296 Vulnerability Jobs - Page 7

Job Description WNS is hiring CAT Modeling professionals for a global reinsurance client across below mentioned skill-mix. Kindly refer to the job description mentioned against the desired skill-mix. 1. Portfolio Modeling (3+ years experience in end-to-end portfolio rollups) 2. Regulatory Reporting (4+ years experience in EDM/RDM/SCHEMA) 3. Model Validation (4+ years experience in Model Validation with tools like RMS/AIR) 4. Technical Solution (3+ years experience in SQL Query writing for CAT Modeling function) JOB DESCRIPTIONS: 1. Portfolio Modeling Good understanding Cat Modeling process and workflows Run vendor catastrophe modeling platforms (primarily RMS, AIR, Elements) for insureds and perform portfolio risk analyses. Working knowledge of RMS model scope across worldwide peril-regions regarding sub-perils, amplification, etc. along with basic understanding of cat-modelling four-box principle concerning exposure, hazard, vulnerability modules and translation of insurance and (re)insurance financial terms through coding in RMS and SQL. Assist clients in the understanding of catastrophe risk of individual insured through analytics based on catastrophe model results. Provide analytical support to catastrophe modeling team operations by sharing knowledge and information Develop processes and scripts for process improvements Provide timely and frequent feedback to team members. Preparing MIS reports Training and mentoring of team members inducted in the pricing process. Assisting in monthly post bind and portfolio rollup activities. Ensure all SLAs are met Communication with onshore SPOCs at regular intervals. 2. Regulatory Reporting Role and Responsibilities Good understanding Cat Modeling process and workflows. Run vendor catastrophe modeling platforms (primarily RMS, AIR, Elements) including accumulation analysis for reporting needs, whenever required Thorough knowledge of RMS EDM-RDM schema Ability to understand the requirements of regulatory submissions and further deliver them accordingly Understanding of RDS scenarios of Lloyds including Non-Modelled scenarios as well Working knowledge regulatory reports like LCM, RDS Scenarios, Terror Accumulations & reporting. Working knowledge of any other regulatory reports. Working knowledge of RMS model scope across worldwide peril-regions regarding sub-perils, amplification, etc. along with basic understanding of cat-modelling four-box principle concerning exposure, hazard, vulnerability modules and translation of insurance and (re)insurance financial terms. Provide analytical support to catastrophe modeling team operations by sharing knowledge and information Develop processes and scripts for process improvements Assisting in portfolio rollup activities. Ensure all SLAs are met Communication with onshore SPOCs at regular intervals. 3. Model Validation: : Perform model validation and provide recommendations on model use and/or required adjustments. Work with internal teams and external data providers on analysis, utilising available data including scientific information, claims and insured exposure Contribute to and lead Group projects as required, liaising with other teams globally. Produce customised reports on exposure and modelled results. Evaluate re/insurance pricing for individual accounts and product classes. Analyse catastrophe reinsurance structures and strategies to support reinsurance placements. Assist with the analysis of real time events and identify learnings from post-event reviews. Strong analytical and numerical ability, in order to interrogate large datasets Experience of working with re/insurance catastrophe data and/or catastrophe modelling software Excellent written and verbal communication skills, and the ability to explain technical concepts clearly Intermediate/Advanced Excel skills Pro-active attitude to identifying inefficient processes and developing improvements Desirable Requirements Knowledge of commercial insurance and/or the catastrophe modelling industry Sound working knowledge of RMS/AIR and any other vendor modelling platforms Coding experience in a relevant language (e.g. SQL, VBA, R, C#) Experience in using mapping software (e.g. GIS) 4. Technical Solution (SQL query): Catastrophe Modelling Analyst in the Accumulation Management department, working with the Technical Solutions team The Technical Solutions team is focused on developing customized in-house tools and databases for the Accumulation Management team, to streamline processes and organize data in an efficient manner Technical role with large potential for growth in responsibilities Develop an understanding of existing Catastrophe Modelling processes, licensed software, and the various in-house tools used to automate processes Maintain existing Accumulation Management tools. Debug errors in the code when users experience issues Assist users with technical questions. Explain how tools work and deliver training sessions when required Test new functionality prior to launch to ensure that tools are working as intended Support team to design and develop new tools to automate processes. Update user guides when needed Work with colleagues around the globe on ad-hoc projects Qualifications Bachelor s Degree in Mathematics/ Applied Mathematics/ Statistics/ Operations Research/ Actuarial Science

Description Join us as we pursue our ground-breaking vision to make machine data accessible, usable, and valuable to everyone. We are a company filled with people who are passionate about our product and seek to deliver the best experience for our customers. At Splunk, we are committed to our work, customers, having fun, and most significantly to each other s success. The Splunk Observability Cloud provides full-fidelity monitoring and fixing across infrastructure, applications, and user interfaces, in real-time and at any scale, to help our customers keep their services reliable, innovate faster, and deliver great customer experiences. Infrastructure Software Engineers at Splunk are cloud-native systems engineers who use infrastructure-as-code, microservices, automation, and efficient design to build, operate, and scale our products. Role You will help us run one of the largest and most sophisticated cloud-scale, big data, and microservices platforms in the world. You will be responsible to maintain and provision the base infrastructure that runs Splunk Observability Cloud , including cloud compute platforms, managed services, Kubernetes, and required tooling. You will be a key part of the team that strives to offer a fully automated and self-serve, secure, performant, compliant, and cost-efficient Platform-as-a-Service that follows cloud-native best practices and empowers product teams to easily and quickly deploy and operate workloads. You are passionate about automation, infrastructure-as-code, microservices, and getting rid of tedious, manual tasks. You will: Design new services, tools, and monitoring to be implemented by the entire team. Analyze the tradeoffs of the proposed design and make recommendations based on these tradeoffs. Mentor new engineers to achieve more than they thought possible. You enjoy making other teams successful and are fulfilled through the success of others. You will work on infrastructure projects, including: Adopting new cloud-native frameworks and services Automating cloud provider infrastructure via Terraform, Kubernetes, and Helm Developing code for tools and automation to reduce manual tasks and reduce human error Establishing and documenting run books and guidelines for using the multi-cloud infrastructure and microservices platform. Improve the resiliency of multi-cloud microservices platform Networking, routing, and load balancing Security vulnerability remediation and patching automation Automating deployment of our services in new provider zones/regions Designing and productionizing access tiers to provide appropriate permissions across roles Qualifications Must-Have: 5+ years of solid hands-on cloud infrastructure experience on public cloud platforms specifically AWS or GCP. 3+ years of strong hands-on experience deploying, managing, and monitoring large-scale Kubernetes clusters in the public cloud Experience with Infrastructure-as-Code using Terraform and/or Helm. Experience with infrastructure automation and scripting using Python and/or bash scripting. Knowledge of microservices fundamentals including Service Mesh using Istio, service discovery, deployment strategies, monitoring, scheduling, and load balancing Excellent problem-solving, triaging, and debugging skills in large-scale distributed systems Preferred: AWS Solutions Architect certification preferred. CKA and HashiCorp-certified Terraform Associate certifications preferred Experience with Infrastructure-as-Code using Terraform, CloudFormation, Google Deployment Manager, Packer, Pulumi, ARM, etc. Experience with developing infrastructure or platform services using GoLang or Python. Experience with CI/CD frameworks and Pipeline-as-Code such as Jenkins, Spinnaker, Gitlab, Argo, Artifactory, etc. Exposure to monitoring tools such as Splunk, Prometheus, Grafana, ELK stack, etc. in order to build observability for large-scale microservice deployments. Proven skills to effectively work across teams and functions to influence the design, operations, and deployment of highly available software. Bachelors/Masters in Computer Science, Engineering, or related technical field, or equivalent practical experience. We value diversity, equity, and inclusion at Splunk and are an equal employment opportunity employer. Qualified applicants receive consideration for employment without regard to race, religion, color, national origin, ancestry, sex, gender, gender identity, gender expression, sexual orientation, marital status, age, physical or mental disability or medical condition, genetic information, veteran status, or any other consideration made unlawful by federal, state, or local laws. We consider qualified applicants with criminal histories, consistent with legal requirements. Note: Thank you for your interest in Splunk!

Job Description: Responsibilities : Perform deployments to Kubernetes and maintain/troubleshoot deployment scripts. Perform scanning and vulnerability fixes to docker images. Setup and maintain CICD pipelines in Jenkins and GitLab (GitOps). Setup and manage Confluent Kafka cluster and monitor its performance & distribution. Configure and manage RBAC and Multi-tenancy Manage all Kafka configurations via Ansible Manage CICD tools like Jenkins/GitLab/Nexus. Manage platform configurations via Ansible. Use monitoring tools like Elasticsearch/Kibana, Grafana, Splunk. Coordinate with different development teams and perform release management. Lead the Go-Live activities to deploy the solution successfully Provide hands-on expertise for build and release engineering processes and procedures Document, maintain and present best practice strategies to ensure near-term changes are aligned with long-term release objectives Ensure established code branching standards and procedures are followed Work closely with the technical and QA team to understand the system s functional and non-functional requirements and plan release deliverables Collaborate with infrastructure and other backend teams on software upgrades, disaster recovery and other efforts. Qualifications: Bachelor s degree in computer science or related field Minimum of 4-6 years of experience as release engineer with 2 years maintain/troubleshoot deployment scripts using Kubernetes. Experience in using Kafka with at least 6-12 months in administration i. e. , cluster management and client integration Experience working with Kubernetes deployments and various deployment strategies Experience working in CICD pipelines in Jenkins and GitLab (GitOps). Knowledge in ELK and Beats configurations. Excellent written and oral communication skills Strong understanding of the software development cycle Manage CICD tools like Jenkins/GitLab/Nexus. Coordinate with different development teams and perform release management. Lead the Go-Live activities to deploy the solution successfully Provide hands-on expertise for build and release engineering processes and procedures Document, maintain and present best practice strategies to ensure near-term changes are aligned with long-term release objectives Self-motivated, team player, action-and-results oriented with the ability to successfully deliver under tight project deadlines. Recruitment fraud is a scheme in which fictitious job opportunities are offered to job seekers typically through online services, such as false websites, or through unsolicited emails claiming to be from the company. These emails may request recipients to provide personal information or to make payments as part of their illegitimate recruiting process. DXC does not make offers of employment via social media networks and DXC never asks for any money or payments from applicants at any point in the recruitment process, nor ask a job seeker to purchase IT or other equipment on our behalf. More information on employment scams is available here .

As a Security Analyst , you will be a key member of our Global Cybersecurity Team, helping to strengthen Copeland s cybersecurity posture. This role involves monitoring tools and dashboards, identifying and mitigating security vulnerabilities, and collaborating with teams to address risks effectively. You will also contribute to continuously improving our vulnerability management processes and play an active role in ensuring our IT systems remain secure. Key Responsibilities: Monitor security tools and dashboards to identify vulnerabilities, assess risks, and propose compensating controls to reduce threats. Communicate findings to appropriate teams and track vulnerabilities through resolution. Create detailed vulnerability reports for technical teams and summary reports for management. Collaborate with IT and development teams to prioritize and remediate vulnerabilities. Maintain an up-to-date database of vulnerabilities, including their status and remediation progress. Contribute to the development and improvement of vulnerability management processes and tools. Duties and Responsibilities: Support product security programs, projects, and initiatives to align with organizational security objectives. Lead small to medium-scale security initiatives, ensuring timely and successful execution. Collaborate with business units and engineering teams to implement security policies, establish sustainable processes, and enhance compliance while reducing risk. Identify and address gaps within the cybersecurity program, applying your expertise to strengthen the organization s security posture. Conduct security scans, validate vulnerabilities through penetration testing, and retest fixes to ensure effectiveness. Recommend and participate in initiatives to prevent repeated vulnerability findings. Provide support for cybersecurity projects, technical discussions, and collaborative meetings. Respond to and assist in resolving outputs from security tools and engagement activities. Qualifications Bachelor s degree in Engineering, Computer Science, or related discipline 3+ years of experience in vulnerability assessment, penetration testing, or cybersecurity. Hands-on experience with vulnerability scanning tools and remediation processes. Knowledge of networking, operating systems (Windows, Linux), and application security. Some experience with programming or scripting and familiarity with DevSecOps practices. Experience with vulnerability frameworks (NIST, CVSS, etc.) Proficient in MS Office (Word, Excel, PowerPoint, etc.) Strong communication skills, with the ability to deliver clear oral, written, and visual presentations. Strong organizational skills, with the ability to plan, prioritize, and align tasks effectively. Customer-focused mindset with a strong eagerness to learn and grow. SANS GIAC, Network+, Security+ or other industry certifications preferred Key Competencies Customer Focus, Tech Savvy, Action Oriented, Collaborates, Communicates Effectively, Instills Trust, Being Resilient

Years of experience: 3 - 6 Years Job Location - Pune Your background: 3-6 years of experience in driving Vulnerability management lifecycle across enterprise. Hands on expertise in scanning/reporting/analysis with respect to different type of OS. Identify potential gap and reactivity within the vulnerability management tool. Deep understating in Vulnerability detection, False positive analysis and Threat mitigation. Excellent communication and reporting experience to management. 3-6 Years of hands-on technical expertise in any VM tool (Qualys/Rapid 7 etc.) Deep understanding in cloud infrastructure for Vulnerability management program. Expertise : Technical expertise on Vulnerability management tool, including each of VM lifecycle - risk /threat assessment, remediation governance, execution, reporting of cyber risks and vulnerabilities etc. 2-5 years of hands-on experience in installation of VM tool/Agent/scanner deployment in on-prem/cloud environment. Logic building for representing Vulnerability use case to represent/automate reporting/dashboard. Hands on working experience in automation in each of VM lifecycle. Setting up authentication record/API integration for scanning/reporting with VM tool. Execution of Vulnerability scanning - Integrating multiple flavors of OS into VM tool, creating scanning/reporting/dashboard profile for different unit. Hands on work on creating custom dashboard using script/query for scanning/reporting etc. Work on technical expertise in any VM tool (Qualys/Nessus etc.) and willing to showcase verity of dashboard/use case to show case vulnerability data point. Hands on experience in scanning/integrating cloud environment with different module/cloud component etc. Hands on experience in creating compliance template across multiple flavors OS Ex - CIS. Minimum 4 years of expertise in troubleshooting scanning/authentication deployment issue. Knowledge in CVSS scoring, Vulnerability severity and criticality. Also understand the right metrics to measure the overall VM coverage/KPI and remediation scoring. Advance knowledge in working on MS excel (VLOOKUP/formula) and power point etc. Prepare detailed cyber security vulnerability metrics and reports for all Network Devices/Servers/Workstations etc. Preferred Bachelor s degree in information security, Computer Science or equivalent Knowledgeable and experienced in: 3+ years Qualys 2+ years Automation skills JIRA Service Desk Confluence

L2 Security SOC Analyst - Job Description Working in L2 SOC team operates the security monitoring solutions, reacting timely to security events as identified. The role requires working in shift schedule after the initial ramp up period. Provide Incident Response (IR) support when analysis confirms actionable incident. Responsibilities: The primary responsibility is to identify, secure, and weed out the threats as front-line defense personnel. They are alert and aggressive to filter out suspicious activity and mitigate risks before any incident occur. When an incident occurs, SOC analysts are the first to counter the attacks and make required attempts to defend. Report cyber threats and then implement changes to protect an organization. Monitoring and analysis of cyber security events with the use of Splunk SIEM tool. Provide analysis and trending of security log data from many heterogeneous IT security devices Provide threat and vulnerability analysis as well as security advisory services Analyse and respond to previously undisclosed software and hardware vulnerabilities Investigate, document, and report on information security issues and emerging trends Integrate and share information with other analysts and other teams Assist Entry-Level SOC analysts to help them build stronger skills Review SOC Analyst ticket queue, review tickets, closure or reassignment as needed Create/review/modify documentation as needed, to include any process or procedure and thus ensure it s up to date and standard Maintenance and responsibility of the mailbox - put in outage tickets, ensure there are no emails to triage or vulnerability manager s to call back on Provide analytical feedback on client network traffic patterns. Provide analytical feedback related to malware and other network threats. Understand information security policies and best practices in client environments. Provide technical support within the Security Incident and Event Management team to assist in the investigation and remediation of security incidents. Escalate incident remediation changes with other business units, vendors and customers, adhering to a predefined ITIL change management framework. This will include liaising with the Service Delivery teams and L3 engineers. Where necessary, liaise and work with Professional Services Engineers and Solutions Architects around incident investigation and reporting. Maintain detailed knowledge of the clients environment(s), where applicable, by maintaining and updating relevant documentation such as Network Diagrams, Change management calendar updates/closures Monthly SOC Reports SOC White Board daily/weekly updates Conduct security assessments regularly to identify vulnerabilities and performing risk analysis. Document incidents to contribute to incident response and disaster recovery plans. In the case of third-party vendors, verify their security strength and collaborate with them. Analysis of phishing emails reported by internal end users. Qualifications B.E/BTech/B.SC with minimum 2-5 year experience required in SOC preferably in Splunk tool. Preferable Certification: CEH

We are seeking an experienced PL/SQL Developer with strong expertise in Oracle and Azure SQL Server . The ideal candidate should have a deep understanding of database development, performance tuning, and scripting while being familiar with DevOps and Agile methodologies . This role involves designing, developing, and optimizing database solutions, troubleshooting issues, and ensuring database security and compliance. PL/SQL Development & Optimization: Design, develop, and optimize PL/SQL scripts, stored procedures, functions, triggers, and packages . Perform SQL query optimization and database performance tuning . Develop automation scripts using Shell Scripting and PL/SQL for database maintenance and management. Database Administration & Maintenance: Support Oracle and Azure SQL Server environments. Assist in installation, upgrades, migrations (Oracle to Azure SQL Server), patching, and backup/restore procedures. Work closely with DBAs to ensure efficient database operations. Incident & Service Request Management: Troubleshoot and resolve database-related issues in a timely manner. Support application teams by executing service requests for database operations. Ensure clear communication and documentation during issue resolution and deployments. Security & Compliance: Implement and maintain Azure and database security standards . Perform vulnerability remediation based on security reports related to Oracle OS. Ensure compliance with best practices for data security and access control . Collaboration & Monitoring: Work closely with application teams, DBAs, and external vendors (e.g., Microsoft Azure Support) to resolve issues. Set up and monitor database alerts, logging, and performance tracking . Participate in release management by collaborating on change requests (CHG records) and ensuring seamless deployments. Required Skills & Experience: 4-6 years of experience as a PL/SQL Developer . Strong expertise in PL/SQL, SQL, and Shell Scripting . Experience with Oracle and Azure SQL Server database development. Hands-on experience in query tuning, performance optimization, and troubleshooting . Familiarity with DevOps and Agile culture in database development. Excellent problem-solving skills and ability to work in a collaborative environment. Preferred Qualifications: Certifications in Oracle PL/SQL, Azure SQL, or Database Administration is an added Advantage Experience in cloud-based database solutions and migration projects.

Some careers shine brighter than others. If you re looking for a career that will help you stand out, join HSBC and fulfil your potential. Whether you want a career that could take you to the top, or simply take you in an exciting new direction, HSBC offers opportunities, support and rewards that will take you further. HSBC is one of the largest banking and financial services organisations in the world, with operations in 64 countries and territories. We aim to be where the growth is, enabling businesses to thrive and economies to prosper, and, ultimately, helping people to fulfil their hopes and realise their ambitions. We are currently seeking an experienced professional to join our team in the role of a Senior Software Engineer In this role, you will: This role involves end to end setup of Continuous Integration and Continuous Development project pipeline for all components/services involve in this project. Hands on experience on Containerization Tool, DevOps Technology, Cloud Infrastructure, Google Cloud (GCP), Amazon Web Services (AWS) administration and troubleshooting. Strong experience in Cloud Technology, Kubernetes and DevOps administration, Troubleshooting and Migrations. Continuously updating and maintaining these pipelines with HSBC recommended security vulnerability tools. Responsible for troubleshooting of the Build and Deployment issues Requirements To be successful in this role, you should meet the following requirements: Deep Understanding in IT Infrastructure management Platform Google Cloud And AWS. Skilled in implementation, configuration, securing, performance & load balancing, system administration, software deployment, and support of the scalable cloud environment. Patch Management, Vulnerabilities, securities, path deployment. Good Understanding in Google Cloud, AWS, DevOps, Docker, Kubernetes, Helm, CI/CD Pipeline, GIT and Jenkins. Ability to work independently and take accountability of activities of a project from initiation through to delivery Defining best practice standards and formats of analysis artefacts for use across the team Good to have knowledge in Investment Banking domain Positive can do attitude: delivery and results focused Ability to plan and organise workload, taking into account relative and conflicting priorities, seeking win/win solutions where possible Ability to work accurately under pressure to tight deadlines

Job Description Department : Research Development Key Responsibilities: Threat Intelligence and Incident Response: Develop and maintain threat intelligence feeds, playbooks, and integrations with detection platforms (e.g., Wazuh, Elastic, Splunk). Lead incident response efforts to mitigate cyber threats and minimize business impact. Analyze threat actor behaviors and TTPs to proactively design mitigation strategies. Vulnerability Management: Implement and manage comprehensive vulnerability management programs to ensure timely identification, assessment, and remediation. Collaborate with technical teams to prioritize vulnerabilities and track remediation progress. Research and advise on the latest vulnerability trends and their potential impacts. Automation and Orchestration: Design and deploy automation solutions for threat intelligence integration and response workflows. Build scripts and tools (e.g., using Python or PowerShell) to streamline repetitive security tasks and enhance operational efficiency. Leverage orchestration tools to improve the speed and accuracy of incident handling. Data-Driven Decision-Making: Conduct data analysis to identify patterns, improve threat detection mechanisms, and generate actionable insights. Provide strategic recommendations to stakeholders based on trends and findings from intelligence data. Develop detailed reports and metrics to measure the effectiveness of security operations. Qualifications: Master s or Bachelor s degree in Cybersecurity, Computer Science, or a related field (or equivalent experience). Experience: 3 to 5 years of experience in threat intelligence, incident response, and vulnerability management. Hands-on experience in integrating intelligence into SIEM platforms like OpenSearch, Wazuh, Elastic, or Splunk. Technical Skills: Proficient in threat intelligence frameworks such as MITRE ATTCK and the Diamond Model. Expertise in automation using scripting languages like Python or PowerShell. Familiarity with vulnerability scanning tools and methodologies. Experience with orchestration tools and platforms for incident management. Knowledge of malware analysis and threat actor profiling. Preferred Certifications: Certified Threat Intelligence Analyst (CTIA), GIAC Cyber Threat Intelligence (GCTI), CEH, or other relevant certifications.

Some careers shine brighter than others. If you re looking for a career that will help you stand out, join HSBC and fulfil your potential. Whether you want a career that could take you to the top, or simply take you in an exciting new direction, HSBC offers opportunities, support and rewards that will take you further. HSBC is one of the largest banking and financial services organisations in the world, with operations in 64 countries and territories. We aim to be where the growth is, enabling businesses to thrive and economies to prosper, and, ultimately, helping people to fulfil their hopes and realise their ambitions. We are currently seeking an experienced professional to join our team in the role of Vulnerability Assessments Senior Consultant Specialist In this role, you will: Leading the review of all newly discovered vulnerabilities, to assess if the provided risk score is correctly reflecting the risk to HSBC. Monitoring external threat feeds to identify any newly reported external risks. Managing the review of assigned tickets, determining potential false positive and/ or mitigation on approaches, and providing expert guidance/ advice on remediation. Ensuring all patterns identified for remediation and/ or false positive identification, are clearly documented within the central tools and applied across the HSBC identified threat estate. Identify critical paths of operation and ensure that they are followed to provide the most streamlined and efficient method of operating. Leading and managing thematic reviews in order to drive and maintain systematic uplifts and enhancements to CSAT and wider inter-operational units that help protect the bank. Maintain operational documentation on what reports are available and how to access and utilise existing filters. Conduct holistic reviews of the overall baseline security posture. Clear accountability and ownership of the Vulnerability Assessment and Response key control indicators and key risk indicators. Contribute to and inform requests from Regulators, Internal/ External Audit, and 2LOD challenges/ Papers. Supporting the commentary for routine governance submissions e.g. Cybersecurity Executive Committee Monthly Update, Risk Map, KCIs, KRIs. Supporting Imminent threat review sessions, and deputising for the chair when required. Engaging with the Global Head of Vulnerability Management, and relevant team members to review and gain approval for submissions and ensure information requests are aligned with the group risk appetite providing the expected responses. Adhoc tasks as required, including support to CSAT operational activities, handling escalations and requests from any team or angle. Requirements To be successful in this role, you should meet the following requirements: The ability to understanding, apply, and improve elements of the Vulnerability Management Lifecycle. The ability to use multiple toolsets to convey information, obtain data, and make it meaningful to future plans. Lateral thinking and creative form to deploy expertise in the uplift of people skills, process identifications, and technological adjustments. The ability to recognise threats and risk, and act with insight to deliver a core part of the Cyber Security Operational model in HSBC. Multiple functions will come together to ensure the safety of the bank and the ability to continue business under any circumstances. Ability to produce clear and concise reports for targeted audiences across internal and external stakeholders. Understanding and experience in the practical application and execution of: Vulnerability scanning technologies and their application (e.g. Nessus, SAST/MAST/DAST (Checkmarx, Netsparker, Fortify, IBM AppScan, etc.), OWASP top10 and SANS top25 vulnerabilities and their mitigations Tenable.io, Security Center (or similar Vulnerability Scanning products), risk consolidation platforms). Vulnerability assessments, scoring and ratings and how they are applied. Patch Management. Business and architectural design, including controls analysis, process flows and data flows. Cyber security principles, global financial services business models, regional compliance regulations and laws. Cryptography, SSL/TLS, Encryption. MS Excel to interrogate large data sets. SharePoint, Microsoft Teams and Confluence. Excellent organisational, administrative, analytical, and problem-solving skills with the ability to work accurately and methodically whilst under pressure to meet deadlines. Instinctive and creative, with an ability to create and contribute to bespoke solutions. Flexible approach to shifting or competing priorities. Process orientated, outstanding organizational skills. Proven track record on delivering activities on time to a high standard. High level of integrity and strong ethical values. Pro-active, independent, collaborative team player with a positive attitude. Strong interpersonal skills with the ability to create and maintain relationships - Internal relationships extend to peers across other functions within IT and externally to HSBC global businesses, which include external relationships with vendors, typically audit, legal, and technology where the need arises. Experience of working in roles within Cyber Security Operations, Risk Management, and Governance, within a mid to large enterprise or equivalent organisation. Minimum of 8+ years experience in working in IT Security or similar role. Ability to work remotely. Personal data held by the Bank relating to employment applications will be used in accordance with our Privacy Statement, which is available on our website.

Some careers shine brighter than others. If you re looking for a career that will help you stand out, join HSBC and fulfil your potential. Whether you want a career that could take you to the top, or simply take you in an exciting new direction, HSBC offers opportunities, support and rewards that will take you further. HSBC is one of the largest banking and financial services organisations in the world, with operations in 64 countries and territories. We aim to be where the growth is, enabling businesses to thrive and economies to prosper, and, ultimately, helping people to fulfil their hopes and realise their ambitions. We are currently seeking an experienced professional to join our team in the role of Vulnerability Assessments Consultant Specialist In this role, you will: Leading the review of all newly discovered vulnerabilities, to assess if the provided risk score is correctly reflecting the risk to HSBC. Monitoring external threat feeds to identify any newly reported external risks. Managing the review of assigned tickets, determining potential false positive and/ or mitigation on approaches, and providing expert guidance/ advice on remediation. Ensuring all patterns identified for remediation and/ or false positive identification, are clearly documented within the central tools and applied across the HSBC identified threat estate. Identify critical paths of operation and ensure that they are followed to provide the most streamlined and efficient method of operating. Leading and managing thematic reviews in order to drive and maintain systematic uplifts and enhancements to CSAT and wider inter-operational units that help protect the bank. Maintain operational documentation on what reports are available and how to access and utilise existing filters. Conduct holistic reviews of the overall baseline security posture. Clear accountability and ownership of the Vulnerability Assessment and Response key control indicators and key risk indicators. Contribute to and inform requests from Regulators, Internal/ External Audit, and 2LOD challenges/ Papers. Supporting the commentary for routine governance submissions e.g. Cybersecurity Executive Committee Monthly Update, Risk Map, KCIs, KRIs. Supporting Imminent threat review sessions, and deputising for the chair when required. Engaging with the Global Head of Vulnerability Management, and relevant team members to review and gain approval for submissions and ensure information requests are aligned with the group risk appetite providing the expected responses. Adhoc tasks as required, including support to CSAT operational activities, handling escalations and requests from any team or angle. Requirements To be successful in this role, you should meet the following requirements: The ability to understanding, apply, and improve elements of the Vulnerability Management Lifecycle. The ability to use multiple toolsets to convey information, obtain data, and make it meaningful to future plans. Lateral thinking and creative form to deploy expertise in the uplift of people skills, process identifications, and technological adjustments. The ability to recognise threats and risk, and act with insight to deliver a core part of the Cyber Security Operational model in HSBC. Multiple functions will come together to ensure the safety of the bank and the ability to continue business under any circumstances. Ability to produce clear and concise reports for targeted audiences across internal and external stakeholders. Understanding and experience in the practical application and execution of: Vulnerability scanning technologies and their application (e.g. Nessus, SAST/MAST/DAST (Checkmarx, Netsparker, Fortify, IBM AppScan, etc.), OWASP top10 and SANS top25 vulnerabilities and their mitigations Tenable.io, Security Center (or similar Vulnerability Scanning products), risk consolidation platforms). Vulnerability assessments, scoring and ratings and how they are applied. Patch Management. Business and architectural design, including controls analysis, process flows and data flows. Cyber security principles, global financial services business models, regional compliance regulations and laws. Cryptography, SSL/TLS, Encryption. MS Excel to interrogate large data sets. SharePoint, Microsoft Teams and Confluence. Excellent organisational, administrative, analytical, and problem-solving skills with the ability to work accurately and methodically whilst under pressure to meet deadlines. Instinctive and creative, with an ability to create and contribute to bespoke solutions. Flexible approach to shifting or competing priorities. Process orientated, outstanding organizational skills. Proven track record on delivering activities on time to a high standard. High level of integrity and strong ethical values. Pro-active, independent, collaborative team player with a positive attitude. Strong interpersonal skills with the ability to create and maintain relationships - Internal relationships extend to peers across other functions within IT and externally to HSBC global businesses, which include external relationships with vendors, typically audit, legal, and technology where the need arises. Experience of working in roles within Cyber Security Operations, Risk Management, and Governance, within a mid to large enterprise or equivalent organisation. Minimum 4-6 Yrs experience in working in IT Security or similar role. Ability to work remotely. Personal data held by the Bank relating to employment applications will be used in accordance with our Privacy Statement, which is available on our website.

As a Release Lead in our [Workplace Place Tech Area/ Release Lead Chapter / Digital Employee Experience / Group Services] you ll play a key role in helping to provide the best Workplace experience to ANZ staff. Some of the technologies include GenAI MS CoPilot, MS TEAMS, Exchange/Email, SharePoint, OneDrive, MS M365, MS Windows 365, eSign, Voice, Jira, Confluence. This role helps convert business initiatives into cross-platform or cross-Tribe ANZ Delivery Framework (ADF) releases of new technology features or enhancements which are run as Agile Release Trains. The role also includes assisting with building the Release Lead chapter, Banking is changing and we re changing with it, giving our people great opportunities to try new things, learn and grow. Whatever your role at ANZ, you ll be building your future, while helping to build ours. Role Type: Permanent Role Location: Bangalore Work Hours: 7:00am - 4:00pm What will your day look like Work closely with the Initiative Leads and Product Owners to plan and deliver ANZ Delivery Framework (ADF) releases using tools such as JIRA and Confluence which release value incrementally to our employees and customers. Releases deliver an outcome and business value. Identify and manage dependencies between squads within and external to Digital Employee Experience. Use the ANZ Delivery Framework (ADF) to identify enablers, determine the ADF controls so that they are planned for and met. Deliver the release to scope, cost, quality and timelines. Certification/Skills: Certifications Ideally Scaled Agile Certified - e.g. SAFE or RTE Ideally Project Management Certified - e.g. PMI, PRINCE \ Essential skills Experience in planning projects which release value incrementally. Experience in identifying and managing dependencies Experience with ANZ Delivery Framework (ADF) and ensure that the ADF controls are determined and planned for. Experienced with complex platform-based technology "stacks" What will you bring To grow and be successful in this role, you will ideally bring the following: Scheduling and Analysis - Have assessed the size of work packages and influenced value creation of a release. Have developed an iterative plan inclusive of schedule, staffing and success release criteria. Have co-ordinated across a range of dependencies to balance release planning with organisational priorities. Have understood and resolved complex interdependencies. Have developed and presented complex schedule and dependency plans as well as systematic identification and analysis of user groups in order to plan and conduct release engagement interactions Technical Release Management & Implementation - Co-ordinated and/or executed one or more than moderate to complex pre-deployment activities EG: code scan, vulnerability scan and Security Penetration testing etc. Co-ordinated and/or executed moderate to complex deployment activities into production EG: Code deployment. Co-ordinated and/or executed moderate to complex post production verification activities Eg: Business Verification Testing. Co-ordinated changes. Supported the recovery of Production and/or implementation issues. Domain & Industry Knowledge & Expertise - Leveraged business acumen and technical knowledge to influence outcomes and deliver value for a release. Assisted business with complex risk profiling - identify and assess risks and controls. Continuous Improvement & Change - Ensured Technology Areas have the right tooling and schedule release model in place to ensure outcomes are delivered on time. Introduced and efficiently used tools to manage and monitor project spend against budgets and other framework delivery tools. Other skills: Soft Skills Stakeholder Management and Customer Focus - Able to work with Tribe Performance Leads, Technology Area Architects and Product Owners to develop solutions that map to release value; understanding what is foundational, what is "core" to releasing value and what is "gold-plating". Able to assess the MVP for do-ability and relevance towards strategic outcomes. Able to communicate well with various stakeholders. Influence, Negotiation and Communication - Able to facilitate collaborations between stakeholders who have diverse objectives. Able to ensure buy-in to a release approach. Encourages common planning and release design skills across Technology Areas to enable others to manage change in a complex operating environment. Able to communicate release delivery plans to stakeholders. Built strong and influential stakeholder relationships. Educational Background (if required) Ideally a bachelor in Engineering, Information Technology or Business Analysis

We are seeking a highly skilled and motivated Cyber Security Manager to oversee and lead the full spectrum of our cyber security operations. This position will be responsible for managing our Security Operations Center (SOC), Penetration Testing, Red Team Consulting, and driving sales solutions for cyber security offerings. In this leadership role, you will also be responsible for managing and mentoring a talented team of security professionals, ensuring the delivery of best-in-class cyber defense services, and aligning security initiatives with organizational goals. Key Responsibilities: Cyber Operations SOC Management Lead and manage the day-to-day operations of the Security Operations Center (SOC), ensuring the timely identification, response, and mitigation of security incidents. Oversee the continuous monitoring of security alerts, vulnerability assessments, threat intelligence feeds, and incident response procedures. Develop and optimize processes for incident detection, response, and recovery, ensuring the SOC operates at peak efficiency. Maintain an awareness of emerging threats and trends, ensuring the SOC team is prepared to respond to evolving risks. Penetration Testing Vulnerability Assessments Manage penetration testing and vulnerability assessments across client environments, including identifying, prioritizing, and mitigating potential security risks. Guide the team in performing manual and automated tests to identify vulnerabilities and advise on best practices to improve client security posture. Review and ensure the quality of technical reports and deliverables, presenting findings and actionable remediation steps to clients. Red Team Consulting Manage and oversee the Red Team consulting engagements, simulating realistic cyber-attacks to test and improve clients security defenses. Collaborate with clients to define attack scenarios, tactics, techniques, and procedures, providing expert advice on how to improve security controls. Provide post-engagement reporting and deliverables that include strategic recommendations for improving client security measures. People Management Lead, mentor, and develop a high-performing cyber security team, including SOC analysts, penetration testers, incident responders, and other specialized security professionals. Foster a collaborative and results-driven team culture focused on continual improvement and innovation. Manage the recruitment, training, and career development of team members, ensuring they remain up-to-date with the latest security trends and certifications. Sales Solutions Client Engagement Collaborate with the sales and business development teams to drive the growth of cyber security services by identifying client needs and creating tailored solutions. Provide technical expertise during client presentations, demonstrations, and sales meetings to articulate the value of security offerings. Assist in the development of proposals, contracts, and scope of work for client engagements, ensuring that proposed solutions align with client objectives and security requirements. Strategic Leadership Work closely with senior management to align security initiatives with broader organizational goals and risk management strategies. Continuously improve internal processes, methodologies, and service offerings to maintain a competitive edge in the cyber security market. Ensure the security team is compliant with relevant industry standards, regulations, and frameworks (eg, NIST, ISO, GDPR, PCI DSS). Qualifications Education: Bachelors degree in Cyber Security, Information Technology, Computer Science, or a related field (Masters preferred). Certifications: Industry-recognized certifications such as CISSP, CISM, CEH, OSCP, or equivalent are highly desirable. Experience: Minimum of 12+ years in cyber security with at least 5 years in a leadership or managerial role. Strong experience in leading and managing SOC operations, penetration testing, red teaming, and digital forensics. Proven track record in managing and mentoring security professionals and developing teams. Expertise in identifying and mitigating a wide range of security threats, including network security, application security, and cloud security. Familiarity with security tools such as SIEM, IDS/IPS, firewalls, vulnerability scanners, and endpoint protection platforms. Strong communication skills with the ability to articulate complex security issues to technical and non-technical stakeholders. Ability to work collaboratively with cross-functional teams, including sales, business development, and executive leadership. Preferred Skills: Experience with cloud security platforms (AWS, Azure, Google Cloud). Familiarity with regulatory and compliance frameworks (GDPR, HIPAA, SOC 2, etc.) Experience working in consulting environments or with external clients

Job Description: Manages and maintains cloud infrastructure (Linux) and services ensuring optimal performance, security and scalability during migration project AWS Platform operarations support AWS Resources provisioning AWS services implementation Domain joining of the VMs Identity and Access Management Monitoring configuration of AWS resources and services Tier wise Backup configuration and Restoration support AWS Migration Participation Patching and Vulnerability Remediation of AWS servers Troubleshooting of OS level and Portal level issues Configure End-point protection for AWS servers (Crowdstrike, Qualys) Configure Dynatrace Monitoring agent on servers Configure BigFix agent on servers Configuration Management File Share configuration Host Name to DNS mapping DR Configuration Recruitment fraud is a scheme in which fictitious job opportunities are offered to job seekers typically through online services, such as false websites, or through unsolicited emails claiming to be from the company. These emails may request recipients to provide personal information or to make payments as part of their illegitimate recruiting process. DXC does not make offers of employment via social media networks and DXC never asks for any money or payments from applicants at any point in the recruitment process, nor ask a job seeker to purchase IT or other equipment on our behalf. More information on employment scams is available here .

SAP Security Should have 8-10 years of experience in SAP Security involving authorization management and role design in SAP for ECC, BW Assign and review SAP roles and authorizations for users based on business requirements Monitor security logs, troubleshoot access related issues, and ensure timely resolution Perform risk assessments and vulnerability analysis of SAP systems and recommend mitigation strategies Ability to contribute or independently work on authorization concepts, in line with legal requirements, security standards etc Strong communication skills with the ability to communicate with client Provide Audit reports as per the business requirements Experience of working on Master/derived role and composite role Hands on experience to CPGRC, SAP GRC is an added advantage

We are seeking a highly skilled Senior Software Engineer to join our Core Platform team, with a focus on application security and platform development. This role combines expertise in software engineering, application security, and platform architecture to enhance our core infrastructure and ensure robust security across our systems. Key Responsibilities: Core Platform Development Abstract core components from our monorepo, creating and maintaining libraries for authentication/authorization, database utilities, and other shared functionalities. Design and implement scalable, secure, and efficient APIs and microservices. Collaborate with cross-functional teams to integrate new platform components and enhance overall architecture. Provide support and documentation for other teams to effectively utilize these resources. Application Security Lead security-focused upgrades of dependencies, including managing pip package upgrades across the platform to address vulnerabilities. Implement and maintain security best practices in all platform components and libraries. Conduct regular security audits and vulnerability assessments of the core platform. Enforce least privilege principles across service and products. Secure Development and Deployment Conduct and participate in code and design reviews to prevent vulnerabilities. Implement and maintain secure container images and perform dependency scans. Contribute to the implementation of infrastructure security measures like Service mesh. Create reusable images and scaffolding tools to support microservice applications, allowing developers to focus on configuration rather than infrastructure setup. Standardize common libraries such as logging, observability (tracing), and profiling. Collaboration and Leadership Work closely with Principal Engineers, architects, and cross-functional teams to understand their requirements and provide tailored solutions. Gather feedback from developers to continuously improve the "Developer experience." Mentor junior engineers and contribute to establishing coding standards and best practices. Qualifications: Bachelors degree in Computer Science, Software Engineering, or related field. 6+ years of experience in software engineering, with a focus on backend and platform development. Strong proficiency in languages such as Python, Java, or Go. Extensive experience with application security principles and practices. Solid understanding of microservices architecture, API design, and cloud computing platforms. Experience with containerization technologies (e.g., Docker) and orchestration tools (e.g., Kubernetes). Strong problem-solving skills and attention to detail. Preferred Qualifications: Experience with monorepo management and library development. Familiarity with authentication and authorization protocols and implementations. Knowledge of database systems and optimization techniques. Familiarity with CI/CD pipelines and DevOps practices. Experience in working with cloud platforms (e.g., AWS, Google Cloud, Azure). Familiarity with compliance requirements in the financial technology sector.

The Software Engineer II is a part of our Product and Engineering team who are at the forefront of keeping our customers safe from attacks and breaches. In this role you will be focussed on helping our customers seamlessly manage their security solutions as effectively and efficiently as possible, and ensuring our products are delivering a secure experience. You will be given the time to continue to develop your skills surrounded by a team of incredibly smart and experienced Engineers. In this role, you will: Build, maintain, and release our well architected services by writing correct and clean code consistently and following best practices and conventions Participate in the design and planning of upcoming features, our Engineers are first class stakeholders in all parts of the development process When required, partner with internal teams such as UX and Product Management who work deeply with our product to ensure we are understanding our customers needs Work towards developing a deep understand of our products in order to best support our customers Work with Practice specific technologies The skills you'll bring include: A minimum of 2 years experience in software development using Java. Experience using any of the following would be advantageous: Java Spring Boot Dependency Management Tools such as Maven Security Vulnerability Scanning such as Snyk or Trivy Testing frameworks such as JUnit Github Actions or Jenkins Cloud Infrastructure such as AWS Excited by technology, curious and eager to learn The attitude and ability to thrive in a high-growth, evolving environment Collaborative team player who has the ability to partner with others and drive toward solutions Strong creative problem solving skills Solid communicator with excellent written and verbal communications skills both within the team and cross functionally Passionate about delighting customers, puts the customer needs at the forefront of all decision making Excellent attention to detail

We are seeking a Site Reliability Engineer (SRE) with strong DevOps expertise to ensure the reliability, availability, and performance of critical systems and services. This role bridges the gap between development and operations teams by employing automation, monitoring, and best practices to enhance system scalability, reduce downtime, and improve overall operational efficiency. The SRE will focus on optimizing development pipelines, managing infrastructure, and implementing proactive monitoring and ing systems while upholding the principles of DevOps and reliability engineering . Key Responsibilities: 1. Reliability Engineering: Design, implement, and maintain high-availability systems. Create and enforce Service Level Objectives (SLOs) , Service Level Indicators (SLIs) , and Service Level Agreements (SLAs) . Conduct root cause analysis for system failures and implement post-mortem processes to prevent recurrence. 2. DevOps Automation: Automate infrastructure provisioning, deployment pipelines, and operational processes. Build and maintain CI/CD pipelines using tools like Jenkins , GitHub Actions , or GitLab CI/CD . Develop Infrastructure as Code (IaC) using tools like Terraform , CloudFormation , or Ansible . 3. Monitoring and Incident Management: Implement robust monitoring , logging , and ing solutions using tools like Datadog or Splunk . Establish proactive incident response processes and manage on-call rotations. Ensure effective documentation for incident handling and resolution. 4. Performance and Scalability: Optimize system performance through capacity planning and resource management . Enable horizontal scaling of services to handle increasing loads. Work closely with development teams to improve application resilience and performance . 5. Security and Compliance: Enforce security best practices in infrastructure and application development. Conduct vulnerability assessments and implement remediation measures. Ensure compliance with organizational and industry standards. 6. Collaboration and Culture: Act as a bridge between development and operations teams to foster a DevOps culture . Coach teams on best practices in reliability , automation , and DevOps . Advocate for a culture of ownership and continuous improvement . Key Skills and Competencies: Technical Skills: Expertise in cloud platforms like AWS , Azure , or GCP . Proficiency in Linux system administration and networking concepts . Strong programming/scripting skills (e.g., Python , Go , Bash ). Understanding of Terraform creation and management. Familiarity with containerization and orchestration tools like Docker and Kubernetes . Knowledge of database management (SQL and NoSQL).

Purpose In close collaboration with AMEA Compliance Officer: manage compliance investigations in India, Asia, Japan ANZ (the Territory ) support Legal Counsels in the Territory on deploying Syngenta Group Global Compliance Framework in the Territory and on identifying Territory/country-specific compliance risk areas that need special program/focus/resources manage Territory Ethics Champions Network in collaboration with the Global Ethics Champions Network Lead support the designing, deployment and update of Syngenta Group Global Compliance Framework so it remains relevant at Global and Regional levels support compliance investigations in other Regions/Countries as required Accountabilities Manage compliance investigations in the Territory by ensuring members of the investigation team and lead investigators are equipped to conduct the investigation and providing independent review and evaluation in support of management s accountability of addressing compliance issues/concerns so they are appropriately evaluated, investigated and resolved Support investigation teams in the Territory identifying the root-cause of compliance issues and corrective actions; elaborate Ethics Shares when appropriate to share the learnings of the case within Syngenta Group Share Region Compliance Dashboards with Territory Legal Counsels to lead 2x/year Compliance Risk Reviews with the applicable management teams With the Territory Legal Counsels define a risk-based implementation strategy of Syngenta Group Compliance Framework in the Territory and ensure delivery against the agreed agenda Support Territory Legal Counsels to, in collaboration with management teams, pro-actively identify potential areas of compliance vulnerability that may not be addressed by the Global or Regional Compliance Agenda; to develop/implement corrective action plans for resolution of systemic issues, and provide general guidance on how to avoid or deal with similar situations in the future Closely interact with other functions (incl. HR, Legal, Financial Compliance, Corporate Security) to increase the impact and visibility of Ethical Compliance and to strengthen compliance across all operations in the Territory Actively manage, facilitate, promote, engage with and contribute to the continuous improvement of the Ethics Champions Network in the Territory while contributing to the alignment and progress of the Global Network Support Legal Counsels on their accountability of deploying (or developing, as needed) compliance training and awareness campaigns as needed based on risk-assessment advising Syngenta employees and functions on issues related to compliance identifying compliance risk-mitigation Continuously share learnings and collaborate in improving Syngenta Group compliance program. Support Global Compliance Team as needed to review policies, procedures, etc. to ensure that they are in compliance both with relevant laws, regulations, etc. and the Syngenta Code of Conduct, policies, etc. Report regularly and promptly to AMEA Compliance Officer on all relevant compliance matters. As a member of the Compliance team, collaborate to think through the strategy and tools to keep the compliance program effective, simple, agile, risk-based and in line with applicable regulations across Syngenta Group Compliance Officer Experience on working on a multi-cultural environment and very diverse audience; Sound experience on leading Compliance in complex geographies and different culture & risk profile. Exposure to a myria

At Pitney Bowes, we do the right thing, the right way. As a member of our team, you can too. We have amazing people who are the driving force, the inspiration and foundation of our company. Our thriving culture can be broken down into four components: Client. Team. Win. Innovate. We actively look for prospects who: Are passionate about client success. Enjoy collaborating with others. Strive to exceed expectations. Move boldly in the quest for superior and best in market solutions. Job Description: Join Pitney Bowes as Software Engineer - VM Analyst Years of experience: 2 - 5 Years Job Location - Pune Your background: 2-5 years of experience in driving Vulnerability management lifecycle across enterprise. Hands on expertise in scanning/reporting/analysis with respect to different type of OS. Identify potential gap and reactivity within the vulnerability management tool. Deep understating in Vulnerability detection, False positive analysis and Threat mitigation. Excellent communication and reporting experience to management. 2-5 Years of hands-on technical expertise in any VM tool (Qualys/Rapid 7 etc.) Deep understanding in cloud infrastructure for Vulnerability management program. Expertise : Technical expertise on Vulnerability management tool, including each of VM lifecycle - risk /threat assessment, remediation governance, execution, reporting of cyber risks and vulnerabilities etc. 2-5 years of hands-on experience in installation of VM tool/Agent/scanner deployment in on-prem/cloud environment. Logic building for representing Vulnerability use case to represent/automate reporting/dashboard. Hands on working experience in automation in each of VM lifecycle. Setting up authentication record/API integration for scanning/reporting with VM tool. Execution of Vulnerability scanning - Integrating multiple flavors of OS into VM tool, creating scanning/reporting/dashboard profile for different unit. Hands on work on creating custom dashboard using script/query for scanning/reporting etc. Work on technical expertise in any VM tool (Qualys/Nessus etc.) and willing to showcase verity of dashboard/use case to show case vulnerability data point. Hands on experience in scanning/integrating cloud environment with different module/cloud component etc. Hands on experience in creating compliance template across multiple flavors OS Ex - CIS. Minimum 4 years of expertise in troubleshooting scanning/authentication deployment issue. Knowledge in CVSS scoring, Vulnerability severity and criticality. Also understand the right metrics to measure the overall VM coverage/KPI and remediation scoring. Advance knowledge in working on MS excel (VLOOKUP/formula) and power point etc. Prepare detailed cyber security vulnerability metrics and reports for all Network Devices/Servers/Workstations etc. Preferred Bachelor s degree in information security, Computer Science or equivalent Knowledgeable and experienced in: 3+ years Qualys 2+ years Automation skills JIRA Service Desk Confluence About Pitney Bowes Pitney Bowes (NYSE:PBI) is a global technology company providing commerce solutions that power billions of transactions. Clients around the world, including 90 percent of the Fortune 500, rely on the accuracy and precision delivered by Pitney Bowes solutions, analytics, and APIs in the areas of ecommerce fulfillment, shipping and returns; cross-border ecommerce; office mailing and shipping; presort services; and financing. For 100 years Pitney Bowes has been innovating and delivering technologies that remove the complexity of getting commerce transactions precisely right. For additional information visit Pitney Bowes at https://www.pitneybowes.com/in . Only Talent Matters at Pitney Bowes Pitney Bowes is an equal opportunity workplace. To remove unconscious biases from our hiring process, we encourage Blind Applications from candidates applying for jobs at Pitney Bowes. This means that details such as gender, caste, religion, nationality, and age are omitted from applications. And candidates can choose to reveal only their first or last name on the application. Watch the video here: https: / / www.youtube.com / watchv=dNB-K5KFU78 Watch the videos below for more information about Life at Pitney Bowes: Who we are Pitney Bowes All Stars Pitney Bowes named a Great Place to Work Pitney Bowes Gratitude Video Pitney Bowes COVID Care We will: Provide the will: opportunity to grow and develop your career Offer an inclusive environment that encourages diverse perspectives and ideas Deliver challenging and unique opportunities to contribute to the success of a transforming organization Offer comprehensive benefits globally ( P B Live Well ) Pitney Bowes is an equal opportunity employer that values diversity and inclusiveness in the workplace. All interested individuals must apply online.

At Pitney Bowes, we do the right thing, the right way. As a member of our team, you can too. We have amazing people who are the driving force, the inspiration and foundation of our company. Our thriving culture can be broken down into four components: Client. Team. Win. Innovate. We actively look for prospects who: Are passionate about client success. Enjoy collaborating with others. Strive to exceed expectations. Move boldly in the quest for superior and best in market solutions. Job Description: Join Pitney Bowes as a Software Engineer - VM Analyst Years of experience: 5+ Years Job Location - Pune Your background: 5 years of experience in driving Vulnerability management lifecycle across enterprise. Hands on expertise in scanning/reporting/analysis with respect to different type of OS. Identify potential gap and reactivity within the vulnerability management tool. Deep understating in Vulnerability detection, False positive analysis and Threat mitigation. Excellent communication and reporting experience to management. 5 Years of hands-on technical expertise in any VM tool (Qualys/Rapid 7 etc.) Deep understanding in cloud infrastructure for Vulnerability management program. Expertise : Technical expertise on Vulnerability management tool, including each of VM lifecycle - risk /threat assessment, remediation governance, execution, reporting of cyber risks and vulnerabilities etc. 5 years of hands-on experience in installation of VM tool/Agent/scanner deployment in on-prem/cloud environment. Logic building for representing Vulnerability use case to represent/automate reporting/dashboard. Hands on working experience in automation in each of VM lifecycle. Setting up authentication record/API integration for scanning/reporting with VM tool. Execution of Vulnerability scanning - Integrating multiple flavors of OS into VM tool, creating scanning/reporting/dashboard profile for different unit. Hands on work on creating custom dashboard using script/query for scanning/reporting etc. Work on technical expertise in any VM tool (Qualys/Nessus etc.) and willing to showcase verity of dashboard/use case to show case vulnerability data point. Hands on experience in scanning/integrating cloud environment with different module/cloud component etc. Hands on experience in creating compliance template across multiple flavors OS Ex - CIS. Minimum 4 years of expertise in troubleshooting scanning/authentication deployment issue. Knowledge in CVSS scoring, Vulnerability severity and criticality. Also understand the right metrics to measure the overall VM coverage/KPI and remediation scoring. Advance knowledge in working on MS excel (VLOOKUP/formula) and power point etc. Prepare detailed cyber security vulnerability metrics and reports for all Network Devices/Servers/Workstations etc. Preferred Bachelor s degree in information security, Computer Science or equivalent Knowledgeable and experienced in: 3+ years Qualys 2+ years Automation skills JIRA Service Desk Confluence About Pitney Bowes Pitney Bowes (NYSE:PBI) is a global technology company providing commerce solutions that power billions of transactions. Clients around the world, including 90 percent of the Fortune 500, rely on the accuracy and precision delivered by Pitney Bowes solutions, analytics, and APIs in the areas of ecommerce fulfillment, shipping and returns; cross-border ecommerce; office mailing and shipping; presort services; and financing. For 100 years Pitney Bowes has been innovating and delivering technologies that remove the complexity of getting commerce transactions precisely right. For additional information visit Pitney Bowes at https://www.pitneybowes.com/in . Only Talent Matters at Pitney Bowes Pitney Bowes is an equal opportunity workplace. To remove unconscious biases from our hiring process, we encourage Blind Applications from candidates applying for jobs at Pitney Bowes. This means that details such as gender, caste, religion, nationality, and age are omitted from applications. And candidates can choose to reveal only their first or last name on the application. Watch the video here: https: / / www.youtube.com / watchv=dNB-K5KFU78 Watch the videos below for more information about Life at Pitney Bowes: Who we are Pitney Bowes All Stars Pitney Bowes named a Great Place to Work Pitney Bowes Gratitude Video Pitney Bowes COVID Care We will: Provide the will: opportunity to grow and develop your career Offer an inclusive environment that encourages diverse perspectives and ideas Deliver challenging and unique opportunities to contribute to the success of a transforming organization Offer comprehensive benefits globally ( P B Live Well ) Pitney Bowes is an equal opportunity employer that values diversity and inclusiveness in the workplace. All interested individuals must apply online.

At Pitney Bowes, we do the right thing, the right way. As a member of our team, you can too. We have amazing people who are the driving force, the inspiration and foundation of our company. Our thriving culture can be broken down into four components: Client. Team. Win. Innovate. We actively look for prospects who: Are passionate about client success. Enjoy collaborating with others. Strive to exceed expectations. Move boldly in the quest for superior and best in market solutions. Job Description: Join Pitney Bowes as Advisory Software Engineer (PKI Management) Years of experience: 6+ Job Location - Pune Your background: 6-8 years of experience in managing certificate management program across enterprise. Hands on technical expertise on handling multiple CA across organization - DigiCert/PKI/GoDaddy etc. including end to end management. Hands on experience in integrating certificate management tool with different application/device etc. to automate certificate discovery. 5-6 years of hands-on experience in handling multiple phases, Ex - Integration/Issuing certificate/Tracking/Domain validation/reporting etc. Technical expertise in understanding security risk/vulnerability associated with certificate/HASH/Encryption etc. Hands on work experience in Certificate tool: AppViewX/DigiCert/MS PKI etc. Expertise: As a certificate management SME - handling the core technical operational task for the program across enterprise including multiples Certificate authorities. Hands on experience in managing/administration of AppViewX certificate management tool along with renewal/management etc. Hands on expertise on CSR generation, issuing certificate / tracking / Supporting / Domain validation etc. Experience in installing SSL certificate/revoking SSL certificate. Experience in integrating different CA in AppViewX/DigiCert portal to onboard and manage certificate. Configuring the application wise grouping/management/e-mail notification for expiration etc. within certificate management tool. 3-4 years of technical hands-on experience managing DigiCert certificate for external/internal application along with management lifecycle. Hands on experience in managing code signing certificate for different type of file system/exe. etc. Experience in working on DigiCert software trust/code signing managing certificate. Experience in DigiCert domain validation for across enterprise along with adding new domain/validation method of domain etc. Experience in DigiCert certificate ordering/installing, managing etc. Hands on experience on handling PKI certificate/issuing through internal CA. Understanding PKI root CA certificate in enterprise. Work on Vulnerability and threat management associated with certificate encryption etc. Preferred Bachelor s degree in information security, Computer Science or equivalent Knowledgeable and experienced in: 3+ years AppViewX certificate management 3+ years DigiCert Management 3+ years Automation skills JIRA Service Desk Confluence About Pitney Bowes Pitney Bowes (NYSE:PBI) is a global technology company providing commerce solutions that power billions of transactions. Clients around the world, including 90 percent of the Fortune 500, rely on the accuracy and precision delivered by Pitney Bowes solutions, analytics, and APIs in the areas of ecommerce fulfillment, shipping and returns; cross-border ecommerce; office mailing and shipping; presort services; and financing. For 100 years Pitney Bowes has been innovating and delivering technologies that remove the complexity of getting commerce transactions precisely right. For additional information visit Pitney Bowes at https://www.pitneybowes.com/in . Only Talent Matters at Pitney Bowes Pitney Bowes is an equal opportunity workplace. To remove unconscious biases from our hiring process, we encourage Blind Applications from candidates applying for jobs at Pitney Bowes. This means that details such as gender, caste, religion, nationality, and age are omitted from applications. And candidates can choose to reveal only their first or last name on the application. Watch the video here: https: / / www.youtube.com / watchv=dNB-K5KFU78 Watch the videos below for more information about Life at Pitney Bowes: Who we are Pitney Bowes All Stars Pitney Bowes named a Great Place to Work Pitney Bowes Gratitude Video Pitney Bowes COVID Care We will: Provide the will: opportunity to grow and develop your career Offer an inclusive environment that encourages diverse perspectives and ideas Deliver challenging and unique opportunities to contribute to the success of a transforming organization Offer comprehensive benefits globally ( P B Live Well ) Pitney Bowes is an equal opportunity employer that values diversity and inclusiveness in the workplace. All interested individuals must apply online.

What you get to do in this role: Design, develop, and maintain ServiceNow applications and workflows to enhance our Developer Experience platform Architect and implement innovative solutions to streamline Developer Experience processes and eliminate manual work Create and optimize ServiceNow integrations with existing tools and systems in our software delivery pipeline Conduct vulnerability assessments and implement security enhancements within the ServiceNow environment Perform root cause analysis on incidents, providing detailed documentation and actionable insights to development teams Develop and maintain comprehensive technical documentation for all custom ServiceNow implementations Proactively identify system inefficiencies and implement solutions to prevent recurring issues Collaborate with stakeholders across Engineering, Operations, Security, and Product teams to align ServiceNow capabilities with business requirements Be a mentor for colleagues and help promote knowledge-sharing Qualifications To be successful in this role you have: Experience in leveraging or critically thinking about how to integrate AI into work processes, decision-making, or problem-solving. This m

-Handling students virtually and training and developing skills to be job ready for cybersecurity space. -Provide cyber training at an intermediate level for software Engineering/Software development personnel. -Preparing Study materials for training students via a variety of training methods for improving training deliveries. -Handling student queries effectively and efficiently. -Maintain training related to MIS (attendance, feedback forms evaluation scores and certificate issued). -Conduct training sessions on cybersecurity fundamentals, ethical hacking, network security, malware analysis, and related topics. -Stay updated with the latest cybersecurity trends, threats, and best practices. -Conduct workshops and awareness sessions on cybersecurity Requirements -Bachelor\s degree in Cyber Security, Information Technology, Computer Science, or a related field. -Strong understanding of cybersecurity principles, network security, ethical hacking, firewalls, and intrusion detection systems. -Hands-on experience with security tools, penetration testing, and vulnerability assessments. -Good communication, presentation, and training skills. -Prior experience in training, mentoring, or teaching is an added advantage.

Engineering solutions as part of an Agile Team working with Architects, Managers, and Product Owners to deliver the product. Contribute to the engineering practices and standards, and when required participate in the adoption of new technologies Passion to educate and mentor others in engineering best practices and patterns, team player. Ensure that engineering processes, best practices, and continuous improvement, aligned with Agile-Scrum methodology are followed Excellent interpersonal skills, demonstrated ability to influence others, especially in sensitive or complex situations Have you got what it takes? 4+ years of software development experience Has high-attention to details and works well in a dynamic and intense environment. Experience in developing high performance, highly available and scalable enterprise-grade software products that can perform, scale, and integrate into a broad enterprise ecosystem. Experience in one of: NodeJS, Typescript, Python technology stack. Experience with Angular or Vue preferred. Good experience with public cloud infrastructures and technologies, preferably Amazon Web Services (AWS). Experience with event driven architectures and/or microservices architectures is preferred. Experience in database development with SQL and MongoDB. MongoDB experience preferred or experience in other NoSQL databases. Experience in driving quality assurance practices within engineering using a shift left mindset. Experience with Open-Source Software (OSS) technology frameworks, platforms, and tools. Experience with enterprise Secure SDLC implementation comprising of static code analysis, vulnerability and licensing scan, penetration testing, etc. You will have an advantage if you also have: Familiarity and/or experience with public cloud infrastructures and technologies such as Amazon Web Services (AWS) Knowledge of Serverless computing and/or Cloud-Native Development