Penetration Testing Support Jobs in Bengaluru

IT System and Security Engineer Location: Bengaluru Work Type: Full-Time Company Overview Locus is a battle-tested, agentic Transportation Management System powering logistics across 30+ countries. In 2025, Locus joined the Ingka Group (IKEA Retail), combining high-growth tech agility with the scale of a global enterprise while continuing to operate independently. Role Overview We are seeking an IT System and Security Engineer to manage core IT operations, strengthen endpoint security, and ensure compliance. This hands-on role requires technical expertise to maintain a secure, compliant, and efficient environment across Google Workspace, Okta, and Jamf. Key Responsibilities Operations Management: Oversee user onboarding/offboarding, hardware provisioning, and complex troubleshooting. Security Administration: Monitor Okta, Jamf Pro, and Jamf Protect to ensure MFA enforcement and device encryption. Remediation: Proactively review and fix security vulnerabilities and compliance findings. Automation: Streamline routine tasks using Python, Bash, or Google Apps Script. Compliance & Audits: Maintain asset inventories and prepare evidence for SOC2 and ISO27001 readiness. Skills & Qualifications 2 5 years of experience in IT administration or security operations. Expertise: Google Workspace security and Identity Management (Okta). MDM Platforms: Proven experience with Jamf Pro, Intune, or equivalent tools. Scripting: Ability to write automation scripts in Python or Bash. Frameworks: Familiarity with SOC2 / ISO27001 compliance processes. What We Value Global Mindset: Curiosity about diverse markets. Driven: Energized by complex challenges. Thoughtful: Analytical and deliberate approach. Exact in Craft: Commitment to detail and excellence. Help redefine logistics through innovation. We offer competitive compensation, a supportive work environment, and the opportunity to scale IT security within the IKEA ecosystem.

Infrastructure Security Leader Location: Bengaluru About Us: Observe.AI Observe.AI is the leading AI-powered platform for customer experience, enabling enterprises to automate customer interactions using AI agents. Our platform ensures natural conversations, delivering predictable outcomes, and is trusted by top companies like DoorDash, Affordable Care, Signify Health, and Verida. Observe.AI blends advanced speech understanding, workflow automation, and enterprise-grade governance to deliver end-to-end AI solutions that optimize both human and AI interactions, providing insights for coaching and quality management. At Observe.AI, we re on a mission to transform customer experiences through AI. As a founding member of our Infrastructure/Cloud Security team, you will have the opportunity to shape and design cloud security from the ground up for a platform trusted by over 80 million users. Reporting directly to the VP of Information Security, you will drive a defense-in-depth approach across infrastructure, IAM, and networks. This is a unique, zero-to-one role where you ll define security strategy, mentor the team, and make a long-lasting impact in a fast-growing AI company. What You ll Be Doing: Security Strategy Development: Design and document security policies, reference architectures, design patterns, and roadmaps to protect our platform. Secure Access & Network Design: Lead efforts to design secure access controls and networks for production environments. Cross-Department Leadership: Collaborate with Corporate IT to implement security measures within the corporate environment. Defense-in-Depth: Implement network segmentation, firewall configurations, VPNs, and deep packet inspection to minimize impact from security incidents. AWS Infrastructure Security: Re-architect AWS infrastructure to enhance security, ensuring that networks, VPCs, and security configurations are optimized. Vulnerability Management: Identify tools and technologies to scan networks, OS, and infrastructure for vulnerabilities, and work with SRE teams to remediate identified risks. Security Compliance: Represent Infrastructure Security in PCI, SOC, ISO, HITRUST, and other regulatory audits, ensuring compliance. Collaborative Design: Partner with engineering teams and architects to ensure infrastructure designs meet both business and security requirements. Stakeholder Collaboration: Work with other teams to integrate up-to-date security features and infrastructure designs across the organization. What You ll Bring to the Role: 9+ years of experience in Software Engineering, Network Security, and AWS Security. Proven track record in designing and implementing secure Cloud Infrastructure, Network Security, and Corporate IT Security. Experience at a SaaS product company with hands-on knowledge of cloud security. Leadership experience in managing Infrastructure Security teams or Security-Focused SRE teams. Strong understanding of network designs, protocols, and certifications like CCNA (or similar). Ability to handle multiple, high-priority projects simultaneously while maintaining focus and quality. Comfort with working off-hours to handle security incidents in a dynamic, fast-paced environment. First-hand experience with major cloud providers, specifically AWS. Deep understanding of large-scale systems and N-tier architectures. Excellent communication skills, able to effectively influence and collaborate with stakeholders across the organization. Perks & Benefits: Medical Insurance: Comprehensive options, including free online doctor consultations. Leave Policies: Yearly privilege and sick leaves as per Karnataka S&E Act, along with generous national, festive, and parental leave. Learning & Development: Access to a fund that supports continuous learning and professional growth. Flexible Benefits: Tax exemptions for meals, PF, etc., along with other flexible benefit plans. Team Culture: Fun events to foster collaboration and culture across the organization.

Job Title: Information Security Engineer Location: Bengaluru Company: Altisource (NASDAQ: ASPS) About Altisource At Altisource, we develop cutting-edge technologies and services for the mortgage and real estate industry. We re a trusted partner to 7 of the top 10 U.S. mortgage servicers, operate one of the leading real estate auction platforms, and support a cooperative with over 15% market share in the $1.8 trillion U.S. originations market. If you're passionate about cybersecurity and want to make an impact in a high-growth, tech-driven environment this is the role for you. Position Summary We re looking for a highly motivated Information Security Engineer to support our growing security operations. You will play a vital role in identifying and mitigating security risks across applications, systems, and networks. This role involves vulnerability assessments, code reviews, and automation of security tasks ensuring Altisource remains secure and compliant in a fast-paced environment. Key Responsibilities Conduct vulnerability assessments on applications, networks, and systems. Perform manual verification to reduce false positives and validate security fixes. Communicate identified vulnerabilities and recommend remediation steps to internal teams. Perform secure code reviews and assist development teams in fixing identified issues. Identify and mitigate risks throughout the software development lifecycle. Leverage commercial and open-source tools for vulnerability detection (e.g., Qualys, Nessus, Burp Suite). Assist in internal penetration testing initiatives. Develop internal tools and automate security tasks, leveraging AI where applicable. Stay updated on the latest threats, tools, and best practices in cybersecurity. Create detailed assessment reports and present findings to technical and non-technical stakeholders. Train and mentor team members on vulnerability management processes and tools. Required Qualifications Bachelor s degree in Computer Science, Engineering, or a related field. 3 to 5 years of hands-on experience in information security or related roles. Relevant certifications such as CEH, GIAC, or similar. Solid experience in: Network vulnerability assessments Application scanning and secure code review Windows, Linux, and Unix operating systems Familiarity with OWASP tools, methodologies, and security best practices. Strong communication skills both written and verbal. Preferred Skills Experience with tools like: Qualys, Nessus, Nexpose, SAINT Burp Suite Pro, HP WebInspect Static analysis tools (e.g., IBM AppScan Source, Fortify) Proficiency in one or more programming languages: Java, C, C++, .NET (C#, VB). Experience delivering training or presenting technical content to teams. Background in technical writing or web development is a plus. Be part of a team securing technologies used by top players in the mortgage and real estate space. Work with modern tools and frameworks. Enjoy a collaborative environment that supports innovation, growth, and learning. Qualification : Bachelors degree in Computer Science, Engineering, or a related field

Position: Security Engineer-2 Location: Bengaluru Employment Type: Full-Time Department: Engineering Job Description: We are seeking a proactive and skilled Security Engineer-2 to identify vulnerabilities, collaborate with development teams on mitigation strategies, and promote secure coding practices within the organization. You will play a critical role in ensuring the security and resilience of our products against emerging threats. Key Responsibilities: Conduct in-depth security assessments of products to discover vulnerabilities and demonstrate their exploitability and risk impact. Stay updated on emerging vulnerabilities and threats relevant to our products through independent research. Collaborate with developers to develop and implement mitigation and workaround plans according to security policies. Lead threat modeling and secure design review sessions with development teams to identify threats and define mitigation strategies. Conduct workshops to educate developers on threat modeling and secure coding principles. Prioritize and ensure mitigation of critical security defects during development sprints. Integrate and automate Static Application Security Testing (SAST) within the DevOps pipeline. Advocate and propagate secure coding principles across the development community. Serve as the primary point of contact for developers on critical secure development issues. Develop and deliver security training programs and technical workshops for developers and QA teams. Promote security awareness through tech talks and other knowledge-sharing activities. Required Qualifications and Skills: Strong knowledge of common vulnerabilities such as Cross-Site Scripting (XSS), SQL Injection, Cross-Site Request Forgery (CSRF), cryptographic weaknesses, and code injection. Proficiency in programming/scripting languages like Java, Ruby, and Python. Experience with cloud technologies and services. Ability to automate security testing processes and improve assessment productivity. Excellent communication skills to articulate security risks to both technical and non-technical audiences. Familiarity with industry-standard threat modeling, risk assessment, and vulnerability classification methodologies. Experience conducting white-box and grey-box security assessments, including architectural and API analysis. Knowledge of Secure Software Development Lifecycle (S-SDLC) and CI/CD integration. Bachelor s degree in Computer Science, Electrical Engineering, Computer Engineering, or equivalent experience in software engineering or security. Minimum 3 years of experience in application security or related security assessment roles. Deep understanding of attack vectors, exploits, and mitigation techniques, including chained attacks. Experience with languages such as Java, Go, Python, or Node.js (knowledge of multiple is a plus). Experience assessing cloud-native services, service meshes, and Kubernetes-based microservices. Strong problem-solving skills, able to think both offensively (like a hacker) and defensively (product security evaluation). Ability to learn new technologies and apply unconventional thinking to complex security challenges. Qualification : Bachelors degree in Computer Science, Electrical Engineering, Computer Engineering, or equivalent experience in software engineering or security

Job Title: General Manager Network Infrastructure & Security Location: Bangalore Department: IT and Systems Employee Type: Permanent Experience Required: 10 20 years Job Summary We are seeking a seasoned and strategic IT Infrastructure and Cybersecurity Leader to oversee and drive the company s enterprise-wide infrastructure and security initiatives. This role is responsible for developing and executing the vision, strategy, and programs to ensure the availability, performance, and security of our IT systems and data. The ideal candidate will work closely with executive leadership to align technology and security efforts with organizational objectives and risk tolerance. Key Responsibilities IT Infrastructure Management Lead the planning, implementation, and management of core IT infrastructure including networks, servers, cloud platforms, storage, and enterprise systems. Ensure high availability, performance, and scalability of IT infrastructure to support business operations. Oversee disaster recovery and business continuity strategies to mitigate operational risk. Manage vendor relationships, contracts, and Service Level Agreements (SLAs). Monitor system performance and continuously implement efficiency improvements and optimizations. Cybersecurity Leadership Establish, implement, and maintain cybersecurity policies, procedures, and standards across the organization. Conduct regular risk assessments, vulnerability scans, and implement corrective actions. Oversee security tools and solutions, including firewalls, antivirus, endpoint protection, SIEM, and intrusion detection systems. Lead incident response efforts, forensic investigations, and post-event reviews. Ensure compliance with relevant cybersecurity and data privacy regulations (e.g., ISO 27001, GDPR). Leadership & Cross-functional Collaboration Lead, mentor, and manage a team of IT infrastructure and security professionals. Collaborate with stakeholders across departments to align IT and cybersecurity strategies with business goals. Provide executive-level reporting on infrastructure performance, risk posture, incident management, and compliance metrics. Drive a culture of cybersecurity awareness and operational excellence throughout the organization. Qualifications & Experience Education: Bachelor s degree in Computer Science, Information Technology, or a related field. Master s degree preferred. Certifications (Preferred): CISSP, CISM, CISA, or equivalent professional certifications. Experience: 18+ years of progressive experience in IT infrastructure, cybersecurity, and risk management. Deep knowledge of security frameworks such as ISO/IEC 27001 and regulatory standards like GDPR. Proven experience in formulating and implementing enterprise-wide security policies and managing dynamic IT environments. Key Skills: Strategic planning & execution Project & vendor management Security architecture and governance Cross-functional collaboration & stakeholder communication Managing Security Operations Centers (SOC) Preferred Skills & Competencies Strong analytical and problem-solving skills to align business needs with technology solutions. Experience in documenting and executing security architecture and strategic plans. In-depth knowledge of IT networks, infrastructure systems, and cloud environments. Ability to communicate technical concepts to both technical and non-technical audiences, including C-level stakeholders. Qualification : Bachelors degree in Computer Science, Information Technology, or a related field

Senior SOC Analyst Location: Bangalore (Hybrid, work from office) Experience: 4 to 7 years Shifts: Rotational 24/7 shifts gotta keep the cyber world safe around the clock! About ColorTokens We re on a mission to help businesses stay secure and running smoothly, even when cyber threats hit hard. Our ColorTokens Xshield platform stops ransomware and malware from spreading sideways, so companies can keep their critical assets locked down and business uninterrupted. We bring unmatched visibility into traffic flows whether it s servers, IoT devices, or users helping teams isolate threats fast and respond smartly. Forrester named us a Leader in Microsegmentation (Q3 2024), and we protect global enterprises from costly cyber disasters. Our Culture If you re a self-starter who loves solving complex problems and making an impact, you ll fit right in. Work alongside passionate teammates who protect hospitals, cities, and even national defense. We value innovation, respect, and letting you own your work. What You ll Be Doing Lead as a senior SOC analyst, mentoring juniors and shaping SOC playbooks and processes. Dive deep into escalated incidents analyze, manage end-to-end, and nail root cause analysis. Monitor alerts and events across SIEM tools (Splunk, QRadar, Stellar Cyber, LogRhythm), firewalls, IDS/IPS, VPNs, and more. Hunt proactively for threats and vulnerabilities using threat intel feeds and frameworks like MITRE ATT&CK and Cyber Kill Chain. Perform forensic and malware analysis from logs to memory and disk images to track down attackers and gather evidence. Collaborate closely with SecOps, IT, Platform, and Engineering teams to creatively solve security challenges. Automate SOC workflows with PowerShell, regex, and APIs to level up efficiency. Lead detection tuning and gap analysis to sharpen SOC s ability to spot threats early and accurately. What You Bring 4+ years experience in cyber incident response, SOC operations, and investigations. Solid knowledge of SIEM platforms, network and endpoint security, malware analysis, and threat intel. Certifications like CISSP, GCIH, GSOC, OSCP, or GCIA (or working toward them). Strong communication skills you can explain complex security issues clearly to any audience. Integrity, professionalism, and eagle-eye attention to detail. Ability to work well under pressure and collaborate with diverse teams. Qualifications Bachelor s degree in IT, Computer Science, Engineering, or related field (or equivalent experience). Protect critical digital assets, learn cutting-edge cyber defense tech, and grow your career at a company recognized as a market leader. Plus, work with passionate people who genuinely care about making the world safer. Qualification : Bachelors degree in IT, Computer Science, Engineering, or related field (or equivalent experience).

Architect - Cyber Security | Bengaluru, India Location: Bangalore (Bengaluru) Experience: 12 to 20 Years Industry: IT Security / Cybersecurity Architecture Job Summary: We are looking for a seasoned Cyber Security Architect with over 12 years of experience designing and managing security architectures across multiple industries. The ideal candidate will bring strong expertise in secure design principles, SSDLC implementation, and cloud security especially within Azure environments. Key Responsibilities: Lead the development and management of enterprise-wide security architectures for global, multinational organizations Participate in Security Architecture Review Boards and drive secure coding practices along with Software Security Development Life Cycle (SSDLC) implementation Develop and enforce secure design principles and security standards across platforms Create and maintain current and future state architecture diagrams, supporting the technical roadmap with a comprehensive understanding of the technology market Deliver security solution architectures aligned with the enterprise architecture framework Provide expert guidance on securing multi-tenant cloud environments, with a focus on Microsoft Azure Collaborate with cross-functional teams to align security strategies with business goals and compliance requirements Required Skills & Qualifications: Minimum 12+ years of experience in security architecture across at least two different industries, preferably including cloud service providers Proven track record with security architecture development and governance in large-scale multinational companies Experience with secure coding, SSDLC, and security architecture review processes Strong proficiency in cloud security architecture, especially Azure multi-tenant environments Bachelor s or Master s degree in Information Security, Computer Science, or related field Must hold CISSP certification (Certified Information Systems Security Professional) Experience with architecture certification such as CISSP-ISSAP is highly preferred Additional certifications or memberships in SANS, ISACA, or similar cybersecurity organizations are a plus Azure Architecture or Azure Security certifications highly desirable Lead cybersecurity architecture in a global, dynamic enterprise environment Work with cutting-edge cloud technologies and secure multi-cloud ecosystems Grow professionally with access to industry-leading certifications and training Influence enterprise security strategy at the highest level Qualification : Bachelors or Masters degree in Information Security, Computer Science, or related field

Senior Security Specialist Location: Bengaluru, Karnataka, India Employment Type: Full-time About Serko: Serko is a leading tech platform revolutionizing global business travel and expense technology. Joining Serko means becoming part of a passionate team of travelers and technologists dedicated to transforming the business travel marketplace. With offices worldwide and a new hub in Bengaluru, we embrace diversity and authenticity to create meaningful impact. Our fast-growing India team seeks motivated professionals to help build world-class products and experiences. Role Overview: We are looking for a highly skilled Senior Security Specialist with a strong software engineering and DevSecOps background. This role will lead security initiatives, manage risks, oversee security operations, ensure compliance, and report to senior management. You will work closely with agile development teams to embed security throughout the software development lifecycle, driving robust, scalable security solutions. Key Responsibilities: Lead integration of security practices into the DevOps lifecycle, embedding security into software development and deployment pipelines. Collaborate with development and operations teams to identify and mitigate security risks across applications, infrastructure, and pipelines. Implement and maintain security automation and orchestration tools to improve security posture and operational efficiency. Identify, assess, and manage security risks; develop and implement mitigation strategies. Oversee daily security operations, including monitoring, incident response, and threat intelligence. Ensure compliance with security policies and external standards such as PCI-DSS and SOC2. Prepare and present detailed security reports to senior management, highlighting risks and mitigation plans. Lead security awareness campaigns to educate employees on emerging threats and best practices. Stay current on emerging security technologies and trends, particularly in Azure security and DevSecOps. Evaluate and recommend security tools and solutions to enhance the organization's security posture. Qualifications & Experience: 5+ years in a senior security role focused on Security Operations, Risk Management, and Compliance within software engineering environments. Deep understanding of security attack and defense methods; hands-on experience with ethical hacking tools preferred. Proven experience with DevSecOps tools such as SAST and DAST. Expertise in Microsoft security products including Azure Security Center, Defender, Azure AD, and Sentinel. Relevant certifications such as CISSP or equivalent highly preferred. Excellent communication, presentation, and documentation skills. Strong team collaboration and leadership skills. Bachelor s degree in Computer Science, Cybersecurity, or related field; certifications may substitute for degree. What We Offer: Competitive base salary and discretionary incentive plan based on individual and company performance. Access to learning and development platforms to own your career growth. Comprehensive family medical coverage, meal coupons, transport allowances, and mobile & internet reimbursement. Flexible work policies supporting work-life balance. An engaging environment with great tools, support, and opportunities to innovate and deliver high-quality results. Qualification : Bachelors degree in Computer Science, Cybersecurity, or related field; certifications may substitute for degree.

Senior Software Engineer Cloud Native Protection Location: Bangalore, India About the Team Rubrik s Cloud Native Protection team safeguards customer data on public cloud platforms. With cloud data growing rapidly and cyber threats increasing, the team builds scalable, secure solutions to protect, search, and analyze cloud data efficiently. Operating like a startup within a startup, the team tackles complex engineering challenges in a culture driven by strong engineering values and collaboration. About the Role As a Senior Software Engineer, you will be a key technical leader responsible for driving complex projects, designing scalable cloud-native software, and mentoring team members. You ll work closely with other engineers and cross-functional partners, bringing technical expertise, initiative, and leadership to deliver impactful solutions. What You ll Do Design, develop, test, deploy, maintain, and improve cloud native protection software. Tackle open-ended, complex problems, leading investigation and scoping efforts. Own project execution and ensure successful delivery of assigned work. Mentor and guide junior engineers, fostering their growth. Collaborate with product management, QA, UI/UX, documentation, and support teams. Experience & Qualifications Education & Experience: Bachelor s or Master s degree in Computer Science or related field. 4+ years of professional experience in software development. Technical Skills: Proficient in one or more programming languages: Go, Java, C/C++, Scala, Python. Experience with public cloud platforms (AWS, Azure, GCP) is a plus. Familiarity with Docker, containers, Kubernetes, and microservices architectures is a bonus. Strong understanding of SDLC, design patterns, and software engineering best practices. Leadership & Collaboration: Proven problem-solving skills and attention to detail. Experience reviewing and designing software artifacts with high quality. Strong leadership and communication skills with a track record of mentoring others. Ability to work independently and deliver impactful results on complex projects. Rubrik is committed to securing the world s data through Zero Trust Data Security . Our platform combines machine learning and cloud-native technology to protect enterprises against cyberattacks, insider threats, and operational disruptions, ensuring data availability and integrity even under adverse conditions. Qualification : Bachelors or Masters degree in Computer Science or related field.

Join Our Team as a Security Engineer Location: Bengaluru, India (On-site) Department: Global Information Security Reports to: Director of Information Security APAC At Cytiva, we are dedicated to advancing future therapeutics from discovery to delivery. As part of our Global Information Security Team, you ll work at the forefront of securing the systems, applications, and infrastructure that power critical healthcare solutions. Join us and play a key role in designing and implementing secure, resilient systems that ensure business continuity and safeguard our digital assets. What You Will Do Secure Architecture Design: Assist in developing and implementing secure architecture solutions for systems, applications, and infrastructure. Threat Modeling & Risk Assessment: Perform threat modeling and support security risk assessments to proactively identify vulnerabilities and mitigate potential threats. Design Reviews: Participate in security design reviews for applications and infrastructure across various environments, ensuring security best practices are followed. Security Technology Implementation: Deploy and manage enterprise security technologies, including Identity and Access Management (IAM), Data Loss Prevention (DLP), and Mobile Device Management (MDM). Regulatory Compliance: Ensure alignment with regulatory compliance and audit requirements, supporting the organization in maintaining secure, compliant systems. Who You Are Education: Bachelor s degree in Computer Science, Information Security, Cyber Security, or a related discipline. Experience: At least 5+ years of experience in security engineering or architecture, including expertise in threat modeling, risk assessment, and security architecture principles. Security Technologies: Hands-on experience with security technologies such as IAM, SIEM, EDR, DLP, and MDM. Cloud Security: Familiarity with cloud technologies (e.g., AWS, Azure, GCP) and cloud security best practices. Regulatory Compliance: Experience with frameworks and regulatory standards such as ISO 27001, NIST, and CIS Controls. Travel, Motor Vehicle Record & Physical/Environmental Requirements Travel: Ability to travel globally up to 10% of the time to support regional and global security initiatives. It Would Be a Plus If You Also Have: Experience conducting security design reviews for infrastructure, applications, and cloud environments. Expertise in implementing security standards and secure design patterns in alignment with frameworks like ISO 27001, NIST, and CIS Controls. Experience providing technical security advisory support to project teams, ensuring compliance with security and regulatory standards. Impactful Work: Your role directly influences the security and reliability of life-saving healthcare solutions used around the globe. Global Collaboration: Work with a diverse, dynamic, and global team of security experts dedicated to making a real difference. Career Development: Take advantage of opportunities for professional growth and continuous learning in a rapidly evolving industry. Apply now and join a global leader in advancing therapeutics and securing tomorrow s healthcare technologies. Qualification : Bachelors degree in Computer Science, Information Security, Cyber Security, or a related discipline.

Job Title: Senior Incident Response Manager Location: Bengaluru, Karnataka, India About This Team: The Critical Situation Management team plays a pivotal role in maintaining customer trust and satisfaction in CSG Citrix BU products. We ensure swift resolution of production-impacting issues, collaborating closely with Technical Support and Product teams to maintain high uptime Service Level Targets (SLTs). Our team is dedicated to delivering rapid, effective solutions, making us essential to the continued success and reputation of the Citrix platform. Job Description / Responsibilities: Primary Duties / Responsibilities: Incident Management: Lead and manage timely, professional communication with internal and external stakeholders during critical incidents. Utilize your deep technical knowledge and strong communication skills to drive effective resolutions. Customer Sentiment Management: Assess and manage customer sentiments, and ensure appropriate resources are mobilized to mitigate production-impacting situations. Lead discussions with Citrix Customers and internal stakeholders with confidence and clarity. Collaboration: Facilitate cross-departmental collaboration to resolve customer issues, and coordinate the end-to-end customer experience, owning internal and, when necessary, external communications. Escalation Management: Act as the primary contact for Citrix Customers and Account teams during critical situations, collaborating with technical specialists (SMEs) to manage escalations and resolve incidents quickly. 24x7 Coverage: Provide 24x7 support, including weekends and holidays, on a rostered shift basis. Continuous Improvement: Actively participate in feedback processes, leading continuous improvement initiatives and ensuring the team adapts quickly to feedback. Lead and participate in projects aimed at improving incident response and service efficiency. Technical Knowledge: Utilize your technical know-how to manage the escalation process, lead calls, and effectively assess the situation to provide timely solutions. Qualifications (Knowledge, Skills, Abilities): Experience: 6 - 10 years of relevant experience in Incident Response, preferably in a Technical Support environment. Demonstrated ability to manage customer escalations in high-pressure scenarios. Communication Skills: Exceptional verbal and written communication skills. Ability to engage with customers and internal leadership clearly and professionally. Proficiency in creating concise incident reports and Root Cause Analysis (RCA) documents. Customer Advocacy: Strong customer advocacy skills, with the ability to understand, articulate, and manage customer expectations effectively. Technical Expertise: Broad knowledge in technologies such as Cloud, Virtualization, Networking, Operating Systems, and Remoting, with a focus on Virtualization, Networking, and Storage. Experience with Microsoft OS and End-User Computing is a plus. Collaboration Skills: Ability to manage and facilitate cross-team collaboration to solve complex customer issues. Comfortable leading critical calls and guiding teams through escalations. Process Knowledge: Knowledge of ITIL, Project Management, and Six Sigma methodologies is a plus. Familiarity with the Software Development Lifecycle (SDLC) and defect tracking processes is beneficial. Education: B.E. / B.Tech. or a Bachelor s degree in a related field with at least 5+ years of relevant experience. Additional Skills: Scripting, automation, and programming skills are an advantage. Experience in leading formal customer meetings, including those with C-level or Senior Management. About Us: Cloud Software Group is one of the largest cloud solution providers globally, serving over 100 million users. Joining us means making a tangible difference for people around the world who rely on our cloud-based products to perform their work efficiently, from anywhere. We foster a culture of innovation, learning, and growth. As we prepare for an exciting new phase of growth, we need your skills and expertise to continue evolving and building the future of work. Qualification : B.E. / B.Tech. or a Bachelors degree in a related field with at least 5+ years of relevant experience.

Location: Bengaluru Designation: Assistant Manager Entity: Deloitte Unleash Your Potential with Deloitte India's impact on the global economy has skyrocketed, and at Deloitte, we offer you an opportunity to unlock your potential by working alongside leaders and organizations that are shaping the future, both in the region and beyond. At Deloitte, we celebrate the whole you. Join us, and you ll be part of a team driven to make an impact that matters by collaborating, innovating, and growing together. About the Team The Technology & Transformation team is about more than just numbers. It s about building upon past achievements, addressing current challenges, and laying the foundation for future success. At Deloitte, we help organizations navigate change, ensuring they stay ahead of the curve. Learn more about the Technology & Transformation Practice. Your Role and Responsibilities As an Assistant Manager (AM) in our Cyber Team, you'll play a key role in building and maintaining positive relationships with both internal teams and clients. Your main goal will be to exceed client expectations and ensure their security and privacy needs are met. Key responsibilities include: Security and Privacy Expertise: Apply knowledge in security and privacy domains such as governance, risk management, compliance, access control, security architecture, incident response, disaster recovery, business continuity, data protection, etc. Industry Standards: Leverage frameworks and standards such as PCI-DSS, ISO/IEC 27001, ISO/IEC 17799, COBIT, ITIL, and others. Risk Management: Demonstrate a deep understanding of security controls and risk management processes. Certifications: Preferably hold certifications like CEH, CISSP, CISA, ISO 27001, ISO 22301, or equivalent. Information Security Management: Assist in ISO 27001-based Information Security Management System (ISMS) implementation and maintenance. Assessing and Improving Security Posture: Evaluate client information security posture, identify risks, and develop solutions to close gaps. Information Security Controls: Review and implement security controls across various areas such as change management, incident management, access management, antivirus management, physical security, etc. Data Privacy: Advise clients on data privacy and information security topics like data leakage prevention and identity management. Client Guidance: Serve as a subject matter expert in security and privacy, supporting clients in developing frameworks and implementing solutions. Audits & Reviews: Conduct information systems audits covering IT infrastructure and advise on best practices for data protection. Desired Qualifications Educational Background: Degree in IT, Computer Science, or related fields. Certifications: PCI-DSS, ISO 27001, ISO 31000, ISO 22301, CISA, ITIL, or equivalent certifications preferred. Other Certifications: CISSP, CEH, GSEC, GCIH, LPT, CCSK, etc. are a plus. Location and Work Style Base Location: Bengaluru Travel: This role involves occasional or frequent travel to client locations. Hybrid Work: Deloitte s default work style is hybrid, tailored to the needs of each domain. Key Expectations for the AM Role As an Assistant Manager at Deloitte, you ll be expected to embrace and live our purpose. You should challenge yourself to identify key issues that matter to clients, your team, and society. Specifically, we expect our AMs to: Inspire and Lead: Lead with integrity, inclusivity, and motivation. Create Purpose: Help shape a vision and purpose that drives positive change. Be Agile: Deliver high-quality results through collaboration and teamwork. Build Diverse Capabilities: Develop and support future capabilities within the team. Influence & Persuade: Ability to influence stakeholders and drive decisions. Collaborate for Solutions: Work together to create new solutions for clients. Drive Value: Leverage business acumen to deliver client value. Expand Business: Spot and leverage new business opportunities. Analytical Thinking: Use data and analytics to inform decisions and recommend impactful solutions. Communication: Effectively communicate and structure ideas for win-win outcomes. Engagement Management: Manage engagements to ensure timely execution and quality results. Adapt to Change: Respond resiliently to changing environments and needs. Manage Quality & Risk: Ensure high-quality results while mitigating risks. Strategic Problem Solving: Apply strategic thinking to solve complex business challenges. Tech Savvy: Use ethical technology practices to create high-impact solutions. Empathy & Inclusion: Foster a safe, inclusive environment where everyone is valued. Growth at Deloitte Connect for Impact: Work alongside exceptional professionals solving complex global issues and making a positive impact on the community, society, and the planet. Empower to Lead: Regardless of your career level, you ll have opportunities to inspire, support, and grow both professionally and personally. Inclusion for All: We value diversity and inclusivity in everything we do. At Deloitte, we are committed to creating a culture where everyone feels respected, valued, and empowered. Drive Your Career: You have the autonomy to shape your career path. With global mobility, cross-business opportunities, and continuous upskilling, you can chart a fulfilling career journey. A Culture of Wellbeing At Deloitte, we prioritize your 360-degree wellbeing. Our workspaces and initiatives cater to your unique needs, including flexibility, accessibility, safety, and support for caregiving. Join us for a workplace where you can thrive. Your Next Step: Unleash Your Potential at Deloitte! Qualification : Degree in IT, Computer Science, or related fields.

We are proud to offer you our total rewards package which includes bonuses, healthcare, insurance benefits, retirement programs, wellness programs, as well as service and performance awards not to mention various social and recreational activities, all of which are location specific. Job Description: Lead Engineer, Infrastructure and Security The Lead Engineer will take the lead in resolving complex Security Tooling issues and managing escalations to the CCI team and vendors. This position will then plan and work to remediate any misconfigurations to align with Stryker standards that protect while ensuring overall stability. To do this, they will work across multiple teams and functions to help determine issues and use multiple technology platforms to discover issues. Individuals in this position have a broad understanding of key technologies, but a focus on our key toolsets and typically enterprise operating systems. What You Will Do: Provide security support for IT and Security operations and support infrastructure improvements. Provide leadership, vision, and a strong understanding of typical infrastructure platforms and general security principles. Anticipate and recommend changes to processes and documentation that help meet organizational goals and exceed industry best practices and requirements to ensure the security of Stryker assets. Consolidate progress reports and present them in meaningful ways to demonstrate progress to Stryker leadership. Adapt to ever-changing situations by finding more efficient methods to solve problems and train staff on best practices for deploying and managing security software and configurations. Help align security solutions with business strategies, working primarily with line management and IT Business Partners to ensure business security deliverables are aligned with Stryker s global strategy and intervene when appropriate. Improve communications and relations, ensuring the integration of security in technology programs and services across Stryker. Drive adherence to security policies, security programs, and plans; and integrate and coordinate execution of security policies. Implement automation to improve process efficiency and the security tooling compliance state. What You Will Need: Required Qualifications: Minimum Bachelor s Degree in Computer Science or related field. 7 to 10 years of IT Engineering/Operations experience. Strong knowledge of common Datacenter operating systems (MSFT, RHEL). Hands-on experience with Networking, Security Tooling, and Troubleshooting. Strong knowledge of Microsoft Office, specifically Excel for Data Analysis. Preferred Qualifications: Experience with Linux Operating System. Experience with Vendor Management and Project Management. ITIL Foundation and CompTIA Security+ certification is a plus. Health Benefits: Medical and prescription drug insurance Dental insurance Vision insurance Critical illness insurance Accident insurance Hospital indemnity insurance Personalized healthcare support, wellbeing program, and tobacco cessation program Financial Benefits: Health Savings Account (HSA) Flexible Spending Accounts (FSAs) 401(k) plan Employee Stock Purchase Plan (ESPP) Basic life and AD&D insurance Short-term disability insurance About Stryker: Stryker offers innovative products and services in MedSurg, Neurotechnology, and Orthopaedics that help improve patient and healthcare outcomes. Alongside its customers around the world, Stryker impacts more than 150 million patients annually. Depending on customer requirements, employees and new hires in sales and field roles that require access to customer accounts as a function of their job may be required to obtain various vaccinations as an essential function of their role. Qualification : Minimum Bachelors Degree in Computer Science or related field.

Location: Bengaluru, India Role: Cybersecurity Analyst Company: Wipro Limited In a world where data is power, protecting that data is a mission, not just a job. As a Cybersecurity Analyst at Wipro, you ll be the guardian of sensitive information, spotting threats before they strike and building a resilient security posture for the organization. What You ll Do 1 Keep Customers Safe Deliver customer-centric cybersecurity, ensuring systems are fortified and risks are minimized. Monitor logs, security events, and access patterns to detect unusual, unauthorized, or illegal activity. Safeguard log sources, security configurations, and access controls. 2 Hunt, Analyze & Respond Track, analyze, and respond to security incidents escalated by L1 teams (24x7 rotational shifts). Perform log reviews and forensic analysis to understand unauthorized access or breaches. Use advanced analytics tools to identify emerging threat patterns. Conduct detailed root cause analysis and recommend specific, actionable improvements. 3 Be the Incident Commander Lead incident response efforts, coordinating with internal teams and customers for swift resolution. Plan and refine disaster recovery strategies for potential breaches. Create incident reports, dashboards, and analysis summaries to share insights and learnings. 4 Collaborate & Educate Work closely with internal technical leads, practice teams, and external customers to manage security concerns. Assist with internal and external audits, maintaining the information security risk register. Deliver cybersecurity awareness training for colleagues, turning every employee into a security ally. Provide hands-on advice and guidance on handling malicious emails, phishing attempts, and suspicious activity. Key Relationships Stakeholder Why You ll Work Together Internal Tech & Project Leads Regular updates, security reporting, coordination Security Intelligence Team For threat intelligence sharing and practice alignment Customers Direct support during incidents, ensuring transparency & fast resolutions What You Need to Succeed Technical Mastery Deep knowledge of Network Security devices, Firewalls, Endpoints, SIEM, Application Security, IDS/IPS, Vulnerability Assessments & Penetration Testing (VA/PT). Process Excellence Solid understanding of standards, processes, and automation tools to improve consistency and reduce risk. Communication & Collaboration Clear, effective communication skills you ll be the go-to person for explaining security risks to both techies and non-techies. How Your Success Will Be Measured Performance Area Measure Customer Focus Fast, effective resolution of security incidents for internal & external users Process Adherence 90-95% SLA compliance for response & resolution times Key Competencies Effective Communication Collaborative Working Execution Excellence Analytical Thinking & Problem Solving Reinvent Cybersecurity With Wipro This isn t just a job it s your chance to reinvent how organizations protect themselves in a rapidly evolving threat landscape. Join Wipro. Own the mission. Protect the future. Applications from people with disabilities are explicitly welcome.

Job Title: Lead Engineer Software Test & Release Location: Bangalore Job Summary We are looking for a skilled Security Test and Automation Engineer with 7-9 years of experience in Security Verification and Validation, particularly on Embedded Systems. The ideal candidate will have 3-4 years of leadership experience in managing a team of security test engineers and hands-on expertise in scripting languages like Python, Java, and AI/ML-based tools. The primary responsibility will be to develop and execute security testing strategies across various domains including Devices, Automotive, Medical Devices, and Telecom Infrastructure (Wireless and Wired). Key Responsibilities Security Test Strategy: Develop and execute a comprehensive security test and automation strategy across multiple domains like Devices, Automotive, Medical Devices, and Telecom Infrastructure. Collaborate with project teams to capture best practices, share knowledge about the latest tools and technologies, and identify opportunities for new solution development. Understand client requirements for security testing and prepare proposals related to Security and Penetration Testing. Penetration Testing: Work with clients to understand their testing needs (e.g., number and types of systems for testing). Plan, create, and execute penetration methods, scripts, and tests to assess the security of systems. Perform remote or on-site security testing of a client s network or infrastructure to uncover vulnerabilities. Simulate security breaches to test system vulnerabilities and identify potential threats. Generate detailed reports outlining security issues, the level of risk, and recommendations for remediation. Team Leadership and Development: Lead and mentor a team of security test engineers, providing guidance on technical challenges and professional growth. Conduct reviews of designs, code, and test plans to identify risks and ensure quality deliverables. Identify training needs for the team and provide support for their technical development. Risk Analysis and Requirement Management: Conduct requirement analysis and feasibility studies, considering risk identification and mitigation. Perform system-level work estimation and ensure timely delivery of high-quality work. Ensure traceability of requirements from design to delivery, while optimizing code and ensuring test coverage. Continuous Improvement: Participate in technical initiatives within the project and organization, delivering training and maintaining a high level of technical competence through ongoing self-study and technical assessments. Identify and implement improvements in security testing practices and tools. Required Skills and Experience 7-9 years in Security Verification and Validation on Embedded Systems. 3-4 years of experience leading a team of security test engineers. Hands-on experience with scripting languages like Python, Java, and AI/ML-based tools. Experience in penetration testing and security assessments for embedded systems and network infrastructures. Technical Expertise: Strong knowledge of security testing methodologies, vulnerability assessments, and penetration testing. Proficiency in scripting languages (Python, Java, Perl, Shell scripts, TCL). Experience in Automation Frameworks for security testing. Understanding of network protocols (2G, 3G, LTE, 5G) and security concerns within telecommunications and embedded systems. Certifications: Bachelor s degree in Engineering or equivalent. Certifications in Security Testing (e.g., Certified Ethical Hacker - CEH) are highly desirable. Tools and Technologies: Experience with test and trace/log collection tools such as QXDM, QCAT, QPST, Prism, and other telecom instruments (e.g., Anritsu, Keysight). Familiarity with automation scripting tools like RTD (for Anritsu) or equivalent. Knowledge of Linux host platforms and network simulation tools. Specialization: Expertise in 2G, 3G, 4G, 5G, Interop Testing, and VSAT-SATCOM technologies. Understanding of 3GPP specifications and network vendor tests. Desirable Skills Strong problem-solving and analytical skills to identify vulnerabilities and assess risks in systems. Ability to provide strategic and actionable insights based on security findings. Ability to communicate complex security issues to non-technical stakeholders. Leadership and mentoring capabilities to guide junior engineers and promote team development. Work Environment Location: Bangalore Opportunity to work in a dynamic environment with the latest tools and technologies in the security testing domain. If you have a passion for security testing and automation, along with a desire to lead and contribute to impactful projects, this is the perfect opportunity for you! Apply now to join our team and make a significant impact in the field of security testing.

Job Title: Application Security Engineer About PhonePe Group PhonePe is India s leading digital payments company with 500 million registered users and 37 million merchants, covering over 99% of India s postal codes. Building on its leadership in digital payments, PhonePe has expanded into financial services, including insurance, mutual funds, stock broking, and lending. It has also ventured into adjacent tech-enabled businesses such as Pincode for hyperlocal shopping and Indus App Store, India s first localized app store. The PhonePe Group is a portfolio of businesses aligned with the company s vision to offer every Indian an equal opportunity to accelerate their progress by unlocking the flow of money and access to services. Culture At PhonePe, we empower our people and trust them to do the right thing. We create an environment that enables you to give your best every day, from day one. If you are passionate about building technology that impacts millions, ideating with the brightest minds, and executing with purpose and speed, PhonePe is the place for you! Job Description We are looking for a skilled Application Security Engineer to join our team and strengthen our security posture. You will proactively identify and mitigate vulnerabilities across our web applications, APIs, and mobile apps. The ideal candidate will have a strong background in penetration testing, secure code review, and security automation. Roles & Responsibilities (What You Will Do) Penetration Testing: Perform penetration testing on web applications, APIs, and mobile apps, providing in-depth vulnerability analysis and remediation guidance. Secure Code Review: Conduct both manual and automated secure code reviews, primarily in Java, Python, and JavaScript. Security Automation: Develop security automation solutions using Python to streamline testing, improve coverage, and reduce manual effort. Collaborate with Development Teams: Work closely with development teams to ensure timely resolution of security issues within fast-paced release cycles. Threat Modeling: Create and maintain threat models, applying threat modeling techniques to proactively identify and mitigate design-level security risks. Security Education: Foster a security-first mindset by educating developers on secure coding practices, common vulnerabilities, and attack vectors. Effectively communicate security findings to stakeholders. What Makes You a Great Fit Experience: 1-5 years of experience in application security, penetration testing, or related fields. Penetration Testing Expertise: Strong penetration testing expertise with tools like Burp Suite, OWASP ZAP, semgrep, MobSF, Jadx-GUI, and other mobile security testing frameworks. DevSecOps Knowledge: Experience integrating security into the SDLC and familiarity with DevSecOps tools. Secure Coding Knowledge: Proficiency in secure coding principles, OWASP Top 10, CWE, and exploit techniques. Scripting Skills: Strong scripting skills (Python preferred) for security automation. Communication Skills: Excellent communication and stakeholder management abilities. Continuous Learning: Passion for continuous learning and staying updated on security trends. Certifications (Optional): Certifications like OSCP, OSWE, CRTP, or a proven Bug Bounty track record and/or CTF participation are a plus. PhonePe Full-Time Employee Benefits Insurance Benefits: Medical Insurance, Critical Illness Insurance, Accidental Insurance, Life Insurance. Wellness Program: Employee Assistance Program, Onsite Medical Center, Emergency Support System. Parental Support: Maternity and Paternity Benefits, Adoption Assistance Program, Day-care Support. Mobility Benefits: Relocation Benefits, Transfer Support Policy, Travel Policy. Retirement Benefits: Employee PF Contribution, Flexible PF Contribution, Gratuity, NPS, Leave Encashment. Other Benefits: Higher Education Assistance, Car Lease, Salary Advance Policy. Why Work at PhonePe Working at PhonePe is a rewarding experience. With great people, a work environment that thrives on creativity, and the opportunity to take on roles beyond your defined job description, PhonePe offers a chance to grow your career in an innovative, dynamic company.

Job Title: Site Reliability Engineer (SRE) Cloud Platform & Production Pipeline Initiatives Location: Bangalore, India (Office-based role) About Couchbase: As industries race to embrace AI, traditional database solutions fall short of rising demands for versatility, performance, and affordability. Couchbase is leading the way with Capella, the developer data platform for critical applications in our AI-driven world. By uniting transactional, analytical, mobile, and AI workloads into a seamless, fully managed solution, Couchbase empowers developers and enterprises to build and scale applications with unmatched flexibility, performance, and cost-efficiency from cloud to edge. Trusted by over 30% of the Fortune 100, Couchbase is unlocking innovation, accelerating AI transformation, and redefining customer experiences. Come join our mission! Job Overview: As a Site Reliability Engineer (SRE), you will play a pivotal role in managing, optimizing, and maintaining Couchbase s cloud infrastructure for Capella, our Database as a Service (DBaaS) platform. You will be responsible for ensuring the reliability and performance of our cloud service while collaborating closely with engineering teams to improve deployment pipelines, security practices, and overall system health. You will work across cloud platforms and multiple tools to provide guidance, mentorship, and contribute to the strategic direction of cloud operations. Responsibilities: Infrastructure Management: Manage, monitor, and maintain the infrastructure for Capella to ensure reliable operations. Security & Compliance: Implement and manage cloud environments in accordance with company security guidelines, including vulnerability management, penetration testing, and compliance requirements (SOC 2, PCI-DSS, GDPR, HIPAA, etc.). CI/CD & Release Pipeline: Collaborate with engineering teams to optimize CI/CD processes, aiming for a highly resilient deployment strategy, ideally with zero downtime. Cloud Optimization: Stay up-to-date with new technologies and industry trends to continuously improve cloud platform architecture and meet the evolving needs of the business. Security Integration: Work with development teams to integrate security scanners within the DevOps lifecycle, enhancing security posture. Leadership & Mentorship: Provide guidance on architecture, code reviews, and technical feedback to improve service reliability, security, cost, and performance. Incident Management: Demonstrate exceptional problem-solving skills, proactively identifying and addressing potential issues before they affect business operations. Collaboration: Partner with development teams, application owners, and stakeholders to integrate best practices and ensure seamless service delivery. Requirements: Experience: 5+ years in Site Reliability Engineering (SRE), DevSecOps, or similar roles, with significant experience working in public cloud environments. Programming & Scripting: Proficiency in languages such as Go, Python, Java, or Ruby. Linux Expertise: High proficiency with Linux operating systems. Kubernetes Management: Experience in managing and maintaining Kubernetes clusters (both self-managed and managed platforms like AWS EKS). Security & Vulnerability Management: In-depth knowledge of security tools and practices (vulnerability management, pen testing, SCA, DAST, SAST), with hands-on experience using tools like Sysdig, Synk, and Blackduck. Cloud Platforms & Tools: Strong experience with cloud platforms (AWS, GCP, Azure) and open-source tools like Artifactory, Jira, Jenkins, Grafana, Prometheus, Datadog, Thanos, etc. Configuration Management: Proficiency with Terraform, Git, and CI/CD platforms (e.g., CircleCI, GitHub, Spinnaker). Networking Security: Solid understanding of TCP/IP, DNS, HTTP, Firewalls, VPNs, and other networking security concepts. Preferred Skills: Availability & Reliability: Knowledge of SLO/SLA, availability, reliability, and performance concepts. Incident Management: Experience with on-call rotations and incident management. Database Experience: Familiarity with databases, particularly Couchbase. Security Certifications: Relevant certifications in security or cloud technologies are a plus. Couchbase reimagines database technology to deliver a fast, flexible, and affordable cloud database platform, empowering developers to build applications with exceptional customer experiences. Trusted by over 30% of the Fortune 100, Couchbase drives innovation and customer success through its Capella platform. Benefits at Couchbase: Generous Time Off Program: Flexibility to care for yourself and your family. Wellness Benefits: Access to world-class medical plans, dental, vision, life insurance, and employee assistance programs. Financial Planning: RSU equity program, ESPP, retirement planning, and business travel insurance. Career Growth: Focused on your career development and success. Fun Perks: Ergonomic and comfortable office setup, food & snacks for in-office employees, and more!

At Tide, we re building a finance platform to help small businesses save time and money. We offer business accounts and banking services alongside a comprehensive set of administrative solutions, from invoicing to accounting. Launched in 2017, Tide is trusted by over 1 million small businesses worldwide and is available to SMEs in the UK, India, and Germany. Headquartered in London, we have offices in Sofia, Hyderabad, Delhi, Berlin, and Belgrade, with a global team of 2,000+ employees. As we expand into new markets, we re constantly seeking passionate individuals to help us empower small businesses. About the Team The Security Engineering Team at Tide is divided into three core areas: Product Security, Threat Detection & Response, and Identity. Product Security (this role) focuses on embedding security throughout our product lifecycle, from secure design reviews and threat modeling to penetration testing, ensuring security is baked into every stage of development. Threat Detection & Response builds a robust detection and automation platform, proactively defending against emerging threats and making Tide resilient. Identity manages Tide s staff identity platform, ensuring secure access with modern strategies like zero trust and multi-factor authentication. Collaboration is central to our work standups, shared channels, and cross-functional projects keep us aligned and cohesive. About the Role We re seeking a Senior Product Security Engineer with a passion for application security and resilient software development. You ll be responsible for hunting vulnerabilities in our web and mobile applications, collaborating with engineering teams to remediate strategically, and ensuring security is seamlessly integrated into our development process. You ll be an advocate for security across the organization, mentoring engineers, and introducing the latest security tools and trends. As a Senior Product Security Engineer, you will: Dive deep into mobile and web technologies to proactively hunt for vulnerabilities. Secure cloud-native applications, ensuring best practices across Tide s AWS cloud environment. Perform threat modeling and guide teams in secure design principles to prevent vulnerabilities. Remediate vulnerabilities through strategic initiatives and hands-on patching. Act as a subject matter expert across a range of security areas, particularly application security. Mentor and coach junior engineers, sharing your expertise to raise the security bar. Integrate security into our CI/CD pipelines, leveraging automation to catch vulnerabilities early. What We re Looking For: Extensive experience in Application Security (AppSec), with a deep understanding of concepts like Secure Enclave, URL Schemes vs. Universal Links, and presigned URLs in S3. Proficiency with tools like Burp Suite (bonus points if you ve built custom extensions). Excellent communication skills able to clearly articulate vulnerabilities and advocate for their remediation. Hands-on experience with cloud-native applications and consistently applying security best practices. Ability to write proof-of-concept (POC) scripts to demonstrate findings and their potential impact. A passion for the security community public speaking, blogging, bug bounties, or sharing your work on GitHub is a plus. Our Tech Stack: Cloud Environment: 100% containerized on AWS EKS. Infrastructure as Code (IaC): Managed via Terraform and Terragrunt. Deployment: GitOps with Argo CD, supported by Helm and Crossplane. CI/CD: GitHub Actions and all source code hosted on GitHub. What You ll Get in Return: Competitive salary Health Insurance (Self & Family) Term & Life Insurance OPD Benefits Mental Well-being Support through Plumm Learning & Development Budget WFH Setup Allowance Leave Benefits: 15 Privilege Leaves, 12 Casual Leaves, 12 Sick Leaves, 3 Paid Days Off for Volunteering or L&D Activities Stock Options Tidean Ways of Working: We support a flexible workplace model, balancing remote and in-person work to meet the needs of different teams. While remote work is encouraged, we believe in face-to-face interactions to foster innovation and strengthen team spirit. Our offices are hubs for collaboration and community-building. Diversity & Inclusion at Tide: At Tide, diversity and inclusion are at the heart of our culture. Our Tideans come from diverse backgrounds, bringing unique perspectives that help us build products that resonate with our members. We are committed to creating an environment where everyone s voice is heard, and all individuals regardless of ethnicity, gender identity, sexual orientation, or disability are welcomed and celebrated. We are One Team, fostering transparency and inclusion in everything we do.

Our Mission 6sense is revolutionizing how B2B organizations generate revenue by predicting customers most likely to buy and recommending the best ways to engage with anonymous buying teams. Through Revenue AI, we unlock the ability to create, manage, and convert high-quality pipelines into revenue, reshaping how businesses thrive. Our People At 6sense, people are at the core of our mission. Guided by our values Accountability, Growth Mindset, Integrity, Fun, and One Team we foster an environment where innovation and impact are celebrated. Every team member plays a key role in shaping our industry-leading technology, making 6sense a place for risk-takers and difference-makers who measure success by the value they deliver to customers. Purpose of the Role As part of the Security Operations and Threat Management team, you will help protect 6sense by proactively preventing, detecting, investigating, and responding to security threats and incidents that may impact the business. Key Responsibilities Incident Response & Monitoring: Monitor security alerts, conduct vulnerability assessments, and analyze logs to identify and respond to security incidents. Collaborate with cross-functional teams (Infrastructure, Engineering, IT, GRC, Cloud, and Application Security) to validate alerts and resolve incidents. Threat Landscape Analysis: Perform proactive reviews to assess and address potential security risks. Continuously tune detection rules in security solutions to adapt to evolving threats. Automation & Tool Administration: Manage security tools and develop basic automation for improved efficiency. Identify and implement opportunities for process automation to enhance security operations. Documentation & Playbooks: Create and maintain a security playbook for various threat scenarios. Keep documentation, runbooks, workflows, and dashboards up to date. Performance & Objectives: Align with quarterly Key Results that support team Objectives (OKRs). Participate in the Security Operations on-call rotation to ensure prompt responses. Performance Metrics Proficient understanding of the 6sense product and platform. Participation in regular 1:1s with managers and monthly skip-level meetings. Efficient identification and closure of incidents within established SLAs. Maintenance of accurate, up-to-date documentation and proactive engagement with SecOps technologies. Educational & Experience Requirements Experience: 4+ years in a Security Operations role or similar position. Hands-on experience with security tools and cloud environments (e.g., Vulnerability Scanners, SIEM, SOAR, AWS). Knowledge: Familiarity with industry frameworks, regulations, and standards, including MITRE ATT&CK, STRIDE, ISO 27001, GDPR, SOC 2, PCI, and NIST. Understanding of AI applications in cybersecurity (preferred). Qualifications: Bachelor's degree in a related field. Relevant certifications, such as CSA, GCDA, GSOC, or CySA, are advantageous. Benefits At 6sense, we offer: Comprehensive health coverage. Paid parental leave. Generous paid time off and holidays. Quarterly self-care days off to prioritize well-being. Stock options to share in the company s success. Support and equipment to work from home or one of our offices. Join us to make an impact in the evolving cybersecurity landscape, empowering organizations to grow revenue through innovation and resilience. Qualification : Bachelor's degree in a related field

Position Responsibilities: 1. Risk and Threat Assessments: Conduct comprehensive risk and threat assessments for L3 Autonomous Driving (AD) systems. Perform analyses like TARA (Threat Analysis and Risk Assessment) and MORA (Misuse-Oriented Risk Analysis). 2. Security Design and Development: Redesign modules focusing on cybersecurity. Develop and implement security features, including SecOC (Secure Onboard Communication) and CSM (Cybersecurity Management). Drive compliance with cybersecurity regulations and standards. 3. System and Requirements Architecture: Analyze and define security requirements for AD L3 systems. Collaborate with E/E system architects for security improvements. Develop and refine business, system, and architecture requirements. 4. Support and Coordination: Assist with the development of ECU software for L3 autonomous driving. Provide integration support and troubleshooting for ECUs. Coordinate internal and external assessments, including penetration tests and security evaluations. 5. Cybersecurity Analysis and Implementation: Develop security concepts and conduct analyses like FTA (Fault Tree Analysis) and FMEA (Failure Modes and Effects Analysis). Ensure adherence to regulations such as ISO 21434, UNECE R155, and UNECE R156. Required Skills and Competencies: Essential Skills: Strong expertise in automotive cybersecurity and relevant regulations (ISO 21434, UNECE R155/R156). Knowledge of L3 Autonomous Driving (AD) and Advanced Driver Assistance Systems (ADAS). Hands-on experience with Automotive ECUs, secure bootloaders, and gateway modules. Proficiency in C/C++ programming and working knowledge of AUTOSAR and its configuration tools. Familiarity with cybersecurity analysis tools like Medini or equivalent. Expertise in in-vehicle networks (e.g., CAN Protocol, UDS Protocol) and V2X technologies. Understanding of cybersecurity best practices, secure development requirements, and IT security standards. Experience with threat management models, firewalls, and embedded software components. Knowledge of security mechanisms, protocols, cryptography, and authentication systems. Preferred Skills: Strong background in ADAS and autonomous driving technologies. Experience in intrusion detection, incident response, and computer forensics. Familiarity with requirements management tools (e.g., DOORS, codeBeamer, JAMA). Hands-on experience in product development lifecycle and automotive cybersecurity. Educational Qualifications and Experience: Essential: Bachelor s or Master s degree in Information Security, Computer Science, Electrical Engineering, or related fields. Minimum of 4+ years of relevant experience in the automotive industry (AD/ADAS or autonomous driving). Preferred: Expertise in cybersecurity standards, analysis, and threat management tools. Key Competencies and Tools: Cybersecurity Standards: ISO 21434, UNECE R155/R156. Risk Assessment Techniques: TARA, MORA. Analysis Tools: Medini, FTA, FMEA. Software Tools: AUTOSAR, SAP, C/C++ programming, Requirements Management Tools (DOORS, JAMA). Protocols and Technologies: CAN, UDS, V2X. Qualification : Bachelors or Masters degree in Information Security, Computer Science, Electrical Engineering, or related fields.