Security Risk Jobs in Bengaluru

Security Research Engineer Security Research Experience: 5 8 Years | Location: Bangalore | Employment Type: Full-Time About SecPod SecPod is a SaaS-based cybersecurity products company focused on prevention-first security. Our Saner Cloud platform is a unified CNAPP solution that combines AI-driven threat intelligence, automated vulnerability detection, and Cloud Security Posture Management (CSPM) to secure multi-cloud environments. Role Summary We are seeking a highly skilled Security Research Engineer to join our Security Research team. This role focuses on researching emerging cloud security threats, developing security intelligence feeds, building proof-of-concepts (PoCs) for misconfigurations, and creating automated remediation and compliance content. Key Responsibilities Threat Research: Conduct security research to develop intelligence feeds and checks with a strong emphasis on cloud security. Vulnerability & Risk Analysis: Identify and create PoCs for emerging cloud misconfigurations and security risks. Automation: Develop automation for research and validation tasks using Python or other scripting languages. Compliance & Remediation: Build remediation feeds for cloud misconfigurations and compliance benchmarks. Lifecycle Management: Manage the end-to-end lifecycle of research outputs, from initial development through production release. Required Qualifications & Skills Professional Experience: 5 8 years in security research or engineering, with at least 3 years in a senior technical role. Cloud Infrastructure: Hands-on experience with AWS, Azure, or GCP. Technical Fundamentals: Strong understanding of operating systems, networking, and computer science security. Programming: Proficiency in languages such as Python, C, C++, or Java. Environment Expertise: Experience across Linux/Unix, Windows, and virtualization environments. Compliance: Solid knowledge of cloud security and security benchmark compliance. Education Bachelor s degree (or equivalent) in Computer Science or a related field. Qualification : Bachelors degree (or equivalent) in Computer Science or a related field

Job Title: General Manager Network Infrastructure & Security Location: Bangalore Department: IT and Systems Employee Type: Permanent Experience Required: 10 20 years Job Summary We are seeking a seasoned and strategic IT Infrastructure and Cybersecurity Leader to oversee and drive the company s enterprise-wide infrastructure and security initiatives. This role is responsible for developing and executing the vision, strategy, and programs to ensure the availability, performance, and security of our IT systems and data. The ideal candidate will work closely with executive leadership to align technology and security efforts with organizational objectives and risk tolerance. Key Responsibilities IT Infrastructure Management Lead the planning, implementation, and management of core IT infrastructure including networks, servers, cloud platforms, storage, and enterprise systems. Ensure high availability, performance, and scalability of IT infrastructure to support business operations. Oversee disaster recovery and business continuity strategies to mitigate operational risk. Manage vendor relationships, contracts, and Service Level Agreements (SLAs). Monitor system performance and continuously implement efficiency improvements and optimizations. Cybersecurity Leadership Establish, implement, and maintain cybersecurity policies, procedures, and standards across the organization. Conduct regular risk assessments, vulnerability scans, and implement corrective actions. Oversee security tools and solutions, including firewalls, antivirus, endpoint protection, SIEM, and intrusion detection systems. Lead incident response efforts, forensic investigations, and post-event reviews. Ensure compliance with relevant cybersecurity and data privacy regulations (e.g., ISO 27001, GDPR). Leadership & Cross-functional Collaboration Lead, mentor, and manage a team of IT infrastructure and security professionals. Collaborate with stakeholders across departments to align IT and cybersecurity strategies with business goals. Provide executive-level reporting on infrastructure performance, risk posture, incident management, and compliance metrics. Drive a culture of cybersecurity awareness and operational excellence throughout the organization. Qualifications & Experience Education: Bachelor s degree in Computer Science, Information Technology, or a related field. Master s degree preferred. Certifications (Preferred): CISSP, CISM, CISA, or equivalent professional certifications. Experience: 18+ years of progressive experience in IT infrastructure, cybersecurity, and risk management. Deep knowledge of security frameworks such as ISO/IEC 27001 and regulatory standards like GDPR. Proven experience in formulating and implementing enterprise-wide security policies and managing dynamic IT environments. Key Skills: Strategic planning & execution Project & vendor management Security architecture and governance Cross-functional collaboration & stakeholder communication Managing Security Operations Centers (SOC) Preferred Skills & Competencies Strong analytical and problem-solving skills to align business needs with technology solutions. Experience in documenting and executing security architecture and strategic plans. In-depth knowledge of IT networks, infrastructure systems, and cloud environments. Ability to communicate technical concepts to both technical and non-technical audiences, including C-level stakeholders. Qualification : Bachelors degree in Computer Science, Information Technology, or a related field

Cyber Security Analyst Bangalore, India Location: Bangalore (Bengaluru) Experience: 4 to 12 Years Industry: IT Security / Cybersecurity Job Summary: We are seeking a highly skilled Cyber Security Analyst with advanced knowledge in cybersecurity principles, risk assessment, and threat prevention. The ideal candidate will have hands-on experience with security tools, network defense, vulnerability assessments, and malware analysis to safeguard our organization s digital assets. Key Responsibilities: Analyze and mitigate cyber and IT security risks using advanced techniques and best practices Conduct vulnerability assessments and penetration testing across networks, platforms, and applications Utilize scripting and programming languages such as Python, PowerShell, Perl, HTML, and JavaScript for automation and security analysis Monitor network security devices including firewalls, proxies, NIDS/NIPS, and respond to security incidents Perform dynamic and static malware analysis and memory forensics to identify and counter threats Conduct reverse engineering of malware and apply countermeasures based on adversary tactics and protocols Apply in-depth knowledge of network protocols, network security monitoring, and incident response Ensure compliance with security standards and frameworks Collaborate with cross-functional teams to implement security improvements and ensure robust defense mechanisms Required Skills & Qualifications: Minimum 4+ years of professional experience in cybersecurity or related IT security roles Advanced understanding of cyber threats, risk management, and prevention techniques Proficiency in security system analysis, network security, and vulnerability assessment tools Experience with malware analysis, penetration testing, and reverse engineering Strong programming/scripting skills in Python, PowerShell, Perl, or similar languages In-depth knowledge of security standards, protocols, and industry best practices Hands-on experience with network security monitoring and defense technologies Preferred Certifications: Technical cybersecurity certifications from recognized bodies such as SANS, ISACA (CISA, CISM), (ISC) (CISSP), CompTIA Security+, Cisco (CCNA Security), CERT, or equivalent Work in a challenging role protecting critical digital infrastructure Collaborate with a talented cybersecurity team to combat evolving threats Access to continuous learning, professional development, and certification opportunities

Senior Security Specialist Location: Bengaluru, Karnataka, India Employment Type: Full-time About Serko: Serko is a leading tech platform revolutionizing global business travel and expense technology. Joining Serko means becoming part of a passionate team of travelers and technologists dedicated to transforming the business travel marketplace. With offices worldwide and a new hub in Bengaluru, we embrace diversity and authenticity to create meaningful impact. Our fast-growing India team seeks motivated professionals to help build world-class products and experiences. Role Overview: We are looking for a highly skilled Senior Security Specialist with a strong software engineering and DevSecOps background. This role will lead security initiatives, manage risks, oversee security operations, ensure compliance, and report to senior management. You will work closely with agile development teams to embed security throughout the software development lifecycle, driving robust, scalable security solutions. Key Responsibilities: Lead integration of security practices into the DevOps lifecycle, embedding security into software development and deployment pipelines. Collaborate with development and operations teams to identify and mitigate security risks across applications, infrastructure, and pipelines. Implement and maintain security automation and orchestration tools to improve security posture and operational efficiency. Identify, assess, and manage security risks; develop and implement mitigation strategies. Oversee daily security operations, including monitoring, incident response, and threat intelligence. Ensure compliance with security policies and external standards such as PCI-DSS and SOC2. Prepare and present detailed security reports to senior management, highlighting risks and mitigation plans. Lead security awareness campaigns to educate employees on emerging threats and best practices. Stay current on emerging security technologies and trends, particularly in Azure security and DevSecOps. Evaluate and recommend security tools and solutions to enhance the organization's security posture. Qualifications & Experience: 5+ years in a senior security role focused on Security Operations, Risk Management, and Compliance within software engineering environments. Deep understanding of security attack and defense methods; hands-on experience with ethical hacking tools preferred. Proven experience with DevSecOps tools such as SAST and DAST. Expertise in Microsoft security products including Azure Security Center, Defender, Azure AD, and Sentinel. Relevant certifications such as CISSP or equivalent highly preferred. Excellent communication, presentation, and documentation skills. Strong team collaboration and leadership skills. Bachelor s degree in Computer Science, Cybersecurity, or related field; certifications may substitute for degree. What We Offer: Competitive base salary and discretionary incentive plan based on individual and company performance. Access to learning and development platforms to own your career growth. Comprehensive family medical coverage, meal coupons, transport allowances, and mobile & internet reimbursement. Flexible work policies supporting work-life balance. An engaging environment with great tools, support, and opportunities to innovate and deliver high-quality results. Qualification : Bachelors degree in Computer Science, Cybersecurity, or related field; certifications may substitute for degree.

Audit Analyst II - IT Audit & Compliance Location: Bangalore, Karnataka Full Time Experience: 3-4 Years Work Environment: Work from Office (Occasional travel required) About the Team & Role: We are seeking a motivated and detail-oriented IT Audit Analyst to join our Audit & Compliance team. This role involves planning, executing, and reporting on IT audits across various domains, including IT infrastructure, cloud environments, SaaS applications, and compliance frameworks like ISO 27001, ISO 27701, and PCI DSS. The successful candidate will evaluate IT controls, identify risks, and recommend practical solutions to improve the organization's IT governance, risk management, and control environment. You will work independently on moderately complex audits and assist senior auditors on larger engagements. Key Responsibilities: Audit Planning & Execution: Assist in the development of risk-based IT audit plans. Plan and execute audits covering infrastructure, cloud services (AWS), and SaaS applications. Develop audit programs and testing procedures to evaluate IT controls. Compliance & Framework Audits: Conduct audits against IT security and privacy frameworks, including ISO 27001 (Information Security), ISO 27701 (Privacy Information), and PCI DSS (Payment Card Industry Data Security Standard). Risk Assessment & Analysis: Identify IT risks and control weaknesses during audits. Analyze findings and assess potential business impacts. Evaluate risk mitigation strategies. Reporting & Communication: Document audit work, prepare draft reports with findings and recommendations, and communicate results to management and stakeholders. Collaboration & Improvement: Collaborate with IT teams, business units, and external auditors. Stay up-to-date with emerging technologies, IT security threats, and audit methodologies. Contribute to continuous improvement efforts for the audit function. Qualities We re Looking For: Education & Experience: Education: Bachelor s degree in Information Systems, Computer Science, Cybersecurity, Business Administration, or related field. Experience: 3-4 years of progressive experience in IT Audit, Information Security, IT Risk Management, or a related field. Technical Skills: Strong understanding of IT infrastructure components (networks, operating systems, databases, servers, virtualization). Solid knowledge of cloud computing, specifically auditing cloud environments (AWS focus). Experience auditing SaaS solutions and assessing third-party/vendor risk management. Knowledge of IT general controls (ITGCs) and application controls. Framework & Standard Knowledge: Demonstrated experience with ISO 27001, ISO 27701, and PCI DSS standards. Familiarity with other frameworks such as NIST Cybersecurity, COBIT, and SOX ITGCs is a plus. Audit Skills: Proficiency in IT audit methodologies, risk assessment techniques, and control testing procedures. Strong analytical, problem-solving, and critical-thinking skills. Excellent written and verbal communication skills, with the ability to articulate technical issues to both technical and non-technical audiences. Attention to detail and ability to manage multiple tasks and deadlines. Proficiency with Microsoft Office Suite. Certifications & Tools: Professional certifications such as CISA, CISSP, CISM, CRISC, AWS Certified Security Specialty or similar are highly desirable. Experience with GRC (Governance, Risk, Compliance) tools. Experience with data analysis tools like ACL, IDEA, or Excel PowerQuery/Pivot. Joining our team means becoming part of a dedicated, high-performing group focused on IT governance, risk management, and compliance. As an IT Audit Analyst, you'll have the opportunity to work on exciting, challenging audits, develop your skills, and contribute to continuous improvement initiatives. We offer a collaborative and innovative environment where you can grow professionally while making an impact on the organization s success. Equal Employment Opportunity: We are an Equal Employment Opportunity employer. We do not discriminate based on race, religion, color, national origin, sex (including pregnancy, childbirth, reproductive health decisions, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, genetic information, political views or activity, or other applicable legally protected characteristics. Qualification : Bachelors degree in Information Systems, Computer Science, Cybersecurity, Business Administration, or related field.

Senior Technical Project Manager Location: Bangalore Experience: 12 15 Years Company: Mphasis Job Summary The Technical Application Delivery Manager is responsible for overseeing the comprehensive delivery of software applications, ensuring alignment with business needs, technical requirements, and best practices. This role requires a combination of technical expertise, project management skills, stakeholder engagement, and leadership abilities to successfully drive application development and deployment across multiple teams. The candidate will collaborate closely with development teams, business analysts, infrastructure engineers, and stakeholders to ensure timely and high-quality delivery of software solutions. Years of Experience Needed 8+ years of experience in IT/application delivery At least 3-5 years in a leadership role Technical Skills Software Development Lifecycle (SDLC): Expertise in Agile, Scrum, and DevOps practices Cloud Technologies: Proficiency in AWS, Azure, or Google Cloud Platform (GCP) DevOps & CI/CD: Knowledge of Jenkins, GitHub Actions, Azure DevOps, Kubernetes, Docker, Terraform Application Architecture: Expertise in microservices, APIs, event-driven architecture, containerization Programming & Scripting: Familiarity with Java, .NET, Python, JavaScript, or other modern languages Database & Data Management: Understanding of SQL/NoSQL databases, data governance, and analytics CRM: Familiarity with Salesforce Project & Delivery Management Skills Experience in Agile project management, Jira, and Agile frameworks (Scrum, SAFe, Kanban) Expertise in budgeting, cost estimation, and financial planning for application development projects Stakeholder communication and executive reporting skills Vendor management and contract negotiation experience Soft Skills Leadership & Team Management: Ability to mentor teams and foster a culture of accountability and innovation Problem-Solving: Strong analytical skills for troubleshooting technical and process-related issues Collaboration: Excellent ability to work across cross-functional teams, including business and IT Decision-Making: Data-driven approach to prioritization and resource allocation Customer-Centric Mindset: Ensuring that applications align with business and user needs Key Responsibilities (KRA Key Result Areas) Project & Application Delivery Management Lead the planning, execution, and delivery of software applications, ensuring adherence to scope, budget, and timeline Define and manage application delivery roadmaps, aligning with business objectives and IT strategy Oversee software development lifecycle (SDLC) processes, including Agile, DevOps, and CI/CD pipelines Ensure effective risk management and mitigation strategies in application development projects Monitor project performance and take corrective actions to resolve issues proactively Stakeholder & Vendor Management Collaborate with business stakeholders to understand application requirements and translate them into technical solutions Serve as the primary contact point between IT teams, business units, and third-party vendors Manage vendor relationships, ensuring SLAs, contracts, and performance standards are met Communicate progress, challenges, and risks to senior management and stakeholders Technical Leadership & Architecture Oversight Work with architects and development teams to ensure scalable, secure, and high-performing application architectures Promote best practices in software engineering, security, and cloud adoption Provide technical guidance on integration, APIs, microservices, and data management Advocate for automation, DevOps, and cloud-native application development Team Management & Agile Coaching Lead and mentor development, QA, and DevOps teams to enhance technical proficiency and delivery efficiency Foster Agile and DevOps methodologies, ensuring collaboration and continuous improvement Conduct performance reviews and cultivate a culture of learning and innovation within the team Security, Compliance & Risk Management Ensure applications comply with cybersecurity policies, data protection regulations, and industry standards Collaborate with security teams to integrate security best practices into the SDLC Manage incident response plans for application-related issues and security breaches Continuous Improvement & Innovation Identify opportunities for process improvements, automation, and optimization in application delivery Stay updated with emerging technologies, frameworks, and trends in application development Drive digital transformation initiatives, including cloud migration and modernization Experience & Qualifications Educational Background: Bachelor s or Master s Degree in Computer Science, Information Technology, Engineering, or a related field Professional Experience: 8+ years of experience in IT/application delivery, with at least 3-5 years in a leadership role Proven experience in managing large-scale enterprise application development and deployment Strong background in cloud platforms (AWS, Azure, GCP) and DevOps methodologies Experience working in regulated industries (finance, healthcare, telecom) is advantageous Certifications Needed Project Management: PMP, PRINCE2, CSM (Certified Scrum Master), SAFe Agile Certification Cloud & DevOps: AWS/Azure/GCP Solutions Architect, Kubernetes, Terraform About Mphasis Mphasis applies next-generation technology to help enterprises transform businesses globally. Customer centricity is foundational to Mphasis and is reflected in the Mphasis Front2Back Transformation approach, leveraging the exponential power of cloud and cognitive technologies. The company s Service Transformation helps enterprises modernize legacy environments, ensuring they stay ahead in a changing world. Equal Opportunity Employer Mphasis is an equal opportunity/affirmative action employer. We provide equal employment opportunities to applicants and existing associates and evaluate qualified candidates without regar...

Join Our Team as a Security Engineer Location: Bengaluru, India (On-site) Department: Global Information Security Reports to: Director of Information Security APAC At Cytiva, we are dedicated to advancing future therapeutics from discovery to delivery. As part of our Global Information Security Team, you ll work at the forefront of securing the systems, applications, and infrastructure that power critical healthcare solutions. Join us and play a key role in designing and implementing secure, resilient systems that ensure business continuity and safeguard our digital assets. What You Will Do Secure Architecture Design: Assist in developing and implementing secure architecture solutions for systems, applications, and infrastructure. Threat Modeling & Risk Assessment: Perform threat modeling and support security risk assessments to proactively identify vulnerabilities and mitigate potential threats. Design Reviews: Participate in security design reviews for applications and infrastructure across various environments, ensuring security best practices are followed. Security Technology Implementation: Deploy and manage enterprise security technologies, including Identity and Access Management (IAM), Data Loss Prevention (DLP), and Mobile Device Management (MDM). Regulatory Compliance: Ensure alignment with regulatory compliance and audit requirements, supporting the organization in maintaining secure, compliant systems. Who You Are Education: Bachelor s degree in Computer Science, Information Security, Cyber Security, or a related discipline. Experience: At least 5+ years of experience in security engineering or architecture, including expertise in threat modeling, risk assessment, and security architecture principles. Security Technologies: Hands-on experience with security technologies such as IAM, SIEM, EDR, DLP, and MDM. Cloud Security: Familiarity with cloud technologies (e.g., AWS, Azure, GCP) and cloud security best practices. Regulatory Compliance: Experience with frameworks and regulatory standards such as ISO 27001, NIST, and CIS Controls. Travel, Motor Vehicle Record & Physical/Environmental Requirements Travel: Ability to travel globally up to 10% of the time to support regional and global security initiatives. It Would Be a Plus If You Also Have: Experience conducting security design reviews for infrastructure, applications, and cloud environments. Expertise in implementing security standards and secure design patterns in alignment with frameworks like ISO 27001, NIST, and CIS Controls. Experience providing technical security advisory support to project teams, ensuring compliance with security and regulatory standards. Impactful Work: Your role directly influences the security and reliability of life-saving healthcare solutions used around the globe. Global Collaboration: Work with a diverse, dynamic, and global team of security experts dedicated to making a real difference. Career Development: Take advantage of opportunities for professional growth and continuous learning in a rapidly evolving industry. Apply now and join a global leader in advancing therapeutics and securing tomorrow s healthcare technologies. Qualification : Bachelors degree in Computer Science, Information Security, Cyber Security, or a related discipline.

Location: Bengaluru Designation: Assistant Manager Entity: Deloitte Unleash Your Potential with Deloitte India's impact on the global economy has skyrocketed, and at Deloitte, we offer you an opportunity to unlock your potential by working alongside leaders and organizations that are shaping the future, both in the region and beyond. At Deloitte, we celebrate the whole you. Join us, and you ll be part of a team driven to make an impact that matters by collaborating, innovating, and growing together. About the Team The Technology & Transformation team is about more than just numbers. It s about building upon past achievements, addressing current challenges, and laying the foundation for future success. At Deloitte, we help organizations navigate change, ensuring they stay ahead of the curve. Learn more about the Technology & Transformation Practice. Your Role and Responsibilities As an Assistant Manager (AM) in our Cyber Team, you'll play a key role in building and maintaining positive relationships with both internal teams and clients. Your main goal will be to exceed client expectations and ensure their security and privacy needs are met. Key responsibilities include: Security and Privacy Expertise: Apply knowledge in security and privacy domains such as governance, risk management, compliance, access control, security architecture, incident response, disaster recovery, business continuity, data protection, etc. Industry Standards: Leverage frameworks and standards such as PCI-DSS, ISO/IEC 27001, ISO/IEC 17799, COBIT, ITIL, and others. Risk Management: Demonstrate a deep understanding of security controls and risk management processes. Certifications: Preferably hold certifications like CEH, CISSP, CISA, ISO 27001, ISO 22301, or equivalent. Information Security Management: Assist in ISO 27001-based Information Security Management System (ISMS) implementation and maintenance. Assessing and Improving Security Posture: Evaluate client information security posture, identify risks, and develop solutions to close gaps. Information Security Controls: Review and implement security controls across various areas such as change management, incident management, access management, antivirus management, physical security, etc. Data Privacy: Advise clients on data privacy and information security topics like data leakage prevention and identity management. Client Guidance: Serve as a subject matter expert in security and privacy, supporting clients in developing frameworks and implementing solutions. Audits & Reviews: Conduct information systems audits covering IT infrastructure and advise on best practices for data protection. Desired Qualifications Educational Background: Degree in IT, Computer Science, or related fields. Certifications: PCI-DSS, ISO 27001, ISO 31000, ISO 22301, CISA, ITIL, or equivalent certifications preferred. Other Certifications: CISSP, CEH, GSEC, GCIH, LPT, CCSK, etc. are a plus. Location and Work Style Base Location: Bengaluru Travel: This role involves occasional or frequent travel to client locations. Hybrid Work: Deloitte s default work style is hybrid, tailored to the needs of each domain. Key Expectations for the AM Role As an Assistant Manager at Deloitte, you ll be expected to embrace and live our purpose. You should challenge yourself to identify key issues that matter to clients, your team, and society. Specifically, we expect our AMs to: Inspire and Lead: Lead with integrity, inclusivity, and motivation. Create Purpose: Help shape a vision and purpose that drives positive change. Be Agile: Deliver high-quality results through collaboration and teamwork. Build Diverse Capabilities: Develop and support future capabilities within the team. Influence & Persuade: Ability to influence stakeholders and drive decisions. Collaborate for Solutions: Work together to create new solutions for clients. Drive Value: Leverage business acumen to deliver client value. Expand Business: Spot and leverage new business opportunities. Analytical Thinking: Use data and analytics to inform decisions and recommend impactful solutions. Communication: Effectively communicate and structure ideas for win-win outcomes. Engagement Management: Manage engagements to ensure timely execution and quality results. Adapt to Change: Respond resiliently to changing environments and needs. Manage Quality & Risk: Ensure high-quality results while mitigating risks. Strategic Problem Solving: Apply strategic thinking to solve complex business challenges. Tech Savvy: Use ethical technology practices to create high-impact solutions. Empathy & Inclusion: Foster a safe, inclusive environment where everyone is valued. Growth at Deloitte Connect for Impact: Work alongside exceptional professionals solving complex global issues and making a positive impact on the community, society, and the planet. Empower to Lead: Regardless of your career level, you ll have opportunities to inspire, support, and grow both professionally and personally. Inclusion for All: We value diversity and inclusivity in everything we do. At Deloitte, we are committed to creating a culture where everyone feels respected, valued, and empowered. Drive Your Career: You have the autonomy to shape your career path. With global mobility, cross-business opportunities, and continuous upskilling, you can chart a fulfilling career journey. A Culture of Wellbeing At Deloitte, we prioritize your 360-degree wellbeing. Our workspaces and initiatives cater to your unique needs, including flexibility, accessibility, safety, and support for caregiving. Join us for a workplace where you can thrive. Your Next Step: Unleash Your Potential at Deloitte! Qualification : Degree in IT, Computer Science, or related fields.

Job Title: Deputy Manager Location: Bengaluru Role Overview: As a Deputy Manager responsible for Data Protection and Security, you will play a pivotal role in leading and managing data protection initiatives. You will oversee a range of security tools and processes, ensuring the effective implementation of DLP, data classification, and CASB solutions across a global organization. You will coordinate with internal and external stakeholders, manage teams, and contribute to the development and execution of enterprise-wide data protection strategies. Key Responsibilities: Stakeholder Coordination: Collaborate with both internal and external stakeholders to understand client requirements, processes, and governance guidelines, ensuring effective communication and relationship management. Leadership: Manage and lead a team of professionals, fostering strong leadership skills and creating a collaborative environment for continuous improvement. Data Protection Strategy: Lead cross-functional initiatives to advance the enterprise-wide data protection strategy, including risk-based application inventory, data classification, access and encryption controls, data discovery, and monitoring. Risk Management: Identify and manage data protection risks, proposing improvements to the enterprise data protection strategy, policies, processes, and tools. DLP and Data Protection Tools: Hands-on experience in managing and implementing Data Loss Prevention (DLP) solutions (e.g., Forcepoint), data classification tools (Microsoft AIP, TITUS, Klassify), and CASB solutions (Netskope) for 6000+ end users globally. Data Inventory & Reporting: Oversee the management and administration of data inventory tools, providing operational reports to management teams on the status and effectiveness of data protection measures. Policy Development & Implementation: Spearhead the design, implementation, and policy development for DLP platforms and CASB solutions, ensuring compliance with organizational and client-specific requirements. Endpoint Security & Intrusion Detection: Implement measures to detect and prevent intrusions using Endpoint, EDR (Endpoint Detection and Response) tools, and other security solutions. Security Program Expansion: Develop business procedures for DLP programs, recommend and implement expansions based on evolving business requirements, and ensure ongoing program improvements. Collaboration & Reporting: Collaborate with leadership to present findings, updates, and strategies for enhancing data protection initiatives. Desired Skills & Experience: Technical Expertise: Hands-on experience with DLP (Forcepoint), Data Classification tools (Microsoft AIP, TITUS, Klassify), and CASB (Netskope). Familiarity with file/email/endpoint encryption, data discovery, and data masking solutions. Experience implementing DLP and CASB standards across a large-scale global environment (6000+ users). Leadership & Management: Strong leadership skills with the ability to manage and mentor a team of professionals, ensuring project delivery and quality standards are met. Data Protection Strategy & Risk Management: In-depth knowledge of data protection strategies, risk management, and enterprise-wide data protection frameworks. Communication & Collaboration: Excellent communication skills with the ability to manage stakeholder relationships and work across multiple teams, ensuring alignment on data protection goals. Process & Policy Development: Experience in developing, fine-tuning, and implementing DLP policies, as well as working on continuous improvements in data protection practices. Security Tools & Practices: Hands-on experience with tools like Endpoint Detection and Response (EDR), DLP solutions, and CASB, with a focus on security program implementation and risk mitigation. Qualifications: Education: Bachelor's degree or equivalent in IT, Cybersecurity, or related fields. Experience: 5+ years of relevant experience in data protection, DLP implementation, and team management in a complex global environment. Certifications: Relevant certifications (e.g., CISSP, CISM, CISA, or equivalent) would be an advantage. Why Join Us: In this role, you will have the opportunity to shape and drive critical data protection initiatives across a large global organization. You will lead the implementation of cutting-edge solutions and be an integral part of a dynamic team focused on securing enterprise data and improving security frameworks. This role offers the chance to make a significant impact on the company s data security posture while also growing and mentoring a team of cybersecurity professionals. Qualification : Bachelor's degree or equivalent in IT, Cybersecurity, or related fields.

Job Title: GRC Specialist Location: Bangalore (On-site; full-time) About Locus: At Locus, we are redefining logistics decision-making with deep-tech solutions that drive efficiency, consistency, and transparency across industries like retail and FMCG/CPG. Founded in 2015 by Nishith Rastogi and Geet Garg, Locus has evolved from a women s safety geo-tracking app into a globally recognized logistics optimization platform. Our technology has empowered enterprises such as Unilever and Nestl to execute over a billion deliveries across 30+ countries. Guided by our commitment to innovation and sustainable growth, we transform complex supply chains into strategic growth enablers. Join us at Locus and be part of a team shaping the future of global logistics. Job Overview: About the Role Governance Risk and Compliance Specialist (GRC Specialist) We're looking for a candidate with 2-4 years of relevant experience. Key Responsibilities: Define, implement, and maintain the Information Security Management System (ISMS) and Privacy Information Management System (PIMS). Plan and execute periodic risk assessments. Work directly with the business units to facilitate risk assessment and risk management processes. Define, Review and Maintain the organizational information security policies, processes, procedures and control framework to ensure it is adequate to address the emerging risks due to changing environment, technology and legal requirements. Align customer and internal information security objectives to the ISMS and PIMS. Monitor and fulfill client contractual (MSA) information security and privacy obligations. Monitor and fulfill legal obligations related to protection of personal information across different jurisdictions like GDPR, CCPA. Prepare metrics based periodic reports and dashboards with support from the stakeholder functions for management review. Liaise with security vendors, suppliers, service providers and external resources for new security tools for improving security. Lead the Information Security audits / assessments / remediation and present key risks to the management. Perform the Third party Risk Assessment of Critical Vendors. Conduct Information Security and Privacy awareness and training programs for the employees as part of their induction and regular awareness. Oversee information security and privacy incident management process for incident reporting, containment, resolution and root cause analysis. Plan and coordinate BCP and DR tests. Setup guidelines for secure coding practices. Recommend security and privacy controls based on people, process and technology approach and industry best practices. Identifying solutions or writing automation scripts for solving regular tasks or optimizing processes. SOC Monitoring Activities such as. Firewall, Vulnerability, Inspector, Guarduty etc. Log Review, Incident Handling & Compliance adherence. Qualifications: Good understanding of information security compliance requirements like ISO27001, SOC2, CSA STAR and Privacy requirements like BS10012 & ISO27701. Good understanding of legal obligations towards protection of personal information across different jurisdictions like GDPR, CCPA, etc. Experience in creating and auditing security and privacy best practices and implementation of security and privacy principles across organization, to meet business goals along with customer and regulatory requirements. Experience implementing security and privacy controls for cloud platforms like AWS, Azure. Experienced in solving Audit and Regulatory Issues. Experience in auditing MDM, SSO solutions, AWS (Cloud Infra), Firewall, WAF, DLP etc. Good at solving information security compliance challenges by recommending solutions and best practices. Join Locus and become part of a visionary team that is redefining logistics through innovation and smart distribution. We provide competitive compensation, comprehensive benefits, and a collaborative environment where your expertise will drive both your growth and that of the organization. Locus is an equal opportunity employer dedicated to creating a diverse and inclusive workplace.

Job Title: Security Engineer - II Location: Bangalore (On-site; full-time) About Locus: At Locus, we are redefining logistics decision-making with deep-tech solutions that drive efficiency, consistency, and transparency across industries like retail and FMCG/CPG. Founded in 2015 by Nishith Rastogi and Geet Garg, Locus has evolved from a women s safety geo-tracking app into a globally recognized logistics optimization platform. Our technology has empowered enterprises such as Unilever and Nestl to execute over a billion deliveries across 30+ countries. Guided by our commitment to innovation and sustainable growth, we transform complex supply chains into strategic growth enablers. Join us at Locus and be part of a team shaping the future of global logistics. Job Overview: Key Responsibilities: Conduct comprehensive threat modeling for applications, cloud infrastructure, and overall systems architecture. Perform secure code reviews and security assessments for web, Android, and iOS applications, with a strong focus on cloud infrastructure security. Proactively identify and mitigate vulnerabilities across platforms, collaborating with development and DevOps teams to implement secure solutions. Automate and streamline security processes, aligning with the principle that Complexity is the enemy of Security. Oversee Vulnerability Management and Patch Management processes, ensuring timely remediation. Design and implement robust security measures and contribute to Red Team activities, including assessments of cloud, network, wireless, physical, and social engineering scenarios. Take ownership of assigned tasks and drive the continuous improvement of security practices across the organization. Assist in setting up and maintaining monitoring systems to identify and respond to potential incidents in real time. Develop custom tools, scripts, and scanners to address unique security challenges and automate repetitive tasks. Provide architectural guidance for securing cloud-based applications and DevOps pipelines. Continuously stay updated on emerging security technologies and techniques, sharing knowledge with the team. Qualifications: 3-5 yrs experienced Sr security engineer. Expertise in cloud security (AWS, Azure, or GCP) with a strong understanding of securing applications and infrastructure in cloud environments. Proficiency in DevOps and DevSecOps practices, including secure CI/CD pipeline integration and automation. Strong knowledge of OWASP and SANS testing methodologies for identifying and mitigating security vulnerabilities. Good understanding of software security weaknesses, architecture vulnerabilities, and mitigation strategies. Hands-on experience in threat modeling, vulnerability assessments, and penetration testing. Proficiency in any scripting language - Python. Experience in developing or customizing tools, scanners, or extenders for specific security needs. Ability to work independently and collaboratively within a team to solve complex security challenges. Experience in implementing security monitoring systems for early incident detection. Strong problem-solving skills and the ability to think creatively to simulate attack scenarios. Certification in security-related fields (e.g., AWS Certified Security, CISSP, CEH, OSCP). Experience with container security and orchestration platforms like Kubernetes and Docker. Knowledge of Infrastructure as Code (IaC) tools like Terraform or CloudFormation. Familiarity with modern DevOps tools (e.g., Jenkins, GitLab, Ansible). Join Locus and become part of a visionary team that is redefining logistics through innovation and smart distribution. We provide competitive compensation, comprehensive benefits, and a collaborative environment where your expertise will drive both your growth and that of the organization. Locus is an equal opportunity employer dedicated to creating a diverse and inclusive workplace.

Location: Bengaluru, India Role: Cybersecurity Analyst Company: Wipro Limited In a world where data is power, protecting that data is a mission, not just a job. As a Cybersecurity Analyst at Wipro, you ll be the guardian of sensitive information, spotting threats before they strike and building a resilient security posture for the organization. What You ll Do 1 Keep Customers Safe Deliver customer-centric cybersecurity, ensuring systems are fortified and risks are minimized. Monitor logs, security events, and access patterns to detect unusual, unauthorized, or illegal activity. Safeguard log sources, security configurations, and access controls. 2 Hunt, Analyze & Respond Track, analyze, and respond to security incidents escalated by L1 teams (24x7 rotational shifts). Perform log reviews and forensic analysis to understand unauthorized access or breaches. Use advanced analytics tools to identify emerging threat patterns. Conduct detailed root cause analysis and recommend specific, actionable improvements. 3 Be the Incident Commander Lead incident response efforts, coordinating with internal teams and customers for swift resolution. Plan and refine disaster recovery strategies for potential breaches. Create incident reports, dashboards, and analysis summaries to share insights and learnings. 4 Collaborate & Educate Work closely with internal technical leads, practice teams, and external customers to manage security concerns. Assist with internal and external audits, maintaining the information security risk register. Deliver cybersecurity awareness training for colleagues, turning every employee into a security ally. Provide hands-on advice and guidance on handling malicious emails, phishing attempts, and suspicious activity. Key Relationships Stakeholder Why You ll Work Together Internal Tech & Project Leads Regular updates, security reporting, coordination Security Intelligence Team For threat intelligence sharing and practice alignment Customers Direct support during incidents, ensuring transparency & fast resolutions What You Need to Succeed Technical Mastery Deep knowledge of Network Security devices, Firewalls, Endpoints, SIEM, Application Security, IDS/IPS, Vulnerability Assessments & Penetration Testing (VA/PT). Process Excellence Solid understanding of standards, processes, and automation tools to improve consistency and reduce risk. Communication & Collaboration Clear, effective communication skills you ll be the go-to person for explaining security risks to both techies and non-techies. How Your Success Will Be Measured Performance Area Measure Customer Focus Fast, effective resolution of security incidents for internal & external users Process Adherence 90-95% SLA compliance for response & resolution times Key Competencies Effective Communication Collaborative Working Execution Excellence Analytical Thinking & Problem Solving Reinvent Cybersecurity With Wipro This isn t just a job it s your chance to reinvent how organizations protect themselves in a rapidly evolving threat landscape. Join Wipro. Own the mission. Protect the future. Applications from people with disabilities are explicitly welcome.

Job Title: Lead Engineer Software Test & Release Location: Bangalore Job Summary We are looking for a skilled Security Test and Automation Engineer with 7-9 years of experience in Security Verification and Validation, particularly on Embedded Systems. The ideal candidate will have 3-4 years of leadership experience in managing a team of security test engineers and hands-on expertise in scripting languages like Python, Java, and AI/ML-based tools. The primary responsibility will be to develop and execute security testing strategies across various domains including Devices, Automotive, Medical Devices, and Telecom Infrastructure (Wireless and Wired). Key Responsibilities Security Test Strategy: Develop and execute a comprehensive security test and automation strategy across multiple domains like Devices, Automotive, Medical Devices, and Telecom Infrastructure. Collaborate with project teams to capture best practices, share knowledge about the latest tools and technologies, and identify opportunities for new solution development. Understand client requirements for security testing and prepare proposals related to Security and Penetration Testing. Penetration Testing: Work with clients to understand their testing needs (e.g., number and types of systems for testing). Plan, create, and execute penetration methods, scripts, and tests to assess the security of systems. Perform remote or on-site security testing of a client s network or infrastructure to uncover vulnerabilities. Simulate security breaches to test system vulnerabilities and identify potential threats. Generate detailed reports outlining security issues, the level of risk, and recommendations for remediation. Team Leadership and Development: Lead and mentor a team of security test engineers, providing guidance on technical challenges and professional growth. Conduct reviews of designs, code, and test plans to identify risks and ensure quality deliverables. Identify training needs for the team and provide support for their technical development. Risk Analysis and Requirement Management: Conduct requirement analysis and feasibility studies, considering risk identification and mitigation. Perform system-level work estimation and ensure timely delivery of high-quality work. Ensure traceability of requirements from design to delivery, while optimizing code and ensuring test coverage. Continuous Improvement: Participate in technical initiatives within the project and organization, delivering training and maintaining a high level of technical competence through ongoing self-study and technical assessments. Identify and implement improvements in security testing practices and tools. Required Skills and Experience 7-9 years in Security Verification and Validation on Embedded Systems. 3-4 years of experience leading a team of security test engineers. Hands-on experience with scripting languages like Python, Java, and AI/ML-based tools. Experience in penetration testing and security assessments for embedded systems and network infrastructures. Technical Expertise: Strong knowledge of security testing methodologies, vulnerability assessments, and penetration testing. Proficiency in scripting languages (Python, Java, Perl, Shell scripts, TCL). Experience in Automation Frameworks for security testing. Understanding of network protocols (2G, 3G, LTE, 5G) and security concerns within telecommunications and embedded systems. Certifications: Bachelor s degree in Engineering or equivalent. Certifications in Security Testing (e.g., Certified Ethical Hacker - CEH) are highly desirable. Tools and Technologies: Experience with test and trace/log collection tools such as QXDM, QCAT, QPST, Prism, and other telecom instruments (e.g., Anritsu, Keysight). Familiarity with automation scripting tools like RTD (for Anritsu) or equivalent. Knowledge of Linux host platforms and network simulation tools. Specialization: Expertise in 2G, 3G, 4G, 5G, Interop Testing, and VSAT-SATCOM technologies. Understanding of 3GPP specifications and network vendor tests. Desirable Skills Strong problem-solving and analytical skills to identify vulnerabilities and assess risks in systems. Ability to provide strategic and actionable insights based on security findings. Ability to communicate complex security issues to non-technical stakeholders. Leadership and mentoring capabilities to guide junior engineers and promote team development. Work Environment Location: Bangalore Opportunity to work in a dynamic environment with the latest tools and technologies in the security testing domain. If you have a passion for security testing and automation, along with a desire to lead and contribute to impactful projects, this is the perfect opportunity for you! Apply now to join our team and make a significant impact in the field of security testing.

Job Title: Senior Technical Program Manager Location: Bengaluru, India About Couchbase: As industries race to embrace AI, traditional database solutions fall short of rising demands for versatility, performance, and affordability. Couchbase is leading the way with Capella, the developer data platform for critical applications in the AI world. By uniting transactional, analytical, mobile, and AI workloads into a seamless, fully managed solution, Couchbase empowers developers and enterprises to build and scale applications with unmatched flexibility, performance, and cost-efficiency from cloud to edge. Trusted by over 30% of the Fortune 100, Couchbase is unlocking innovation, accelerating AI transformation, and redefining customer experiences. Come join our mission! Job Overview: As a Senior Technical Program Manager, you will play a pivotal role in the planning, management, communication, and governance of Couchbase Engineering and Cloud programs and projects. You ll lead cross-functional initiatives in a fast-paced, results-oriented environment, ensuring high-quality and timely execution of critical projects that align with Couchbase s goals and vision. Responsibilities: Release Management: Coordinate and execute efficient release management processes, ensuring smooth and timely deployment of software updates while maintaining rigorous testing and validation protocols. Security Program Management: Lead the development and implementation of comprehensive security programs, overseeing risk assessments, designing strategies, and ensuring compliance with industry standards to safeguard assets and data. Cross-Functional Collaboration: Work closely with cross-functional teams to ensure seamless integration of engineering solutions, consistently meeting Service Level Agreements (SLAs) for development and support. Program Management: Formulate, organize, and monitor interconnected projects, ensuring clarity of cross-functional requirements and managing scope, quality, and schedules effectively. Risk Management: Identify potential risks and dependencies across multiple work streams, using data-focused analysis to drive mitigation actions. Product Strategy Alignment: Collaborate with the product team to clarify and specify the product roadmap, ensuring alignment with business goals. Stakeholder Communication: Communicate goals, status, risks, and impacts to teams and stakeholders, adapting your communication style to suit different audiences. Issue Resolution: Effectively manage issues, backlogs, and changes, escalating risks and bottlenecks at the earliest opportunity to ensure smooth project execution. Qualifications: Education: Bachelor s/Master s degree in Computer Science or equivalent. Experience: 5 - 7 years of experience managing cross-functional and/or cross-team projects in a fast-paced environment. Cloud Expertise: Experience with AWS, GCP, or Azure platforms; certifications are helpful but not required. Problem-Solving: Excellent analytical skills, with a strong ability to solve complex technical and operational issues. Systems Understanding: Solid understanding of large-scale distributed systems design and operational challenges. Cross-Functional Collaboration: Experience partnering with engineering teams and driving execution across all phases of the software development lifecycle. Remote Work Experience: Comfortable working remotely with global teams, and adept at navigating ambiguity in a rapidly evolving environment. Communication Skills: Strong verbal and written communication skills, with the ability to create clear specifications, executive reports, and communicate complex ideas to diverse audiences. Modern customer experiences require a flexible cloud database platform that powers applications across cloud, edge, and everything in between. Couchbase s mission is to simplify how developers and architects develop, deploy, and consume modern applications. With Capella, our flexible, affordable cloud platform, we empower organizations to quickly build and deliver premium customer experiences with unmatched price-performance. More than 30% of the Fortune 100 trust Couchbase to power their modern applications. Benefits at Couchbase: Generous Time Off Program: Flexibility to care for yourself and your family. Wellness Benefits: Comprehensive medical plans, dental, vision, life insurance, and employee assistance programs. Financial Planning: RSU equity program, ESPP, retirement planning, and business travel insurance. Career Growth: A Be valued, Create value approach to your career development. Fun Perks: Ergonomic office setup, food & snacks for in-office employees, and more! Qualification : Bachelors/Masters degree in Computer Science or equivalent.

Infosec Lead Experience: 5-7 Years | Location: Bengaluru About Gameskraft: Founded in 2017, Gameskraft is one of India s fastest-growing online gaming companies. Our mission is to build a safe, secure, and responsible gaming ecosystem while delivering unmatched experiences through innovation and technology. As the industry s only ISO 27001 and ISO 9001 certified company, we set the highest benchmarks in security, design, and performance. Job Summary: We are seeking an experienced Infosec Lead to drive our security strategy, ensuring robust web security, application security, and compliance across the organization. You will be responsible for leading a team of security professionals, implementing best-in-class security measures, and ensuring compliance with industry regulations such as HIPAA, PCI-DSS, ISO, and GDPR. Key Responsibilities: Security Strategy & Program Management: Develop, implement, and maintain a comprehensive security program to safeguard company assets, systems, and data. Collaborate with cross-functional teams to integrate security into product development and business operations. Conduct risk assessments and vulnerability analyses to identify and mitigate security threats. Compliance & Regulatory Adherence: Ensure compliance with HIPAA, PCI-DSS, ISO, GDPR, and other relevant security frameworks. Maintain security certifications and drive adherence to regulatory standards. Develop and enforce security policies, standards, and procedures. Incident Response & Risk Management: Lead incident response efforts, including investigation, containment, and remediation. Continuously monitor security threats, emerging trends, and vulnerabilities to strengthen cyber resilience. Provide security guidance and risk analysis during product launches and infrastructure changes. Team Leadership & Stakeholder Collaboration: Lead and mentor a team of security professionals, fostering a culture of security awareness across the organization. Work closely with engineering, IT, legal, and business teams to embed security best practices. Present regular security reports and key performance metrics to senior management. What You Bring to the Table: Education: Bachelor s or Master s degree in Computer Science, Information Security, or a related field. Experience: 5-7 years of experience in information security, with a strong focus on web security, application security, and compliance. Proven track record in leading security teams and managing enterprise security programs. Technical Expertise: Strong knowledge of security technologies such as firewalls, IDS/IPS, SIEM, encryption, authentication protocols, and penetration testing tools. Experience with cloud security (AWS, Azure, GCP) and DevSecOps methodologies. Familiarity with secure coding practices and application security frameworks (OWASP, NIST, CIS Controls). Hands-on expertise in risk assessment, vulnerability management, and security architecture design. Certifications (Preferred): CISSP, CISM, CISA, CEH, or equivalent industry-recognized security certifications. Soft Skills & Leadership: Strong analytical and problem-solving skills. Excellent communication and stakeholder management abilities. Ability to influence and drive security initiatives across multiple teams. Work Culture at Gameskraft: Startup Environment: Fast-paced, ownership-driven culture where innovation and agility thrive. Impactful Work: Direct contribution to securing one of India s largest gaming platforms. Collaboration: Work alongside some of the best minds in the gaming and consumer internet industry. Data-Driven: Leverage analytics to enhance security posture and decision-making. Compensation & Benefits: Attractive Compensation & ESOPs Competitive salary with equity options. Health Insurance 5 Lakh medical cover for you and your family. Car Lease Policy Exclusive leasing options for employees. Relocation Benefits Assistance with moving to Bengaluru. Free Lunch & Stocked Pantries Enjoy great food while you work! Performance-Based Growth Transparent appraisals and rapid career progression. Join Us & Secure the Future of Gaming! If you re passionate about cybersecurity, risk management, and building secure digital ecosystems, we d love to have you on board. Apply now and be part of an exciting journey at Gameskraft! Qualification : Bachelors or Masters degree in Computer Science, Information Security, or a related field.

Job Title: Site Reliability Engineer (SRE) General Summary: We are seeking a highly skilled and motivated Site Reliability Engineer (SRE) to join our dynamic team. This role is critical in ensuring the stability, scalability, and security of our infrastructure and services. As an SRE, you will work collaboratively with software engineers, data scientists, and product managers to optimize system reliability while driving automation and continuous improvement. You will be responsible for modernizing traditional services, implementing cutting-edge technology, and proactively managing infrastructure to maintain operational excellence. If you are passionate about automation, DevSecOps, system performance, and infrastructure resilience, this role offers an exciting opportunity to make a meaningful impact. Key Responsibilities: System Monitoring & Incident Response: Continuously monitor system health, detect anomalies, and respond to incidents promptly. Investigate and troubleshoot service-related issues, ensuring minimal disruption. Implement proactive measures to prevent downtime and optimize system stability. Infrastructure Automation & DevOps Implementation: Develop and maintain Infrastructure-as-Code (IaC) scripts to automate deployments and scaling. Automate routine operational tasks to improve efficiency and reduce manual intervention. Leverage DevSecOps practices to ensure secure and resilient deployments. Performance Optimization & Capacity Planning: Collaborate with development teams to enhance software performance and system responsiveness. Identify and resolve system bottlenecks to improve speed, efficiency, and reliability. Forecast resource requirements based on traffic patterns and business growth. Security, Compliance & Risk Management: Implement security best practices and compliance measures across all infrastructure layers. Conduct security audits and ensure systems meet industry-standard security guidelines. Proactively assess and mitigate risks associated with infrastructure and deployments. Required Qualifications & Skills: Technical Expertise: Extensive experience with Linux-based environments (Ubuntu, RedHat), including system administration and troubleshooting. Strong proficiency in scripting and automation using Python, Bash, or Go. Experience with containerization and orchestration technologies such as Docker and Kubernetes. Familiarity with CI/CD pipelines and tools like Jenkins, Puppet, Vault, and Splunk. Hands-on experience with cloud platforms (AWS, Azure, or GCP). Problem-Solving & Leadership: Strong analytical skills with the ability to diagnose and resolve complex system issues. Self-driven, highly motivated, and able to work independently in a fast-paced environment. Ability to collaborate cross-functionally and communicate technical solutions effectively. Security & Reliability Focus: Solid understanding of DevSecOps principles and secure system design. Ability to implement monitoring, logging, and alerting solutions to maintain system resilience. Passion for continuous learning and leveraging data-driven approaches for system improvement. Work in a high-impact role that directly contributes to the reliability and scalability of mission-critical systems. Be part of an innovative, forward-thinking team that values automation, collaboration, and continuous improvement. Competitive salary, professional development opportunities, and an environment that fosters growth and innovation. If you are a passionate, results-driven SRE, we invite you to join us and play a pivotal role in shaping the future of our infrastructure.

Summary of Essential Job Functions The primary responsibility of the InfoSec Tech Lead is to ensure the organization's global information security, compliance, and risk management. The role involves collaborating with various teams to identify and implement security requirements for product applications and infrastructure. Minimum Requirements (Education & Work Experience) Education: Bachelor s/Master s degree in Computer Engineering or Information Science. Certifications (Preferred): OSCP, OSCE, ECSA|LPT, CPT, CEH. Experience: 5-7 years in Vulnerability Management, covering Application, Infrastructure, Cloud, Mobile Security, Secure Code Review, and IoT. Work Location: Bangalore, India (May require travel). Competency Requirements Hands-on experience in Network, Web-based, and Cloud Application Security Assessments including threat modeling, vulnerability assessments, and penetration testing. Knowledge of current information security trends. Familiarity with security bug classification frameworks (e.g., CVSS, DREAD) and application of classification methods. Expertise in Web Service vulnerability assessments. Understanding of Mobile Application Security (iOS/Android). Experience in code review methods and standards. Ability to develop proof-of-concept (POC) exploits for security vulnerabilities. Proficiency with web application vulnerability scanning tools (e.g., Acunetix, NTO Spider, BurpSuite Pro, WebInspect, Core Impact). Experience with network assessment tools and exploitations (e.g., Kali Framework, QualysGuard, Nessus, Nexpose, Nmap, Metasploit, Saint). Experience in static code review tools (e.g., Checkmarx, HP Fortify, IBM AppScan Source). Proficiency in at least two scripting languages (e.g., Python, Perl, PHP, Ruby, etc.). Ability to assess applications using OWASP, OSSTMM, CESG, CREST, NIST, ISSAF, PTES methodologies. Understanding of SDLC practices and adaptability to Agile methodologies. Experience in high-level programming languages (e.g., Java, C, C++, .NET (C#, VB)), with DAST code review as an added advantage. Knowledge of operating systems (Windows/Linux/UNIX IBM AIX, Sun Solaris, HP UX) and network equipment. Experience providing technical oversight to project teams to ensure quality engagements. Strong experience in mentoring, coaching, and leading teams in challenging environments. Familiarity with security compliance frameworks (PCI, SOC, GDPR). Other Requirements Strong ethics and integrity in business and information security. Proficiency in English (written and verbal communication skills). Ability to prepare professional reports and present findings to technical and executive stakeholders. Ability to interact with customers and understand security requirements. Job Responsibilities Conduct and manage Vulnerability Assessments and Penetration Testing (VAPT) for Infrastructure, Web Applications, and Web Services/APIs. Perform manual and automated security testing to identify vulnerabilities. Conduct periodic configuration audits for network devices, servers, and critical functions. Perform secure code reviews across multiple programming languages and recommend corrective actions. Assess SDLC processes for security compliance. Develop security testing scripts and procedures. Participate in security-related projects as per skillset. Continuously evaluate application architecture to enhance security processes. Analyze suspected vulnerabilities, collaborate with subject matter experts, and recommend remediation measures. Evaluate and recommend security products and solutions. Act as a security advisor for secure coding standards and security information management. Qualification : Bachelors/Masters degree in Computer Engineering or Information Science.

About Unilever Unilever is a purpose-driven global company, impacting the lives of billions of consumers in over 190 countries. Our brands are trusted and loved, and we are committed to making sustainable living commonplace. We believe that doing business the right way drives both performance and positive societal change. At Unilever, we foster an inclusive, flexible, and collaborative work environment. Your career here will be a dynamic journey where you can shape your future while contributing to a better business and a better world. About UniOps Unilever Operations (UniOps) is the technology and business services engine of Unilever, providing seamless enterprise solutions across 190+ locations. Through strategic sourcing, digital transformation, and operational excellence, UniOps enables Unilever to drive growth, enhance efficiency, and stay future-fit. Role Overview As a Global Security Specialist Workplace Experience and Operations, you will be responsible for designing, implementing, and managing security programs across Unilever s global workplace facilities, passenger fleet, and travel service lines. Your role will ensure compliance with global security and safety standards while driving innovation, operational excellence, and best practices in risk management. You will collaborate with internal stakeholders, suppliers, and cross-functional teams to enhance safety measures, leverage emerging security technologies, and maintain a secure environment for Unilever employees. Key Responsibilities Security Strategy & Technology Integration Develop and implement a comprehensive security and safety strategy aligned with Unilever s global objectives. Design roadmaps for security transformation initiatives and oversee their execution. Evaluate and integrate advanced security technologies to enhance workplace safety. Support the deployment of digital solutions to meet security and safety goals. Stay updated on emerging security trends and recommend innovative measures. Cross-Functional Collaboration Partner with internal teams, including HR, IT, Legal, and Facility Management, to create a holistic security framework. Communicate security initiatives and updates to senior leadership. Drive change management efforts, providing training and awareness programs. Operational Safety & Security Assist in implementing the Workplace Sustainability, Safety & Security (WPS) work plan. Ensure compliance with Unilever s global safety policies for travel, events, and fleet management. Monitor security and safety performance, infrastructure, and service delivery. Proactively manage risks and escalations, working closely with regional teams. Vendor & Budget Management Manage relationships with key security and safety suppliers. Oversee contract negotiations, service level agreements, and supplier performance evaluations. Develop and manage the budget for security initiatives, ensuring efficient resource allocation. Capability Building & Compliance Embed a strong security culture across Unilever s workplace services, impacting 800+ employees and 6,000+ contractors. Ensure consistent implementation of global security frameworks and standards. Organize training programs, workshops, and capability-building initiatives. Champion a culture of security awareness to minimize risks and incidents. Qualifications & Experience Education: Bachelor s degree in Engineering, Science, Business, or a related technical discipline. Experience: Strong background in security and safety management within a corporate, FMCG, or facility management environment. Knowledge of occupational safety regulations and industry best practices. Experience in managing large-scale security projects and implementing digital security solutions. Familiarity with change management and training initiatives. Skills: Strong communication and stakeholder management skills. Ability to work in a fast-paced, global environment. Proficiency in Microsoft Office (Word, Excel, PowerPoint, Outlook). Project management experience with a strategic mindset. Fluency in English; additional language skills are a plus. Why Join Unilever? At Unilever, we celebrate diversity and inclusion, ensuring that all employees regardless of race, gender, age, disability, or background have the opportunity to thrive. Join us to challenge conventional ideas, drive innovation, and make a meaningful impact on business and society. Qualification : Bachelors degree (Engineering / Science / Business / Technical discipline).

About Oracle Cloud Infrastructure (OCI) Oracle Cloud Infrastructure (OCI) offers a scalable, secure, and high-performance cloud environment designed to meet the needs of modern enterprises. Our mission is to build and operate a suite of integrated cloud services that support the most demanding applications across the globe. OCI empowers customers to tackle some of the world's biggest technology challenges by providing reliable, high-scale distributed services. Role Overview As a Senior Software Engineer, you will play a critical role in designing, developing, troubleshooting, and debugging high-performance, scalable software solutions across databases, applications, tools, and networks. You will contribute to defining and evolving standard engineering practices, ensuring the development of robust and resilient services. This role involves working on non-routine, highly complex problems, requiring deep technical expertise and strong problem-solving skills. As a leading individual contributor and team member, you will mentor engineers, drive technical direction, and deliver impactful solutions for Oracle's cloud platform. Career Level: IC3 Key Responsibilities Design, develop, troubleshoot, and debug software applications and distributed systems. Take an active role in defining engineering best practices and evolving Oracle Cloud Infrastructure (OCI). Build highly available, scalable, and resilient cloud services to support business-critical applications. Lead the entire software development lifecycle, from concept and architecture to deployment and operations. Optimize performance and reliability of cloud services, ensuring seamless user experience. Work on service-oriented architectures (SOA) and RESTful APIs to enable cloud interoperability. Develop and maintain CI/CD pipelines, enabling automated deployments with robust testing. Conduct security reviews, risk assessments, and compliance audits (e.g., FedRAMP, PCI DSS). Collaborate with Product Managers, UX designers, and internal customers to translate business needs into scalable engineering solutions. Monitor, troubleshoot, and improve system performance, proactively identifying and addressing anomalies. What is IAM at OCI? The Identity and Access Management (IAM) team at OCI is responsible for designing and building core security services that empower customers to control access to their cloud resources. As part of Oracle's Cloud Platform Organization, the IAM team delivers enterprise-grade authentication, authorization, and access control solutions used by internal and external customers. IAM engineers work on high-scale distributed systems, handling millions of requests per second, ensuring compliance with industry security regulations, and designing resilient, multi-region architectures. Who We Are Looking For We are seeking highly skilled software engineers with expertise in distributed systems and cloud services development. The ideal candidate will: Have experience designing and deploying highly available, large-scale services in a cloud environment. Understand how to build resilient, fault-tolerant services that operate across multiple availability domains (ADs) and regions. Be a hands-on engineer, capable of driving feature development from conception to production. Be proactive in identifying performance bottlenecks and improving system scalability. Have a deep understanding of security best practices, including threat modeling and risk assessments. Thrive in a fast-paced, collaborative, and agile engineering environment. Biggest Challenges for the Team Reliability & Performance: As the business grows, we must scale services to handle exponentially increasing workloads. Scalability & Resilience: Designing and operating services that can withstand regional outages while maintaining seamless performance. Security & Compliance: Ensuring that IAM services meet stringent security requirements while remaining flexible and user-friendly. Required Qualifications 7+ years of software engineering experience, specializing in distributed systems and cloud services. Strong proficiency in Java, C++, or C# for backend development. Experience with service-oriented architectures (SOA) and RESTful web services. Hands-on experience building and operating cloud-based services. Proficiency in at least one scripting language (Python, Bash, etc.) for automation and tooling. Experience with monitoring, debugging, and optimizing distributed systems. Preferred Qualifications Experience with public cloud platforms (AWS, Azure, Oracle Cloud). Knowledge of containerization technologies (Docker, Kubernetes). Experience with CI/CD pipelines and automated testing frameworks. Expertise in multi-region architecture and high-availability systems. Familiarity with compliance standards (FedRAMP, PCI DSS). Why Join Oracle Cloud Infrastructure (OCI)? Work on cutting-edge cloud technologies that shape the future of enterprise computing. Build and operate high-impact, large-scale distributed systems. Be part of a team that values innovation, collaboration, and continuous learning. Competitive compensation, benefits, and career growth opportunities. If you are passionate about solving complex engineering challenges and building the future of cloud computing, we invite you to join Oracle Cloud Infrastructure (OCI) and make an impact.

About the Role: We are seeking a highly skilled Cybersecurity and Automation Systems Engineer to design and implement automation systems, safety systems, and package system networks with a focus on digital transformation and cybersecurity. The ideal candidate will have experience in managing complex network and cybersecurity configurations and hardening, including solutions like Active Directory, SIEM, IDS, Firewalls, Cloud Computing (AWS/Azure), and other key technologies. This role will involve working with various teams, including OEMs, vendors, and customers, to ensure that all project activities meet deadlines, adhere to safety standards, and align with the overall project requirements. Key Responsibilities: Project Management & Coordination: Manage and oversee project scope, including coordination between various project teams, ensuring all activities align with project goals. Act as the main focal point for coordination with OEMs, subcontractors, and vendors. Cybersecurity & Network Design: Design, configure, deploy, and maintain cybersecurity systems, including firewalls, routers, switches, IDS/IPS, patch management, antivirus software, and more. Ensure networks are resilient to cyber-attacks and monitor traffic for suspicious activity. Engineering & Documentation: Prepare and review engineering and construction documents, such as method statements, testing procedures, and planning documents. Ensure timely approvals and compliance with industry standards. Network & Cybersecurity Tools: Deploy and manage solutions for Active Directory, EDR, WSUS, RADIUS, Log Management, SIEM, NCM, backup solutions, and other key cybersecurity protocols. Maintain a secure network infrastructure to prevent unauthorized access and potential cyber threats. Standards & Best Practices: Ensure that all systems and configurations comply with industry standards (e.g., ISA, Shell, CERT, NIST, ISO 27001/2, CIS, PCI-DSS). Stay up-to-date on emerging trends in cybersecurity and apply relevant frameworks. Collaborative Support: Work closely with the project team to achieve goals within the scheduled timelines, providing technical expertise and guidance on network security and automation solutions. Technical Analysis & Risk Management: Identify and evaluate opportunities for technical improvements in cybersecurity systems and network designs. Provide recommendations for system enhancements and communicate the economic justification for those improvements. Communication & Stakeholder Engagement: Communicate complex technical concepts to both technical and non-technical stakeholders, ensuring alignment across all parties. Collaborate effectively within a fast-paced environment to meet project deliverables. Professional Attributes: Strong analytical skills with a structured approach to problem-solving. Excellent communication and interpersonal skills, able to explain technical topics clearly to clients and stakeholders. Creativity and innovation in solving complex problems and the ability to perform under pressure. Leadership and proactive attitude to motivate teams and drive successful project outcomes. Required Qualifications & Certifications: Educational Requirements: Bachelor's degree in Engineering (Electrical & Electronics, Electronics & Communication, Electronics and Instrumentation, Control & Instrumentation, Computer Science, IT). Professional Experience: 8-10 years of relevant experience in cybersecurity, network design, and automation systems. Cybersecurity Certifications: CISSP, CISA, CISM, GICSP, ISA/IEC62443, or equivalent certifications are required. Technical Expertise: In-depth understanding of networking and cybersecurity concepts, tools, and techniques, including Active Directory, SIEM, IDS/IPS, firewalls, routers, switches, and cloud security (AWS, Azure). Industry Knowledge: Familiarity with industry standards like ISA, Shell, CERT, NIST, and relevant cybersecurity frameworks. Desired Skills: Experience with Cybersecurity Certifications such as Certified Information Systems Security Professional (CISSP), CompTIA Security+, and related certifications. Proficient in MS Office and related project management tools. Ability to work independently and as part of a team, meeting deadlines and managing multiple tasks. Qualification : Bachelor's degree in Engineering (Electrical & Electronics, Electronics & Communication, Electronics and Instrumentation, Control & Instrumentation, Computer Science, IT).