10 Wiz Jobs

We are looking for an experienced Information Security professional with certifications like CISSP or CISA, and a strong background in leading compliance initiatives for SOC 2 Type II, ISO 27001, PCI DSS, and IOCFR. Direct experience working with RBI regulations and auditors is mandatory . The ideal candidate should have hands-on knowledge of AWS cloud security, and familiarity with tools such as GuardDuty, Wiz/Orca, Splunk, Crowdstrike, and Vanta. Experience in fast-paced sectors like FinTech, E-commerce, or Payment Solutions is a strong plus. What You&aposll Do: Governance & Compliance: Develop and maintain information security policies and drive compliance with ISO 27001, SOC 2, and RBI guidelines. Act as the primary contact for audits and inspections. Risk Management: Conduct risk assessments, manage risk registers, and oversee third-party/vendor security reviews. Security Operations: Oversee tools and processes for SIEM, DLP, EDR, patch management, and incident response. Lead security incident simulations and resolution. Cloud & App Security: Manage AWS security architecture, implement CSPM programs, and embed secure coding and DevSecOps practices across CI/CD pipelines. Business Continuity & DR: Maintain and test disaster recovery and continuity plans (RTO: 60 mins; near-zero RPO). Awareness & Culture: Run regular security training, phishing drills, and promote a security-aware culture across the organization. Reporting & Strategy: Present security metrics, dashboards, and risk reports to leadership and participate in strategic IT governance forums. What Were Looking For: 8+ years in cybersecurity or information security roles; at least 3 years in a leadership capacity. Background in fintech, NBFC, or regulated financial services preferred. Proven track record in managing audits (ISO 27001, SOC 2), incident response, and cloud security (AWS). Strong knowledge of cybersecurity tools and frameworks: AWS, SIEM, CSPM, IAM, patch management, DLP, EDR. Familiar with secure SDLC, DevSecOps, threat modeling, and regulatory compliance. Effective communicator with experience working across cross-functional teams. Certifications (preferred): CISSP, CISM, CISA, ISO 27001 Lead Auditor/Implementer, AWS Security Specialty. Bonus: DCPP, CIPP/E, or other data privacy/RBI-focused certifications. About Kissht: Kissht, a Great Place to Work certified organization, is a consumer-first credit app that is transforming the landscape of consumer credit. As one of the fastest-growing and most respected FinTech companies, Kissht is a pioneer in data and machine-based lending. With over 15 million customers, including 40% from tier 2 cities and beyond, we offer both short and long-term loans for personal consumption, business needs, and recurring expenses. Founded by Ranvir and Krishnan, alumni of IIT and IIM, and backed by renowned investors like Endiya Partners, the Brunei Investment Authority, and the Singapore Government, Kissht is synonymous with excellence in the industry. Join us and be a part of a dynamic, innovative company that is changing the future of financial technology. Show more Show less

Entity: Technology Job Family Group: IT&S Group Job Description: Our purpose is to deliver energy to the world, today and tomorrow. For over 100 years, bp has focused on discovering, developing, and producing oil and gas in the nations where we operate. We are one of the few companies globally that can provide governments and customers with an integrated energy offering. Delivering our strategy sustainably is fundamental to achieving our ambition to be a net zero company by 2050 or sooner! In this role, you will be part of bps Technology Function and be responsible for hands on running of IT services in the Payroll, Reward and Time portfolios. You will manage industry-leading products such as ADP Payroll (Global View and others) as well as a bp-developed Microsoft Azure-based set of Reward offerings. You will lead a Dev/Ops Squad which will drive and enable the solutions underpinning BPs employee resourcing, employee growth, and learning-related services. You will have the opportunity to work within a modern IT methodology using sprints to deliver user stories; you will build upon your Payroll/Reward/Time product knowledge and gain significant experience in optimizing delivery using modern AI-powered products; and you will lead new custom developments on the .net platform. Included in the role responsibilities/deliverables are the following: strategic and operational leadership across a diverse portfolio of over 60 solutions, with a strong emphasis on meeting bp business needs, digital security compliance, integration enablement, and commercial optimisation. This role is pivotal in ensuring that bps People & Culture (Human Resources) digital assets are secure, scalable, and delivering measurable value. Key Accountabilities Lead a cross-disciplinary squad, working closely with other product experts, integration engineers, data managers, business partners and HR professionals Payroll operational expertise is not required. However, you will perform hands-on connectivity and integration-related support for bp Payroll and Time Tracking solutions Gather user stories/requirements in the Reward domain, document using Microsoft ADO, and design, build and test solutions run on Microsoft Azure using the .net framework Continuously and proactively working on simplification, standardization and optimization of existing processes and solutions Imbed good Digital Security and Data Privacy practices into all deliveries and ensure secure and compliant handling of bp assets and data Continuously improve ongoing bp operations in light of emerging technologies (especially AI). Define, assess, and mitigate operational and technology risks Manage commercial agreements and drive governance of business partners and suppliers, including negotiation of contract renewals and new service requests Represent the Technology organization to bp Payroll, Reward and Time stakeholders Essential Skills And Experience At least 3 years hands-on development experience on the Microsoft .net platform e) and a passion to build expertise in the Payroll, Reward and Time domains Experience in both Development and Operations (DevOps) support areas Experience in leading multi-vendor technology squads in enhancing existing products and delivering new products Proven analytics skills and ability to glean information from data, including hands-on experience in building reports, dashboards, and metrics using tools such as SQL and Power BI Experience in managing digital security, data privacy, and regulatory compliance within a global enterprise. Strong commercial acumen with capability to drive cost optimization and supplier accountability Skills in stakeholder management, cross-functional coordination, and agile delivery Familiarity with tools such as ServiceNow, Microsoft ADO, and Wiz (Microsoft Software patching management) At bp, we provide the following environment & benefits: A company culture where we respect our diverse teams and are proud of our achievements Possibility to join social communities and networks A healthy work-life balance Chill-out and collaboration spaces in a modern office environment Learning and development opportunities to craft your career path Life & health insurance, medical care package And many others benefits Legal Disclaimer: We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, sex, gender, gender expression, sexual orientation, age, marital status, socioeconomic background, neurodiversity/neurocognitive functioning, veteran status or disability status. We will ensure that individuals with disabilities are provided with reasonable accommodation to participate in the job application or interview process, to perform crucial job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation. Travel Requirement No travel is expected with this role Relocation Assistance: This role is eligible for relocation within country Remote Type: This position is a hybrid of office/remote working Skills: Agility core practices, Agility core practices, Analytics, API and platform design, Business Analysis, Cloud Platforms, Coaching, Communication, Configuration management and release, Continuous deployment and release, Data Structures and Algorithms (Inactive), Digital Project Management, Documentation and knowledge sharing, Facilitation, Information Security, iOS and Android development, Mentoring, Metrics definition and instrumentation, NoSql data modelling, Relational Data Modelling, Risk Management, Scripting, Service operations and resiliency, Software Design and Development, Source control and code management + 4 more Legal Disclaimer: We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, sex, gender, gender expression, sexual orientation, age, marital status, socioeconomic status, neurodiversity/neurocognitive functioning, veteran status or disability status. Individuals with an accessibility need may request an adjustment/accommodation related to bps recruiting process (e.g., accessing the job application, completing required assessments, participating in telephone screenings or interviews, etc.). If you would like to request an adjustment/accommodation related to the recruitment process, please contact us. If you are selected for a position and depending upon your role, your employment may be contingent upon adherence to local policy. This may include pre-placement drug screening, medical review of physical fitness for the role, and background checks. Show more Show less

We are looking for a skilled and motivated Vulnerability Management Engineer to join our team. In this role, you will be responsible for assessing, tracking, and managing vulnerabilities in cloud and platform environments. You will play a critical role in ensuring the security posture of applications and infrastructure, using various vulnerability management tools and processes. Your responsibilities will include evaluating vulnerabilities, triaging risks, and ensuring proper remediation actions are taken to protect the organization's systems. Responsibilities: - Vulnerability Assessment: Assess the risk of CVEs (Common Vulnerabilities and Exposures) in the context of your environment and prioritize them based on risk. - Vulnerability Management Lifecycle: Triage the entire vulnerability management lifecycle, ensuring vulnerabilities are identified, tracked, and remediated in a timely manner. - Application Security & Vulnerability Management: Manage and oversee the Application Security and Vulnerability Management product, including CSPM (Cloud Security Posture Management), SAST (Static Application Security Testing), DAST (Dynamic Application Security Testing), Dependency Scans, and Secrets Scans. - Cloud Security & Container Protection: Responsible for platform vulnerability management, including Cloud Security Posture Management and Container Workload Protection using Prisma Scanner. - Change Request Analysis: Evaluate change requests for e-commerce systems, assess security implications, and provide security recommendations. - Change Tracking: Track all feature changes, bug fixes, and release changes for each platform release to ensure no vulnerabilities are introduced. - CVE Tracking: Monitor and track CVEs, ensuring timely identification, prioritization, and assessment of vulnerabilities. - Component Identification: Identify and document components and systems impacted by proposed changes and their associated vulnerabilities. - Security Assessment Planning: Develop and implement security assessment plans for changes to ensure compliance with industry standards and best practices. - Vulnerability Scanning: Conduct regular vulnerability scans of infrastructure and source code, focusing on Kubernetes containerized apps, to identify and prioritize security risks. - Documentation: Maintain detailed and accurate records of vulnerability assessments, findings, remediation actions, and reporting for compliance purposes. - Security Tools: Experience with enterprise-grade vulnerability management tools like Prisma and Wiz is a plus. Qualifications: - Solid understanding of vulnerability management life cycle and risk assessment. - Experience with vulnerability scanning tools and platforms such as Prisma/Wiz. - Familiarity with Cloud Security Posture Management (CSPM), Container Workload Protection, SAST, DAST, and Dependency Scans. - Proven experience in security assessment, vulnerability remediation, and risk management. - Strong knowledge of CVE tracking and vulnerability prioritization techniques. - Knowledge of security best practices and compliance standards. - Excellent documentation, communication, and collaboration skills. - Past experience in operating enterprise-grade security vulnerability management tools is a plus.,

DevSecOps Engineer Experience: 5 to 9 Years Budget: Up to 36 LPA Location: Hyderabad, Bangalore, Pune, Gurgaon, Chennai Notice Period: Immediate Joiners Only About the Role: Were seeking a skilled DevSecOps Engineer with a strong security mindset and hands-on experience in secure cloud deployments. This role demands practical knowledge of cloud platforms, Infrastructure as Code (IaC), CI/CD pipelines, and modern security tooling. You will be at the forefront of embedding security in every stage of the software development lifecycle. Key Skills & Responsibilities: Cloud: Experience with Azure or AWS IaC Tools: Expertise in Terraform Containerization: Working knowledge of Kubernetes CI/CD: Hands-on with any modern CI/CD tools (e.g., Jenkins, GitHub Actions, GitLab CI, etc.) Security Tools (any): WiZ, Snyk, Qualys, Mend, Checkmarx, Dependabot Secret Management: Experience with HashiCorp Vault or Akeyless DevSecOps: Strong experience in integrating security into DevOps pipelines Mandatory Requirement: Security experience is mandatory DevSecOps exposure is highly preferred

Dear candidate, Please find the JD below. Mandatory skills :: AWS , Security operations , Wiz, docker, Kubernetes Experience :: 6 to 10 years Location:: Hyd/Bangalore/pune/chennai/Jaipur/gurgoan Notice period :: immediate only JD: Cloud Security Engineer Experience Required: 58 years in cloud engineering or security operations, with at least 2 years in a security-focused cloud role Core Skills (Required) Cloud Security Expertise: Working knowledge of cloud-native security controls across AWS, Azure, or GCP (IAM, encryption, VPC/networking, storage policies). Remediation Execution: Hands-on experience triaging and remediating security misconfigurations using runbooks or platform-guided steps. Threat & Vulnerability Awareness: Familiarity with common cloud vulnerabilities, misconfig patterns, and incident tagging or classification approaches. Scripting & Automation: Ability to write or modify scripts (e.g., Python, PowerShell, Bash) to support patching, tagging, or enforcement automation. Agile Teaming: Experience working in Agile sprints, contributing to structured backlogs, standups, and retrospectives. Attention to Detail: Strong analytical and documentation skills to track remediated issues, exceptions, and patch histories. Specialized Skills (Desirable) These tools and practices are beneficial but not mandatory; on-the-job learning and support will be provided as needed: Cloud Security Posture Tools: Exposure to platforms like Wiz, Prisma Cloud, or Defender for Cloud Policy-as-Code: Basic familiarity with tools like Cloud Custodian, AWS SCPs, Azure Policy, GCP Org Policies Runbook Automation: Experience with automated remediation pipelines or trigger-based scripts Tagging & Resource Inventory: Understanding of tagging frameworks for scoping vulnerabilities and enforcing controls Security Certifications: AWS Security Specialty, Azure Security Engineer, GCP Security Engineer (optional but preferred) Thanks Vani

Are you passionate about driving innovation in security solutions and have a strong background in application security If so, we have a perfect opportunity for you! We are looking for a dynamic and experienced Product Manager to join our Enterprise TruRisk Platform PM Team at Qualys. In this role, you will be responsible for driving the strategy and execution of our Connectors to unlock value with new use cases by integrating Qualys with 3rd Party Cloud Security Solutions. To excel in this role, you should have a solid background in cloud security and a can-do attitude to help global enterprise customers seamlessly integrate their cloud security data with Qualys ecosystem. Collaboration is key in this role as you will work closely with engineering, product design, product marketing, sales, and solution engineering teams, and interface with product leadership in a globally distributed environment. Your responsibilities will include defining and executing the product strategy and roadmap for Qualys connectors based on company goals, customer feedback, industry trends, competitive analysis, and market research. You will also be involved in defining clear product themes, epics, and user stories, collaborating with various teams to prioritize and refine product plans, attending engineering grooming sessions, and driving product delivery. To be successful in this role, you should have a background in solution engineering, product development, product management, business analysis, integration architecture, and implementation consulting. You should possess strong knowledge of Cloud Security concepts across major cloud platforms such as AWS, Azure, GCP, and OCI. Hands-on experience or a strong understanding of cloud-native security tools and services is highly desirable. If you have a Bachelor's degree in Computer Science, Engineering, Cybersecurity, or a related technical field, along with 3+ years of experience in product management or 5+ years in a technical leadership role in cybersecurity or cloud security products, we would like to hear from you. Relevant certifications such as AWS/Azure/GCP certifications, CISSP, CCSP, etc., are a plus. If you are ready to take on an exciting opportunity with a high-impact role at a company known for innovation and trusted by the world's leading enterprises, please submit your application, including your resume and a cover letter outlining your experience and qualifications for this role.,

Job Title: Principal Security Engineer Location: Hyderabad Job Type: Full-Time About Feuji Feuji, established in 2014 and headquartered in Dallas, Texas, has rapidly emerged as a leading global technology services provider. With strategic locations including a Near Shore facility in San Jose, Costa Rica, and Offshore Delivery Centers in Hyderabad, and Bangalore, we are well-positioned to cater to a diverse clientele. Our team of 600 talented engineers drives our success, delivering innovative solutions to our clients and contributing to our recognition as a 'Best Place to Work For.' We collaborate with a wide range of clients, from startups to industry giants in sectors like Healthcare, Education, IT, and engineering, enabling transformative changes in their operations. Through partnerships with top technology providers such as AWS, Checkpoint, Gurukul, CoreStack, Splunk, and Micro Focus, we empower our clients' growth and innovation. With a clientele including Microsoft, HP, GSK, and DXC Technologies, we specialize in managed cloud services, cybersecurity, Product and Quality Engineering Services, and Data and Insights solutions, tailored to drive tangible business outcomes. Our commitment to creating 'Happy Teams' underscores our values and dedication to positive impact. Feuji welcomes exceptional talent to join our team, offering a platform for growth, development, and a culture of innovation and excellence. Position Summary: We are seeking an experienced Principal Security Engineer to lead the design, implementation, and management of our organizations security architecture. The ideal candidate will play a critical role in protecting our systems, applications, and data by developing and enforcing security policies, identifying vulnerabilities, and ensuring compliance with industry standards. Key Responsibilities: Lead the design and implementation of enterprise-wide security solutions and architectures. Develop and enforce security policies, standards, and procedures to mitigate risks. Conduct advanced threat modeling, vulnerability assessments, and security risk analysis. Collaborate with cross-functional teams to integrate security into software development and IT operations. Drive incident response efforts and lead forensic investigations when necessary. Stay updated on the latest cybersecurity trends, threats, and technologies to proactively protect the organization. Mentor and guide security engineers and other technical staff. Evaluate and recommend security tools, products, and services. Ensure compliance with relevant regulations and industry best practices (e.g., GDPR, HIPAA, ISO 27001). Required Experience and Skills: Extensive experience (typically 5+ years) in cybersecurity engineering or related roles. Experience with cloud security and associated vulnerability management tools for AWS, Azure, or GCP environments. Deep knowledge of network security, application security, cloud security, and endpoint protection. Experience with security frameworks, standards, and regulations. Strong skills in scripting, automation, and security tools (SIEM, IDS/IPS, firewalls, etc.). Proven leadership abilities with experience guiding technical teams. Relevant certifications (e.g., CISSP, CISM, CEH, OSCP) are a plus. Excellent problem-solving, communication, and interpersonal skills.

Job Description Essential Duties and Responsibilities Deploy, manage and maintain the enterprise cloud security technology stack Utilize a wide range of security capabilities including both native cloud tooling and 3rd party platforms such as CNAPP and CSPM solutions, network detection and response (NDR), vulnerability assessment and discovery, identity and access management (IAM), data protection solutions, key management (KMS), and event logging systems in order to build a layered defense approach to cloud environments Develop playbooks for incident response and best practices focused on cloud architectures and SaaS technologies In coordination with the CISO and other InfoSec teams, support the companywide program for secure cloud and SaaS services Coordinate with external security partners, such as managed detection and response (MDR) providers on critical security workflows and playbooks Function as a technical member of the cyber response team supporting the investigation and remediation of cyber events and incidents, red team/blue team/purple team and enterprise tabletop exercises Analyze, assess and test for cyber threats across enterprise clouds Protect Rocket customer and intellectual property (IP) data Develop and present reports that detail approach, analysis techniques, results and recommended remediations Required Qualifications: 4-6 years of experience securing public cloud infrastructure in AWS, Azure and GCP. Hands on experience with tools such as Wiz, Orca or Upwind Experience working with secure cloud networking, compute and data workloads, and serverless computing solutions and securing SaaS solutions Experience securing CI/CD cloud delivery pipelines Knowledge of secure cloud practices and frameworks, specifically in AWS, Azure and GCP Knowledge of secure cloud architecture and best practices such as AWSs Well-Architected Framework Experience with scripting languages is a plus Knowledge of cloud incident response and experience with tabletop exercise and red/blue/purple team engagements is highly desirable Experience providing user guidance, documentation, and consultation Excellent troubleshooting skills, self-motivated, results-driven and well organized. Experience with explosive growth and variable requirements Experience with change and incident management processes Cloud Security certifications are desirable Information Security Information security is everyones responsibility. A fundamental principle of information security at Rocket Software is that all individuals in the organization have a responsibility for the security and protection of company information and IT Resources over which they have control, according to their role. Diversity, Inclusion & Equity: At Rocket we are committed to an inclusive workplace environment, where every Rocketeer can thrive by bringing their full selves to work. Being a Rocketeer means you are part of our movement to continually drive inclusivity, diversity and equity in our workforce.

FICO (NYSE: FICO) is a leading global analytics software company, helping businesses in 100+ countries make better decisions. Join our world-class team today and fulfill your career potential! The Opportunity - Sr Director, Global Technology Services What You'll Contribute Design, deploy, and manage scalable cloud solutions on public cloud platforms such as AWS, Azure, or Google Cloud. Architectural Design:Design robust and scalable architectures leveraging ArgoCD for GitOps and Crossplane / Terraformfor infrastructure management. Deployment Strategy:Develop and implement deployment strategies that leverage ArgoCD for automated application delivery. Infrastructure Management:Utilize Crossplane / Terraform to manage and provision cloud resources, ensuring alignment with best practices and organizational standards. Collaboration:Work closely with development, operations, and security teams to integrate infrastructure as code practices across the organization. Mentorship:Provide guidance and mentorship to team members on best practices in GitOps, CI/CD, and infrastructure management. Continuous Improvement:Evaluate and recommend tools and technologies that enhance our deployment processes and infrastructure management. GitHub: Establish and promote best practices for GitOps workflows, including branching strategies, pull requests, and code reviews Monitoring & Optimization:Design and implement Observability capability solutions to ensure platform performance, reliability, and scalability Implement infrastructure as code (IaaC) using tools like Terraform or Crossplane or similar. Kubernetes: Responsible to architect large clusters and operationally support it. Implement security best practices and ensure compliance with industry standards and regulations. Security: Experience with security tools like Wiz / OPA / Kyverno along with in-depth knowledge of security principles and frameworks. What We're Seeking Proven experience as a Senior level engineer/Architect or similar role in a cloud-native environment Extensive experience with ArgoCD and Crossplane. GitHub Proficiency:Strong understanding of Git and GitHub workflows, including branching strategies and pull request management Infrastructure as Code:Experience with Infrastructure as Code (IaaC) tools (e.g., Terraform, Crossplane/Cloudformation etc) is a plus. Leadership experience with the ability to drive/guide and motivate a team. Proficiency in scripting languages (e.g., Python, Bash, Go) and automation tools (e.g., Jenkins, Ansible, ArgoCD, Crossplane, Github). Expert level knowledge in engineering and operational related tasks on containerization and orchestration tools (e.g., Docker, Kubernetes). Expert level knowledge in network concepts and implementation on AWS (VPC, WAF, etc.) Expert level knowledge in AWS, Kubernetes (EKS), Istio Service Mesh, API G/W Familiarity with observability, monitoring and logging tools (e.g., Prometheus, Grafana, ELK stack, Splunk, Cribl). Experience working on security related certifications like PCI Experience with workflow and issue management tools such as JIRA/ ServiceNow. Our Offer to You An inclusive culture strongly reflecting our core values: Act Like an Owner, Delight Our Customers and Earn the Respect of Others. The opportunity to make an impact and develop professionally by leveraging your unique strengths and participating in valuable learning experiences. Highly competitive compensation, benefits and rewards programs that encourage you to bring your best every day and be recognized for doing so. An engaging, people-first work environment offering work/life balance, employee resource groups, and social events to promote interaction and camaraderie. Why Make a Move to FICO At FICO, you can develop your career with a leading organization in one of the fastest-growing fields in technology today - Big Data analytics. You'll play a part in our commitment to help businesses use data to improve every choice they make, using advances in artificial intelligence, machine learning, optimization, and much more. FICO makes a real difference in the way businesses operate worldwide: . Credit Scoring - FICO Scores are used by 90 of the top 100 US lenders. . Fraud Detection and Security - 4 billion payment cards globally are protected by FICO fraud systems. . Lending - 3/4 of US mortgages are approved using the FICO Score. Global trends toward digital transformation have created tremendous demand for FICO's solutions, placing us among the world's top 100 software companies by revenue. We help many of the world's largest banks, insurers, retailers, telecommunications providers and other firms reach a new level of success. Our success is dependent on really talented people - just like you - who thrive on the collaboration and innovation that's nurtured by a diverse and inclusive environment. We'll provide the support you need, while ensuring you have the freedom to develop your skills and grow your career. Join FICO and help change the way business thinks! Learn more about how you can fulfil your potential at FICO promotes a culture of inclusion and seeks to attract a diverse set of candidates for each job opportunity. We are an equal employment opportunity employer and we're proud to offer employment and advancement opportunities to all candidates without regard to race, color, ancestry, religion, sex, national origin, pregnancy, sexual orientation, age, citizenship, marital status, disability, gender identity or Veteran status. Research has shown that women and candidates from underrepresented communities may not apply for an opportunity if they don't meet all stated qualifications. While our qualifications are clearly related to role success, each candidate's profile is unique and strengths in certain skill and/or experience areas can be equally effective. If you believe you have many, but not necessarily all, of the stated qualifications we encourage you to apply. Information submitted with your application is subject to the FICO Privacy policy at

The Opportunity "This is an opportunity to define, build, and shape the future of FICOs Cybersecurity and Risk Posture. As part of the Threat & Vulnerability Management team, you will collaborate across the business, IT, and client environments to secure our cloud and data center infrastructure. Your contributions will be key to strengthening FICO's defense mechanisms and enhancing our compliance posture. We're looking for a cybersecurity expert passionate about continuous improvement, cloud security, and vulnerability risk reduction. If you're someone who thrives in a fast-paced environment and wants to work on high-impact global security initiatives, this role is for you" - VP, Software Engineering. What Youll Contribute Collaborate with the Cyber Security Team, business stakeholders, IT partners, and clients to manage and reduce cybersecurity risk. Act as a subject matter expert in vulnerability scanning, compliance monitoring, and risk reporting. Operate and optimize tools such as Wiz, Qualys, or similar for vulnerability scanning across cloud and on-prem environments. Validate, triage, and risk-rank vulnerabilities based on severity, exposure, and potential business impact. Drive remediation planning with Product and IT teams, and oversee patch management cycles. Contribute to threat & vulnerability management strategy, policy, and continuous process improvement. Conduct periodic risk assessments and develop mitigation strategies in line with compliance requirements. Monitor the evolving threat landscapeincluding zero-day exploits, vendor patches, EOL systemsand proactively update mitigation plans. Lead initiatives to improve configuration, cloud asset management, vulnerability and patch management practices. Provide documentation, reporting, and cross-functional collaboration support. What Were Seeking Bachelors degree in Computer Science, Information Security, or a related field (or equivalent work experience). 3 6 years of hands-on experience with cloud security tools such as Wiz, Qualys, or similar vulnerability scanning platforms. Strong understanding of AWS infrastructure and cloud security principles. Working knowledge of operating system and application-level vulnerabilities and how they relate. Familiarity with risk-based vulnerability management and compliance frameworks. CISSP, CISM or equivalent certifications preferred (or willingness to obtain). Ability to multitask, manage complex data sets, and collaborate with diverse teams. Knowledge of scripting languages (e.g., Python, Bash) is a plus. Demonstrated experience in cloud (especially AWS) patch and configuration management. Familiarity with malware behavior, indicators of compromise, and modern threat vectors. Strong documentation, analytical, and communication skills.