Threat Assessment Jobs in Bengaluru

Job Title: Information Security Engineer Location: Bengaluru Company: Altisource (NASDAQ: ASPS) About Altisource At Altisource, we develop cutting-edge technologies and services for the mortgage and real estate industry. We re a trusted partner to 7 of the top 10 U.S. mortgage servicers, operate one of the leading real estate auction platforms, and support a cooperative with over 15% market share in the $1.8 trillion U.S. originations market. If you're passionate about cybersecurity and want to make an impact in a high-growth, tech-driven environment this is the role for you. Position Summary We re looking for a highly motivated Information Security Engineer to support our growing security operations. You will play a vital role in identifying and mitigating security risks across applications, systems, and networks. This role involves vulnerability assessments, code reviews, and automation of security tasks ensuring Altisource remains secure and compliant in a fast-paced environment. Key Responsibilities Conduct vulnerability assessments on applications, networks, and systems. Perform manual verification to reduce false positives and validate security fixes. Communicate identified vulnerabilities and recommend remediation steps to internal teams. Perform secure code reviews and assist development teams in fixing identified issues. Identify and mitigate risks throughout the software development lifecycle. Leverage commercial and open-source tools for vulnerability detection (e.g., Qualys, Nessus, Burp Suite). Assist in internal penetration testing initiatives. Develop internal tools and automate security tasks, leveraging AI where applicable. Stay updated on the latest threats, tools, and best practices in cybersecurity. Create detailed assessment reports and present findings to technical and non-technical stakeholders. Train and mentor team members on vulnerability management processes and tools. Required Qualifications Bachelor s degree in Computer Science, Engineering, or a related field. 3 to 5 years of hands-on experience in information security or related roles. Relevant certifications such as CEH, GIAC, or similar. Solid experience in: Network vulnerability assessments Application scanning and secure code review Windows, Linux, and Unix operating systems Familiarity with OWASP tools, methodologies, and security best practices. Strong communication skills both written and verbal. Preferred Skills Experience with tools like: Qualys, Nessus, Nexpose, SAINT Burp Suite Pro, HP WebInspect Static analysis tools (e.g., IBM AppScan Source, Fortify) Proficiency in one or more programming languages: Java, C, C++, .NET (C#, VB). Experience delivering training or presenting technical content to teams. Background in technical writing or web development is a plus. Be part of a team securing technologies used by top players in the mortgage and real estate space. Work with modern tools and frameworks. Enjoy a collaborative environment that supports innovation, growth, and learning. Qualification : Bachelors degree in Computer Science, Engineering, or a related field

Position: Security Engineer-2 Location: Bengaluru Employment Type: Full-Time Department: Engineering Job Description: We are seeking a proactive and skilled Security Engineer-2 to identify vulnerabilities, collaborate with development teams on mitigation strategies, and promote secure coding practices within the organization. You will play a critical role in ensuring the security and resilience of our products against emerging threats. Key Responsibilities: Conduct in-depth security assessments of products to discover vulnerabilities and demonstrate their exploitability and risk impact. Stay updated on emerging vulnerabilities and threats relevant to our products through independent research. Collaborate with developers to develop and implement mitigation and workaround plans according to security policies. Lead threat modeling and secure design review sessions with development teams to identify threats and define mitigation strategies. Conduct workshops to educate developers on threat modeling and secure coding principles. Prioritize and ensure mitigation of critical security defects during development sprints. Integrate and automate Static Application Security Testing (SAST) within the DevOps pipeline. Advocate and propagate secure coding principles across the development community. Serve as the primary point of contact for developers on critical secure development issues. Develop and deliver security training programs and technical workshops for developers and QA teams. Promote security awareness through tech talks and other knowledge-sharing activities. Required Qualifications and Skills: Strong knowledge of common vulnerabilities such as Cross-Site Scripting (XSS), SQL Injection, Cross-Site Request Forgery (CSRF), cryptographic weaknesses, and code injection. Proficiency in programming/scripting languages like Java, Ruby, and Python. Experience with cloud technologies and services. Ability to automate security testing processes and improve assessment productivity. Excellent communication skills to articulate security risks to both technical and non-technical audiences. Familiarity with industry-standard threat modeling, risk assessment, and vulnerability classification methodologies. Experience conducting white-box and grey-box security assessments, including architectural and API analysis. Knowledge of Secure Software Development Lifecycle (S-SDLC) and CI/CD integration. Bachelor s degree in Computer Science, Electrical Engineering, Computer Engineering, or equivalent experience in software engineering or security. Minimum 3 years of experience in application security or related security assessment roles. Deep understanding of attack vectors, exploits, and mitigation techniques, including chained attacks. Experience with languages such as Java, Go, Python, or Node.js (knowledge of multiple is a plus). Experience assessing cloud-native services, service meshes, and Kubernetes-based microservices. Strong problem-solving skills, able to think both offensively (like a hacker) and defensively (product security evaluation). Ability to learn new technologies and apply unconventional thinking to complex security challenges. Qualification : Bachelors degree in Computer Science, Electrical Engineering, Computer Engineering, or equivalent experience in software engineering or security

Cyber Security Analyst Bangalore, India Location: Bangalore (Bengaluru) Experience: 4 to 12 Years Industry: IT Security / Cybersecurity Job Summary: We are seeking a highly skilled Cyber Security Analyst with advanced knowledge in cybersecurity principles, risk assessment, and threat prevention. The ideal candidate will have hands-on experience with security tools, network defense, vulnerability assessments, and malware analysis to safeguard our organization s digital assets. Key Responsibilities: Analyze and mitigate cyber and IT security risks using advanced techniques and best practices Conduct vulnerability assessments and penetration testing across networks, platforms, and applications Utilize scripting and programming languages such as Python, PowerShell, Perl, HTML, and JavaScript for automation and security analysis Monitor network security devices including firewalls, proxies, NIDS/NIPS, and respond to security incidents Perform dynamic and static malware analysis and memory forensics to identify and counter threats Conduct reverse engineering of malware and apply countermeasures based on adversary tactics and protocols Apply in-depth knowledge of network protocols, network security monitoring, and incident response Ensure compliance with security standards and frameworks Collaborate with cross-functional teams to implement security improvements and ensure robust defense mechanisms Required Skills & Qualifications: Minimum 4+ years of professional experience in cybersecurity or related IT security roles Advanced understanding of cyber threats, risk management, and prevention techniques Proficiency in security system analysis, network security, and vulnerability assessment tools Experience with malware analysis, penetration testing, and reverse engineering Strong programming/scripting skills in Python, PowerShell, Perl, or similar languages In-depth knowledge of security standards, protocols, and industry best practices Hands-on experience with network security monitoring and defense technologies Preferred Certifications: Technical cybersecurity certifications from recognized bodies such as SANS, ISACA (CISA, CISM), (ISC) (CISSP), CompTIA Security+, Cisco (CCNA Security), CERT, or equivalent Work in a challenging role protecting critical digital infrastructure Collaborate with a talented cybersecurity team to combat evolving threats Access to continuous learning, professional development, and certification opportunities

Senior People Partner Location: Bangalore, India About the Team At Rubrik, our mission is to secure the world s data, and our People Team is at the heart of making that possible. We focus on recruiting, developing, rewarding, and retaining a global workforce that drives innovation and impact. We believe people are our strongest asset and we re committed to building an environment where every Rubrikan can thrive, grow, and find purpose in their work. If you re someone who thrives in a culture that values bold thinking, collaboration, and making ideas happen, come join us and help shape the future of Rubrik. About the Role We re looking for a Senior People Partner who is passionate about delivering meaningful people experiences and enabling manager success at scale. This business-facing role serves as a critical link between People Services and strategic People Business Partners, providing consultative support to leaders and employees across multiple functions. You'll work on high-impact initiatives including performance management, employee relations, coaching, and change management while building strong cross-functional relationships with stakeholders across the company. This is an influential and hands-on role ideal for someone who thrives in a fast-paced, high-growth, global environment. What You ll Do Act as a primary HR partner to assigned functional teams, providing day-to-day HR support and consultation. Partner with People Business Partners to deliver people strategies tailored to business needs. Coach and advise managers on a wide range of HR topics: employee engagement, organizational health, development, policy interpretation, and complex employee relations scenarios. Lead and execute cross-functional projects to improve the employee experience and strengthen manager capability. Own and drive key initiatives such as performance reviews, talent assessments, compensation planning, engagement surveys, and succession planning. Collaborate with Centers of Excellence (Compensation, TA, L&D, DEI, etc.) to identify areas for improvement and drive process enhancements. Address and resolve ambiguous or complex people issues while ensuring compliance with internal policies and labor laws. Facilitate manager enablement initiatives in partnership with Talent Development. Spot opportunities to scale operations by transitioning work to People Services and standardizing delivery. Leverage HRIS systems and tools (e.g., G Suite, JIRA) to drive process efficiency and data-driven decision-making. Monitor and mitigate HR risks while proactively improving processes to support business goals. What You ll Bring 7 10 years of progressive experience in Human Resources, with exposure to global or multi-site environments. Strong experience in at least 1 2 core HR areas: Technical/Engineering business partnering, Management Coaching, L&D, Compensation, People Operations, or Talent Acquisition. Proven experience in performance management, change management, and manager development in fast-paced, complex organizations. Strong analytical mindset and ability to translate data into actionable insights. Excellent communication and influencing skills; adept at navigating ambiguity and building stakeholder trust. Hands-on experience conducting or supporting employee relations investigations and ensuring legal compliance. Ability to lead cross-functional projects, solve problems quickly, and deliver results with a sense of urgency. Prior experience working across global teams and time zones, with comfort building virtual relationships. Be part of a mission-driven company protecting critical data globally. Work alongside innovative, passionate professionals in an award-winning culture. Help shape the future of the employee experience at one of the most exciting enterprise tech companies. Grow your career in a collaborative environment that values agility, bold thinking, and execution. Rubrik (NYSE: RBRK) is redefining enterprise data security with Zero Trust Data Security . We help businesses recover quickly from cyber threats and disruptions through machine-learning-powered solutions that secure data across hybrid environments. Join us and be part of securing the world s data.

Marketing Reporting Analyst (Night Shift 8:30 PM to 5:30 AM IST) Location: Bangalore, India Office About the Team At Rubrik, our Marketing Team is growing rapidly and plays a pivotal role in driving the company s mission to secure the world s data. We push boundaries, challenge convention, and thrive on innovative thinking. With a culture rooted in opportunity and empowerment, we bring bold ideas to life and deliver measurable impact. Join us in shaping a fresh perspective in the world of data security. Let s be unstoppable, together. About the Role This is a night shift position, supporting our global marketing initiatives and ensuring timely reporting and insights for the U.S. team. What You ll Do Data Analysis & Reporting Analyze marketing performance across digital (organic & paid), traditional channels, and campaigns. Build and maintain dashboards and performance reports using tools like Tableau and Google Sheets/Excel. Performance Measurement Partner with the Sr. Manager of Marketing Analytics to implement the performance measurement roadmap. Track and report key metrics: lead generation, conversion rates, campaign spend, marketing ROI. Insights & Optimization Identify data trends and deliver actionable insights to improve marketing strategy. Support A/B testing, multi-touch attribution, and budget monitoring efforts. Handle ad hoc reporting requests from stakeholders. Data Integrity & Collaboration Ensure high data accuracy and resolve data quality issues proactively. Collaborate with IT and Data Engineering to maintain best practices for database management. Work cross-functionally with Marketing, Sales, Data Science, and IT to align reporting practices and deliver business insights. Contribute to the development of attribution models for marketing impact assessment. What You ll Bring 4 5 years of experience in an analytical role (marketing, finance, or related field). Bachelor's degree in Finance, Accounting, Marketing Analytics, or a related discipline. Expertise in Excel and Google Sheets advanced formulas, pivot tables, and data visualization. Experience with Tableau or Power BI. Solid grasp of financial concepts and their application in marketing analysis. Familiarity with Salesforce and marketing automation platforms (e.g., Marketo, HubSpot) is a plus. Working knowledge of SQL and relational databases. Strong attention to detail and ability to manage multiple priorities and deadlines. Excellent verbal and written communication skills able to translate complex data for non-technical audiences. A growth mindset and a proactive, solutions-oriented approach to challenges. Be part of a mission-driven company at the forefront of data security. Work alongside industry innovators and contribute to a fast-scaling marketing function. Enjoy a collaborative environment where your insights directly influence business outcomes. Access growth opportunities in a company recognized by Gartner and awarded the Red Dot Design Award. About Rubrik Rubrik (NYSE: RBRK) is redefining data security with Zero Trust Data Security . We help organizations across the globe stay resilient in the face of cyberattacks, insider threats, and disruptions. Rubrik Security Cloud, powered by machine learning, secures data across hybrid and cloud environments, ensuring data integrity, availability, and rapid recovery.

Job Title: Azure Infrastructure Architect Location: Bengaluru, Karnataka, India Department: Engineering About CloudSEK CloudSEK is one of India s leading cybersecurity product companies, focused on leveraging Artificial Intelligence and Machine Learning to identify and resolve digital threats in real-time. With a strong portfolio of products like CloudSEK XVigil, BeVigil, and SVigil, we provide advanced solutions for attack surface monitoring, cybersecurity risk management, and software supply chain protection. We are headquartered in Singapore and have expanded rapidly across India, Southeast Asia, and the Americas. At CloudSEK, we prioritize innovation, agility, and building impactful products that keep our customers ahead of emerging cybersecurity threats. About the Role: Azure Infrastructure Architect CloudSEK is looking for an Azure Infrastructure Architect to design, implement, and optimize cloud infrastructure solutions on Microsoft Azure. The ideal candidate will have deep expertise in Azure services, infrastructure automation, and security best practices, with a strong background in cloud architecture patterns. You will work closely with various stakeholders to align cloud strategies with business objectives, ensuring high availability, security, and scalability of enterprise applications. Key Responsibilities Cloud Architecture & Design: Design and implement highly scalable, resilient, and secure cloud infrastructure solutions on Microsoft Azure. Develop cloud adoption strategies, migration plans, and hybrid cloud architectures to meet business needs. Create architecture blueprints, reference architectures, and best practices tailored to Azure environments. Ensure compliance with the Azure Well-Architected Framework and other industry standards. Infrastructure & Automation: Architect and automate Infrastructure as Code (IaC) using tools like Terraform, ARM templates, Bicep, and Ansible. Implement CI/CD pipelines for infrastructure deployment using Azure DevOps, GitHub Actions, or Jenkins. Automate cloud operations, monitoring, and governance using Azure Automation, PowerShell, and Python. Security & Compliance: Design and enforce Azure security best practices including Azure Policy, RBAC, NSGs, Key Vault, Defender for Cloud, and Sentinel. Ensure adherence to regulatory frameworks like ISO 27001, SOC 2, GDPR, and HIPAA. Perform threat modeling, risk assessments, and define zero-trust architectures. Networking & Hybrid Cloud: Design and optimize Azure Virtual Networks (VNet), ExpressRoute, VPN Gateway, and Load Balancers for seamless operations. Implement hybrid cloud architectures, integrating on-premises data centers with Azure via Azure Arc. Optimize network performance, DNS, CDN, and traffic routing in cloud-native environments. Performance Optimization & Cost Management: Leverage Azure Cost Management to implement cost-effective cloud solutions and manage reserved instances. Optimize cloud resource utilization using Autoscaling, VM sizing, and Serverless computing models. Define and implement cloud governance policies to control costs and improve operational efficiency. Collaboration & Stakeholder Engagement: Collaborate with DevOps, Security, and Application teams to align infrastructure solutions with business needs. Provide technical leadership and guidance to engineering teams, ensuring alignment with industry trends and best practices. Act as a trusted advisor to leadership on cloud strategies, emerging technologies, and technical decision-making. Required Skills & Qualifications Technical Expertise: Azure Services: Experience with Azure Virtual Machines, Azure Kubernetes Service (AKS), Azure Functions, Azure Storage, Azure SQL, CosmosDB, and Azure Networking (VNet, NSG, VPN, ExpressRoute). Automation & IaC: Expertise in Terraform, ARM Templates, Bicep, Ansible, PowerShell, Python. DevOps & CI/CD: Knowledge of Azure DevOps, GitHub Actions, Jenkins, Kubernetes, Docker. Security & Compliance: Familiarity with Azure Security Center, Azure AD, Key Vault, Microsoft Defender for Cloud, Sentinel, and Zero Trust Model. Networking & Hybrid Cloud: Experience with ExpressRoute, Load Balancers, Private Link, Virtual WAN, Azure Arc. Monitoring & Logging: Proficiency with Azure Monitor, Log Analytics, Prometheus, and Grafana. Cloud Migration: Hands-on experience in cloud migrations using Azure Migrate, including planning and execution. Soft Skills: Strong problem-solving and analytical abilities. Excellent communication and stakeholder management skills. Ability to work in agile environments and across cross-functional teams. A passion for continuous learning and staying updated with the latest Azure technologies. Preferred Qualifications: Azure Certifications such as Azure Solutions Architect Expert (AZ-305), Azure Security Engineer (AZ-500), or Azure DevOps Engineer (AZ-400). Experience with multi-cloud environments (AWS, GCP). Familiarity with database technologies (SQL, NoSQL, PostgreSQL, MySQL). Location Bengaluru, Karnataka, India Education/Qualification Bachelor s degree in Engineering or Technology (B.Tech/BE). Years of Experience 10 to 15 years of professional experience in cloud infrastructure and architecture design. Be part of a fast-growing startup where you can make a direct impact. Competitive salary and a comprehensive benefits package. Access to cutting-edge technologies and continuous learning opportunities. Flexible working hours and a collaborative work culture focused on innovation and growth. If you're an experienced Azure Infrastructure Architect passionate about designing and optimizing cloud solutions with Microsoft Azure, we would love to hear from you! Join CloudSEK and be part of a forward-thinking team revolutionizing the cybersecurity landscape. Qualification : Bachelors degree in Engineering or Technology (B.Tech/BE).

Audit Analyst II - IT Audit & Compliance Location: Bangalore, Karnataka Full Time Experience: 3-4 Years Work Environment: Work from Office (Occasional travel required) About the Team & Role: We are seeking a motivated and detail-oriented IT Audit Analyst to join our Audit & Compliance team. This role involves planning, executing, and reporting on IT audits across various domains, including IT infrastructure, cloud environments, SaaS applications, and compliance frameworks like ISO 27001, ISO 27701, and PCI DSS. The successful candidate will evaluate IT controls, identify risks, and recommend practical solutions to improve the organization's IT governance, risk management, and control environment. You will work independently on moderately complex audits and assist senior auditors on larger engagements. Key Responsibilities: Audit Planning & Execution: Assist in the development of risk-based IT audit plans. Plan and execute audits covering infrastructure, cloud services (AWS), and SaaS applications. Develop audit programs and testing procedures to evaluate IT controls. Compliance & Framework Audits: Conduct audits against IT security and privacy frameworks, including ISO 27001 (Information Security), ISO 27701 (Privacy Information), and PCI DSS (Payment Card Industry Data Security Standard). Risk Assessment & Analysis: Identify IT risks and control weaknesses during audits. Analyze findings and assess potential business impacts. Evaluate risk mitigation strategies. Reporting & Communication: Document audit work, prepare draft reports with findings and recommendations, and communicate results to management and stakeholders. Collaboration & Improvement: Collaborate with IT teams, business units, and external auditors. Stay up-to-date with emerging technologies, IT security threats, and audit methodologies. Contribute to continuous improvement efforts for the audit function. Qualities We re Looking For: Education & Experience: Education: Bachelor s degree in Information Systems, Computer Science, Cybersecurity, Business Administration, or related field. Experience: 3-4 years of progressive experience in IT Audit, Information Security, IT Risk Management, or a related field. Technical Skills: Strong understanding of IT infrastructure components (networks, operating systems, databases, servers, virtualization). Solid knowledge of cloud computing, specifically auditing cloud environments (AWS focus). Experience auditing SaaS solutions and assessing third-party/vendor risk management. Knowledge of IT general controls (ITGCs) and application controls. Framework & Standard Knowledge: Demonstrated experience with ISO 27001, ISO 27701, and PCI DSS standards. Familiarity with other frameworks such as NIST Cybersecurity, COBIT, and SOX ITGCs is a plus. Audit Skills: Proficiency in IT audit methodologies, risk assessment techniques, and control testing procedures. Strong analytical, problem-solving, and critical-thinking skills. Excellent written and verbal communication skills, with the ability to articulate technical issues to both technical and non-technical audiences. Attention to detail and ability to manage multiple tasks and deadlines. Proficiency with Microsoft Office Suite. Certifications & Tools: Professional certifications such as CISA, CISSP, CISM, CRISC, AWS Certified Security Specialty or similar are highly desirable. Experience with GRC (Governance, Risk, Compliance) tools. Experience with data analysis tools like ACL, IDEA, or Excel PowerQuery/Pivot. Joining our team means becoming part of a dedicated, high-performing group focused on IT governance, risk management, and compliance. As an IT Audit Analyst, you'll have the opportunity to work on exciting, challenging audits, develop your skills, and contribute to continuous improvement initiatives. We offer a collaborative and innovative environment where you can grow professionally while making an impact on the organization s success. Equal Employment Opportunity: We are an Equal Employment Opportunity employer. We do not discriminate based on race, religion, color, national origin, sex (including pregnancy, childbirth, reproductive health decisions, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, genetic information, political views or activity, or other applicable legally protected characteristics. Qualification : Bachelors degree in Information Systems, Computer Science, Cybersecurity, Business Administration, or related field.

Join Our Team as a Security Engineer Location: Bengaluru, India (On-site) Department: Global Information Security Reports to: Director of Information Security APAC At Cytiva, we are dedicated to advancing future therapeutics from discovery to delivery. As part of our Global Information Security Team, you ll work at the forefront of securing the systems, applications, and infrastructure that power critical healthcare solutions. Join us and play a key role in designing and implementing secure, resilient systems that ensure business continuity and safeguard our digital assets. What You Will Do Secure Architecture Design: Assist in developing and implementing secure architecture solutions for systems, applications, and infrastructure. Threat Modeling & Risk Assessment: Perform threat modeling and support security risk assessments to proactively identify vulnerabilities and mitigate potential threats. Design Reviews: Participate in security design reviews for applications and infrastructure across various environments, ensuring security best practices are followed. Security Technology Implementation: Deploy and manage enterprise security technologies, including Identity and Access Management (IAM), Data Loss Prevention (DLP), and Mobile Device Management (MDM). Regulatory Compliance: Ensure alignment with regulatory compliance and audit requirements, supporting the organization in maintaining secure, compliant systems. Who You Are Education: Bachelor s degree in Computer Science, Information Security, Cyber Security, or a related discipline. Experience: At least 5+ years of experience in security engineering or architecture, including expertise in threat modeling, risk assessment, and security architecture principles. Security Technologies: Hands-on experience with security technologies such as IAM, SIEM, EDR, DLP, and MDM. Cloud Security: Familiarity with cloud technologies (e.g., AWS, Azure, GCP) and cloud security best practices. Regulatory Compliance: Experience with frameworks and regulatory standards such as ISO 27001, NIST, and CIS Controls. Travel, Motor Vehicle Record & Physical/Environmental Requirements Travel: Ability to travel globally up to 10% of the time to support regional and global security initiatives. It Would Be a Plus If You Also Have: Experience conducting security design reviews for infrastructure, applications, and cloud environments. Expertise in implementing security standards and secure design patterns in alignment with frameworks like ISO 27001, NIST, and CIS Controls. Experience providing technical security advisory support to project teams, ensuring compliance with security and regulatory standards. Impactful Work: Your role directly influences the security and reliability of life-saving healthcare solutions used around the globe. Global Collaboration: Work with a diverse, dynamic, and global team of security experts dedicated to making a real difference. Career Development: Take advantage of opportunities for professional growth and continuous learning in a rapidly evolving industry. Apply now and join a global leader in advancing therapeutics and securing tomorrow s healthcare technologies. Qualification : Bachelors degree in Computer Science, Information Security, Cyber Security, or a related discipline.

Job Title: Lead Systems Software Engineer Location: Bengaluru, Karnataka, India (On-Site) Team Overview: Join our Application Security team at Cloud Software Group, where we focus on protecting web applications and services from security threats. As a part of this passionate team, you will engage in application layer attack protection, threat intelligence, and the mitigation of OWASP attacks. We are highly focused on emerging security trends and delivering cutting-edge solutions to defend against advanced cyber threats. Job Description: As a Lead Systems Software Engineer, you will be responsible for implementing, configuring, and maintaining Web Application Firewalls (WAFs) to safeguard web applications and services. This role involves identifying security threats, performing security assessments, and collaborating with cross-functional teams to ensure security best practices are followed throughout the development lifecycle. Key Responsibilities: WAF Implementation & Maintenance: Implement and maintain Web Application Firewalls (WAFs) to protect web applications and services from security threats, including bot attacks. Security Policies & Rules: Develop and manage security policies and rules for WAFs to ensure the prevention of OWASP-Top-10 vulnerabilities, unauthorized access, data breaches, and other security incidents. Security Assessments & Penetration Testing: Conduct security assessments and penetration testing of web applications and services to identify vulnerabilities and recommend remediation measures. Collaboration: Work closely with other security teams and developers to ensure security best practices are integrated into the design, development, and maintenance of web applications and bot management systems. Emerging Threats Awareness: Stay informed on the latest security threats, technologies, and best practices to continually improve the security posture and protect against evolving threats for WAF and API. Incident Response: Participate in incident response and investigations as needed to identify the root cause of security incidents and implement corrective actions to prevent recurrence. Continuous Improvement: Lead initiatives to improve processes, systems, or products to enhance job area performance. Address complex security problems by considering multiple issues across various specialties. Qualifications: Education: Bachelor s (BE/B.Tech) or Master s degree in Computer Science, Information Security, or related fields, or equivalent work experience. Experience: 9-11 years of experience in network protocols (TCP, UDP, HTTP, DNS, SSL/TLS) and web application security, with a focus on WAFs and bot mitigation. Technical Expertise: Experience with industry-leading WAFs such as Citrix NetScaler AppFirewall, Imperva, ModSecurity, or F5 BIG-IP ASM. Proficiency in C, C++, and scripting languages like Python and Perl. Analytical Skills: Strong problem-solving abilities with a demonstrated capacity to identify and respond to security threats quickly. Communication Skills: Excellent verbal and written communication skills with the ability to collaborate effectively across teams and with stakeholders. About Us: Cloud Software Group is one of the largest cloud solution providers globally, serving over 100 million users. Our suite of cloud-based products powers productivity and collaboration, enabling real work to get done from anywhere. We value passion for technology, risk-taking, and innovation. If you re ready to be part of a company on the brink of transformative growth, now is the perfect time to join us. We are committed to Equal Employment Opportunity (EEO) and compliance with all applicable laws, ensuring a diverse and inclusive workplace for all. This position is ideal for individuals passionate about cybersecurity and looking to be at the forefront of web application protection and security innovations. Qualification : Bachelors (BE/B.Tech) or Masters degree in Computer Science, Information Security, or related fields, or equivalent work experience.

Job Title: Senior Systems Software Engineer Location: Bengaluru, Karnataka, India Team Overview: Join a team of Application Security experts at Cloud Software Group, where we focus on securing web applications and services. Our team is passionate about application layer attacks, protection mechanisms, threat intelligence, and protecting against OWASP threats. We re constantly evolving, staying at the forefront of emerging security trends. Job Description: As a Senior Systems Software Engineer, you will be responsible for implementing, configuring, and maintaining Web Application Firewalls (WAFs) to secure web applications and services from potential threats, including bot attacks. This role involves ensuring the effective operation of WAFs to prevent common vulnerabilities and unauthorized access, conducting security assessments, and collaborating with other security and development teams to enhance the security posture of our web applications. Key Responsibilities: WAF Implementation & Maintenance: Implement, configure, and maintain Web Application Firewalls (WAFs) to protect against security threats like OWASP-Top-10 vulnerabilities, unauthorized access, data breaches, and bot attacks. Security Policy & Rule Development: Develop and manage security policies and rules for WAFs to enhance their effectiveness in preventing security incidents. Penetration Testing & Security Assessments: Perform security assessments and penetration testing of web applications and services to identify vulnerabilities and recommend remediation actions. Collaboration: Work closely with other security teams, developers, and stakeholders to ensure security best practices are followed in the design, development, and deployment of features for web applications and bot management. Stay Updated on Security Trends: Keep informed about emerging security threats and technologies, continually improving security mechanisms to safeguard against new threats for WAF and API. Incident Response: Participate in incident response and investigations to understand the root cause of security breaches and implement corrective actions to prevent future incidents. Process Improvement: Lead initiatives for improving processes, systems, and products to optimize the performance and effectiveness of security measures. Qualifications: Education: Bachelor's (BE/B.Tech) or Master s degree in Computer Science, Information Security, or related fields, or equivalent professional experience. Experience: At least 5 years of experience working with network protocols like TCP, UDP, HTTP, DNS, SSL/TLS, and web application security, particularly in WAF and bot mitigation. Technical Skills: Proficiency with industry-leading WAF solutions like Citrix NetScaler AppFirewall, Imperva, ModSecurity, or F5 BIG-IP ASM. Experience in programming languages such as C, C++, and scripting languages like Python or Perl. Problem-Solving Skills: Strong analytical and problem-solving abilities to identify, assess, and mitigate security threats quickly. Communication & Collaboration: Excellent communication skills, with the ability to effectively collaborate with stakeholders across teams. About Us: Cloud Software Group is one of the world s largest providers of cloud solutions, empowering more than 100 million users globally. At Cloud Software Group, we re building the future of work, enabling people to get things done from anywhere. Our team thrives on passion for technology, embracing the courage to take risks and innovate. We re on the brink of another significant leap in technology evolution and we need experts like you to help us get there. If you're passionate about cybersecurity and eager to drive innovations, this is the perfect time to join us and be part of something transformative. Qualification : Bachelor's (BE/B.Tech) or Masters degree in Computer Science, Information Security, or related fields, or equivalent professional experience.

Position: Analyst - SecOps (SOC Level 2) Job Overview: We are looking for a skilled SOC Level 2 Analyst to join our global Cyber Operations team. This critical role ensures the security of our organization by monitoring, detecting, and responding to security incidents. The Analyst will work on a rotating 24x7 shift schedule, including night shifts. The ideal candidate will have strong experience in SOC operations, incident response, and proficiency with cybersecurity tools and technologies. Key Responsibilities: Threat Detection and Incident Response: Monitor, analyze, and respond to global security alerts using SIEM/SOAR tools. Perform triage and analysis with sandboxing technologies and threat intelligence platforms. Investigate security events, implement containment and recovery strategies, and expedite workflows with AI/ML capabilities. Query and correlate security data using KQL (Kusto Query Language) to identify and address threats. Develop and manage automated detection rules and playbooks in Microsoft Sentinel. Enhance endpoint protection and data security using Microsoft Defender and MS Purview Data Loss Prevention (DLP) tools. Threat Hunting and Data Forensics: Perform proactive threat hunting and data forensics to identify and investigate potential threats. Use advanced threat intelligence platforms to refine detection strategies. Develop and execute SOC playbooks to improve response times and operational efficiency. Team Collaboration and Leadership: Provide assistance with complex incidents and investigations. Collaborate with USA security escalation teams and other departments to improve the organization s overall security posture. Contribute to the development and refinement of SOC procedures and best practices. Career Development: Opportunities for progression to roles like SOC Lead or SOC Architect. Access to continuous learning, certifications, and professional development resources. Regular performance reviews to discuss career growth and advancement. Qualifications: Bachelor s degree in Computer Science, Cybersecurity, or related field (preferred). 3-5 years of experience as a SOC Analyst, with lead responsibilities being a plus. Strong proficiency in KQL (Kusto Query Language) for querying and analyzing security data. Hands-on experience with Microsoft Sentinel (including rule creation, playbook implementation, and workbooks). Proficiency in Microsoft Defender and MS Purview DLP for endpoint protection and data security. Certifications such as CISSP, CEH, or CompTIA Security+ are a plus. Core Technologies and Expertise: Microsoft Sentinel: Expertise with SIEM, rule creation, playbooks, and workbooks. KQL (Kusto Query Language): Proficiency in querying and data correlation. Microsoft Defender: Strong knowledge of endpoint protection and threat detection. MS Purview DLP: Experience in data loss prevention strategies. Incident Response Tools: Knowledge of containment and recovery strategies. Vulnerability Management: Familiarity with assessments, penetration testing, and monitoring. Threat Intelligence Platforms: Ability to leverage and analyze threat intelligence. Network Security: Working knowledge of firewalls, IDS/IPS, and network security protocols. Data Forensics: Skilled in forensic analysis and investigation. SOC Playbooks: Ability to create and manage effective SOC playbooks. Additional Skills: Strong understanding of incident response processes and procedures. Excellent analytical, problem-solving, and communication skills. Ability to work collaboratively within a well-managed team. Rotational 24x7 shift coverage. Location: Bangalore, India (SKAV Seethalakshmi, GESC) Employment Type: Full-time Job Category: Information Technology Qualification : Bachelors degree in Computer Science, Cybersecurity, or related field (preferred).

Job Title: Security Engineer - II Location: Bangalore (On-site; full-time) About Locus: At Locus, we are redefining logistics decision-making with deep-tech solutions that drive efficiency, consistency, and transparency across industries like retail and FMCG/CPG. Founded in 2015 by Nishith Rastogi and Geet Garg, Locus has evolved from a women s safety geo-tracking app into a globally recognized logistics optimization platform. Our technology has empowered enterprises such as Unilever and Nestl to execute over a billion deliveries across 30+ countries. Guided by our commitment to innovation and sustainable growth, we transform complex supply chains into strategic growth enablers. Join us at Locus and be part of a team shaping the future of global logistics. Job Overview: Key Responsibilities: Conduct comprehensive threat modeling for applications, cloud infrastructure, and overall systems architecture. Perform secure code reviews and security assessments for web, Android, and iOS applications, with a strong focus on cloud infrastructure security. Proactively identify and mitigate vulnerabilities across platforms, collaborating with development and DevOps teams to implement secure solutions. Automate and streamline security processes, aligning with the principle that Complexity is the enemy of Security. Oversee Vulnerability Management and Patch Management processes, ensuring timely remediation. Design and implement robust security measures and contribute to Red Team activities, including assessments of cloud, network, wireless, physical, and social engineering scenarios. Take ownership of assigned tasks and drive the continuous improvement of security practices across the organization. Assist in setting up and maintaining monitoring systems to identify and respond to potential incidents in real time. Develop custom tools, scripts, and scanners to address unique security challenges and automate repetitive tasks. Provide architectural guidance for securing cloud-based applications and DevOps pipelines. Continuously stay updated on emerging security technologies and techniques, sharing knowledge with the team. Qualifications: 3-5 yrs experienced Sr security engineer. Expertise in cloud security (AWS, Azure, or GCP) with a strong understanding of securing applications and infrastructure in cloud environments. Proficiency in DevOps and DevSecOps practices, including secure CI/CD pipeline integration and automation. Strong knowledge of OWASP and SANS testing methodologies for identifying and mitigating security vulnerabilities. Good understanding of software security weaknesses, architecture vulnerabilities, and mitigation strategies. Hands-on experience in threat modeling, vulnerability assessments, and penetration testing. Proficiency in any scripting language - Python. Experience in developing or customizing tools, scanners, or extenders for specific security needs. Ability to work independently and collaboratively within a team to solve complex security challenges. Experience in implementing security monitoring systems for early incident detection. Strong problem-solving skills and the ability to think creatively to simulate attack scenarios. Certification in security-related fields (e.g., AWS Certified Security, CISSP, CEH, OSCP). Experience with container security and orchestration platforms like Kubernetes and Docker. Knowledge of Infrastructure as Code (IaC) tools like Terraform or CloudFormation. Familiarity with modern DevOps tools (e.g., Jenkins, GitLab, Ansible). Join Locus and become part of a visionary team that is redefining logistics through innovation and smart distribution. We provide competitive compensation, comprehensive benefits, and a collaborative environment where your expertise will drive both your growth and that of the organization. Locus is an equal opportunity employer dedicated to creating a diverse and inclusive workplace.

At FalconX, we re a team of operators, investors, and builders revolutionizing institutional access to the cryptocurrency markets. Positioned at the intersection of traditional finance and cutting-edge technology, FalconX addresses the unique challenges of the digital asset market, providing comprehensive solutions for all digital asset strategies. By acting as the connective tissue, we enable clients to navigate the ever-evolving crypto landscape with ease and precision. Job Title: Senior Cloud Engineer (Security Implementation) We re on the lookout for a highly skilled Senior Cloud Engineer to join our team. This role will focus on implementing and maintaining strong security measures for our cloud infrastructure, with a strong emphasis on hands-on security implementation and cloud security best practices. You ll play a crucial role in ensuring the integrity and safety of our cloud-based systems, leveraging cutting-edge technologies and best practices in cloud security. What You'll Do: Cloud Infrastructure Security Implement and maintain robust security measures for our cloud-based systems, with a primary focus on AWS technologies. Conduct regular vulnerability assessments and patching of EC2 instances using Ansible and other AWS-native tools. Develop and maintain Infrastructure as Code (IaC) using Terraform for IAM, Cloudflare, and other AWS components to automate and enhance security practices. Automation and Scripting Design, develop, and maintain automation scripts and workflows to streamline security operations and incident response. Create and update Ansible playbooks to ensure consistent and secure configurations across all cloud resources. Compliance and Best Practices Ensure our cloud infrastructure aligns with industry security standards and compliance requirements. Stay ahead of the curve on emerging cloud security threats and proactively implement measures to mitigate risks. Collaboration and Documentation Collaborate closely with DevOps and development teams to integrate security practices into the CI/CD pipeline. Maintain clear, comprehensive documentation on security processes, configurations, and incident response procedures. What You Need to Bring: Qualifications Bachelor s degree in Computer Science, Information Security, or a related field. 5+ years of experience in cloud engineering, with a focus on AWS technologies. Hands-on expertise with Terraform, Ansible, and key AWS services like EC2, IAM, Cloudflare, Kubernetes (K8s), etc. Proficiency in scripting languages such as Python or Bash. In-depth Knowledge Strong understanding of cloud security best practices and common vulnerabilities within cloud environments. Experience using cloud security tools to enhance security posture. Skills Excellent problem-solving skills with a sharp attention to detail, especially in high-pressure situations. Strong ability to implement scalable and reliable cloud infrastructure solutions with a focus on security. Preferred Qualifications: Certifications AWS Certified Security - Specialty or other cloud security certifications. Experience with multi-cloud environments (AWS, Azure, GCP). Familiarity with container security and Kubernetes. Knowledge of compliance frameworks such as SOC 2, ISO 27001, or PCI DSS. At FalconX, we are at the forefront of institutional crypto trading, constantly innovating to stay ahead of market trends and technological advancements. By joining us, you'll be an integral part of shaping the future of crypto markets and cloud security. You ll work with cutting-edge tools and technologies, tackling complex challenges and making a significant impact in an evolving industry. If you're passionate about cloud security and want to be part of a fast-paced, forward-thinking team, we d love to hear from you! Notice at Collection and Privacy Policy Applicants located in California or applying to a role based in California should review our Notice at Collection and Privacy Policy [here]. Qualification : Bachelor's degree in Computer Science, Information Security, or related field.

Location: Bengaluru, India Role: Cybersecurity Analyst Company: Wipro Limited In a world where data is power, protecting that data is a mission, not just a job. As a Cybersecurity Analyst at Wipro, you ll be the guardian of sensitive information, spotting threats before they strike and building a resilient security posture for the organization. What You ll Do 1 Keep Customers Safe Deliver customer-centric cybersecurity, ensuring systems are fortified and risks are minimized. Monitor logs, security events, and access patterns to detect unusual, unauthorized, or illegal activity. Safeguard log sources, security configurations, and access controls. 2 Hunt, Analyze & Respond Track, analyze, and respond to security incidents escalated by L1 teams (24x7 rotational shifts). Perform log reviews and forensic analysis to understand unauthorized access or breaches. Use advanced analytics tools to identify emerging threat patterns. Conduct detailed root cause analysis and recommend specific, actionable improvements. 3 Be the Incident Commander Lead incident response efforts, coordinating with internal teams and customers for swift resolution. Plan and refine disaster recovery strategies for potential breaches. Create incident reports, dashboards, and analysis summaries to share insights and learnings. 4 Collaborate & Educate Work closely with internal technical leads, practice teams, and external customers to manage security concerns. Assist with internal and external audits, maintaining the information security risk register. Deliver cybersecurity awareness training for colleagues, turning every employee into a security ally. Provide hands-on advice and guidance on handling malicious emails, phishing attempts, and suspicious activity. Key Relationships Stakeholder Why You ll Work Together Internal Tech & Project Leads Regular updates, security reporting, coordination Security Intelligence Team For threat intelligence sharing and practice alignment Customers Direct support during incidents, ensuring transparency & fast resolutions What You Need to Succeed Technical Mastery Deep knowledge of Network Security devices, Firewalls, Endpoints, SIEM, Application Security, IDS/IPS, Vulnerability Assessments & Penetration Testing (VA/PT). Process Excellence Solid understanding of standards, processes, and automation tools to improve consistency and reduce risk. Communication & Collaboration Clear, effective communication skills you ll be the go-to person for explaining security risks to both techies and non-techies. How Your Success Will Be Measured Performance Area Measure Customer Focus Fast, effective resolution of security incidents for internal & external users Process Adherence 90-95% SLA compliance for response & resolution times Key Competencies Effective Communication Collaborative Working Execution Excellence Analytical Thinking & Problem Solving Reinvent Cybersecurity With Wipro This isn t just a job it s your chance to reinvent how organizations protect themselves in a rapidly evolving threat landscape. Join Wipro. Own the mission. Protect the future. Applications from people with disabilities are explicitly welcome.

Job Title: Lead Engineer Software Test & Release Location: Bangalore Job Summary We are looking for a skilled Security Test and Automation Engineer with 7-9 years of experience in Security Verification and Validation, particularly on Embedded Systems. The ideal candidate will have 3-4 years of leadership experience in managing a team of security test engineers and hands-on expertise in scripting languages like Python, Java, and AI/ML-based tools. The primary responsibility will be to develop and execute security testing strategies across various domains including Devices, Automotive, Medical Devices, and Telecom Infrastructure (Wireless and Wired). Key Responsibilities Security Test Strategy: Develop and execute a comprehensive security test and automation strategy across multiple domains like Devices, Automotive, Medical Devices, and Telecom Infrastructure. Collaborate with project teams to capture best practices, share knowledge about the latest tools and technologies, and identify opportunities for new solution development. Understand client requirements for security testing and prepare proposals related to Security and Penetration Testing. Penetration Testing: Work with clients to understand their testing needs (e.g., number and types of systems for testing). Plan, create, and execute penetration methods, scripts, and tests to assess the security of systems. Perform remote or on-site security testing of a client s network or infrastructure to uncover vulnerabilities. Simulate security breaches to test system vulnerabilities and identify potential threats. Generate detailed reports outlining security issues, the level of risk, and recommendations for remediation. Team Leadership and Development: Lead and mentor a team of security test engineers, providing guidance on technical challenges and professional growth. Conduct reviews of designs, code, and test plans to identify risks and ensure quality deliverables. Identify training needs for the team and provide support for their technical development. Risk Analysis and Requirement Management: Conduct requirement analysis and feasibility studies, considering risk identification and mitigation. Perform system-level work estimation and ensure timely delivery of high-quality work. Ensure traceability of requirements from design to delivery, while optimizing code and ensuring test coverage. Continuous Improvement: Participate in technical initiatives within the project and organization, delivering training and maintaining a high level of technical competence through ongoing self-study and technical assessments. Identify and implement improvements in security testing practices and tools. Required Skills and Experience 7-9 years in Security Verification and Validation on Embedded Systems. 3-4 years of experience leading a team of security test engineers. Hands-on experience with scripting languages like Python, Java, and AI/ML-based tools. Experience in penetration testing and security assessments for embedded systems and network infrastructures. Technical Expertise: Strong knowledge of security testing methodologies, vulnerability assessments, and penetration testing. Proficiency in scripting languages (Python, Java, Perl, Shell scripts, TCL). Experience in Automation Frameworks for security testing. Understanding of network protocols (2G, 3G, LTE, 5G) and security concerns within telecommunications and embedded systems. Certifications: Bachelor s degree in Engineering or equivalent. Certifications in Security Testing (e.g., Certified Ethical Hacker - CEH) are highly desirable. Tools and Technologies: Experience with test and trace/log collection tools such as QXDM, QCAT, QPST, Prism, and other telecom instruments (e.g., Anritsu, Keysight). Familiarity with automation scripting tools like RTD (for Anritsu) or equivalent. Knowledge of Linux host platforms and network simulation tools. Specialization: Expertise in 2G, 3G, 4G, 5G, Interop Testing, and VSAT-SATCOM technologies. Understanding of 3GPP specifications and network vendor tests. Desirable Skills Strong problem-solving and analytical skills to identify vulnerabilities and assess risks in systems. Ability to provide strategic and actionable insights based on security findings. Ability to communicate complex security issues to non-technical stakeholders. Leadership and mentoring capabilities to guide junior engineers and promote team development. Work Environment Location: Bangalore Opportunity to work in a dynamic environment with the latest tools and technologies in the security testing domain. If you have a passion for security testing and automation, along with a desire to lead and contribute to impactful projects, this is the perfect opportunity for you! Apply now to join our team and make a significant impact in the field of security testing.

Job Title: Security Architect Identity & Access Management Location: Bengaluru, India Company: Blue Yonder Experience: 10+ years (including at least 5+ years in IAM) Education: Bachelor's or Master's degree in Cybersecurity, Computer Science, or related field About Blue Yonder Blue Yonder is a recognized leader in AI-driven supply chain solutions, trusted by global brands to optimize their digital commerce and supply chain operations. We thrive on innovation, collaboration, and creating technology that powers smarter supply chains. As we continue to strengthen our security posture, we are seeking a Security Architect IAM to own, evolve, and safeguard Blue Yonder s identity landscape, ensuring consistent and compliant IAM controls across the organization s global footprint. Role Scope The Security Architect IAM will play a strategic and hands-on role in defining, implementing, and managing end-to-end identity and access management capabilities for Blue Yonder. This role requires deep technical expertise, leadership acumen, and a strong understanding of cloud-based identity ecosystems, ensuring secure access to critical systems and data. Key Responsibilities Define, develop, and manage a comprehensive IAM strategy, aligned with Blue Yonder s business goals, security policies, and compliance mandates. Design, implement, and enhance authentication, authorization, identity provisioning, access governance, and privileged access management (PAM) solutions, adopting best practices and industry standards. Conduct risk assessments to identify IAM vulnerabilities and define risk mitigation plans. Lead the technical implementation of IAM solutions and provide ongoing oversight to ensure operational excellence. Develop and enforce IAM policies, procedures, and standards to foster consistent security across the enterprise. Ensure IAM solutions adhere to regulatory requirements (GDPR, HIPAA, PCI DSS, SOX) and align with frameworks like NIST-CSF and ISO/IEC 27001. Integrate IAM capabilities with other security solutions (SIEM, endpoint security, etc.) for comprehensive protection. Establish and track Key Risk Indicators (KRIs) and Key Performance Indicators (KPIs) for the IAM program. Stay updated with emerging threats, technology advancements, and industry trends, adapting the IAM strategy accordingly. Conduct maturity assessments and develop continuous improvement plans for the IAM service. Participate in security architecture reviews and work with enterprise architects to embed IAM controls into broader IT and product architecture. Partner with GRC teams to ensure all IAM-related risks are properly documented and managed, driving remediation where necessary. Collaborate with application development teams to ensure secure-by-design development and deployment of new applications. Required Qualifications & Experience 10+ years of overall cybersecurity experience, with at least 5+ years specifically focused on IAM. Strong background designing and implementing cloud-based IAM solutions (Azure AD, AWS IAM, GCP IAM). Proven expertise across: Active Directory, LDAP, SSO, MFA SAML, OAuth, OpenID Connect Privileged Access Management (PAM) and Identity Governance (IGA) Experience managing IAM programs across hybrid environments (on-prem & cloud). Strong understanding of: Secrets management, encryption, PKI, digital certificates Zero Trust Security models Experience identifying, analyzing, and remediating IAM-related security risks. Knowledge of regulatory requirements (GDPR, HIPAA, SOX, PCI DSS) and experience translating those into practical IAM controls. Demonstrated ability to lead complex IAM projects, collaborating across multiple business units and technical teams. Excellent communication and stakeholder management skills, capable of interacting with both technical teams and business leadership. Preferred Certifications CISM Certified Information Security Manager CISSP Certified Information Systems Security Professional Relevant Cloud Security certifications (Azure Security Engineer, AWS Security Specialty, GCP Security Engineer) Good to Have Skills Experience integrating IAM with: CI/CD pipelines and DevSecOps practices Containerized environments (Kubernetes, Docker) Exposure to distributed tracing and logging tools for IAM services. Experience automating IAM processes for provisioning, deprovisioning, and audit reporting. Be a part of a global leader in supply chain technology. Work on cutting-edge IAM technologies in a cloud-first environment. Partner with cross-functional teams to drive impactful security programs. Join a culture that values diversity, innovation, and continuous learning. Diversity & Inclusion at Blue Yonder At Blue Yonder, we celebrate diversity in all forms. Our DIVE (Diversity, Inclusion, Value & Equity) strategy ensures every associate feels included, respected, and empowered to bring their authentic self to work. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sexual orientation, gender identity, national origin, disability, or veteran status. Qualification : Bachelor's or Master's degree in Cybersecurity, Computer Science, or related field

Infosec Lead Experience: 5-7 Years | Location: Bengaluru About Gameskraft: Founded in 2017, Gameskraft is one of India s fastest-growing online gaming companies. Our mission is to build a safe, secure, and responsible gaming ecosystem while delivering unmatched experiences through innovation and technology. As the industry s only ISO 27001 and ISO 9001 certified company, we set the highest benchmarks in security, design, and performance. Job Summary: We are seeking an experienced Infosec Lead to drive our security strategy, ensuring robust web security, application security, and compliance across the organization. You will be responsible for leading a team of security professionals, implementing best-in-class security measures, and ensuring compliance with industry regulations such as HIPAA, PCI-DSS, ISO, and GDPR. Key Responsibilities: Security Strategy & Program Management: Develop, implement, and maintain a comprehensive security program to safeguard company assets, systems, and data. Collaborate with cross-functional teams to integrate security into product development and business operations. Conduct risk assessments and vulnerability analyses to identify and mitigate security threats. Compliance & Regulatory Adherence: Ensure compliance with HIPAA, PCI-DSS, ISO, GDPR, and other relevant security frameworks. Maintain security certifications and drive adherence to regulatory standards. Develop and enforce security policies, standards, and procedures. Incident Response & Risk Management: Lead incident response efforts, including investigation, containment, and remediation. Continuously monitor security threats, emerging trends, and vulnerabilities to strengthen cyber resilience. Provide security guidance and risk analysis during product launches and infrastructure changes. Team Leadership & Stakeholder Collaboration: Lead and mentor a team of security professionals, fostering a culture of security awareness across the organization. Work closely with engineering, IT, legal, and business teams to embed security best practices. Present regular security reports and key performance metrics to senior management. What You Bring to the Table: Education: Bachelor s or Master s degree in Computer Science, Information Security, or a related field. Experience: 5-7 years of experience in information security, with a strong focus on web security, application security, and compliance. Proven track record in leading security teams and managing enterprise security programs. Technical Expertise: Strong knowledge of security technologies such as firewalls, IDS/IPS, SIEM, encryption, authentication protocols, and penetration testing tools. Experience with cloud security (AWS, Azure, GCP) and DevSecOps methodologies. Familiarity with secure coding practices and application security frameworks (OWASP, NIST, CIS Controls). Hands-on expertise in risk assessment, vulnerability management, and security architecture design. Certifications (Preferred): CISSP, CISM, CISA, CEH, or equivalent industry-recognized security certifications. Soft Skills & Leadership: Strong analytical and problem-solving skills. Excellent communication and stakeholder management abilities. Ability to influence and drive security initiatives across multiple teams. Work Culture at Gameskraft: Startup Environment: Fast-paced, ownership-driven culture where innovation and agility thrive. Impactful Work: Direct contribution to securing one of India s largest gaming platforms. Collaboration: Work alongside some of the best minds in the gaming and consumer internet industry. Data-Driven: Leverage analytics to enhance security posture and decision-making. Compensation & Benefits: Attractive Compensation & ESOPs Competitive salary with equity options. Health Insurance 5 Lakh medical cover for you and your family. Car Lease Policy Exclusive leasing options for employees. Relocation Benefits Assistance with moving to Bengaluru. Free Lunch & Stocked Pantries Enjoy great food while you work! Performance-Based Growth Transparent appraisals and rapid career progression. Join Us & Secure the Future of Gaming! If you re passionate about cybersecurity, risk management, and building secure digital ecosystems, we d love to have you on board. Apply now and be part of an exciting journey at Gameskraft! Qualification : Bachelors or Masters degree in Computer Science, Information Security, or a related field.

Job Role: SIEM Specialist The SIEM Specialist will be responsible for implementing, managing, and optimizing Security Information and Event Management (SIEM) solutions to enhance the organization's security posture. The role involves onboarding new security data sources, collaborating with cross-functional teams, and continuously improving SIEM performance to support proactive threat detection and incident response. Experience and Qualifications: Educational Background: Bachelor s degree in Computer Science, Information Technology, or a related field (preferred). Total Experience: 7 8 years of experience in IT security with a minimum of 3 years in SIEM implementation and security data source onboarding. Experience working in large organizations or global service providers with complex infrastructures. Proficiency in deploying, configuring, and managing SIEM solutions such as Splunk, ArcSight, Chronicle (Google Security Operations), and ELK Stack. Familiarity with Cribl and regex is required. Strong knowledge of log management solutions, log parsing, and normalization techniques. Experience integrating SIEM with various data sources, including firewalls, IDS/IPS, antivirus, and endpoint solutions. Proficiency in scripting languages (e.g., Python, PowerShell) for automating SIEM tasks and data analysis. Understanding of cloud platforms (GCP, AWS, Azure) and cloud databases is desirable. Good grasp of cybersecurity principles, including threat detection, incident response, and vulnerability assessment. Strong knowledge of networking protocols, firewall rules, and network security practices for onboarding and monitoring network traffic. Excellent verbal and written communication skills for collaborating with cross-functional teams and documenting onboarding procedures. Strategic and analytical mindset with outstanding problem-solving skills to navigate complex cybersecurity landscapes. Key Responsibilities: Lead the onboarding process of new data sources into the SIEM platform, ensuring proper data normalization and correlation. Continuously improve SIEM performance, efficiency, and scalability. Maintain detailed documentation of SIEM configurations, onboarding procedures, and incident response playbooks. Collaborate with cross-functional teams to identify security requirements and integrate new security technologies into the SIEM environment. Stay informed about emerging threats, vulnerabilities, and security best practices and incorporate this knowledge into SIEM operations. Ensure that SIEM configurations and operations comply with relevant industry regulations and standards. Qualification : Bachelors degree in Computer Science, Information Technology, or a related field (preferred).

Summary of Essential Job Functions The primary responsibility of the InfoSec Tech Lead is to ensure the organization's global information security, compliance, and risk management. The role involves collaborating with various teams to identify and implement security requirements for product applications and infrastructure. Minimum Requirements (Education & Work Experience) Education: Bachelor s/Master s degree in Computer Engineering or Information Science. Certifications (Preferred): OSCP, OSCE, ECSA|LPT, CPT, CEH. Experience: 5-7 years in Vulnerability Management, covering Application, Infrastructure, Cloud, Mobile Security, Secure Code Review, and IoT. Work Location: Bangalore, India (May require travel). Competency Requirements Hands-on experience in Network, Web-based, and Cloud Application Security Assessments including threat modeling, vulnerability assessments, and penetration testing. Knowledge of current information security trends. Familiarity with security bug classification frameworks (e.g., CVSS, DREAD) and application of classification methods. Expertise in Web Service vulnerability assessments. Understanding of Mobile Application Security (iOS/Android). Experience in code review methods and standards. Ability to develop proof-of-concept (POC) exploits for security vulnerabilities. Proficiency with web application vulnerability scanning tools (e.g., Acunetix, NTO Spider, BurpSuite Pro, WebInspect, Core Impact). Experience with network assessment tools and exploitations (e.g., Kali Framework, QualysGuard, Nessus, Nexpose, Nmap, Metasploit, Saint). Experience in static code review tools (e.g., Checkmarx, HP Fortify, IBM AppScan Source). Proficiency in at least two scripting languages (e.g., Python, Perl, PHP, Ruby, etc.). Ability to assess applications using OWASP, OSSTMM, CESG, CREST, NIST, ISSAF, PTES methodologies. Understanding of SDLC practices and adaptability to Agile methodologies. Experience in high-level programming languages (e.g., Java, C, C++, .NET (C#, VB)), with DAST code review as an added advantage. Knowledge of operating systems (Windows/Linux/UNIX IBM AIX, Sun Solaris, HP UX) and network equipment. Experience providing technical oversight to project teams to ensure quality engagements. Strong experience in mentoring, coaching, and leading teams in challenging environments. Familiarity with security compliance frameworks (PCI, SOC, GDPR). Other Requirements Strong ethics and integrity in business and information security. Proficiency in English (written and verbal communication skills). Ability to prepare professional reports and present findings to technical and executive stakeholders. Ability to interact with customers and understand security requirements. Job Responsibilities Conduct and manage Vulnerability Assessments and Penetration Testing (VAPT) for Infrastructure, Web Applications, and Web Services/APIs. Perform manual and automated security testing to identify vulnerabilities. Conduct periodic configuration audits for network devices, servers, and critical functions. Perform secure code reviews across multiple programming languages and recommend corrective actions. Assess SDLC processes for security compliance. Develop security testing scripts and procedures. Participate in security-related projects as per skillset. Continuously evaluate application architecture to enhance security processes. Analyze suspected vulnerabilities, collaborate with subject matter experts, and recommend remediation measures. Evaluate and recommend security products and solutions. Act as a security advisor for secure coding standards and security information management. Qualification : Bachelors/Masters degree in Computer Engineering or Information Science.

About Unilever Unilever is a purpose-driven global company, impacting the lives of billions of consumers in over 190 countries. Our brands are trusted and loved, and we are committed to making sustainable living commonplace. We believe that doing business the right way drives both performance and positive societal change. At Unilever, we foster an inclusive, flexible, and collaborative work environment. Your career here will be a dynamic journey where you can shape your future while contributing to a better business and a better world. About UniOps Unilever Operations (UniOps) is the technology and business services engine of Unilever, providing seamless enterprise solutions across 190+ locations. Through strategic sourcing, digital transformation, and operational excellence, UniOps enables Unilever to drive growth, enhance efficiency, and stay future-fit. Role Overview As a Global Security Specialist Workplace Experience and Operations, you will be responsible for designing, implementing, and managing security programs across Unilever s global workplace facilities, passenger fleet, and travel service lines. Your role will ensure compliance with global security and safety standards while driving innovation, operational excellence, and best practices in risk management. You will collaborate with internal stakeholders, suppliers, and cross-functional teams to enhance safety measures, leverage emerging security technologies, and maintain a secure environment for Unilever employees. Key Responsibilities Security Strategy & Technology Integration Develop and implement a comprehensive security and safety strategy aligned with Unilever s global objectives. Design roadmaps for security transformation initiatives and oversee their execution. Evaluate and integrate advanced security technologies to enhance workplace safety. Support the deployment of digital solutions to meet security and safety goals. Stay updated on emerging security trends and recommend innovative measures. Cross-Functional Collaboration Partner with internal teams, including HR, IT, Legal, and Facility Management, to create a holistic security framework. Communicate security initiatives and updates to senior leadership. Drive change management efforts, providing training and awareness programs. Operational Safety & Security Assist in implementing the Workplace Sustainability, Safety & Security (WPS) work plan. Ensure compliance with Unilever s global safety policies for travel, events, and fleet management. Monitor security and safety performance, infrastructure, and service delivery. Proactively manage risks and escalations, working closely with regional teams. Vendor & Budget Management Manage relationships with key security and safety suppliers. Oversee contract negotiations, service level agreements, and supplier performance evaluations. Develop and manage the budget for security initiatives, ensuring efficient resource allocation. Capability Building & Compliance Embed a strong security culture across Unilever s workplace services, impacting 800+ employees and 6,000+ contractors. Ensure consistent implementation of global security frameworks and standards. Organize training programs, workshops, and capability-building initiatives. Champion a culture of security awareness to minimize risks and incidents. Qualifications & Experience Education: Bachelor s degree in Engineering, Science, Business, or a related technical discipline. Experience: Strong background in security and safety management within a corporate, FMCG, or facility management environment. Knowledge of occupational safety regulations and industry best practices. Experience in managing large-scale security projects and implementing digital security solutions. Familiarity with change management and training initiatives. Skills: Strong communication and stakeholder management skills. Ability to work in a fast-paced, global environment. Proficiency in Microsoft Office (Word, Excel, PowerPoint, Outlook). Project management experience with a strategic mindset. Fluency in English; additional language skills are a plus. Why Join Unilever? At Unilever, we celebrate diversity and inclusion, ensuring that all employees regardless of race, gender, age, disability, or background have the opportunity to thrive. Join us to challenge conventional ideas, drive innovation, and make a meaningful impact on business and society. Qualification : Bachelors degree (Engineering / Science / Business / Technical discipline).