summary We are hiring a Security Analyst to support an enterprise-level initiative focused on identifying, triaging, and remediating exposed secrets across GitHub Enterprise code repositories. This role is part of a multi-location, cross-functional team delivering a secrets burndown strategy for one of the world's leading enterprise IT organizations. As a Security Analyst, you will play a key role in reviewing exposed credentials and other secrets detected in source control systems. You will help categorize findings, initiate remediation workflows, track resolution progress, and collaborate with both local and U.S.-based engineering and program leads. This role will include interaction with platforms like GitHub , ServiceNow , and potentially GitGuardian as part of a broader secrets governance program. This opportunity is ideal for an analyst with foundational security experience and interest in supporting DevSecOps initiatives in a global, enterprise-scale environment. Key Responsibilities Review alerts and reports of detected secrets within GitHub repositories (e.g., PATs, tokens, SSH keys, API secrets) Perform initial triage and categorization of findings to determine relevance, criticality, and action path Create, update, and manage tickets in ServiceNow or similar workflow platforms to support remediation tracking Coordinate with engineering teams to monitor remediation progress, identify blockers, and escalate unresolved items Support recurring reporting on secrets status, closure rates, and risk reduction over time Collaborate with both offshore and U.S.-based delivery leads to ensure consistent reporting and alignment with broader posture goals Document standard operating procedures, triage rules, and data handling guidelines for internal use Required Qualifications 24 years of experience in a security analyst, IT operations, or DevSecOps support role Familiarity with reviewing code repositories (e.g., GitHub, Azure DevOps) or similar developer tools Hands-on experience with ticketing systems such as ServiceNow , JIRA , or other incident/remediation platforms Ability to understand and categorize common credential types (API keys, SSH keys, tokens, etc.) Detail-oriented with strong documentation and organizational skills Clear and effective written and verbal communication in English Preferred Qualifications Experience working within a global team structure across U.S. and India time zones Exposure to GitHub Advanced Security , GitGuardian , or other secrets scanning tools Interest in enterprise security posture, DevSecOps practices, or compliance monitoring Familiarity with Prisma Cloud or posture visibility platforms is a plus Previous experience in consulting firms, large IT service organizations, or multinational enterprises Why Join Us? Be part of a globally distributed cybersecurity project making a measurable impact Collaborate with experienced engineering leads and program managers in a remote-first environment Gain exposure to high-demand platforms and tools such as GitHub, GitGuardian, and Prisma Cloud Contribute to an evolving DevSecOps capability with long-term career potential Join a supportive consultancy team with opportunities to grow in the enterprise security domain

Job Title: Senior Analyst - Network Engineer Work Type: Permanent Location: DLF Downtown - Gurgaon It s more than a career at NAB. It s about more meaningful work, more global opportunities and more innovation beyond boundaries . Your job is just one part of your life. When you bring your ideas, energy, and hunger for growth, you ll be recognised and rewarded for your contribution in return. You ll have our support to excel for our customers, deliver positive change for our communities and grow your career. NAB has established NAB Innovation Centre India as a centre for operations and technology excellence to support NAB deliver faster, better, and more personalized experience to customers and colleagues. At NAB India, we re ramping-up and growing at a very fast pace. Our passionate leaders recruit and develop high performing people, empowering them to deliver exceptional outcomes to make a positive difference in the lives of our customers and our communities. YOUR NEW ROLE Handling Incident tickets landing to the queue Working on incident, provide break fix and permanent fix to restore production system availability following outages Applying effective risk controls on Vulnerability to identify potential threats and minimize or remove a business impact. Document knowledge articles based on learning from incident / change Create change and manage change life cycle and implement low/moderate risk changes Coordinating with Cisco/Juniper vendors for TAC and RCA Support queue management during Australia business hours On call support during non-business hours Knowledge and abilities Expertise in TCP/IP, routing and switching Strong practical knowledge of implementing/troubleshooting multi-vendor network environments such as Cisco/Juniper etc. Strong hand-on in implementation & troubleshooting of Data Center Networks. Strong knowledge in packet capturing and analysis WHAT YOU WILL BRING 4-7 years Technology experience Hardware - Cisco ISR & ASR routers, Catalyst switches (3750, 4500, 6500), Nexus (9K, 7K, 5K) Routing and Switching Layer 2 protocols (STP, LACP, VPC, VDC, VSS, STP, VxLAN) Routing protocols (BGP, OSPF) Networking protocols (MPLS, IPSec, DMVPN, SNMP) Load Balancer (F5) Service Now

JobSummary: As an Infrastructure Systems Analyst, your primary role will be: Server patching via SCCM and troubleshooting patch failures. Vulnerability remediation across the environment in a timely and efficient manner. Monitoring and supporting the organization s SCCM infrastructure. This role suits an individual with experience in supporting SCCM environments and proven experience in troubleshooting server patching issues and vulnerabilities remediation within a large organization. Role Responsibilities: SCCM administration, including infrastructure monitoring and performing daily health checks. Deploying security patches on all servers using SCCM and ensuring they are up to date with the latest patches. Troubleshooting failed auto-patch deployments via SCCM and performing manual patch installations, upgrades, and configurations in accordance with company policies and procedures. Collaborating with global teams, including application and server owners, to remediate server vulnerabilities. Deploying software applications and packages on all servers across the enterprise. Updating documentation for server patching and vulnerability remediation procedures and best practices as necessary. The above may be revised based on business requirements. Essential Technical Requirements: At least 5-6 years experience working in an IT services organization. At least 5 years hands-on experience as an SCCM administrator in a large-scale environment. Managing and monitoring SCCM infrastructure. Good experience in SCCM client troubleshooting and patch failures via SCCM. Good experience in SCCM packages, applications, and collections. Good knowledge of SCCM SQL queries and PowerShell scripting. At least 2 years hands-on experience in Windows Server administration, patching, and vulnerability remediation. Knowledge of ITIL incident, problem, and change management processes. Experience in working with global teams. Any additional technical skills that the business needs will be an added advantage. Educational Qualification: Diploma or higher degree. What We Can Offer You: Varied, interesting and meaningful work. A hybrid working environment with flexibility and great opportunities. Opportunities for training and, as the team grows, career progression or sideways moves. An opportunity to work within a large global multi-disciplinary consultancy on a mission to change the ways we approach business as usual. Worker Type Employee Job Type Regular

Hiring for Firewall Engineer Fortinet/Fortigate, Networking,Troubleshooting, firewall creation, Palo Alto,End to end firewall implementation Mandatory Palo alto certification. Exp- 6+ years Loc- Pune Apply/share to preethi.kumar@harjai.com

Job Title: WebPT P1 - Consultant Location: Bangalore & Pune (Hybrid Role) Contract Duration: 6 Months Roles & Responsibilities: Perform automated testing of running applications and static code (SAST, DAST). Conduct manual application penetration tests on one or more of the following to discover and exploit vulnerabilities: Web applications Internal applications APIs Internal and external networks Mobile applications Experience in one or more of the following is a plus: Mobile application testing Web application pen testing Application architecture Business logic analysis Work on application tools to perform security tests, including: AppScan NetsSparker Acunetix Checkmarx Veracode BurpSuite OWASP ZAP Kali Linux Able to explain vulnerabilities such as: IDOR (Insecure Direct Object References) Second Order SQL Injection CSRF (Cross-Site Request Forgery) Provide root cause analysis and remediation guidance for identified vulnerabilities. Mandatory Technical & Functional Skills: Minimum three (3) years of recent experience working with application tools to perform security tests: AppScan NetsSparker Acunetix Checkmarx Veracode BurpSuite OWASP ZAP Kali Linux (or equivalent) Minimum three (3) years of performing manual penetration testing and code review against: Web applications Mobile apps APIs Minimum three (3) years of experience working with both technical and non-technical audiences in reporting results and leading remediation conversations. Preferred: One year of experience in the development of web applications and/or APIs. Ability to identify and work with new tools/technologies to plug and play on client projects as needed to solve the problem at hand. Certifications (Preferred but not required): GWAPT (GIAC Web Application Penetration Tester) CREST (Certified Testing Professional) OSCP (Offensive Security Certified Professional) OSWE (Offensive Security Web Expert) OSWA (Offensive Security Web Application) This is a 6-month contract role with hybrid work arrangements in Bangalore and Pune .

Cybersecurity Officer Location: Bangalore, IN, 562122 Position Type: Professional Role Overview : A Cybersecurity Officer in the automotive industry is responsible for ensuring the security of vehicle systems and networks from cyber threats. This involves identifying vulnerabilities, developing security measures, implementing security policies, and responding to security incidents. They also play a crucial role in staying up-to-date with the latest cybersecurity trends and advancements and providing training to other personnel. Responsibilities Identifying and evaluating potential cyber risks to automotive systems and networks. Analyzing automotive protocols (CAN, Ethernet) for vulnerabilities and developing countermeasures. Creating and implementing security policies and procedures for automotive organizations. Monitoring network traffic, responding to security incidents, and conducting root cause analysis. Ensuring compliance with relevant cybersecurity standards and regulations like ISO/SAE 21434 and UNECE R155/R156. Evaluate new cybersecurity regulations and setting up/ improving process instructions, templates and guidelines. Working with other teams, such as development, safety, and quality, to ensure security best practices are followed. Providing training and guidance to automotive personnel on cybersecurity topics. Promote a culture of cybersecurity awareness by organizing workshops and awareness campaigns. Keeping up-to-date with the latest cybersecurity trends, threats, and technologies. Monitor development work and activities that impact compliance regulations affecting both new type approval and extensions. Assess the overall cybersecurity practices of vendors and suppliers involved in vehicle components and systems. Technical Skills: Hands on experience with automotive protocols (CAN, LIN, Ethernet, etc,) Knowledge on CS controls like IPSec, SecOC, Secure boot, Secure debug etc Familiarity with TARA methodologies and risk mitigation strategies. Knowledge of known vulnerability databases e.g., NVD, CVSS, CVE, CWE Experience with CS Verification and validation (penetration testing and Fuzz testing) Applying methodologies like TARA, STRIDE, and FTA for risk assessment ISO 21434 (CCSP), CHE, CISSP or equivalent certification Qualification Bachelor/ Masters degree (or equivalent) in Cybersecurity, Computer Science, Information Technology/Security, Electrical Engineering. 4-10 years of experience in automotive cybersecurity coordinator or related roles We value your data privacy and therefore do not accept applications via mail. Who we are and what we believe in Our focus on Inclusion, Diversity, and Equity allows each of us the opportunity to bring our full authentic self to work and thrive by providing a safe and supportive environment, free of harassment and discrimination. We are committed to removing the barriers to entry, which is why we ask that even if you feel you may not meet every qualification on the job description, please apply and let us decide. Applying to this job offers you the opportunity to join Volvo Group . Every day, across the globe, our trucks, buses, engines, construction equipment, financial services, and solutions make modern life possible. We are almost 100,000 people empowered to shape the future landscape of efficient, safe and sustainable transport solutions. Fulfilling our mission creates countless career opportunities for talents with sharp minds and passion across the group s leading brands and entities. At Group People & Culture , a part of Volvo Group, we create the foundation and frameworks for people growth and organizational development, to drive the people agenda that enables the realization of the Volvo Group aspirations through people strategy and commitment. You will be part of a global and diverse team of highly skilled professionals who work with passion, trust each other and embrace change to stay ahead. Job Category: Technology Engineering Organization: Group Trucks Technology Travel Required: Occasional Travel Requisition ID: 21340 View All Jobs Do we share the same aspirations? Every day, Volvo Group products and services ensure that people have food on the table, children arrive safely at school and roads and buildings can be constructed. Looking ahead, we are committed to driving the transition to sustainable and safe transport, mobility and infrastructure solutions toward a net-zero society. Joining Volvo Group, you will work with some of the world s most iconic brands and be part of a global and leading industrial company that is harnessing automated driving, electromobility and connectivity. Our people are passionate about what they do, they aim for high performance and thrive on teamwork and learning. Everyday life at Volvo is defined by a climate of support, care and mutual respect. If you aspire to grow and make an impact, join us on our journey to create a better and more resilient society for the coming generations.

Role Documentum DevOps/SecOps Engineer Visit our website bmwtechworks.in to know more. Follow us on LinkedIn I Instagram I Facebook I X for the exciting updates. What awaits you/ Job Profile Highly motivated and skilled DevOps/SecOps Engineer to lead the automation and security efforts for our Documentum-based systems. Strong background in DevOps principles, experience with CI/CD pipelines, and a passion for integrating security into the software development lifecycle. Responsible for automating deployments, monitoring system performance, implementing security measures, and collaborating with cross-functional teams to ensure the reliability and security of our Documentum environment. Develop alternate plans/ solutions to be implemented as per root cause analysis of critical problems Follow escalation matrix/ process as soon as a resolution gets complicated or isn t resolved Provide knowledge transfer, sharing best practices with the team and motivate What should you bring along Automating Documentum Deployments: Implementing CI/CD pipelines for Documentum environments, automating build, testing, and deployment processes. Infrastructure as Code (IaC): Defining and managing Documentum infrastructure using code, enabling automation and consistency. Security Integration: Integrating security practices into the SDLC, including vulnerability scanning, security testing, and compliance checks. Monitoring and Alerting: Setting up monitoring systems for Documentum applications and infrastructure, establishing alerts for performance and security issues. Incident Response: Developing and implementing procedures for responding to security incidents and system failures. Collaboration: Working closely with development, security, and operations teams to ensure seamless integration and security. Performance Optimization: Identifying and resolving performance bottlenecks within the Documentum environment. Security Audits and Compliance: Conducting regular security audits and ensuring compliance with relevant security standards and regulations. Staying Updated: Keeping up to date with the latest Documentum technologies, security threats, and best practices. Must have technical skill Strong understanding of DevOps principles and practices. Experience with CI/CD pipelines (e.g., Jenkins, GitLab CI). Proficiency in scripting languages (e.g., Python, Bash). Experience with configuration management tools (e.g., Ansible, Puppet). Basic Knowledge of cloud platforms (e.g., AWS, Azure). Familiarity with containerization technologies (e.g., Docker, Kubernetes). Understanding of security concepts and best practices (e.g., encryption, authentication, authorization). Experience with Documentum administration and development. Excellent communication and collaboration skills. Problem-solving and analytical skills. Good to have technical skills Documentum Certification Agile Concepts training completion.

Take on a crucial role where youll be a key part of a high-performing team delivering secure software solutions. Make a real impact as you help shape the future of software security at one of the worlds largest and most influential companies. As a Lead Security Engineer at JPMorgan Chase within the Cybersecurity & Tech Controls team , you are an integral part of team that works to deliver software solutions that satisfy pre-defined functional and user requirements with the added dimension of preventing misuse, circumvention, and malicious behavior. As a core technical contributor, you are responsible for carrying out critical technology solutions with tamper-proof, audit defensible methods across multiple technical areas within various business functions. Job responsibilities Executes creative security solutions, design, development, and technical troubleshooting with the ability to think beyond routine or conventional approaches to build solutions and break down technical problems Develops secure and high-quality production code and reviews and debugs code written by others Minimizes security vulnerabilities by following industry insights and governmental regulations to continuously evolve security protocols, including creating processes to determine the effectiveness of current controls Works with stakeholders and business leaders to understand security needs and recommend business modifications during periods of vulnerability Conducts discovery, vulnerability, penetration testing, and threat scenarios on multiple organizational assets to identify and assess if vulnerabilities are present, and executes threat modeling for multiple applications including external applications interacting with the internal JPMorganChase network Adds to team culture of diversity, opportunity, inclusion, and respect Required qualifications, capabilities, and skills Formal training or certification on security engineering concepts and 5+ years applied experience Experience in developing security engineering solutions, including the design and implementation of cloud security solutions on AWS Proficiency in software engineering with code development using Python and Terraform Infra as Code concepts. Experience in development, management, configuration, testing, and integration tasks related to Cloud Network Security platforms. Proficient in Public/Private Cloud Cybersecurity for mission-critical settings, encompassing complex data analysis, enhancement of technical documentation. Expertise in Cybersecurity organization practices, operations, risk management processes, principles, architectural requirements, engineering, and threats and vulnerabilities. Understanding of core concepts for Public/Private/Hybrid Clouds (Networking, Policy placement, IAM, Network/Application Firewall, etc. ) Preferred qualifications, capabilities, and skills Knowledge of industry-wide technology trends and best practices. Familiar working in large, collaborative teams to achieve organizational goals and a passion for building an innovative culture. AWS Associate or Professional level Certification. Take on a crucial role where youll be a key part of a high-performing team delivering secure software solutions. Make a real impact as you help shape the future of software security at one of the worlds largest and most influential companies. As a Lead Security Engineer at JPMorgan Chase within the Cybersecurity & Tech Controls team , you are an integral part of team that works to deliver software solutions that satisfy pre-defined functional and user requirements with the added dimension of preventing misuse, circumvention, and malicious behavior. As a core technical contributor, you are responsible for carrying out critical technology solutions with tamper-proof, audit defensible methods across multiple technical areas within various business functions. Job responsibilities Executes creative security solutions, design, development, and technical troubleshooting with the ability to think beyond routine or conventional approaches to build solutions and break down technical problems Develops secure and high-quality production code and reviews and debugs code written by others Minimizes security vulnerabilities by following industry insights and governmental regulations to continuously evolve security protocols, including creating processes to determine the effectiveness of current controls Works with stakeholders and business leaders to understand security needs and recommend business modifications during periods of vulnerability Conducts discovery, vulnerability, penetration testing, and threat scenarios on multiple organizational assets to identify and assess if vulnerabilities are present, and executes threat modeling for multiple applications including external applications interacting with the internal JPMorganChase network Adds to team culture of diversity, opportunity, inclusion, and respect Required qualifications, capabilities, and skills Formal training or certification on security engineering concepts and 5+ years applied experience Experience in developing security engineering solutions, including the design and implementation of cloud security solutions on AWS Proficiency in software engineering with code development using Python and Terraform Infra as Code concepts. Experience in development, management, configuration, testing, and integration tasks related to Cloud Network Security platforms. Proficient in Public/Private Cloud Cybersecurity for mission-critical settings, encompassing complex data analysis, enhancement of technical documentation. Expertise in Cybersecurity organization practices, operations, risk management processes, principles, architectural requirements, engineering, and threats and vulnerabilities. Understanding of core concepts for Public/Private/Hybrid Clouds (Networking, Policy placement, IAM, Network/Application Firewall, etc. ) Preferred qualifications, capabilities, and skills Knowledge of industry-wide technology trends and best practices. Familiar working in large, collaborative teams to achieve organizational goals and a passion for building an innovative culture. AWS Associate or Professional level Certification.

Perform SAST/SCA/DAST scans using industry vulnerability scanner SAST/SCA Veracode, using supplied compiled binary, configure scan platform to correct scan for both static code CWE s as well as SCA derived CVEs. Work will include coordination with app owner to ensure all branches of code are included in compiled binary file. DAST Work begins with crawling the target application to identify existing directory and file structure. Once identified, execute DAST scan using HCL product to identify dynamic issue only visible during code execution. During testing process, tester MUST ensure application is not degraded and/or taken out of service due to scanning activities Tester must ensure results from scanner are present in VM reporting platforms and visible to approved app users Validation - Supplier will perform manual validation and false-positive analysis on the automated scan results. Remediation Support: The remediation support will analyze the top-rated vulnerabilities along with provide support to application teams on remediation strategies from identified risks. Scan Retest: Supplier will perform revalidation tests of previously identified critical and high severity vulnerabilities as requested by the client application teams. Complex application testing and remediation/mitigation recommendation author Technical leadership of group of less experienced testers. Adversary based approach to test plan development Attempt to access unauthorized data Attempt to make unauthorized changes Bypass business logic, authentication, user privileges, etc.. Hijack accounts (Does not include social engineering methods) Attempt to exploit OWASP Top 10 vulnerabilities EcoSystem Testing All forms of application security testing, attempt to exploit All forms of device security testing, attempt to exploit All forms of database security testing, attempt to exploit Full Stack review, weakness enumer #Cybersecurity Job ID R-73980-1 Date posted 07/04/2025

Perform SAST/SCA/DAST scans using industry vulnerability scanner SAST/SCA Veracode, using supplied compiled binary, configure scan platform to correct scan for both static code CWE s as well as SCA derived CVEs. Work will include coordination with app owner to ensure all branches of code are included in compiled binary file. DAST Work begins with crawling the target application to identify existing directory and file structure. Once identified, execute DAST scan using HCL product to identify dynamic issue only visible during code execution. During testing process, tester MUST ensure application is not degraded and/or taken out of service due to scanning activities Tester must ensure results from scanner are present in VM reporting platforms and visible to approved app users Validation - Supplier will perform manual validation and false-positive analysis on the automated scan results. Remediation Support: The remediation support will analyze the top-rated vulnerabilities along with provide support to application teams on remediation strategies from identified risks. Scan Retest: Supplier will perform revalidation tests of previously identified critical and high severity vulnerabilities as requested by the client application teams. Complex application testing and remediation/mitigation recommendation author Technical leadership of group of less experienced testers. Adversary based approach to test plan development Attempt to access unauthorized data Attempt to make unauthorized changes Bypass business logic, authentication, user privileges, etc.. Hijack accounts (Does not include social engineering methods) Attempt to exploit OWASP Top 10 vulnerabilities EcoSystem Testing All forms of application security testing, attempt to exploit All forms of device security testing, attempt to exploit All forms of database security testing, attempt to exploit Full Stack review, weakness enumer #Cybersecurity Job ID R-73980 Date posted 07/04/2025

WHO WE ARE Sapaad is a global leader in all-in-one unified commerce platforms, dedicated to delivering world-class software solutions. Its flagship product, Sapaad, has seen tremendous success in the last decade, with thousands of customers worldwide, and many more signing on. Driven by a team of passionate developers and designers, Sapaad is constantly innovating, introducing [ ] Associate Systems Engineer - Sapaad Sapaad is a global leader in all-in-one unified commerce platforms, dedicated to delivering world-class software solutions. Its flagship product, Sapaad, has seen tremendous success in the last decade, with thousands of customers worldwide, and many more signing on. Driven by a team of passionate developers and designers, Sapaad is constantly innovating, introducing cutting-edge features that reshape the industry. Headquartered in Singapore, with offices across five countries, Sapaad is backed by technology veterans with deep expertise in web, mobility, and e-commerce, making it a key player in the tech landscape. Sapaad Software Private Limited is seeking passionate and reliable Associate Systems Engineers to join our Application Health and Monitoring team. If you thrive in a fast-paced environment and want to be a part of a world-class team maintaining global software systems, this role is for you. You will collaborate with engineers and developers across various layers of applications and infrastructure, ensuring high availability and performance of our suite of solutions. This is your chance to be a part of an established, global, and rapidly growing SaaS company that is shaping the future of software systems. KEY RESPONSIBILITIES Design, deploy, and manage scalable, secure, and cost-effective infrastructure on AWS. Hands-on experience with AWS services including EC2, S3, IAM, VPC, RDS, Lambda, EBS, CloudWatch, WAF and API Gateway Familiar with ECS/EKS, CloudFormation and CloudTrail. Ensure high availability, autoscaling, performance monitoring, and cost optimization across environments. Implement security best practices across infrastructure, applications, and APIs. Manage IAM roles and policies, enforce least privilege access and regularly audit permissions. Configure security groups, NACLs and VPC flow logs to control and monitor traffic. Manage Cloudflare for DNS management, global CDN, SSL termination, bot protection and DDoS mitigation. Conduct regular vulnerability assessments, patching, and security group audits. Manage WAF for protection on APIs and web applications. Perform log analysis and implement monitoring tools to ensure application health. Troubleshoot production issues and provide on-call support. Creating dashboards and setting SLIs/SLOs/SLAs. Defining and managing alerts and thresholds for proactive detection. Administer Postgres and Redis databases, including upgrades, backups, and Participate in rotating schedules and perform monthly maintenance activities Lead incident response efforts and implement preventive actions to reduce MTTR. Familiarity with incident response tools like PagerDuty or Opsgenie. Ensure clear postmortem documentation and RCA timelines. Work closely with development teams to optimize application infrastructure. Manage incidents, minimize downtime, and provide escalation support as required. Maintain detailed technical documentation, procedures, and guides. Actively participate in R&D to improve systems and processes. KEY SKILLS & EXPERTISE Experience with IaaS and PaaS cloud platforms (AWS, Azure, Heroku). Expertise in monitoring tools and log analysis (AWS CloudWatch, DataDog, Logtail). Familiarity with DevOps concepts, including Docker and Kubernetes. Strong troubleshooting and problem-solving abilities. Excellent time management and communication skills. Proactive ownership and a willingness to learn new skills. PREFERRED QUALIFICATIONS Certifications in AWS or other cloud platforms. Familiarity with security best practices and compliance requirements. Experience with CI/CD pipelines. Scripting skills in Python, Ruby, or Shell. Educational Qualification: B.Tech/BE/M.Sc in Computer Science. My journey in Sapaad has been a blast. I enjoy the working environment, company culture, and meeting so many people across the globe that work together towards excellence. We are given a great deal of trust and opportunities by our company. With Sapaad, I know that every challenge is just a stepping stone to my full potential. Sapaad has allowed me to meet interesting people of different backgrounds from around the world, work on an exciting product, and grow immensely along the way. Sapaad is not just a great place to work, it s a place to grow your career and take ownership of what you want to achieve. If this sounds like the right place for you, we d love to hear from you.

Location: Hyderabad Mode: Work From Office (WFO) Experience: 7-10 years Responsibilities AWS Expertise AWS Infrastructure: Design and manage AWS infrastructure using Infrastructure as Code (IAC) tools such as Terraform or AWS Cloud Formation. Cloud Services: Implement and optimize AWS services, ensuring high availability, scalability, and security. Networking: Develop and manage networking architecture within AWS, including VPCs, subnets, and security groups. CI/CD Pipeline CI/CD Implementation: Build and maintain robust CI/CD pipelines for automated software delivery and deployment. Containerization: Containerize applications using Docker and orchestrate with tools like Kubernetes. Monitoring and Automation: Implement monitoring solutions and automation to ensure system performance and reliability. Security and Compliance Security Best Practices: Enforce security best practices and compliance standards within AWS environments. Security Audits: Conduct security audits and vulnerability assessments to proactively address potential risks. Collaboration and Documentation Team Collaboration: Collaborate with cross-functional teams, including developers and system administrators, to streamline development and operations processes. Documentation: Maintain comprehensive documentation of DevOps processes, configurations, and architecture. Requirements and Technical Skills Bachelors degree in Computer Science, Information Technology, or a related field (Masters preferred). 7+ years of professional experience in DevOps, with a strong focus on AWS. Expertise in AWS services and solutions, including EC2, S3, RDS, and VPC. Proficiency in Infrastructure as Code (IAC) tools like Terraform or AWS CloudFormation. Strong knowledge of containerization technologies (Docker, Kubernetes). Experience with CI/CD tools such as Jenkins, Travis CI, or GitLab CI/CD. Networking and security architecture experience within AWS.\ Familiarity with monitoring tools (e.g., Prometheus, Grafana) and automation frameworks. Excellent problem-solving and troubleshooting skills. Strong communication and interpersonal skills.

Build threat defenses, security rules, and triggers. Map cloud compliance standards and analyze data. Automate tasks, troubleshoot issues, and protect information assets.

Some careers shine brighter than others. If you re looking for a career that will help you stand out, join HSBC and fulfil your potential. Whether you want a career that could take you to the top, or simply take you in an exciting new direction, HSBC offers opportunities, support and rewards that will take you further. HSBC is one of the largest banking and financial services organisations in the world, with operations in 64 countries and territories. We aim to be where the growth is, enabling businesses to thrive and economies to prosper, and, ultimately, helping people to fulfil their hopes and realise their ambitions. We are currently seeking an experienced professional to join our team in the role of Consultant Specialist. In this role, you will: This position is responsible for DevOps Engineer. The person should handle the entire DevOps lifecycle and should be accountable for the implementation of the process. They should possess sound knowledge of various tools and technologies used by other team members. Will be responsible for automating all the manual tasks for developing and deploying code and data to implement continuous deployment and continuous integration frameworks. They would also be held responsible for maintaining high availability of production and non-production work environment. The person would be involved in creating technology infrastructure, automation tools, and maintaining configuration management. They are accountable for conducting training sessions to the juniors in the team, and other groups regarding how to build processes wherein in the dependencies are showcased in the code. Requirements To be successful in this role, you should meet the following requirements: Working knowledge on DevOps CI Tools Maven, G3, Jenkins, Sonar, Mode 2 and Build Forge. Working knowledge on CICD Tools Nexus IQ, Sonar Scan, Check Marx, Kenna, Knowledge of G3(Plain, Ansible, PCF, DB, WAS), Ansible, Vulnerability Scan Preferred hands on experience on Java 8 or above, SpringBoot, JUnits, Maven and SQL Preferred - knowledge on APIs and Web/micro Services (REST, SOAP) Databases (relational, non-relational) ideally Oracle/ Mongo Proven ability to define and build architecturally sound solution designs Strong understanding of networking concepts like firewalls, proxy servers, gateways Experience on cloud platforms (PCF/AWS/GCP/Azure), Knowledge on GCP/IKP is a plus Experience in estimating development efforts and delivery planning Knowledge of XML, Flat Files (CSV, Fixed-Width) You ll achieve more when you join HSBC. .

Req ID: 324036 NTT DATA strives to hire exceptional, innovative and passionate individuals who want to grow with us. If you want to be part of an inclusive, adaptable, and forward-thinking organization, apply now. We are currently seeking a System Integration Advisor to join our team in Noida, Uttar Pradesh (IN-UP), India (IN). Minimum 5-6 years of Windows / VMware Administration experience with 5 years of hands-on experience and proficiency in managing and maintaining a medium/large environment (at least 1000+ Servers). Advanced knowledge of processes and tools utilized for system management, problem reporting, change management and support tools. Exceptional technical troubleshooting skills including but not limited to No boot situations, patch failures, performance issues, unexpected OS crashes, Capacity planning, FileShare access management, External Audits. Installing, configuring, and maintaining Win2K12, Win2k16, Win2k19 and Win2k22 Servers. Good Knowledge of Hardware and coordinate with hardware vendors like IBM / HP / Dell /. Following up with Vendors whenever required & resolve issues by minimizing downtimes. To be able to identify recurring issues, assist to provide corrective action and track till closure. Identify gaps if any that may impact the client or day to day performance of team members and provide inputs for productivity improvement measures for the support team. Participate as resolver party in Priority One (P1) resolution process. Participate in a supportive role by acting as a liaison between customer and departments within the organization, to ensure that all problems are resolved in an accurate and timely manner. Collaborate with vendors and cross functional teams to define business requirements. Share knowledge and aids less experienced team members. Proactive system optimization and maintenance as required. Proficient in Microsoft Server patching and vulnerability remediation. Exceptional interpersonal and client service skills. Ensures 24x7 after-hour support.

At Hike, we re building the Rush Gaming Universe To know more, check out work.hike.in . Hike Code ( Our core cultural values ) The Hike Code is our value system. We aim to live and breathe by these every single day. They inspire us to be the best we can be and they are weaved into every part of our decision making, how we review performance and much more. We have 9 core values: Top Talent in Every Role Both a quest for greatness & shared values are important to us Owner not a Renter Proactive & radically responsible. Everyone is an owner Pro-Sports Team Strength-based, results driven with a "team-first" attitude Customer Obsession We exist to delight our customers Think Deeply & Exercise Good Judgement Clear mind, obsession to simplify & data-informed Build & Make Magic Courage to walk into the unknown and pioneer new fronts Be Insatiably curious & keep Improving Curiosity to acquire new perspectives, quickly Move Fast & Be Dynamic Ruthless prioritization & move fast Dream Big, Be Bold & Think Long Term Courage to climb big mountains Skills & experience were looking for 2-3 years of experience in application security with a strong focus on web and mobile application security. | Top talent in every role Managing and triaging bug bounty submissions, evaluating impact, and prioritizing fixes based on risk assessment. | Think Deeply & Exercise Good Judgement Hands-on experience in penetration testing, including API intercepting, and reverse engineering of APKs. | Top talent in every role Deep understanding of OWASP Top 10 vulnerabilities and mitigation techniques. | Think Deeply & Exercise Good Judgement Experience with SAST, DAST, and other application security tools. | Be Insatiably Curious & Keep Improving Awareness of cybersecurity trends, attack vectors, and best practices. | Top talent in every role Cloud security and network security knowledge, along with proficiency in scripting languages like Python, would be an added advantage | Top talent in every role You will be responsible for Strategy Design and implement secure application architectures aligned with business and security requirements. Strategy Develop and enforce secure coding standards across engineering teams. Strategy Automate security testing in CI/CD pipelines, including SAST, DAST, and dependency scanning. Strategy Perform threat modeling and risk assessments for applications and services. Operations Conduct regular security code reviews and vulnerability assessments. Operations Monitor and respond to application security incidents, working closely with engineering and DevOps teams. Operations Research and recommend new security technologies and best practices to improve application security. Operations Maintain security documentation and ensure compliance with internal policies and industry standards. Collaboration Partner with engineering teams to prioritize security fixes and integrate security best practices into the SDLC. Collaboration Communicate security risks and solutions effectively to both technical and non-technical stakeholders. Benefits We have tremendous benefits & perks. Check out work.hike.in to know more

Job Description: C/C++ knowledgeable engineers. People with experience working in linux environment(debian, redhat ) and preferably have done some product bug fixing would fit well, as they need to do vulnerability analysis and finding remediation/tactical fixes. Good analytical skills and self-motivated. 3-6 years experience engineers.

Job Title: Mid-Level SAP GRC & Security Consultant Location: Pune Job Type: Full-Time / Contract Job Description: We are seeking a highly skilled and motivated Mid-Level SAP GRC & Security Consultant to join our dynamic team. In this role, you will be responsible for supporting and maintaining SAP systems, ensuring the smooth operation of SAP environments, and assisting with system performance optimization. The ideal candidate should have hands-on experience in SAP administration, with a solid understanding of various SAP modules and SAP architecture. Key Responsibilities: SAP Security Design & Implementation : Strong hands-on experience of Implementing & managing SAP Security Roles, Profiles, Authorizations within SAP S/4HANA, SAP ECC, GTS, APO and Other SAP Applications. Manage user access and authorization roles within SAP systems Managing User Access & Role Admin activities of Satellite Systems or Non-SAP Systems. Perform user access management activities, including creating, modifying, and deactivating user accounts and roles. Implement role-based access control (RBAC) to ensure that users have the right level of access based on their job responsibilities. Conduct regular reviews of roles, user access, and security settings to maintain compliance and minimize security risks. Missing Authorizations, Tracing, Table Administration & Transport Management Mass User Administration Activities and Role Administration Activities GRC AC Management : Implement of GRC AC Configurations, Integration Scenarios, Connector Group, EUP. Implement SAP GRC Access Control for user access management & Role Design. Worked on Centralized and De-Centralized EAM Configurations Enabling the FFID Master Data for Implementation and Support Activities Implementation of SoD Ruleset (Standard & Customization) SAP GRC & Authorization Management. Enabling the MSMP Standard & Customized Workflows for JML Processes. Perform periodic SAP security assessments, including vulnerability assessments and remediation actions, to mitigate potential risks. Security Incident Management, Change Management & Troubleshooting. Provide security support for SAP systems, investigating access issues, troubleshooting authorization errors, and ensuring proper resolution. Collaboration & Stakeholder Communication. Documentation & Reporting as part of Standard & Customized Enhancement Activities. Configure and maintain SAP Governance, Risk, and Compliance (GRC) tools to manage security roles, risk management, and audit compliance. Ensure the accuracy and completeness of all Security-related documentation including policies, procedures, and guidelines. Collaborate with functional and technical teams to understand security aspects of SAP modules and integration points to ensure that security measures align with business needs. Communicate effectively with business and IT teams regarding security concerns, risks, and mitigation strategies. Document security configurations, processes, and controls for audit and compliance purposes. Provide regular reports on security activities, user access reviews, SoD reviews assessments. Skills & Qualifications: Experience: Minimum of 5-8 years of hands-on experience in SAP Basis administration. Technical Expertise: In-depth knowledge of SAP NetWeaver, SAP ECC, S/4HANA, and other SAP modules. Proficiency in SAP User Admin, Role Admin, Troubleshooting, . Experience with performance tuning, troubleshooting, and system optimization. Certifications: SAP Security Certification (or equivalent) is a plus SAP GRC Certification (or equivalent) is a plus. Tools & Technologies: Familiarity with monitoring tools (e.g., SAP Solution Manager / ChaRM, ITIL, etc.) is a plus. Communication & Teamwork: Strong communication and interpersonal skills. Ability to work independently as well as collaborate effectively with cross-functional teams. Preferred Qualifications: Experience with SAP Cloud Platform or HANA Cloud is a plus. Knowledge of SAP S/4HANA migration and cloud solutions. Why Join Us? [Company Name] offers a collaborative and inclusive work environment. Opportunities for growth and development in the SAP ecosystem. Competitive salary and benefits package.

Job : We are looking for a skilled Network Firewalls and Load Balancer Engineer with 3 + years experience. The ideal candidate will have extensive experience in managing and securing network infrastructure, with a focus on firewalls and load balancing technologies. Responsibilities: Design, implement, and manage firewall and load balancing solutions to ensure network security and optimal performance. Monitor network traffic and performance, identifying and mitigating potential threats and bottlenecks. Configure and maintain firewalls, including rule sets, VPNs, and security policies. Implement and manage load balancing solutions to distribute network traffic efficiently. Conduct regular security audits and vulnerability assessments, implementing corrective actions as needed. Collaborate with network engineers and other IT staff to develop and maintain network security protocols. Provide technical support and troubleshooting for firewall and load balancing issues. Stay updated with the latest security trends, technologies, and best practices. Document network configurations, changes, and incident response activities. Requirements: Bachelors degree in Computer Science, Information Technology, or a related field. Relevant certifications (e.g., CCNA, CCNP, CISSP, F5 Certified BIG-IP Administrator). Proven experience in network security, firewall management, and load balancing. Strong knowledge of network protocols, firewall technologies, VPNs, IDS/IPS, and load balancing solutions (e.g., F5, Citrix ADC). Excellent problem-solving and analytical skills. Ability to work independently and as part of a team. Join the Cloud4c Talent Community If youre looking for a place that elevates creativity with humanity, work that is as innovative as it is fun, and people who lead with both head and heart, youve found it and our doors are open for you. Click to register with our Talent Community. Well keep your information and reach out to you when we post opportunities in the future that might be a fit. Sign Up

Job : We are looking for a skilled Network Firewalls and Load Balancer Engineer with 7 + years experience. The ideal candidate will have extensive experience in managing and securing network infrastructure, with a focus on firewalls and load balancing technologies. Responsibilities: Design, implement, and manage firewall and load balancing solutions to ensure network security and optimal performance. Monitor network traffic and performance, identifying and mitigating potential threats and bottlenecks. Configure and maintain firewalls, including rule sets, VPNs, and security policies. Implement and manage load balancing solutions to distribute network traffic efficiently. Conduct regular security audits and vulnerability assessments, implementing corrective actions as needed. Collaborate with network engineers and other IT staff to develop and maintain network security protocols. Provide technical support and troubleshooting for firewall and load balancing issues. Stay updated with the latest security trends, technologies, and best practices. Document network configurations, changes, and incident response activities. Requirements: Bachelors degree in Computer Science, Information Technology, or a related field. Relevant certifications (e.g., CCNA, CCNP, CISSP, F5 Certified BIG-IP Administrator). Proven experience in network security, firewall management, and load balancing. Strong knowledge of network protocols, firewall technologies, VPNs, IDS/IPS, and load balancing solutions (e.g., F5, Citrix ADC). Excellent problem-solving and analytical skills. Ability to work independently and as part of a team. Join the Cloud4c Talent Community If youre looking for a place that elevates creativity with humanity, work that is as innovative as it is fun, and people who lead with both head and heart, youve found it and our doors are open for you. Click to register with our Talent Community. Well keep your information and reach out to you when we post opportunities in the future that might be a fit. Sign Up

Location: Hyderabad Mode: Work From Office (WFO) Experience: 7-10 years Responsibilities AWS Expertise AWS Infrastructure: Design and manage AWS infrastructure using Infrastructure as Code (IAC) tools such as Terraform or AWS Cloud Formation. Cloud Services: Implement and optimize AWS services, ensuring high availability, scalability, and security. Networking: Develop and manage networking architecture within AWS, including VPCs, subnets, and security groups. CI/CD Pipeline CI/CD Implementation: Build and maintain robust CI/CD pipelines for automated software delivery and deployment. Containerization: Containerize applications using Docker and orchestrate with tools like Kubernetes. Monitoring and Automation: Implement monitoring solutions and automation to ensure system performance and reliability. Security and Compliance Security Best Practices: Enforce security best practices and compliance standards within AWS environments. Security Audits: Conduct security audits and vulnerability assessments to proactively address potential risks. Collaboration and Documentation Team Collaboration: Collaborate with cross-functional teams, including developers and system administrators, to streamline development and operations processes. Documentation: Maintain comprehensive documentation of DevOps processes, configurations, and architecture. Requirements and Technical Skills Bachelors degree in Computer Science, Information Technology, or a related field (Masters preferred). 7+ years of professional experience in DevOps, with a strong focus on AWS. Expertise in AWS services and solutions, including EC2, S3, RDS, and VPC. Proficiency in Infrastructure as Code (IAC) tools like Terraform or AWS CloudFormation. Strong knowledge of containerization technologies (Docker, Kubernetes). Experience with CI/CD tools such as Jenkins, Travis CI, or GitLab CI/CD. Networking and security architecture experience within AWS. Familiarity with monitoring tools (e.g., Prometheus, Grafana) and automation frameworks. Excellent problem-solving and troubleshooting skills. Strong communication and interpersonal skills.

To manage, maintain, and optimize relational MySQL and/or NoSQL database systems. The ideal candidate will be responsible for ensuring database performance, availability, scalability, and security across development, testing, production environment

Roles & Responsibilities:Container Operations Management: Oversee the daily operations of containerized workloads in private cloud environments. Ensure high availability, scalability, and performance of Kubernetes/OpenShift clusters. Handle incidents, troubleshoot issues, and ensure timely resolution of cluster-related problems. Provide technical support and guidance to teams using container services. Document processes, configurations, and troubleshooting steps for future reference. Cluster Administration: Manage Kubernetes and OpenShift clusters, including upgrades, patches, and configuration. Set up and maintain cluster monitoring, logging, and alerting systems. Implement and enforce security policies for containers and clusters. Conduct vulnerability assessments and apply necessary patches to the containerized environment. Maintain compliance with organizational and industry standards. Automation and Optimization: Automate repetitive tasks related to cluster management using tools like Ansible, Terraform, or scripting languages (e. g. , Python, Bash). Optimize resource utilization within clusters to improve cost efficiency and performance. Required skills: 3 to 5 years of hands-on experience in administering Kubernetes/OpenShift environments. Strong knowledge of Kubernetes architecture, concepts, and tools like kubectl, Helm, and Kustomize. Experience with OpenShift administration, including cluster setup, scaling, and management. Proficiency in Linux system administration, shell scripting, and networking concepts Strong problem-solving and troubleshooting skills in containerized environments, with a solid understanding of security best practices in Kubernetes/OpenShift Experience with private cloud platforms like OpenStack Kubernetes (e. g. , CKA) or OpenShift certifications are considered an advantage