21 Wiz Jobs

As a Cloud Security Analyst & Incident Response Specialist, you will be responsible for monitoring and investigating high-risk alerts from Wiz across AWS, Azure, and GCP environments. Your role will involve analyzing attack paths, exposed services, and identity risks using Wiz Security Graph. You will collaborate with DevSecOps and Cloud Platform teams to triage and contain incidents, correlating Wiz alerts with signals from SIEM, endpoint, and identity tools to understand the full attack context. Supporting incident response efforts by conducting root cause analysis and post-incident reviews will also be part of your responsibilities. Your critical skills should include a degree in Cybersecurity, Information Security, Computer Science, or equivalent practical experience. You should have 3-6 years of experience in security operations, incident response, or threat detection, ideally with a cloud focus. Familiarity with Wiz, including security graph analysis, alert triage, and custom WQL queries is required. Understanding common cloud threats and misconfigurations in AWS, Azure, and/or GCP is essential, along with experience in tools like Microsoft Sentinel, Defender for Cloud, or other SIEM/SOAR platforms. Knowledge of core security concepts such as IAM, network security, and the MITRE ATT&CK framework is crucial. In this role, you will develop or improve playbooks for automated cloud incident response and stay current on evolving threats in cloud environments, such as identity-based attacks, privilege escalation, and lateral movement. Documenting response workflows, findings, and lessons learned to support continuous improvement is also expected. You should be comfortable working in fast-paced environments with cross-functional teams, possessing strong analytical and communication skills for documenting and sharing threat insights.,

Ready to build the future with AI At Genpact, we don't just keep up with technology-we set the pace. AI and digital innovation are redefining industries, and we're leading the charge. Genpact's AI Gigafactory, our industry-first accelerator, is an example of how we're scaling advanced technology solutions to help global enterprises work smarter, grow faster, and transform at scale. From large-scale models to agentic AI, our breakthrough solutions tackle companies most complex challenges. If you thrive in a fast-moving, innovation-driven environment, love building and deploying cutting-edge AI solutions, and want to push the boundaries of what's possible, this is your moment. Genpact (NYSE: G) is an advanced technology services and solutions company that delivers lasting value for leading enterprises globally. Through our deep business knowledge, operational excellence, and cutting-edge solutions - we help companies across industries get ahead and stay ahead. Powered by curiosity, courage, and innovation, our teams implement data, technology, and AI to create tomorrow, today. Get to know us at genpact.com and on LinkedIn, X, YouTube, and Facebook. Inviting applications for the role of Principal Consultant - XSOAR_Wiz_Business Function (BF) - IT Operations We are hiring a Splunk Forwarder Engineer to manage the deployment and configuration of Splunk Universal Forwarders (UF) across distributed systems. This role ensures reliable data ingestion into Splunk indexers for operational and security analytics. Responsibilities: .Design and deploy automation workflows using Palo Alto Cortex XSOAR .Develop custom integrations and playbooks for incident response .Collaborate with SOC and threat intelligence teams to streamline operations .Maintain and optimize SOAR deployments across hybrid cloud environments .Use scripting languages (Python, PowerShell) for automation tasks .Ensure compliance with security frameworks (ISO 27001, NIST, PCI DSS) .Monitor and assess cloud environments using Wiz's CNAPP (Cloud-Native Application Protection Platform) .Identify misconfigurations, vulnerabilities, and compliance risks across AWS, Azure, and GCP .Collaborate with DevOps and security teams to implement remediation strategies .Generate reports and dashboards for executive and technical stakeholders .Stay updated on cloud security trends and threat intelligence .Monitor and assess cloud environments using Wiz's CNAPP (Cloud-Native Application Protection Platform) .Identify misconfigurations, vulnerabilities, and compliance risks across AWS, Azure, and GCP .Collaborate with DevOps and security teams to implement remediation strategies .Generate reports and dashboards for executive and technical stakeholders .Stay updated on cloud security trends and threat intelligence Qualifications we seek in you! Minimum qualifications / Skills .Good years in cybersecurity with 3+ years in XSOAR/Demisto, DevSecOps .Strong programming skills in Python or C++ .Experience with Microsoft Azure, O365 security services, and SIEM tools .Hands-on experience with Wiz or similar platforms (Prisma Cloud, Orca, Lacework) .Familiarity with Terraform, Kubernetes, and CI/CD pipelines .Strong understanding of cloud IAM, encryption, and compliance standards .Analyze and optimize business functions across IT, finance, and operations .Collaborate with stakeholders to define KPIs and performance metrics .Use BI tools (Power BI, Tableau) to visualize data and support decision-making .Document workflows and recommend automation opportunities .Support digital transformation initiatives and process reengineering .Proficiency in SQL, Excel, and BI platforms .Strong communication and stakeholder management skills .Certifications (Any): CBAP, Six Sigma, PMP (Preferred),AWS/Azure/GCP Security, CKA, CISSP, CISSP, GIAC, CCSP, Azure/AWS Security Preferred qualifications / Skills Very good written and presentation / verbal communication skills with experience of customer interfacing role. In-depth requirement understanding skills with good analytical and problem-solving ability, interpersonal efficiency, and positive attitude Why join Genpact .Lead AI-first transformation - Build and scale AI solutions that redefine industries .Make an impact - Drive change for global enterprises and solve business challenges that matter .Accelerate your career-Gain hands-on experience, world-class training, mentorship, and AI certifications to advance your skills .Grow with the best - Learn from top engineers, data scientists, and AI experts in a dynamic, fast-moving workplace .Committed to ethical AI - Work in an environment where governance, transparency, and security are at the core of everything we build .Thrive in a values-driven culture - Our courage, curiosity, and incisiveness - built on a foundation of integrity and inclusion - allow your ideas to fuel progress Come join the 140,000+ coders, tech shapers, and growth makers at Genpact and take your career in the only direction that matters: Up. Let's build tomorrow together. Genpact is an Equal Opportunity Employer and considers applicants for all positions without regard to race, color, religion or belief, sex, age, national origin, citizenship status, marital status, military/veteran status, genetic information, sexual orientation, gender identity, physical or mental disability or any other characteristic protected by applicable laws. Genpact is committed to creating a dynamic work environment that values respect and integrity, customer focus, and innovation. Furthermore, please do note that Genpact does not charge fees to process job applications and applicants are not required to pay to participate in our hiring process in any other way. Examples of such scams include purchasing a %27starter kit,%27 paying to apply, or purchasing equipment or training.

Job Title: DevSecOps Engineer AWS & Azure Location: Hyderabad (5days work from Office) Contract Duration: 6+Months and extendable About the Role We are seeking a highly skilled DevSecOps Engineer with strong expertise in AWS, Azure, and Cloud Security to collaborate with the team. This role will focus on enabling secure cloud operations, implementing guardrails, and driving automation within cloud environments. The ideal candidate will bring a balance of technical depth, security expertise, and hands-on engineering experience. Key Responsibilities Implement and manage DevSecOps practices across AWS and Azure environments. Develop and maintain Infrastructure as Code (IaC) using Terraform. Define, implement, and monitor IAM guardrails and access management best practices. Support security and compliance requirements by leveraging tools like Wiz and Remote PC. Collaborate with system administrators and security teams to enforce cloud security posture management. Monitor, analyze, and remediate vulnerabilities within cloud environments. Work closely with stakeholders to ensure smooth integration of DevSecOps processes into ecosystem. Provide technical guidance and knowledge transfer to team members. Required Skills & Experience 8+ years of experience in DevSecOps, cloud engineering, or related roles. Strong hands-on expertise with AWS and Azure cloud platforms. Proven experience with Terraform and Infrastructure as Code practices. Solid understanding of Cloud Security best practices and security controls. Experience managing systems and security in hybrid cloud environments. Strong knowledge of IAM guardrails with practical experience in implementation. Familiarity with Wiz (cloud security posture management). Experience working with Remote PC setups in enterprise environments. Excellent problem-solving, communication, and collaboration skills. Show more Show less

Missions Manage capacity management Software update of PCE and VENs Manage life cycle of the product (end of support, compatibility...) Manage safety rules for GTS flows Reporting Reviews / control of the rules implemented by the business Respond to an audit request Managing support (L1, L2, L3 requests, incidents and changes), administration and engineering of Trend Micro Deep Security solution Analysis of console alerts Error message analysis on the DSM console Activating/deactivating specific rules Profile Exp : 3 yrs to 6 yrs Ensure service quality, customer relations, service strategy, implementation of new functionalities Onboarding new applications and new customers with Start-up assistance and Validation of the adequacy of the solution Monitoring and analysis of PCE alerts on the console Monitoring VENs Ensure continuity and recovery of the IT PCE service Ensure support tasks Helping with Trouble shooting/alerts, malfunctions and support for the use of the solution/ end users Maintain documentation Manage capacity management Software update of PCE and VENs Manage life cycle of the product (end of support, compatibility...) Manage safety rules for GTS flows Reporting Reviews/control of the rules implemented by the business Respond to an audit request Managing support (L1, L2, L3 requests, incidents and changes), administration and engineering of Trend Micro Deep Security solution Analysis of console alerts Error message analysis on the DSM console Activating/deactivating specific rules Ensure production and development platforms stability and performances. Follow licenses (per server) Guaranty service availability (24/7), including monitoring, management of disaster recovery plan, infra weekends planned operations and on call. An experience on Illumios solution would be a plus. Experience on UNIX/Linux systems is mandatory.

JOB DESCRIPTION About the Role We're seeking a hands-on and detail-oriented Security and Compliance Engineer to drive security across our applications, infrastructure, and compliance programs-especially in a healthcare environment. This role combines security engineering, DevSecOps, and risk management with a strong focus on application, cloud, AI, and data security. You will work closely with engineering, DevOps, and compliance teams to embed security into the development lifecycle, support regulatory frameworks, and ensure cloud-native environments and AI technologies are secure by design. Responsibilities Conduct web and mobile application penetration testing, vulnerability scanning, and remediation support across our platforms. Integrate DevSecOps practices into CI/CD pipelines, using tools like Snyk, Terraform, and container security scanners. Implement and monitor Cloud Security Posture Management (CSPM) tools such as Wiz to secure cloud configurations and infrastructure. Partner with DevOps to enforce secure provisioning via Infrastructure as Code (IaC). Lead and support compliance initiatives (HIPAA, SOC 2, HITRUST) using platforms like Drata (Compliance-as-a-Service). Design and enhance email gateway security (e.g., Barracuda) and bot protection (e.g., WatchGuard) to defend against phishing and automated threats. Evaluate and secure chatbots and AI systems, addressing risks like prompt injection, data leakage, and model integrity. Drive data security best practices including encryption, data loss prevention (DLP), and classification strategies. Collaborate with engineering to embed security controls in product design and conduct threat modeling, secure code reviews, and architecture reviews. Participate in incident detection, response, and root cause analysis, while ensuring effective logging and monitoring are in place. Maintain security documentation and support audits and third-party assessments. Required Skills & Qualifications 4-6 years of experience in security engineering, compliance, and DevSecOps. Proficiency in web and mobile application security, including OWASP Top 10, SAST/DAST tools, and manual testing with Burp Suite, etc. Strong exposure to DevSecOps workflows, with hands-on experience using tools like Snyk, Terraform, and container security. Deep understanding of HIPAA, SOC 2, and healthcare compliance requirements. Experience with cloud security, preferably on Microsoft Azure, and familiarity with CSPM tools like Wiz. Working knowledge of Drata or similar compliance automation platforms. Exposure to email security gateways, bot protection, and threat detection tools. Familiarity with AI and chatbot security concepts and current risks in the generative AI space. Strong grasp of data security principles-encryption, access controls, data classification, and DLP. Scripting or automation skills in Python, Bash, or equivalent are a plus. Strong written and verbal communication, documentation, and collaboration skills. Nice to Have Certifications like OSCP, CEH, CCSK, CISSP, HCISPP, or similar. Familiarity with tools like KnowBe4, Intune, or Azure AD for identity and endpoint security. Understanding of Zero Trust Architecture, RBAC, and endpoint detection and response (EDR) strategies. Previous experience in a health tech, SaaS, or AI-focused organization. Why Join Us Make a real impact in securing healthcare and AI systems at scale. Collaborate in a high-ownership environment with modern tools and cloud-native practices. Work in a security-forward company that values both innovation and compliance. Flexible work environment and growth opportunities in a fast-paced tech culture.

Achieving our goals starts with supporting yours. Grow your career, access top-tier health and wellness benefits, build lasting connections with your team and our customers, and travel the world using our extensive route network. Come join us to create whats next. Lets define tomorrow, together. Description United&aposs Digital Technology team is comprised of many talented individuals all working together with cutting-edge technology to build the best airline in the history of aviation. Our team designs, develops and maintains massively scaling technology solutions brought to life with innovative architectures, data analytics, and digital solutions. Job Overview And Responsibilities United Airlines Customer Technology Platform department partners with business and technology leaders across the company to create high performing services and real time messaging applications across key airline functionalities such as Booking, Check-in, Payment, Reservation systems and Operational Systems to help support the commercial and digital Channels of United. As a software developer in the Data Enablement team, you will be responsible for the development of mission critical applications, while working with a team of developers. This individual will build high performing, real-time middleware solutions in the extremely critical domains of Baggage, Flight Operations, Reservation Management and Check-in. You will play a large role in building data caches and real time messaging applications, used by operational and commercial systems across the company. Additionally, as a developer, you will build these applications with a focus on delivering cloud-based solutions. The individual will use leading edge technologies and enterprise grade integration software on a daily basis. Collaborate with cross-functional teams including architecture, infrastructure, QA, and product management to deliver high-quality solutions on time and within scope. Participate in application deployments, system integrations, and cloud infrastructure management using AWS Cloud Services. Implement and advocate for DevOps best practices including CI/CD, infrastructure as code, automated testing, and performance monitoring. Participate in application vulnerability remediation, and secure coding practices in alignment with organizational policies. Participate in architecture and design meetings, ensuring adherence to coding standards, security guidelines, and best practices. Stay current with emerging technologies and industry trends, evaluating their potential for adoption within the organization. Develop and maintain technical documentation, system design artifacts, and operational procedures. This position is offered on local terms and conditions. Expatriate assignments and sponsorship for employment visas, even on a time-limited visa status, will not be awarded. This position is for United Airlines Business Services Pvt. Ltd - a wholly owned subsidiary of United Airlines Inc. Qualifications Whats needed to succeed (Minimum Qualifications): Minimum 5+ years of experience in AWS Cloud Services (e.g., EC2, Lambda, S3, RDS, API Gateway, CloudFormation). Experience with containerization technologies (e.g., Docker, Kubernetes) Proficiency in Java development frameworks and associated tools. Solid understanding of software engineering principles, microservices architecture, RESTful API development, and backend system design. Demonstrated experience implementing DevOps practices and managing CI/CD pipelines using tools like Jenkins, GitHub Actions, AWS Code Pipeline, or Harness. Experience with vulnerability management, secure coding practices, and familiarity with tools such as SonarQube, OWASP, or WIZ. Strong problem-solving skills, attention to detail, and ability to prioritize and manage multiple projects in a fast-paced environment. Knowledge of monitoring and logging tools (e.g., CloudWatch, Dynatrace) Provide support, can troubleshoot and remediate any issues with production applications Excellent communication and interpersonal skills. What will help you propel from the pack (Preferred Qualifications): Master&aposs degree in computer science, Information Systems Familiarity with native Cloud technologies/patterns (AWS/Azure), Docker containers and Container Orchestration platforms such as Kubernetes Airline industry experience Show more Show less

Position: Senior DevSecOps Engineer Location: Hyderabad, India. 100% onsite in Hyderabad, India from Day1. Shift timing: 1 pm IST- 11 pm IST Required Skills: AWS and Azure DevSecOps Terraform Cloud Security System mgr IAM guardrails- have a good understanding and help with implementation Wiz

As a Team Lead of the SOC Analyst Team in the Cybersecurity/Security Operations department, your primary responsibility will be to guide and support a group of security analysts in their day-to-day tasks. You will oversee daily SOC operations, ensuring that the team adheres to processes, SLAs, and quality standards. Facilitating team meetings, knowledge-sharing sessions, and performance evaluations will also be part of your role. Additionally, you will schedule and coordinate shifts to maintain 24/7 coverage and proper workload distribution. Your expertise will be crucial in overseeing the detection, triage, investigation, and response to cybersecurity incidents. Working closely with threat intelligence, IT, and engineering teams, you will collaborate to remediate threats effectively. After incidents, you will conduct root cause analysis and recommend preventive measures to enhance security posture. To excel in this role, you must have a strong understanding of security frameworks like MITRE ATT&CK and NIST. Hands-on experience with tools such as CrowdStrike, Splunk, WIZ, VirusTotal, Jira, Confluence, AWS, Azure, and GCP is essential. Proficiency in incident detection, investigation, and response is required, along with familiarity in handling various alert types including IDS/IPS alerts, EDR detections, malware and forensic investigations, phishing attempts, and cloud-related security incidents. Your communication, leadership, decision-making, analytical, and problem-solving skills will be vital in managing pressure during security incidents and multitasking in a dynamic environment. The ideal candidate should have a minimum of 5-7 years of experience in a SOC environment, with at least 1-2 years of team leadership or supervisory experience. This position requires working in rotational shifts to ensure 24/7 coverage of security operations. While certifications such as CompTIA Security+ or Google Cybersecurity Professional Training are valuable, hands-on experience and leadership abilities take precedence in this role.,

We are looking for an experienced Information Security professional with certifications like CISSP or CISA, and a strong background in leading compliance initiatives for SOC 2 Type II, ISO 27001, PCI DSS, and IOCFR. Direct experience working with RBI regulations and auditors is mandatory . The ideal candidate should have hands-on knowledge of AWS cloud security, and familiarity with tools such as GuardDuty, Wiz/Orca, Splunk, Crowdstrike, and Vanta. Experience in fast-paced sectors like FinTech, E-commerce, or Payment Solutions is a strong plus. What You&aposll Do: Governance & Compliance: Develop and maintain information security policies and drive compliance with ISO 27001, SOC 2, and RBI guidelines. Act as the primary contact for audits and inspections. Risk Management: Conduct risk assessments, manage risk registers, and oversee third-party/vendor security reviews. Security Operations: Oversee tools and processes for SIEM, DLP, EDR, patch management, and incident response. Lead security incident simulations and resolution. Cloud & App Security: Manage AWS security architecture, implement CSPM programs, and embed secure coding and DevSecOps practices across CI/CD pipelines. Business Continuity & DR: Maintain and test disaster recovery and continuity plans (RTO: 60 mins; near-zero RPO). Awareness & Culture: Run regular security training, phishing drills, and promote a security-aware culture across the organization. Reporting & Strategy: Present security metrics, dashboards, and risk reports to leadership and participate in strategic IT governance forums. What Were Looking For: 8+ years in cybersecurity or information security roles; at least 3 years in a leadership capacity. Background in fintech, NBFC, or regulated financial services preferred. Proven track record in managing audits (ISO 27001, SOC 2), incident response, and cloud security (AWS). Strong knowledge of cybersecurity tools and frameworks: AWS, SIEM, CSPM, IAM, patch management, DLP, EDR. Familiar with secure SDLC, DevSecOps, threat modeling, and regulatory compliance. Effective communicator with experience working across cross-functional teams. Certifications (preferred): CISSP, CISM, CISA, ISO 27001 Lead Auditor/Implementer, AWS Security Specialty. Bonus: DCPP, CIPP/E, or other data privacy/RBI-focused certifications. About Kissht: Kissht, a Great Place to Work certified organization, is a consumer-first credit app that is transforming the landscape of consumer credit. As one of the fastest-growing and most respected FinTech companies, Kissht is a pioneer in data and machine-based lending. With over 15 million customers, including 40% from tier 2 cities and beyond, we offer both short and long-term loans for personal consumption, business needs, and recurring expenses. Founded by Ranvir and Krishnan, alumni of IIT and IIM, and backed by renowned investors like Endiya Partners, the Brunei Investment Authority, and the Singapore Government, Kissht is synonymous with excellence in the industry. Join us and be a part of a dynamic, innovative company that is changing the future of financial technology. Show more Show less

Entity: Technology Job Family Group: IT&S Group Job Description: Our purpose is to deliver energy to the world, today and tomorrow. For over 100 years, bp has focused on discovering, developing, and producing oil and gas in the nations where we operate. We are one of the few companies globally that can provide governments and customers with an integrated energy offering. Delivering our strategy sustainably is fundamental to achieving our ambition to be a net zero company by 2050 or sooner! In this role, you will be part of bps Technology Function and be responsible for hands on running of IT services in the Payroll, Reward and Time portfolios. You will manage industry-leading products such as ADP Payroll (Global View and others) as well as a bp-developed Microsoft Azure-based set of Reward offerings. You will lead a Dev/Ops Squad which will drive and enable the solutions underpinning BPs employee resourcing, employee growth, and learning-related services. You will have the opportunity to work within a modern IT methodology using sprints to deliver user stories; you will build upon your Payroll/Reward/Time product knowledge and gain significant experience in optimizing delivery using modern AI-powered products; and you will lead new custom developments on the .net platform. Included in the role responsibilities/deliverables are the following: strategic and operational leadership across a diverse portfolio of over 60 solutions, with a strong emphasis on meeting bp business needs, digital security compliance, integration enablement, and commercial optimisation. This role is pivotal in ensuring that bps People & Culture (Human Resources) digital assets are secure, scalable, and delivering measurable value. Key Accountabilities Lead a cross-disciplinary squad, working closely with other product experts, integration engineers, data managers, business partners and HR professionals Payroll operational expertise is not required. However, you will perform hands-on connectivity and integration-related support for bp Payroll and Time Tracking solutions Gather user stories/requirements in the Reward domain, document using Microsoft ADO, and design, build and test solutions run on Microsoft Azure using the .net framework Continuously and proactively working on simplification, standardization and optimization of existing processes and solutions Imbed good Digital Security and Data Privacy practices into all deliveries and ensure secure and compliant handling of bp assets and data Continuously improve ongoing bp operations in light of emerging technologies (especially AI). Define, assess, and mitigate operational and technology risks Manage commercial agreements and drive governance of business partners and suppliers, including negotiation of contract renewals and new service requests Represent the Technology organization to bp Payroll, Reward and Time stakeholders Essential Skills And Experience At least 3 years hands-on development experience on the Microsoft .net platform e) and a passion to build expertise in the Payroll, Reward and Time domains Experience in both Development and Operations (DevOps) support areas Experience in leading multi-vendor technology squads in enhancing existing products and delivering new products Proven analytics skills and ability to glean information from data, including hands-on experience in building reports, dashboards, and metrics using tools such as SQL and Power BI Experience in managing digital security, data privacy, and regulatory compliance within a global enterprise. Strong commercial acumen with capability to drive cost optimization and supplier accountability Skills in stakeholder management, cross-functional coordination, and agile delivery Familiarity with tools such as ServiceNow, Microsoft ADO, and Wiz (Microsoft Software patching management) At bp, we provide the following environment & benefits: A company culture where we respect our diverse teams and are proud of our achievements Possibility to join social communities and networks A healthy work-life balance Chill-out and collaboration spaces in a modern office environment Learning and development opportunities to craft your career path Life & health insurance, medical care package And many others benefits Legal Disclaimer: We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, sex, gender, gender expression, sexual orientation, age, marital status, socioeconomic background, neurodiversity/neurocognitive functioning, veteran status or disability status. We will ensure that individuals with disabilities are provided with reasonable accommodation to participate in the job application or interview process, to perform crucial job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation. Travel Requirement No travel is expected with this role Relocation Assistance: This role is eligible for relocation within country Remote Type: This position is a hybrid of office/remote working Skills: Agility core practices, Agility core practices, Analytics, API and platform design, Business Analysis, Cloud Platforms, Coaching, Communication, Configuration management and release, Continuous deployment and release, Data Structures and Algorithms (Inactive), Digital Project Management, Documentation and knowledge sharing, Facilitation, Information Security, iOS and Android development, Mentoring, Metrics definition and instrumentation, NoSql data modelling, Relational Data Modelling, Risk Management, Scripting, Service operations and resiliency, Software Design and Development, Source control and code management + 4 more Legal Disclaimer: We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, sex, gender, gender expression, sexual orientation, age, marital status, socioeconomic status, neurodiversity/neurocognitive functioning, veteran status or disability status. Individuals with an accessibility need may request an adjustment/accommodation related to bps recruiting process (e.g., accessing the job application, completing required assessments, participating in telephone screenings or interviews, etc.). If you would like to request an adjustment/accommodation related to the recruitment process, please contact us. If you are selected for a position and depending upon your role, your employment may be contingent upon adherence to local policy. This may include pre-placement drug screening, medical review of physical fitness for the role, and background checks. Show more Show less

We are looking for a skilled and motivated Vulnerability Management Engineer to join our team. In this role, you will be responsible for assessing, tracking, and managing vulnerabilities in cloud and platform environments. You will play a critical role in ensuring the security posture of applications and infrastructure, using various vulnerability management tools and processes. Your responsibilities will include evaluating vulnerabilities, triaging risks, and ensuring proper remediation actions are taken to protect the organization's systems. Responsibilities: - Vulnerability Assessment: Assess the risk of CVEs (Common Vulnerabilities and Exposures) in the context of your environment and prioritize them based on risk. - Vulnerability Management Lifecycle: Triage the entire vulnerability management lifecycle, ensuring vulnerabilities are identified, tracked, and remediated in a timely manner. - Application Security & Vulnerability Management: Manage and oversee the Application Security and Vulnerability Management product, including CSPM (Cloud Security Posture Management), SAST (Static Application Security Testing), DAST (Dynamic Application Security Testing), Dependency Scans, and Secrets Scans. - Cloud Security & Container Protection: Responsible for platform vulnerability management, including Cloud Security Posture Management and Container Workload Protection using Prisma Scanner. - Change Request Analysis: Evaluate change requests for e-commerce systems, assess security implications, and provide security recommendations. - Change Tracking: Track all feature changes, bug fixes, and release changes for each platform release to ensure no vulnerabilities are introduced. - CVE Tracking: Monitor and track CVEs, ensuring timely identification, prioritization, and assessment of vulnerabilities. - Component Identification: Identify and document components and systems impacted by proposed changes and their associated vulnerabilities. - Security Assessment Planning: Develop and implement security assessment plans for changes to ensure compliance with industry standards and best practices. - Vulnerability Scanning: Conduct regular vulnerability scans of infrastructure and source code, focusing on Kubernetes containerized apps, to identify and prioritize security risks. - Documentation: Maintain detailed and accurate records of vulnerability assessments, findings, remediation actions, and reporting for compliance purposes. - Security Tools: Experience with enterprise-grade vulnerability management tools like Prisma and Wiz is a plus. Qualifications: - Solid understanding of vulnerability management life cycle and risk assessment. - Experience with vulnerability scanning tools and platforms such as Prisma/Wiz. - Familiarity with Cloud Security Posture Management (CSPM), Container Workload Protection, SAST, DAST, and Dependency Scans. - Proven experience in security assessment, vulnerability remediation, and risk management. - Strong knowledge of CVE tracking and vulnerability prioritization techniques. - Knowledge of security best practices and compliance standards. - Excellent documentation, communication, and collaboration skills. - Past experience in operating enterprise-grade security vulnerability management tools is a plus.,

DevSecOps Engineer Experience: 5 to 9 Years Budget: Up to 36 LPA Location: Hyderabad, Bangalore, Pune, Gurgaon, Chennai Notice Period: Immediate Joiners Only About the Role: Were seeking a skilled DevSecOps Engineer with a strong security mindset and hands-on experience in secure cloud deployments. This role demands practical knowledge of cloud platforms, Infrastructure as Code (IaC), CI/CD pipelines, and modern security tooling. You will be at the forefront of embedding security in every stage of the software development lifecycle. Key Skills & Responsibilities: Cloud: Experience with Azure or AWS IaC Tools: Expertise in Terraform Containerization: Working knowledge of Kubernetes CI/CD: Hands-on with any modern CI/CD tools (e.g., Jenkins, GitHub Actions, GitLab CI, etc.) Security Tools (any): WiZ, Snyk, Qualys, Mend, Checkmarx, Dependabot Secret Management: Experience with HashiCorp Vault or Akeyless DevSecOps: Strong experience in integrating security into DevOps pipelines Mandatory Requirement: Security experience is mandatory DevSecOps exposure is highly preferred

Dear candidate, Please find the JD below. Mandatory skills :: AWS , Security operations , Wiz, docker, Kubernetes Experience :: 6 to 10 years Location:: Hyd/Bangalore/pune/chennai/Jaipur/gurgoan Notice period :: immediate only JD: Cloud Security Engineer Experience Required: 58 years in cloud engineering or security operations, with at least 2 years in a security-focused cloud role Core Skills (Required) Cloud Security Expertise: Working knowledge of cloud-native security controls across AWS, Azure, or GCP (IAM, encryption, VPC/networking, storage policies). Remediation Execution: Hands-on experience triaging and remediating security misconfigurations using runbooks or platform-guided steps. Threat & Vulnerability Awareness: Familiarity with common cloud vulnerabilities, misconfig patterns, and incident tagging or classification approaches. Scripting & Automation: Ability to write or modify scripts (e.g., Python, PowerShell, Bash) to support patching, tagging, or enforcement automation. Agile Teaming: Experience working in Agile sprints, contributing to structured backlogs, standups, and retrospectives. Attention to Detail: Strong analytical and documentation skills to track remediated issues, exceptions, and patch histories. Specialized Skills (Desirable) These tools and practices are beneficial but not mandatory; on-the-job learning and support will be provided as needed: Cloud Security Posture Tools: Exposure to platforms like Wiz, Prisma Cloud, or Defender for Cloud Policy-as-Code: Basic familiarity with tools like Cloud Custodian, AWS SCPs, Azure Policy, GCP Org Policies Runbook Automation: Experience with automated remediation pipelines or trigger-based scripts Tagging & Resource Inventory: Understanding of tagging frameworks for scoping vulnerabilities and enforcing controls Security Certifications: AWS Security Specialty, Azure Security Engineer, GCP Security Engineer (optional but preferred) Thanks Vani

Are you passionate about driving innovation in security solutions and have a strong background in application security If so, we have a perfect opportunity for you! We are looking for a dynamic and experienced Product Manager to join our Enterprise TruRisk Platform PM Team at Qualys. In this role, you will be responsible for driving the strategy and execution of our Connectors to unlock value with new use cases by integrating Qualys with 3rd Party Cloud Security Solutions. To excel in this role, you should have a solid background in cloud security and a can-do attitude to help global enterprise customers seamlessly integrate their cloud security data with Qualys ecosystem. Collaboration is key in this role as you will work closely with engineering, product design, product marketing, sales, and solution engineering teams, and interface with product leadership in a globally distributed environment. Your responsibilities will include defining and executing the product strategy and roadmap for Qualys connectors based on company goals, customer feedback, industry trends, competitive analysis, and market research. You will also be involved in defining clear product themes, epics, and user stories, collaborating with various teams to prioritize and refine product plans, attending engineering grooming sessions, and driving product delivery. To be successful in this role, you should have a background in solution engineering, product development, product management, business analysis, integration architecture, and implementation consulting. You should possess strong knowledge of Cloud Security concepts across major cloud platforms such as AWS, Azure, GCP, and OCI. Hands-on experience or a strong understanding of cloud-native security tools and services is highly desirable. If you have a Bachelor's degree in Computer Science, Engineering, Cybersecurity, or a related technical field, along with 3+ years of experience in product management or 5+ years in a technical leadership role in cybersecurity or cloud security products, we would like to hear from you. Relevant certifications such as AWS/Azure/GCP certifications, CISSP, CCSP, etc., are a plus. If you are ready to take on an exciting opportunity with a high-impact role at a company known for innovation and trusted by the world's leading enterprises, please submit your application, including your resume and a cover letter outlining your experience and qualifications for this role.,

Job Title: Principal Security Engineer Location: Hyderabad Job Type: Full-Time About Feuji Feuji, established in 2014 and headquartered in Dallas, Texas, has rapidly emerged as a leading global technology services provider. With strategic locations including a Near Shore facility in San Jose, Costa Rica, and Offshore Delivery Centers in Hyderabad, and Bangalore, we are well-positioned to cater to a diverse clientele. Our team of 600 talented engineers drives our success, delivering innovative solutions to our clients and contributing to our recognition as a 'Best Place to Work For.' We collaborate with a wide range of clients, from startups to industry giants in sectors like Healthcare, Education, IT, and engineering, enabling transformative changes in their operations. Through partnerships with top technology providers such as AWS, Checkpoint, Gurukul, CoreStack, Splunk, and Micro Focus, we empower our clients' growth and innovation. With a clientele including Microsoft, HP, GSK, and DXC Technologies, we specialize in managed cloud services, cybersecurity, Product and Quality Engineering Services, and Data and Insights solutions, tailored to drive tangible business outcomes. Our commitment to creating 'Happy Teams' underscores our values and dedication to positive impact. Feuji welcomes exceptional talent to join our team, offering a platform for growth, development, and a culture of innovation and excellence. Position Summary: We are seeking an experienced Principal Security Engineer to lead the design, implementation, and management of our organizations security architecture. The ideal candidate will play a critical role in protecting our systems, applications, and data by developing and enforcing security policies, identifying vulnerabilities, and ensuring compliance with industry standards. Key Responsibilities: Lead the design and implementation of enterprise-wide security solutions and architectures. Develop and enforce security policies, standards, and procedures to mitigate risks. Conduct advanced threat modeling, vulnerability assessments, and security risk analysis. Collaborate with cross-functional teams to integrate security into software development and IT operations. Drive incident response efforts and lead forensic investigations when necessary. Stay updated on the latest cybersecurity trends, threats, and technologies to proactively protect the organization. Mentor and guide security engineers and other technical staff. Evaluate and recommend security tools, products, and services. Ensure compliance with relevant regulations and industry best practices (e.g., GDPR, HIPAA, ISO 27001). Required Experience and Skills: Extensive experience (typically 5+ years) in cybersecurity engineering or related roles. Experience with cloud security and associated vulnerability management tools for AWS, Azure, or GCP environments. Deep knowledge of network security, application security, cloud security, and endpoint protection. Experience with security frameworks, standards, and regulations. Strong skills in scripting, automation, and security tools (SIEM, IDS/IPS, firewalls, etc.). Proven leadership abilities with experience guiding technical teams. Relevant certifications (e.g., CISSP, CISM, CEH, OSCP) are a plus. Excellent problem-solving, communication, and interpersonal skills.

Job Description Essential Duties and Responsibilities Deploy, manage and maintain the enterprise cloud security technology stack Utilize a wide range of security capabilities including both native cloud tooling and 3rd party platforms such as CNAPP and CSPM solutions, network detection and response (NDR), vulnerability assessment and discovery, identity and access management (IAM), data protection solutions, key management (KMS), and event logging systems in order to build a layered defense approach to cloud environments Develop playbooks for incident response and best practices focused on cloud architectures and SaaS technologies In coordination with the CISO and other InfoSec teams, support the companywide program for secure cloud and SaaS services Coordinate with external security partners, such as managed detection and response (MDR) providers on critical security workflows and playbooks Function as a technical member of the cyber response team supporting the investigation and remediation of cyber events and incidents, red team/blue team/purple team and enterprise tabletop exercises Analyze, assess and test for cyber threats across enterprise clouds Protect Rocket customer and intellectual property (IP) data Develop and present reports that detail approach, analysis techniques, results and recommended remediations Required Qualifications: 4-6 years of experience securing public cloud infrastructure in AWS, Azure and GCP. Hands on experience with tools such as Wiz, Orca or Upwind Experience working with secure cloud networking, compute and data workloads, and serverless computing solutions and securing SaaS solutions Experience securing CI/CD cloud delivery pipelines Knowledge of secure cloud practices and frameworks, specifically in AWS, Azure and GCP Knowledge of secure cloud architecture and best practices such as AWSs Well-Architected Framework Experience with scripting languages is a plus Knowledge of cloud incident response and experience with tabletop exercise and red/blue/purple team engagements is highly desirable Experience providing user guidance, documentation, and consultation Excellent troubleshooting skills, self-motivated, results-driven and well organized. Experience with explosive growth and variable requirements Experience with change and incident management processes Cloud Security certifications are desirable Information Security Information security is everyones responsibility. A fundamental principle of information security at Rocket Software is that all individuals in the organization have a responsibility for the security and protection of company information and IT Resources over which they have control, according to their role. Diversity, Inclusion & Equity: At Rocket we are committed to an inclusive workplace environment, where every Rocketeer can thrive by bringing their full selves to work. Being a Rocketeer means you are part of our movement to continually drive inclusivity, diversity and equity in our workforce.

FICO (NYSE: FICO) is a leading global analytics software company, helping businesses in 100+ countries make better decisions. Join our world-class team today and fulfill your career potential! The Opportunity - Sr Director, Global Technology Services What You'll Contribute Design, deploy, and manage scalable cloud solutions on public cloud platforms such as AWS, Azure, or Google Cloud. Architectural Design:Design robust and scalable architectures leveraging ArgoCD for GitOps and Crossplane / Terraformfor infrastructure management. Deployment Strategy:Develop and implement deployment strategies that leverage ArgoCD for automated application delivery. Infrastructure Management:Utilize Crossplane / Terraform to manage and provision cloud resources, ensuring alignment with best practices and organizational standards. Collaboration:Work closely with development, operations, and security teams to integrate infrastructure as code practices across the organization. Mentorship:Provide guidance and mentorship to team members on best practices in GitOps, CI/CD, and infrastructure management. Continuous Improvement:Evaluate and recommend tools and technologies that enhance our deployment processes and infrastructure management. GitHub: Establish and promote best practices for GitOps workflows, including branching strategies, pull requests, and code reviews Monitoring & Optimization:Design and implement Observability capability solutions to ensure platform performance, reliability, and scalability Implement infrastructure as code (IaaC) using tools like Terraform or Crossplane or similar. Kubernetes: Responsible to architect large clusters and operationally support it. Implement security best practices and ensure compliance with industry standards and regulations. Security: Experience with security tools like Wiz / OPA / Kyverno along with in-depth knowledge of security principles and frameworks. What We're Seeking Proven experience as a Senior level engineer/Architect or similar role in a cloud-native environment Extensive experience with ArgoCD and Crossplane. GitHub Proficiency:Strong understanding of Git and GitHub workflows, including branching strategies and pull request management Infrastructure as Code:Experience with Infrastructure as Code (IaaC) tools (e.g., Terraform, Crossplane/Cloudformation etc) is a plus. Leadership experience with the ability to drive/guide and motivate a team. Proficiency in scripting languages (e.g., Python, Bash, Go) and automation tools (e.g., Jenkins, Ansible, ArgoCD, Crossplane, Github). Expert level knowledge in engineering and operational related tasks on containerization and orchestration tools (e.g., Docker, Kubernetes). Expert level knowledge in network concepts and implementation on AWS (VPC, WAF, etc.) Expert level knowledge in AWS, Kubernetes (EKS), Istio Service Mesh, API G/W Familiarity with observability, monitoring and logging tools (e.g., Prometheus, Grafana, ELK stack, Splunk, Cribl). Experience working on security related certifications like PCI Experience with workflow and issue management tools such as JIRA/ ServiceNow. Our Offer to You An inclusive culture strongly reflecting our core values: Act Like an Owner, Delight Our Customers and Earn the Respect of Others. The opportunity to make an impact and develop professionally by leveraging your unique strengths and participating in valuable learning experiences. Highly competitive compensation, benefits and rewards programs that encourage you to bring your best every day and be recognized for doing so. An engaging, people-first work environment offering work/life balance, employee resource groups, and social events to promote interaction and camaraderie. Why Make a Move to FICO At FICO, you can develop your career with a leading organization in one of the fastest-growing fields in technology today - Big Data analytics. You'll play a part in our commitment to help businesses use data to improve every choice they make, using advances in artificial intelligence, machine learning, optimization, and much more. FICO makes a real difference in the way businesses operate worldwide: . Credit Scoring - FICO Scores are used by 90 of the top 100 US lenders. . Fraud Detection and Security - 4 billion payment cards globally are protected by FICO fraud systems. . Lending - 3/4 of US mortgages are approved using the FICO Score. Global trends toward digital transformation have created tremendous demand for FICO's solutions, placing us among the world's top 100 software companies by revenue. We help many of the world's largest banks, insurers, retailers, telecommunications providers and other firms reach a new level of success. Our success is dependent on really talented people - just like you - who thrive on the collaboration and innovation that's nurtured by a diverse and inclusive environment. We'll provide the support you need, while ensuring you have the freedom to develop your skills and grow your career. Join FICO and help change the way business thinks! Learn more about how you can fulfil your potential at FICO promotes a culture of inclusion and seeks to attract a diverse set of candidates for each job opportunity. We are an equal employment opportunity employer and we're proud to offer employment and advancement opportunities to all candidates without regard to race, color, ancestry, religion, sex, national origin, pregnancy, sexual orientation, age, citizenship, marital status, disability, gender identity or Veteran status. Research has shown that women and candidates from underrepresented communities may not apply for an opportunity if they don't meet all stated qualifications. While our qualifications are clearly related to role success, each candidate's profile is unique and strengths in certain skill and/or experience areas can be equally effective. If you believe you have many, but not necessarily all, of the stated qualifications we encourage you to apply. Information submitted with your application is subject to the FICO Privacy policy at

The Opportunity "This is an opportunity to define, build, and shape the future of FICOs Cybersecurity and Risk Posture. As part of the Threat & Vulnerability Management team, you will collaborate across the business, IT, and client environments to secure our cloud and data center infrastructure. Your contributions will be key to strengthening FICO's defense mechanisms and enhancing our compliance posture. We're looking for a cybersecurity expert passionate about continuous improvement, cloud security, and vulnerability risk reduction. If you're someone who thrives in a fast-paced environment and wants to work on high-impact global security initiatives, this role is for you" - VP, Software Engineering. What Youll Contribute Collaborate with the Cyber Security Team, business stakeholders, IT partners, and clients to manage and reduce cybersecurity risk. Act as a subject matter expert in vulnerability scanning, compliance monitoring, and risk reporting. Operate and optimize tools such as Wiz, Qualys, or similar for vulnerability scanning across cloud and on-prem environments. Validate, triage, and risk-rank vulnerabilities based on severity, exposure, and potential business impact. Drive remediation planning with Product and IT teams, and oversee patch management cycles. Contribute to threat & vulnerability management strategy, policy, and continuous process improvement. Conduct periodic risk assessments and develop mitigation strategies in line with compliance requirements. Monitor the evolving threat landscapeincluding zero-day exploits, vendor patches, EOL systemsand proactively update mitigation plans. Lead initiatives to improve configuration, cloud asset management, vulnerability and patch management practices. Provide documentation, reporting, and cross-functional collaboration support. What Were Seeking Bachelors degree in Computer Science, Information Security, or a related field (or equivalent work experience). 3 6 years of hands-on experience with cloud security tools such as Wiz, Qualys, or similar vulnerability scanning platforms. Strong understanding of AWS infrastructure and cloud security principles. Working knowledge of operating system and application-level vulnerabilities and how they relate. Familiarity with risk-based vulnerability management and compliance frameworks. CISSP, CISM or equivalent certifications preferred (or willingness to obtain). Ability to multitask, manage complex data sets, and collaborate with diverse teams. Knowledge of scripting languages (e.g., Python, Bash) is a plus. Demonstrated experience in cloud (especially AWS) patch and configuration management. Familiarity with malware behavior, indicators of compromise, and modern threat vectors. Strong documentation, analytical, and communication skills.

At Lytx, you'll have the opportunity to work on cutting-edge technologies and contribute to the security and scalability of our global IoT platform. You'll collaborate with cross-functional teams, drive innovation, and play a crucial role in shaping the future of our infrastructure and security practices. Lytx is seeking a highly skilled Staff DevSecOps Engineer to join our innovative team. In this role, you will be instrumental in designing, implementing, and maintaining our secure continuous integration and deployment pipelines, infrastructure, and tools. You'll act as a subject-matter expert on core AWS services and security best practices, collaborating closely with cross-functional teams to ensure AWS standard methodologies, infrastructure as code (IaC), and security optimizations are integrated early in the design process. Key Responsibilities Evaluate and implement cutting-edge technologies to enhance the security, efficiency, and reliability of Lytx's infrastructure. Develop and implement secure systems and frameworks to strengthen our global IoT platform. Create innovative solutions that empower engineering teams while maintaining robust security measures. Implement MLSecOps practices to improve the speed, efficiency, quality, and security of our AI/ML deployments. Drive improvements in security, monitoring, and reliability of core and supporting systems. Required Qualifications Minimum 10 years hands-on experience as a devsecops engineer. AWS 1 of the following CSPM Wiz Prism Dome9 Orca Terraform CI/CD Proficiency (ability to demonstrate) in Python or Go Demonstrated experience with application security and SAST and DAST Experience with endpoint management tools Strong skills in managing Kubernetes and various container and cloud-native technologies securely. Proven experience in implementing security best practices, including identity and access management, encryption, and vulnerability assessments. In-depth knowledge of containerization technologies such as OpenShift, Kubernetes, and Docker, with a focus on security aspects. Ability to provide coaching, mentoring, and training on security practices for team members. Knowledge of secure Systems Administration/System Engineering with Microsoft Windows/Linux. Familiarity with networking concepts and their security implications, including routing, load balancing, DNS, content delivery, and domain trusts. Excellent documentation and interpersonal skills, with the ability to present technical and security content to management and engineering teams. Preferred: Experience with Github Actions & Advanced Security, ArgoCD AWS Certified Security - Specialty

At Lytx, you'll have the opportunity to work on cutting-edge technologies and contribute to the security and scalability of our global IoT platform. You'll collaborate with cross-functional teams, drive innovation, and play a crucial role in shaping the future of our infrastructure and security practices. Lytx is seeking a highly skilled Staff DevSecOps Engineer to join our innovative team. In this role, you will be instrumental in designing, implementing, and maintaining our secure continuous integration and deployment pipelines, infrastructure, and tools. You'll act as a subject-matter expert on core AWS services and security best practices, collaborating closely with cross-functional teams to ensure AWS standard methodologies, infrastructure as code (IaC), and security optimizations are integrated early in the design process. Key Responsibilities Evaluate and implement cutting-edge technologies to enhance the security, efficiency, and reliability of Lytx's infrastructure. Develop and implement secure systems and frameworks to strengthen our global IoT platform. Create innovative solutions that empower engineering teams while maintaining robust security measures. Implement MLSecOps practices to improve the speed, efficiency, quality, and security of our AI/ML deployments. Drive improvements in security, monitoring, and reliability of core and supporting systems. Required Qualifications Minimum 7 years hands-on experience as a devsecops engineer. AWS 1 of the following CSPM Wiz Prism Dome9 Orca Terraform CI/CD Proficiency (ability to demonstrate) in Python or Go Demonstrated experience with application security and SAST and DAST Experience with endpoint management tools Strong skills in managing Kubernetes and various container and cloud-native technologies securely. Proven experience in implementing security best practices, including identity and access management, encryption, and vulnerability assessments. In-depth knowledge of containerization technologies such as OpenShift, Kubernetes, and Docker, with a focus on security aspects. Ability to provide coaching, mentoring, and training on security practices for team members. Knowledge of secure Systems Administration/System Engineering with Microsoft Windows/Linux. Familiarity with networking concepts and their security implications, including routing, load balancing, DNS, content delivery, and domain trusts. Excellent documentation and interpersonal skills, with the ability to present technical and security content to management and engineering teams. Preferred: Experience with Github Actions & Advanced Security, ArgoCD AWS Certified Security - Specialty

Location : PAN India Role & responsibilities Develop and maintain security hardening baselines for Azure, AWS, GCP services. Document and categorize all cloud services consumed. Align baseline configurations with industry-recognized standards: CIS, NIST, WIZ, CSA, Azure/AWS native guidelines. Map defined controls to internal artefacts including: -CSAA threat modeling outputs, baseline documentation Assess control scan ability using Wiz and identify controls requiring manual validation. Integrate Wiz with AWS, Azure, GCP, and Kubernetes environments. Develop and deploy policy-as-code using Rego (OPA) to enforce security controls across cloud environments. Collaborate with Cloud Security, CPS, and Group Security teams to review and refine baseline controls. Incorporate feedback into final documentation and control mappings Primary Skill Deep hands-on experience with AWS, Azure, and GCP is essential for developing and maintaining security baselines. Hands-on experience deploying and managing Wiz across multi-cloud environments for scannability assessments and integration. Experience with CASB, MDC, and cloud governance frameworks Proficiency in OPA (Rego) for writing and deploying cloud security policies to enforce controls programmatically. Secondary Skill Familiarity with CIS Benchmarks, NIST, CSA, and regulatory standards like GDPR, HIPAA, and PCI-DSS. Experience embedding security into CI/CD pipelines and collaborating with DevOps teams. Working knowledge of Terraform and secure IaC practices for cloud resource provisioning. Preferred Qualifications Certifications such as WIZ , CISSP, CISM, CCSP,AZ-500, AWS Security Specialty, GCP Professional Cloud Security Engineer