Security Frameworks Nist Jobs in Bengaluru

Staff Engineer - Software Development (Cloud AI & Network Security) Location: Bengaluru Company: Aviatrix Experience Required: 7+ Years About Aviatrix: Aviatrix is a global leader in cloud network security, trusted by over 500 enterprises. We provide a specialized platform for securing multi-cloud environments, giving organizations the control and visibility needed to modernize their cloud strategies. Architectural Focus & Impact As a Staff Engineer, you will architect and deliver advanced AI-driven network security solutions. This role bridges the gap between Distributed Systems (Python/Go), Real-time Telemetry, and LLM-integrated automation to build self-learning, adaptive security infrastructures. Technical Expertise Core Software Engineering: Languages: Deep proficiency in Python and Go (Golang). Distributed Systems: Mastery of Kubernetes, Microservices, and high-scale observability (Prometheus, ELK). Data Pipelines: Experience with real-time stream processing using Kafka, Flink, Kinesis, or Pub/Sub. Networking & Security Domain: Cloud Infrastructure: Expert knowledge of VPC/VNet design, Routing, Load Balancers, and Overlays. Firewall Technologies: Hands-on with Deep Packet Inspection (DPI), NGFW/IDS/IPS, and Cloud-native firewalls (AWS, Azure, GCP). Security Frameworks: Alignment with Zero Trust, NIST CSF, and CIS Benchmarks. AI & Machine Learning Integration: Model Serving: Experience serving ML models via REST or gRPC. Generative AI: Familiarity with LLM integration, RAG (Retrieval-Augmented Generation), LangChain, and vector databases. Key Responsibilities System Architecture: Lead the design of cloud-native microservices for security control planes. AI-Driven Features: Integrate LLMs for Natural Language-to-Firewall Rule translation and automated incident summarization. Technical Leadership: Mentor junior engineers and set high standards through rigorous Design and Code Reviews. Cross-Functional Collaboration: Partner with Data Scientists and Cloud Networking teams to deliver production-grade AI features. Benefits & Why Join Us Regional Package: Comprehensive pension, private medical coverage, and life assurance. Wellbeing: Annual wellbeing stipend and generous holiday allowance. Growth Culture: We value unique career paths and prioritize candidates who are passionate about the intersection of AI and Security.

Manager, Enterprise Applications Location: Bengaluru Team: Tech Ops Experience Required: 8+ Years (including 2+ years in Leadership) About Aviatrix: Aviatrix is a leading cloud network security company trusted by over 500 enterprises. Our Cloud Native Security Fabric (CNSF) delivers runtime security and visibility, enabling teams to adopt AI and serverless computing with confidence. The Role: Technical Manager & Architect We are seeking a Manager, Enterprise Applications for a hybrid role that balances hands-on engineering with strategic leadership. You will drive the design of secure, scalable applications while fostering a culture of accountability and excellence within our Bengaluru development team. Technical Expertise Core Technology Stack: Serverless Mastery: Expert-level proficiency with AWS Lambda and AWS Step Functions. Full-Stack Development: Professional experience in Node.js, Python, and React. Data Management: Strong knowledge of Postgres and cloud platforms (AWS, Azure, GCP). Advanced Engineering Skills: AI & LLM Integration: Experience building LLM-powered applications and leveraging AI tools for code generation and architecture exploration. Security & Authentication: Deep understanding of SSO integrations, API design, and distributed systems security. Infrastructure: Familiarity with DevOps, CI/CD, and automated testing frameworks. Key Responsibilities Technical Leadership: System Design: Lead the delivery of complex enterprise applications, making critical strategic trade-offs and proposals. Operational Efficiency: Continuously improve application reliability, performance, and security. Cross-Functional Representation: Act as the primary technical liaison for stakeholders and business partners. People & Team Management: Team Mentorship: Conduct 1:1s, performance reviews, and career development discussions for junior engineers. Execution & Planning: Drive team performance through strategic planning, tracking, and alignment with organizational priorities. Growth: Lead technical hiring to expand the Enterprise Applications team. Benefits & Why Aviatrix Total Rewards: Comprehensive pension, private medical, life assurance, and long-term disability. Wellbeing: Annual wellbeing stipend and generous holiday allowance. Inclusive Environment: We value unique paths. If you are passionate about leading engineers and solving cloud-scale challenges, we want to hear from you.

Job Title: Senior Engineering Manager / Engineering Manager Location: Bengaluru Department: Information Technology Category: Others Job Purpose We are seeking an experienced and hands-on Engineering Manager with a solid technical background in Node.js, Golang, or Java. The ideal candidate is a skilled coder, capable of leading engineering teams to deliver scalable, high-quality software. You ll manage squads independently, drive cloud-native and microservices-based development, and collaborate cross-functionally to meet business goals. Experience with AWS is a strong advantage. Key Responsibilities 1. Technical Leadership Lead, mentor, and inspire engineering teams to deliver robust and efficient solutions. Provide technical guidance, enforce coding standards, and encourage best practices. 2. Full Stack Development Actively contribute to development using ReactJS, Golang, or Java. Demonstrate hands-on technical leadership through coding, design, and code reviews. 3. Architecture & Design Design and implement scalable microservices and cloud-native architectures. Ensure system reliability, security, and performance across distributed systems. 4. Squad Management Independently lead squads, ensuring timely and high-quality delivery of projects. Foster a collaborative, inclusive, and high-performance team culture. 5. Cross-Functional Collaboration Work closely with Product Managers, Designers, and other stakeholders to align tech execution with business priorities. Translate requirements into effective engineering solutions. 6. Innovation & Continuous Improvement Stay ahead of technology trends and continuously improve engineering practices. Evaluate and implement new tools, frameworks, and methodologies as needed. Required Skills & Experience Strong engineering background with proven leadership in software development roles. Expertise in Node.js, Golang, or Java with hands-on coding experience. Deep understanding of microservices and cloud-native architecture. Experience with AWS or similar cloud platforms. Excellent problem-solving, analytical, and communication skills. Preferred Qualifications Experience with Agile methodologies and DevOps practices. Familiarity with Docker, Kubernetes, and other containerization tools. Prior experience managing engineering teams in a fast-paced environment. AWS certifications are a strong plus. Proven ability to deliver complex and scalable software products. Educational Qualifications Undergraduate: B.Sc / B.Tech / BCA Postgraduate: M.Sc / M.Tech / MCA Qualification : M.Sc / M.Tech / MCA

Platform Admin NextGen SIEM Location: Bangalore (Onsite) About ColorTokens At ColorTokens, we re all about helping businesses stay secure and keep running, no matter what cyber chaos hits. Our game-changing Xshield platform stops ransomware and malware from spreading sideways, so companies can keep their critical stuff safe and business uninterrupted. We bring insane visibility into traffic flows between workloads, IoT devices, users basically everything to create super tight security zones that isolate threats fast. We re a Forrester Wave Leader (Q3 2024) for microsegmentation and protect global giants from costly cyber disruptions. Our Culture We love self-starters who bring energy, curiosity, and big ideas. You ll get to own projects, collaborate with passionate teammates, and work on security that actually protects real people from hospitals to cities to entire nations. What You ll Do The Role You ll run and manage our NextGen SIEM platform think Splunk, Sentinel, Exabeam, Stellar Cyber, or similar making sure it s up-to-date, humming smoothly, and packed with the right alerts. Admin & Ops: Install, configure, patch, and keep the SIEM platform running 24/7. Log Boss: Bring in new log sources, troubleshoot ingestion issues, and ensure data is clean and compliant. Rule Maker: Build and tweak detection rules and alerts to catch real threats while cutting down false alarms. Integrate & Automate: Connect SIEM with other security tools and automate incident workflows. Lock It Down: Manage user access, keep the platform secure, and nail compliance requirements. Team Player: Work closely with SOC analysts, threat hunters, and engineers to level up detection and response. Support & Train: Help users get the most from the platform and be the go-to expert when incidents hit. Optimize & Report: Track performance, fix bottlenecks, and share insights to keep the platform sharp. What You Bring Your Skills & Experience 8+ years managing SIEM platforms, especially NextGen ones like Splunk, Sentinel, or Exabeam. Expert in log management, rule creation, and onboarding data from all sorts of sources. Solid scripting skills (Python, PowerShell) to automate and customize workflows. Deep knowledge of log formats (Syslog, JSON, XML), querying languages (KQL, SPL, AQL), and data pipelines. Experience integrating SIEM with EDR, SOAR, NDR, and threat intel platforms. Familiar with security frameworks like MITRE ATT&CK, NIST, or CIS. Bonus points if you know cloud security (AWS, Azure, GCP), machine learning in SIEM, or SOAR tools like Cortex XSOAR or Phantom. Your Credentials Bachelor s degree in Computer Science, InfoSec, or related field (or equivalent experience). Relevant certifications like Splunk Certified Admin, Microsoft Security Operations Analyst, QRadar cert, or CISSP are a major plus. What Success Looks Like Keep SIEM uptime near 100%. Smoothly onboard new log sources and build killer detection use cases. Reduce noise fewer false positives, sharper alerts. Fast, effective fixes when platform issues pop up. Align SIEM capabilities tightly with security and business goals. Qualification : Bachelors degree in Computer Science, InfoSec, or related field (or equivalent experience).

Platform Engineer Location: Bengaluru, Karnataka, India Full-time partially remote About ColorTokens At ColorTokens, we empower businesses to stay operational and resilient in an increasingly complex cybersecurity landscape. Breaches happen but with our cutting-edge ColorTokens Xshield platform, companies can minimize the impact of breaches by preventing the lateral spread of ransomware and advanced malware. We enable organizations to continue operating while breaches are contained, ensuring critical assets remain protected. Our innovative platform provides unparalleled visibility into traffic patterns between workloads, OT/IoT/IoMT devices, and users, allowing businesses to enforce granular micro-perimeters, swiftly isolate key assets, and respond to breaches with agility. Recognized as a Leader in the Forrester Wave : Microsegmentation Solutions (Q3 2024), ColorTokens safeguards global enterprises and delivers significant savings by preventing costly disruptions. Our culture We foster an environment that values customer focus, innovation, collaboration, mutual respect, and informed decision-making. We believe in alignment and empowerment so you can own and drive initiatives autonomously. Self-starters and high-motivated individuals will enjoy the rewarding experience of solving complex challenges that protect some of world s impactful organizations be it a children s hospital, or a city, or the defense department of an entire country. Position Overview: Colortokens is looking for a Junior Platform Administrator to assist in managing, maintaining, and optimizing our NextGen Security Information and Event Management (SIEM) platform. The ideal candidate will support the day-to-day operations, help onboard customer log sources, troubleshoot integration issues, and provide technical assistance to the security operations team. This role is ideal for a motivated professional with 3+ years of experience in SIEM administration, security operations, or log management. Key Responsibilities: SIEM Platform Administration Assist in deploying, configuring, and maintaining the NextGen SIEM platform (e.g., Stellar Cyber, Splunk, Sentinel, QRadar, Chronicle, Exabeam). Perform basic updates and patches to ensure platform security and functionality. Monitor SIEM health, performance, and uptime under the guidance of senior administrators. Log Source Management Onboard new log sources and validate data ingestion. Help troubleshoot log ingestion, parsing, and formatting issues. Maintain log retention policies for compliance. Rule and Use Case Management Support the development and deployment of detection rules, correlation use cases, and alerts. Tune existing use cases to minimize false positives. Work closely with security analysts to refine alerting strategies. Integration and Automation Assist in integrating SIEM with other security tools (e.g., EDR, microsegmentation, vulnerability scanners). Work on basic automation tasks using scripting (Python, PowerShell) to enhance SIEM efficiency. Platform Security and Compliance Support role-based access control (RBAC) and platform security policies. Help ensure SIEM adheres to compliance standards like SOC2, ISO 27001. Participate in periodic security audits. Network Debugging & Troubleshooting Have a basic understanding of TCP/IP, networking concepts, and protocols. Assist in debugging network connectivity issues related to SIEM log ingestion. Use basic network troubleshooting tools. Collaboration and Support Work alongside SOC analysts, threat hunters, and security engineers. Provide basic technical support for SIEM users. Assist in training and documentation for security teams. Performance Monitoring and Optimization Monitor storage and indexing performance to ensure optimal operations. Report any performance issues to senior administrators. Contribute to platform health reports and alerting metrics. Incident Support Assist SOC teams in log analysis, incident response, and forensic investigations. Ensure log data is readily available for security incidents. Education and Certifications: Bachelor s degree in Computer Science, Information Security, or a related field. Certifications (Preferred but not mandatory): Splunk Certified User/Admin Microsoft Certified: Security Operations Analyst Associate QRadar Certification Any SIEM-related certification Experience: 3+ years of experience in SIEM administration, security operations, or log management. Hands-on experience with at least one SIEM platform (e.g., Stellar Cyber, Splunk, Sentinel, Chronicle, Exabeam). Basic knowledge of log ingestion, rule creation, and data parsing. Exposure to scripting (Python, PowerShell) for automation. Basic understanding of TCP/IP networking concepts and network debugging. Technical Skills: Understanding of log formats, Syslog, JSON, XML, and data pipelines. Basic knowledge of querying languages (KQL, SPL, AQL). Familiarity with SIEM integration with security tools like EDR, SOAR, NDR. Awareness of MITRE ATT&CK, NIST, or CIS security frameworks. Basic experience with network troubleshooting tools (ping, traceroute, netcat (nc)). Soft Skills: Strong problem-solving and troubleshooting abilities. Good verbal and written communication skills. Ability to work collaboratively in a security operations environment. Preferred Skills: Basic understanding of cloud-based security solutions (AWS, Azure, Google Cloud). Exposure to SOAR tools (e.g., Cortex XSOAR, Splunk Phantom). Interest in machine learning-based anomaly detection for SIEM. Key Metrics for Success: Successful onboarding of log sources. Improvement in log ingestion and parsing accuracy. Contribution to fine-tuning detection rules. Timely resolution of SIEM-related support requests. Ability to identify and troubleshoot basic network connectivity issues.

Senior Associate Data Engineering L2 Location: Bengaluru, India Department: Engineering Data Employment Type: Full-Time About the Role As a Senior Associate Data Engineering (L2) at Publicis Sapient, you will lead technical solutions that drive digital transformation by building scalable, high-performance data platforms. You ll be responsible for translating business and technical requirements into modern, data-centric solutions using Big Data technologies, cloud services (Azure), and advanced data engineering practices. Key Responsibilities Design and implement data ingestion, integration, and transformation processes from multiple heterogeneous sources in both batch and real-time. Build scalable data platforms using Hadoop stack components such as HDFS, Kafka, Spark, Hive, NiFi, Oozie, Airflow, Flink, and Storm. Develop real-time analytics, aggregation, and search features to support various data-driven applications. Collaborate closely with cross-functional teams on data infrastructure, computation frameworks, and data visualization. Apply cloud-native principles and Azure services to build and deploy data pipelines. Ensure performance optimization and data pipeline tuning. Work with NoSQL and MPP platforms like MongoDB, Cassandra, Redshift, Azure SQL DW, HBase, BigQuery. Contribute to infrastructure, automation, and DevOps for data pipelines using CI/CD practices. Ensure data governance, lineage, and cataloging using tools like Collibra or Alation. Required Qualifications 6 8 years of professional experience in software/data engineering. Minimum of 3 years hands-on experience with Big Data technologies. Strong programming expertise in Java (preferred), Scala, or Python. Expertise in the Hadoop ecosystem and real-time stream processing tools (Kafka, Pulsar, Spark Streaming, etc.). Hands-on experience with Azure data services (e.g., Data Factory, Synapse, ADLS, Databricks). Experience working with modern ETL tools (Informatica, Talend, etc.) and traditional RDBMS platforms (Oracle, PostgreSQL, SQL Server, MySQL). Bachelor's degree in Computer Science, Engineering, or related field. Nice to Have Certifications in Azure Data Engineer, GCP Big Data, or related cloud specializations. Experience with distributed messaging frameworks (ActiveMQ, RabbitMQ, Solace). Familiarity with microservices architecture and search technologies (Elasticsearch). Performance tuning of distributed data processing systems. Exposure to data governance, security, and metadata management. Benefits and Culture at Publicis Sapient Gender-neutral workplace policies 18 paid holidays annually Generous parental leave + new parent transition support Flexible work arrangements Access to Employee Assistance Programs (wellness & well-being) A dynamic culture focused on learning, creativity, and collaboration Qualification : Bachelor's degree in Computer Science, Engineering, or related field.

Data Architect Bangalore, India Location: Bangalore (Bengaluru) Experience: 10 to 15 Years Industry: IT & Data Systems Job Summary: We are seeking an experienced Data Architect with a strong background in designing and implementing enterprise-scale data solutions. The ideal candidate will have expertise in building data lakes, warehouses, and pipelines, with deep knowledge of cloud platforms, data management, and industry best practices. Key Responsibilities: Design, develop, and maintain complex data architectures including data lakes, data warehouses, data marts, and efficient schema design Build and optimize scalable data pipelines for extraction, transformation, and loading (ETL/ELT) processes Apply Agile methodologies in project delivery and collaborate within cross-functional teams Perform data profiling, cleansing, conversion, and ensure high-quality data management for both structured and unstructured data Implement CI/CD and Infrastructure as Code (IaC) practices using tools like GitHub, Jenkins, CloudFormation, and Azure Resource Manager Manage database systems and tools such as PostgreSQL, Oracle, Snowflake, Teradata, MongoDB, Hadoop, and others Utilize data modeling tools like Erwin, Power Designer, and Toad for effective data architecture design Leverage cloud platforms including AWS and Microsoft Azure, with hands-on experience in services like AWS Glue, DMS, Lambda, Azure Data Factory, Synapse, and Data Lake Storage Work with programming and scripting languages including SQL, PL/SQL, Python, Spark, YAML, and JSON Use containerization and automation tools such as Docker, Ansible, and NodeJS for efficient deployment Ensure compliance with cybersecurity principles and frameworks such as NIST Lead data governance initiatives and enforce best practices in data quality and security Preferred Qualifications: ITIL certification and experience with Agile methodology Knowledge of code review and version control best practices, especially in GitHub Familiarity with data science tools and AI/ML frameworks like R, Keras, or TensorFlow Experience with natural language processing (NLP) and machine learning concepts Background in regulated industries, with pharma manufacturing experience highly preferred Exposure to multi-site, global IT projects and manufacturing operations Lead innovative data architecture projects within a dynamic and fast-paced environment Work with cutting-edge cloud technologies and big data ecosystems Collaborate with global teams on impactful enterprise solutions Access to professional growth opportunities in data governance, AI, and cloud technologies

Senior AI Program Manager Location: Bangalore, India (Rubrik Office) Team: IT AI (Artificial Intelligence) About the Team Rubrik s IT AI team is leading AI-driven transformation across the organization, leveraging data, automation, and cutting-edge tech to support the company's mission of securing the world s data. This team partners across departments to deliver impactful, scalable AI solutions. Role Overview As a Senior AI Program Manager, you will lead the strategic planning, execution, and governance of AI initiatives across Rubrik s global IT operations. You ll collaborate with cross-functional business units and technical teams to deliver innovative, high-value AI solutions that align with Rubrik's business goals. Key Responsibilities Develop & manage a comprehensive AI program roadmap aligned with business goals. Collaborate with stakeholders across functions (Sales, HR, Finance, Legal, Support, etc.) to gather and prioritize AI solution requirements. Quantify ROI of AI initiatives and drive value-based prioritization. Oversee end-to-end AI project lifecycle: ideation, feasibility, development, deployment, adoption, and success measurement. Partner with technical teams: full-stack developers, data engineers, prompt engineers, cloud architects. Ensure compliance with data privacy, cybersecurity, and ethical AI standards. Champion AI adoption, innovation, and best practices across the organization. Maintain clear communication, manage risks, and provide consistent updates to leadership and stakeholders. What You ll Bring 5 8 years of experience in program management (IT/Tech Consulting/Engineering), with 2+ years leading AI-focused initiatives. Familiarity with Large Language Models (LLMs) and related technologies. Experience working alongside technical teams (developers, data engineers, cloud experts). Strong grasp of AI solution delivery using full-stack and cloud-based technologies. Skilled in business case development, ROI analysis, and roadmap execution. Excellent stakeholder communication, cross-functional leadership, and Agile project management skills (Jira, Confluence). Exceptional organizational and problem-solving abilities; comfortable in fast-paced, ambiguous environments. Preferred Qualifications Bachelor s degree in CS, Engineering, IT, or related field. Experience managing AI programs in large tech companies or consulting firms. Awareness of AI regulations and frameworks (e.g., GDPR, NIST, EU AI Act, CCPA). Rubrik (NYSE: RBRK) secures data across cloud, SaaS, and enterprise environments using its Zero Trust Data Security platform. Powered by machine learning, Rubrik helps organizations ensure data integrity, availability, and resilience against modern cyber threats and disruptions. Qualification : BS in Computer Science, Engineering, Information Technology, or a related technical field.

Senior Information Security Analyst Data Governance Location: Bangalore, India About the Team The Information Security (InfoSec) team at Rubrik strengthens company-wide security through initiatives, tools, and processes that protect data and systems. They also oversee security monitoring, incident response, and educate employees on best practices to secure Rubrik s information assets. Role Overview This role focuses on data governance and security review throughout the Software Development Lifecycle (SDLC) to ensure sensitive data is properly protected. You will collaborate cross-functionally with Legal, Engineering, Product, and IT teams, while also supporting the Security Operations Center (SOC) with expert guidance on data governance during incident response. Key Responsibilities Perform data governance and security reviews during SDLC for new products and features. Manage and document metadata, including data lineage, ownership, and definitions. Conduct audits and assessments to ensure compliance with data governance standards. Maintain strong relationships and communication with internal stakeholders to facilitate governance adherence. Act as a subject matter expert for SOC, supporting incident response from a data security perspective. Support training and awareness programs on data governance policies and best practices. Develop and maintain governance documentation, policies, and procedures. Identify and escalate data governance risks with actionable recommendations. Experience & Qualifications Required: Bachelor s or Master s degree in Information Security, Data Analytics, or related field. 3 5 years in information security, data security, or data governance roles. Strong understanding of data security principles and frameworks (e.g., NIST). Excellent communication, presentation, and documentation skills. Project management skills to lead governance projects. Ability to adapt quickly and maintain professionalism in dynamic environments. Preferred: Certifications: CISSP, CISM, CDPSE, Security+ (or similar). Experience with data governance tools and metadata management. Knowledge of data privacy regulations: GDPR, CCPA, HIPAA. Experience supporting or collaborating with SOC/incident response teams. Strong analytical and problem-solving skills, especially with complex data. Familiarity with cloud-based data security solutions. Rubrik leads in Zero Trust Data Security , providing cutting-edge data protection across enterprise, cloud, and SaaS environments. This role offers an impactful chance to enhance data governance and security in a mission-critical, rapidly evolving tech company. Qualification : Bachelors or Masters degree in Information Security, Data Analytics, or related field.

Audit Analyst II - IT Audit & Compliance Location: Bangalore, Karnataka Full Time Experience: 3-4 Years Work Environment: Work from Office (Occasional travel required) About the Team & Role: We are seeking a motivated and detail-oriented IT Audit Analyst to join our Audit & Compliance team. This role involves planning, executing, and reporting on IT audits across various domains, including IT infrastructure, cloud environments, SaaS applications, and compliance frameworks like ISO 27001, ISO 27701, and PCI DSS. The successful candidate will evaluate IT controls, identify risks, and recommend practical solutions to improve the organization's IT governance, risk management, and control environment. You will work independently on moderately complex audits and assist senior auditors on larger engagements. Key Responsibilities: Audit Planning & Execution: Assist in the development of risk-based IT audit plans. Plan and execute audits covering infrastructure, cloud services (AWS), and SaaS applications. Develop audit programs and testing procedures to evaluate IT controls. Compliance & Framework Audits: Conduct audits against IT security and privacy frameworks, including ISO 27001 (Information Security), ISO 27701 (Privacy Information), and PCI DSS (Payment Card Industry Data Security Standard). Risk Assessment & Analysis: Identify IT risks and control weaknesses during audits. Analyze findings and assess potential business impacts. Evaluate risk mitigation strategies. Reporting & Communication: Document audit work, prepare draft reports with findings and recommendations, and communicate results to management and stakeholders. Collaboration & Improvement: Collaborate with IT teams, business units, and external auditors. Stay up-to-date with emerging technologies, IT security threats, and audit methodologies. Contribute to continuous improvement efforts for the audit function. Qualities We re Looking For: Education & Experience: Education: Bachelor s degree in Information Systems, Computer Science, Cybersecurity, Business Administration, or related field. Experience: 3-4 years of progressive experience in IT Audit, Information Security, IT Risk Management, or a related field. Technical Skills: Strong understanding of IT infrastructure components (networks, operating systems, databases, servers, virtualization). Solid knowledge of cloud computing, specifically auditing cloud environments (AWS focus). Experience auditing SaaS solutions and assessing third-party/vendor risk management. Knowledge of IT general controls (ITGCs) and application controls. Framework & Standard Knowledge: Demonstrated experience with ISO 27001, ISO 27701, and PCI DSS standards. Familiarity with other frameworks such as NIST Cybersecurity, COBIT, and SOX ITGCs is a plus. Audit Skills: Proficiency in IT audit methodologies, risk assessment techniques, and control testing procedures. Strong analytical, problem-solving, and critical-thinking skills. Excellent written and verbal communication skills, with the ability to articulate technical issues to both technical and non-technical audiences. Attention to detail and ability to manage multiple tasks and deadlines. Proficiency with Microsoft Office Suite. Certifications & Tools: Professional certifications such as CISA, CISSP, CISM, CRISC, AWS Certified Security Specialty or similar are highly desirable. Experience with GRC (Governance, Risk, Compliance) tools. Experience with data analysis tools like ACL, IDEA, or Excel PowerQuery/Pivot. Joining our team means becoming part of a dedicated, high-performing group focused on IT governance, risk management, and compliance. As an IT Audit Analyst, you'll have the opportunity to work on exciting, challenging audits, develop your skills, and contribute to continuous improvement initiatives. We offer a collaborative and innovative environment where you can grow professionally while making an impact on the organization s success. Equal Employment Opportunity: We are an Equal Employment Opportunity employer. We do not discriminate based on race, religion, color, national origin, sex (including pregnancy, childbirth, reproductive health decisions, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, genetic information, political views or activity, or other applicable legally protected characteristics. Qualification : Bachelors degree in Information Systems, Computer Science, Cybersecurity, Business Administration, or related field.

Principal Software Engineer - Backend | FinBox Location: Bengaluru Experience: 10-15 Years About FinBox: Where Fintech Meets Fun! Welcome to FinBox, where innovation in fintech meets creativity and excellence. Since our founding in 2017, we ve been transforming the financial services space, building state-of-the-art technologies that help lenders like Banks, NBFCs, and large enterprises quickly launch credit products cutting down development time from months to days. As a Series A funded company, we re rapidly expanding, with offices across India, Vietnam, Indonesia, and the Philippines. Our mission is to build the best-in-class infrastructure for lending products, empowering financial services firms worldwide to launch and scale credit programs that define the future of digital finance. We've already helped our customers disburse billions of dollars in credit, touching millions of lives globally. Innovative Environment: We encourage creative thinking and experimentation to push the boundaries of fintech. Impactful Work: Your contributions will directly impact millions, improving accessibility to credit across the world. Growth Opportunities: As a rapidly growing startup, we offer ample opportunities for personal and professional growth. Collaborative Culture: Join a dynamic, diverse, and inclusive team where everyone supports one another to drive meaningful change. Creative Thinkers: You thrive on out-of-the-box solutions and enjoy disrupting the status quo. Customer Heroes: You put the customer first and aim to solve their problems through innovation. Team Players: You work collaboratively and value diverse perspectives in achieving shared success. Key Responsibilities As a Principal Software Engineer - Backend, you will: Drive Technical Excellence Architect and deliver high-impact features and platform improvements with a focus on scalability, latency, and compliance (PCI DSS, GDPR, SOC2). Lead the resolution of critical tech debt across teams, ensuring long-term maintainability and performance. Shape Product Strategy Define and design long-term architecture that aligns with the business goals and technical requirements. Break down complex strategic initiatives into executable engineering tasks. Collaborate with Product, Sales, and Customer Success teams to align technical roadmaps with customer pain points. Ensure consistent, high-quality delivery across teams, maintaining high standards of engineering excellence. Grow Engineering Talent Mentor senior engineers, guiding them into leadership roles while fostering a culture of growth and excellence. Lead knowledge-sharing sessions, design reviews, and technical discussions to help upskill the team. Act as a Cross-Functional Partner Align engineering priorities with Product, Compliance, Operations, and Sales teams. Own Product Requirement Documents (PRDs) and vision decks for strategic features and roadmap alignment. Navigate trade-offs between different stakeholders and drive alignment across functions to ensure successful feature delivery. Ensure Production Stability Lead high-severity incident response and root cause analysis (RCA) processes, ensuring fast resolution and minimal downtime. Maintain and enforce up-to-date incident playbooks, driving a culture of reliability, accountability, and continuous improvement. Who You Are We re looking for someone who: Has 10+ years of experience in software engineering, with at least 3 years in a technical leadership or staff/principal role. Possesses expertise in system architecture, design patterns, and scaling distributed systems. Has a strong understanding of compliance and security frameworks such as GDPR, SOC2, and PCI DSS. Has proven experience in mentoring and developing senior engineers into leadership roles, fostering a culture of technical excellence. Demonstrates excellent collaboration skills, with experience working closely with cross-functional stakeholders to ensure alignment. Has hands-on experience in production incident management, improving system reliability and creating playbooks for incident response. Strong technical expertise in backend technologies (Go, Python, Java, Rust, etc.), cloud platforms (AWS, Azure, GCP), and databases (SQL/NoSQL). Nice to Have Experience working in SaaS or B2B product environments. Familiarity with OKRs and a metric-driven approach to product delivery. Contributions to open-source projects or active involvement in technical community events. Ownership: Lead major projects and own the technical direction for critical systems. Innovation: Work on cutting-edge technologies that redefine the future of digital finance. Impact: Play a direct role in providing accessible credit to millions of people worldwide. Culture: Join a team that values collaboration, creativity, and continuous learning. If you re a seasoned backend architect with leadership experience and a passion for fintech innovation, apply now and take your career to the next level with FinBox!

Join Our Team as a Security Operations Analyst Location: Bangalore, India (On-site) Department: Information Security At Cytiva, we are advancing the future of therapeutics from discovery to delivery. As a leading global provider of technology and services that help researchers and pharmaceutical companies develop and manufacture life-saving treatments, our work is integral to shaping the future of healthcare. We are seeking a Security Operations Analyst to join our global Information Security Team in Bangalore. In this key role, you will be at the forefront of protecting our digital assets and infrastructure by monitoring, analyzing, and responding to security incidents. By proactively identifying threats and vulnerabilities, you will help minimize risk and ensure business continuity. What You ll Do Lead Security Incident Response: Conduct advanced security incident analysis and digital forensics to identify and mitigate threats. Lead investigations into malware, network traffic anomalies, and endpoint detection. Provide Expertise: Guide and mentor L1 and L2 SOC analysts, enhancing the quality of security alerts and incident handling. Optimize Security Tools: Collaborate with engineering teams to fine-tune SIEM tools (e.g., Splunk, Microsoft Sentinel, Elastic Security) and other security technologies for improved detection and response. Proactive Threat Hunting: Identify hidden threats within the organization through threat hunting activities, reducing the potential attack surface. Enhance Security Posture: Partner with other IT and security teams to strengthen the overall security posture, ensuring resilient systems and infrastructures. Post-Incident Reporting: Produce detailed incident reports and provide recommendations for security improvements, leading post-incident reviews with cross-functional teams. Who You Are Experience: Minimum of 5+ years in a corporate IT environment, including at least 2 years in an L3 or senior analyst role. Security Knowledge: Deep expertise in security frameworks such as MITRE ATT&CK, NIST, CIS Controls, and ISO 27001. Technical Skills: Hands-on experience with SIEM platforms (e.g., Splunk, Sentinel, QRadar, ArcSight) and EDR/XDR solutions. Vendor certifications are a plus. Incident Response Expertise: Strong background in incident response, threat hunting, and forensic investigations. Cloud Security Knowledge: Familiarity with cloud security platforms (AWS, Azure, Google Cloud) and modern attack techniques. Certifications like OSCP, CEH are advantageous. Additional Skills That Would Be a Plus: Scripting & Automation: Proficiency in scripting (e.g., Python, PowerShell, Bash) to automate security processes and improve SOC workflows. Specialization: Expertise in EDR, SIEM, UBA, DLP, or Data Security. OT Environments: Experience with Operation Technology (OT) environments is an advantage. Innovative Culture: Join a dynamic, global team dedicated to advancing healthcare through technology and innovation. Impactful Work: Your role will directly contribute to the security and integrity of vital technologies used in the life sciences industry. Global Collaboration: Work with cross-functional teams around the world, contributing to an organization's critical security initiatives. Growth Opportunities: Benefit from continuous learning, career development, and the chance to make a tangible impact on both the organization and the industry. Apply now and be part of a team that is dedicated to ensuring the security of life-saving technologies.

Join Our Team as a Security Engineer Location: Bengaluru, India (On-site) Department: Global Information Security Reports to: Director of Information Security APAC At Cytiva, we are dedicated to advancing future therapeutics from discovery to delivery. As part of our Global Information Security Team, you ll work at the forefront of securing the systems, applications, and infrastructure that power critical healthcare solutions. Join us and play a key role in designing and implementing secure, resilient systems that ensure business continuity and safeguard our digital assets. What You Will Do Secure Architecture Design: Assist in developing and implementing secure architecture solutions for systems, applications, and infrastructure. Threat Modeling & Risk Assessment: Perform threat modeling and support security risk assessments to proactively identify vulnerabilities and mitigate potential threats. Design Reviews: Participate in security design reviews for applications and infrastructure across various environments, ensuring security best practices are followed. Security Technology Implementation: Deploy and manage enterprise security technologies, including Identity and Access Management (IAM), Data Loss Prevention (DLP), and Mobile Device Management (MDM). Regulatory Compliance: Ensure alignment with regulatory compliance and audit requirements, supporting the organization in maintaining secure, compliant systems. Who You Are Education: Bachelor s degree in Computer Science, Information Security, Cyber Security, or a related discipline. Experience: At least 5+ years of experience in security engineering or architecture, including expertise in threat modeling, risk assessment, and security architecture principles. Security Technologies: Hands-on experience with security technologies such as IAM, SIEM, EDR, DLP, and MDM. Cloud Security: Familiarity with cloud technologies (e.g., AWS, Azure, GCP) and cloud security best practices. Regulatory Compliance: Experience with frameworks and regulatory standards such as ISO 27001, NIST, and CIS Controls. Travel, Motor Vehicle Record & Physical/Environmental Requirements Travel: Ability to travel globally up to 10% of the time to support regional and global security initiatives. It Would Be a Plus If You Also Have: Experience conducting security design reviews for infrastructure, applications, and cloud environments. Expertise in implementing security standards and secure design patterns in alignment with frameworks like ISO 27001, NIST, and CIS Controls. Experience providing technical security advisory support to project teams, ensuring compliance with security and regulatory standards. Impactful Work: Your role directly influences the security and reliability of life-saving healthcare solutions used around the globe. Global Collaboration: Work with a diverse, dynamic, and global team of security experts dedicated to making a real difference. Career Development: Take advantage of opportunities for professional growth and continuous learning in a rapidly evolving industry. Apply now and join a global leader in advancing therapeutics and securing tomorrow s healthcare technologies. Qualification : Bachelors degree in Computer Science, Information Security, Cyber Security, or a related discipline.

Your Impact As a Data Engineer at QuantumBlack, you will collaborate with stakeholders, data scientists, and internal teams to develop and implement impactful data products and solutions. Your key responsibilities will include building and maintaining technical platforms for advanced analytics, designing scalable and reproducible data pipelines for machine learning, and ensuring information security within data environments. You will assess clients' data quality, map data fields to hypotheses, and prepare data for use in analytics models. Additionally, you will contribute to R&D projects, internal asset development, and participate in cross-functional problem-solving sessions with a variety of stakeholders, including C-level executives, to create innovative analytics solutions. You will be based in Gurugram, joining a global data engineering community, and work within cross-functional and Agile project teams alongside project managers, data scientists, machine learning engineers, other data engineers, and industry experts. You will collaborate directly with our clients, ranging from data owners and users to C-level executives. You will be aligned with one of our industry-focused practices: Pharma & Medical Products (PMP) or Global Energy & Materials (GEM). In these practices, you ll work on solving the most critical challenges for our clients in these sectors. PMP focuses on advancing the development and delivery of life-saving medicines and medical treatments, while GEM supports industries like chemicals, steel, mining, and energy to achieve operational excellence. GEMx and PMPx, the assetization arm of these practices, focus on creating reusable digital and analytics assets to support client work. As part of this team, you will help shape impactful solutions for large organizations, developing capabilities for sustained impact. Your Growth In this role, you will contribute to the frameworks and libraries that our teams of Data Scientists and Engineers use to progress from data to meaningful impact. You will have the opportunity to guide global companies through data science solutions, helping them transform and enhance performance across industries including healthcare, automotive, energy, and elite sports. Real-World Impact: You ll gain unique learning and development opportunities globally. Fusing Tech & Leadership: Work with the latest technologies and methodologies, with access to top-tier learning programs. Multidisciplinary Teamwork: Collaborate with data scientists, engineers, project managers, UX designers, and more to enhance performance. Innovative Work Culture: Creativity, passion, and wellness are central to our modern work environment, which includes insightful talks, training sessions, and a focus on work-life balance. Striving for Diversity: We celebrate diversity, with colleagues from over 40 nationalities, appreciating the value that diverse perspectives bring to the workplace. You are a highly collaborative individual who prioritizes impact over agenda. You enjoy learning from colleagues, challenging ideas thoughtfully, and working together to improve processes and solve problems. You believe in iterative change, experimenting with new approaches, and advancing quickly through constant learning and improvement. While we value using the right tech for the right task, our team often leverages technologies such as Python, PySpark, SQL, Airflow, Databricks, Kedro (our open-source data pipelining framework), Dask/RAPIDS, Docker, Kubernetes, and cloud solutions like AWS, GCP, and Azure. Your Role as a Data Engineer Collaboration: Work with business stakeholders, data scientists, and internal teams to create extraordinary, domain-focused data products (reusable assets) and deliver them to clients. Domain Expertise: Develop deep understanding of client industries and use creative techniques to deliver meaningful impact. Technical Platforms: Build and maintain technical platforms for advanced analytics engagements, spanning both data science and data engineering work. Data Pipelines: Design and implement robust, modular, scalable, deployable, and reproducible data pipelines for machine learning. Data Management: Ensure the security of data environments and compliance with information security standards. Data Wrangling: Assess data quality, map data fields to hypotheses, and prepare data for analytics models. Contribute to R&D: Participate in internal asset development and contribute to R&D projects to drive innovation. Cross-functional Problem Solving: Collaborate with internal teams and clients, including data owners and C-level executives, to create impactful analytics solutions. Your Qualifications and Skills Bachelor s degree in computer science or related field; Master's degree is a plus. 2-5 years of relevant work experience. Proficiency in at least one programming language such as Python, Scala, or Java. Strong experience with distributed processing frameworks (e.g., Spark, Hadoop, EMR) and SQL. Experience in commercial client-facing projects, particularly in close-knit teams. Ability to work with structured, semi-structured, and unstructured data, and identify linkages across disparate data sets. Clear communication skills to explain complex solutions effectively. Understanding of information security principles to ensure compliant handling of client data. Experience with cloud platforms (AWS, Azure, Google Cloud, Databricks) is highly desirable. Experience with CI/CD processes using GitHub Actions, CircleCI, or similar, and end-to-end pipeline development including application deployment is a plus. Qualification : Bachelors degree in computer science or related field; Master's degree is a plus.

Job Title: Security Architect Identity & Access Management Location: Bengaluru, India Company: Blue Yonder Experience: 10+ years (including at least 5+ years in IAM) Education: Bachelor's or Master's degree in Cybersecurity, Computer Science, or related field About Blue Yonder Blue Yonder is a recognized leader in AI-driven supply chain solutions, trusted by global brands to optimize their digital commerce and supply chain operations. We thrive on innovation, collaboration, and creating technology that powers smarter supply chains. As we continue to strengthen our security posture, we are seeking a Security Architect IAM to own, evolve, and safeguard Blue Yonder s identity landscape, ensuring consistent and compliant IAM controls across the organization s global footprint. Role Scope The Security Architect IAM will play a strategic and hands-on role in defining, implementing, and managing end-to-end identity and access management capabilities for Blue Yonder. This role requires deep technical expertise, leadership acumen, and a strong understanding of cloud-based identity ecosystems, ensuring secure access to critical systems and data. Key Responsibilities Define, develop, and manage a comprehensive IAM strategy, aligned with Blue Yonder s business goals, security policies, and compliance mandates. Design, implement, and enhance authentication, authorization, identity provisioning, access governance, and privileged access management (PAM) solutions, adopting best practices and industry standards. Conduct risk assessments to identify IAM vulnerabilities and define risk mitigation plans. Lead the technical implementation of IAM solutions and provide ongoing oversight to ensure operational excellence. Develop and enforce IAM policies, procedures, and standards to foster consistent security across the enterprise. Ensure IAM solutions adhere to regulatory requirements (GDPR, HIPAA, PCI DSS, SOX) and align with frameworks like NIST-CSF and ISO/IEC 27001. Integrate IAM capabilities with other security solutions (SIEM, endpoint security, etc.) for comprehensive protection. Establish and track Key Risk Indicators (KRIs) and Key Performance Indicators (KPIs) for the IAM program. Stay updated with emerging threats, technology advancements, and industry trends, adapting the IAM strategy accordingly. Conduct maturity assessments and develop continuous improvement plans for the IAM service. Participate in security architecture reviews and work with enterprise architects to embed IAM controls into broader IT and product architecture. Partner with GRC teams to ensure all IAM-related risks are properly documented and managed, driving remediation where necessary. Collaborate with application development teams to ensure secure-by-design development and deployment of new applications. Required Qualifications & Experience 10+ years of overall cybersecurity experience, with at least 5+ years specifically focused on IAM. Strong background designing and implementing cloud-based IAM solutions (Azure AD, AWS IAM, GCP IAM). Proven expertise across: Active Directory, LDAP, SSO, MFA SAML, OAuth, OpenID Connect Privileged Access Management (PAM) and Identity Governance (IGA) Experience managing IAM programs across hybrid environments (on-prem & cloud). Strong understanding of: Secrets management, encryption, PKI, digital certificates Zero Trust Security models Experience identifying, analyzing, and remediating IAM-related security risks. Knowledge of regulatory requirements (GDPR, HIPAA, SOX, PCI DSS) and experience translating those into practical IAM controls. Demonstrated ability to lead complex IAM projects, collaborating across multiple business units and technical teams. Excellent communication and stakeholder management skills, capable of interacting with both technical teams and business leadership. Preferred Certifications CISM Certified Information Security Manager CISSP Certified Information Systems Security Professional Relevant Cloud Security certifications (Azure Security Engineer, AWS Security Specialty, GCP Security Engineer) Good to Have Skills Experience integrating IAM with: CI/CD pipelines and DevSecOps practices Containerized environments (Kubernetes, Docker) Exposure to distributed tracing and logging tools for IAM services. Experience automating IAM processes for provisioning, deprovisioning, and audit reporting. Be a part of a global leader in supply chain technology. Work on cutting-edge IAM technologies in a cloud-first environment. Partner with cross-functional teams to drive impactful security programs. Join a culture that values diversity, innovation, and continuous learning. Diversity & Inclusion at Blue Yonder At Blue Yonder, we celebrate diversity in all forms. Our DIVE (Diversity, Inclusion, Value & Equity) strategy ensures every associate feels included, respected, and empowered to bring their authentic self to work. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sexual orientation, gender identity, national origin, disability, or veteran status. Qualification : Bachelor's or Master's degree in Cybersecurity, Computer Science, or related field

Cybersecurity Portfolio Manager Location: Bengaluru, India About Schneider Electric Schneider Electric is a global leader in energy management and automation, driving digital transformation for efficiency and sustainability. With a presence in over 100 countries and revenues of ~ 25 billion (FY2016), our 144,000+ employees help customers optimize their energy and processes in safe, reliable, efficient, and sustainable ways. From simple switches to advanced automation systems, our technologies reshape industries, transform cities, and enrich lives. At Schneider Electric, we believe that Life Is On. Cybersecurity at Schneider Electric Cybersecurity is a core pillar of Schneider Electric s digital strategy, ensuring secure IT/OT convergence and enabling our partners and customers to thrive in today s digital economy. Our cybersecurity efforts focus on: Strong digital governance and risk management Robust risk prevention, detection, and response strategies Protection of high-value assets Comprehensive security metrics and compliance About the Role We are seeking an experienced Cybersecurity Portfolio Manager to lead our product security initiatives within the Energy Management (EM) Central CTO Office. This role is crucial in driving transversal security strategies, aligning regulatory, technical, and business teams, and ensuring our products meet the highest security and data protection standards. You will report to the VP of Cybersecurity Innovation and Architecture and collaborate closely with product security architects, security advisors, and key stakeholders across the organization. Key Responsibilities Product Security Management: Oversee security aspects of product development and implementation, ensuring compliance with industry standards and regulations. Governance, Risk, and Compliance (GRC): Ensure adherence to security frameworks, policies, and compliance requirements. Project Management: Lead security initiatives, managing resources, timelines, and budgets effectively. Stakeholder Collaboration: Act as a bridge between technical teams, regulatory bodies, and business units to align security objectives. Documentation & Reporting: Maintain security process documentation, dashboards, and reports to track security performance and compliance. Qualifications Required: Bachelor s degree in Computer Science, Information Security, or a related field. 4 6 years of experience in cybersecurity, with a focus on product security. Strong knowledge of security principles (IT and OT), GRC, and data protection. Experience in project management and leading cross-functional teams. Excellent communication skills, with the ability to simplify complex security concepts for non-technical stakeholders. Structured, detail-oriented, and highly organized. Ability to advocate for security best practices across the organization. Familiarity with security frameworks and standards (e.g., ISO/IEC 27001, NIST). Certifications such as CISSP, CISM, or CISA (preferred). Leadership & Soft Skills Strong presentation and cross-functional collaboration skills. Ability to organize and facilitate meetings and workshops. Adaptability to shifting priorities, deadlines, and challenges. Experience working in global, matrixed organizations. Problem-solving mindset with a proactive approach to risk identification and mitigation. Self-motivated with the ability to work independently and handle multiple tasks under pressure. Join us in shaping a secure digital future at Schneider Electric! Qualification : Bachelors degree in computer science, Information Security, or a related field.

Infosec Lead Experience: 5-7 Years | Location: Bengaluru About Gameskraft: Founded in 2017, Gameskraft is one of India s fastest-growing online gaming companies. Our mission is to build a safe, secure, and responsible gaming ecosystem while delivering unmatched experiences through innovation and technology. As the industry s only ISO 27001 and ISO 9001 certified company, we set the highest benchmarks in security, design, and performance. Job Summary: We are seeking an experienced Infosec Lead to drive our security strategy, ensuring robust web security, application security, and compliance across the organization. You will be responsible for leading a team of security professionals, implementing best-in-class security measures, and ensuring compliance with industry regulations such as HIPAA, PCI-DSS, ISO, and GDPR. Key Responsibilities: Security Strategy & Program Management: Develop, implement, and maintain a comprehensive security program to safeguard company assets, systems, and data. Collaborate with cross-functional teams to integrate security into product development and business operations. Conduct risk assessments and vulnerability analyses to identify and mitigate security threats. Compliance & Regulatory Adherence: Ensure compliance with HIPAA, PCI-DSS, ISO, GDPR, and other relevant security frameworks. Maintain security certifications and drive adherence to regulatory standards. Develop and enforce security policies, standards, and procedures. Incident Response & Risk Management: Lead incident response efforts, including investigation, containment, and remediation. Continuously monitor security threats, emerging trends, and vulnerabilities to strengthen cyber resilience. Provide security guidance and risk analysis during product launches and infrastructure changes. Team Leadership & Stakeholder Collaboration: Lead and mentor a team of security professionals, fostering a culture of security awareness across the organization. Work closely with engineering, IT, legal, and business teams to embed security best practices. Present regular security reports and key performance metrics to senior management. What You Bring to the Table: Education: Bachelor s or Master s degree in Computer Science, Information Security, or a related field. Experience: 5-7 years of experience in information security, with a strong focus on web security, application security, and compliance. Proven track record in leading security teams and managing enterprise security programs. Technical Expertise: Strong knowledge of security technologies such as firewalls, IDS/IPS, SIEM, encryption, authentication protocols, and penetration testing tools. Experience with cloud security (AWS, Azure, GCP) and DevSecOps methodologies. Familiarity with secure coding practices and application security frameworks (OWASP, NIST, CIS Controls). Hands-on expertise in risk assessment, vulnerability management, and security architecture design. Certifications (Preferred): CISSP, CISM, CISA, CEH, or equivalent industry-recognized security certifications. Soft Skills & Leadership: Strong analytical and problem-solving skills. Excellent communication and stakeholder management abilities. Ability to influence and drive security initiatives across multiple teams. Work Culture at Gameskraft: Startup Environment: Fast-paced, ownership-driven culture where innovation and agility thrive. Impactful Work: Direct contribution to securing one of India s largest gaming platforms. Collaboration: Work alongside some of the best minds in the gaming and consumer internet industry. Data-Driven: Leverage analytics to enhance security posture and decision-making. Compensation & Benefits: Attractive Compensation & ESOPs Competitive salary with equity options. Health Insurance 5 Lakh medical cover for you and your family. Car Lease Policy Exclusive leasing options for employees. Relocation Benefits Assistance with moving to Bengaluru. Free Lunch & Stocked Pantries Enjoy great food while you work! Performance-Based Growth Transparent appraisals and rapid career progression. Join Us & Secure the Future of Gaming! If you re passionate about cybersecurity, risk management, and building secure digital ecosystems, we d love to have you on board. Apply now and be part of an exciting journey at Gameskraft! Qualification : Bachelors or Masters degree in Computer Science, Information Security, or a related field.

At Tide, we re building a finance platform to help small businesses save time and money. We offer business accounts and banking services alongside a comprehensive set of administrative solutions, from invoicing to accounting. Launched in 2017, Tide is trusted by over 1 million small businesses worldwide and is available to SMEs in the UK, India, and Germany. Headquartered in London, we have offices in Sofia, Hyderabad, Delhi, Berlin, and Belgrade, with a global team of 2,000+ employees. As we expand into new markets, we re constantly seeking passionate individuals to help us empower small businesses. About the Team The Security Engineering Team at Tide is divided into three core areas: Product Security, Threat Detection & Response, and Identity. Product Security (this role) focuses on embedding security throughout our product lifecycle, from secure design reviews and threat modeling to penetration testing, ensuring security is baked into every stage of development. Threat Detection & Response builds a robust detection and automation platform, proactively defending against emerging threats and making Tide resilient. Identity manages Tide s staff identity platform, ensuring secure access with modern strategies like zero trust and multi-factor authentication. Collaboration is central to our work standups, shared channels, and cross-functional projects keep us aligned and cohesive. About the Role We re seeking a Senior Product Security Engineer with a passion for application security and resilient software development. You ll be responsible for hunting vulnerabilities in our web and mobile applications, collaborating with engineering teams to remediate strategically, and ensuring security is seamlessly integrated into our development process. You ll be an advocate for security across the organization, mentoring engineers, and introducing the latest security tools and trends. As a Senior Product Security Engineer, you will: Dive deep into mobile and web technologies to proactively hunt for vulnerabilities. Secure cloud-native applications, ensuring best practices across Tide s AWS cloud environment. Perform threat modeling and guide teams in secure design principles to prevent vulnerabilities. Remediate vulnerabilities through strategic initiatives and hands-on patching. Act as a subject matter expert across a range of security areas, particularly application security. Mentor and coach junior engineers, sharing your expertise to raise the security bar. Integrate security into our CI/CD pipelines, leveraging automation to catch vulnerabilities early. What We re Looking For: Extensive experience in Application Security (AppSec), with a deep understanding of concepts like Secure Enclave, URL Schemes vs. Universal Links, and presigned URLs in S3. Proficiency with tools like Burp Suite (bonus points if you ve built custom extensions). Excellent communication skills able to clearly articulate vulnerabilities and advocate for their remediation. Hands-on experience with cloud-native applications and consistently applying security best practices. Ability to write proof-of-concept (POC) scripts to demonstrate findings and their potential impact. A passion for the security community public speaking, blogging, bug bounties, or sharing your work on GitHub is a plus. Our Tech Stack: Cloud Environment: 100% containerized on AWS EKS. Infrastructure as Code (IaC): Managed via Terraform and Terragrunt. Deployment: GitOps with Argo CD, supported by Helm and Crossplane. CI/CD: GitHub Actions and all source code hosted on GitHub. What You ll Get in Return: Competitive salary Health Insurance (Self & Family) Term & Life Insurance OPD Benefits Mental Well-being Support through Plumm Learning & Development Budget WFH Setup Allowance Leave Benefits: 15 Privilege Leaves, 12 Casual Leaves, 12 Sick Leaves, 3 Paid Days Off for Volunteering or L&D Activities Stock Options Tidean Ways of Working: We support a flexible workplace model, balancing remote and in-person work to meet the needs of different teams. While remote work is encouraged, we believe in face-to-face interactions to foster innovation and strengthen team spirit. Our offices are hubs for collaboration and community-building. Diversity & Inclusion at Tide: At Tide, diversity and inclusion are at the heart of our culture. Our Tideans come from diverse backgrounds, bringing unique perspectives that help us build products that resonate with our members. We are committed to creating an environment where everyone s voice is heard, and all individuals regardless of ethnicity, gender identity, sexual orientation, or disability are welcomed and celebrated. We are One Team, fostering transparency and inclusion in everything we do.

Summary of Essential Job Functions The primary responsibility of the InfoSec Tech Lead is to ensure the organization's global information security, compliance, and risk management. The role involves collaborating with various teams to identify and implement security requirements for product applications and infrastructure. Minimum Requirements (Education & Work Experience) Education: Bachelor s/Master s degree in Computer Engineering or Information Science. Certifications (Preferred): OSCP, OSCE, ECSA|LPT, CPT, CEH. Experience: 5-7 years in Vulnerability Management, covering Application, Infrastructure, Cloud, Mobile Security, Secure Code Review, and IoT. Work Location: Bangalore, India (May require travel). Competency Requirements Hands-on experience in Network, Web-based, and Cloud Application Security Assessments including threat modeling, vulnerability assessments, and penetration testing. Knowledge of current information security trends. Familiarity with security bug classification frameworks (e.g., CVSS, DREAD) and application of classification methods. Expertise in Web Service vulnerability assessments. Understanding of Mobile Application Security (iOS/Android). Experience in code review methods and standards. Ability to develop proof-of-concept (POC) exploits for security vulnerabilities. Proficiency with web application vulnerability scanning tools (e.g., Acunetix, NTO Spider, BurpSuite Pro, WebInspect, Core Impact). Experience with network assessment tools and exploitations (e.g., Kali Framework, QualysGuard, Nessus, Nexpose, Nmap, Metasploit, Saint). Experience in static code review tools (e.g., Checkmarx, HP Fortify, IBM AppScan Source). Proficiency in at least two scripting languages (e.g., Python, Perl, PHP, Ruby, etc.). Ability to assess applications using OWASP, OSSTMM, CESG, CREST, NIST, ISSAF, PTES methodologies. Understanding of SDLC practices and adaptability to Agile methodologies. Experience in high-level programming languages (e.g., Java, C, C++, .NET (C#, VB)), with DAST code review as an added advantage. Knowledge of operating systems (Windows/Linux/UNIX IBM AIX, Sun Solaris, HP UX) and network equipment. Experience providing technical oversight to project teams to ensure quality engagements. Strong experience in mentoring, coaching, and leading teams in challenging environments. Familiarity with security compliance frameworks (PCI, SOC, GDPR). Other Requirements Strong ethics and integrity in business and information security. Proficiency in English (written and verbal communication skills). Ability to prepare professional reports and present findings to technical and executive stakeholders. Ability to interact with customers and understand security requirements. Job Responsibilities Conduct and manage Vulnerability Assessments and Penetration Testing (VAPT) for Infrastructure, Web Applications, and Web Services/APIs. Perform manual and automated security testing to identify vulnerabilities. Conduct periodic configuration audits for network devices, servers, and critical functions. Perform secure code reviews across multiple programming languages and recommend corrective actions. Assess SDLC processes for security compliance. Develop security testing scripts and procedures. Participate in security-related projects as per skillset. Continuously evaluate application architecture to enhance security processes. Analyze suspected vulnerabilities, collaborate with subject matter experts, and recommend remediation measures. Evaluate and recommend security products and solutions. Act as a security advisor for secure coding standards and security information management. Qualification : Bachelors/Masters degree in Computer Engineering or Information Science.

About Oracle Customer Success Services Oracle Customer Success Services (CSS) follows a One Oracle approach to ensure customer success by offering a comprehensive range of services and solutions. Supported by certified and experienced professionals, CSS accelerates the customer journey by providing expert implementation and support. Through a customer-centric, integrated service model, CSS collaborates closely with Oracle Development to deliver exceptional solutions. Role Overview As a Senior Cloud Security Engineer, you will be responsible for delivering high-quality support and services in Oracle Database, Engineered Systems, and Cloud Technologies for premium customers. This role covers the entire product lifecycle, including architecture design, implementation, optimization, and maintenance. You will work directly with customers to ensure they maximize the value of Oracle s technology solutions. Career Level: IC4 Key Responsibilities 4.5 to 10 years of experience in Oracle Cloud Infrastructure (OCI). Lead the full cycle of Oracle Cloud Security assessments, design, and implementations, ensuring adherence to best practices. Hands-on expertise in Oracle Identity and Access Management (IAM), Identity Cloud Service (IDCS), and cloud security solutions. Implement and manage Active Directory (AD) and IDCS connectivity. Define and maintain role hierarchies, function security policies, and provisioning mechanisms. Perform vulnerability scanning using Qualys Guard and recommend remediation actions. Customize roles and responsibilities while configuring Single Sign-On (SSO) solutions. Analyze and report on application security configurations and compliance status. Support Software Development Life Cycle (SDLC) processes, including environment configuration and migration. Ensure robust User Access Provisioning, Application Control, and Security management. Deliver end-to-end Oracle Cloud Applications Security & Controls services. Required Skills & Expertise Cloud Security Cloud Services Cloud Technologies Diversity & Inclusion at Oracle At Oracle, we believe innovation thrives in an inclusive environment that embraces diverse perspectives. Our career opportunities span industries, roles, countries, and cultures, allowing employees to grow, innovate, and maintain work-life balance. With over 40 years of industry leadership, Oracle operates with integrity and excellence, serving some of the world s top companies. We are committed to fostering an inclusive workforce that encourages thought leadership and innovation. Oracle offers a highly competitive suite of employee benefits, including: Medical and life insurance Retirement planning options Parental leave policies Flexible work arrangements Opportunities to give back to the community through volunteer programs