Threat Mitigation Jobs in Bengaluru

Security Operations Engineer FalconX Location: Bangalore Experience: 3+ Years Education: Bachelor s degree in Cybersecurity, Computer Science, Information Technology, or related field About FalconX FalconX is a pioneering team of operators, investors, and builders transforming institutional access to the crypto markets. Operating at the intersection of traditional finance and cutting-edge technology, FalconX simplifies the complex and fragmented digital asset ecosystem. Our platform empowers clients to navigate the crypto landscape seamlessly, providing access, liquidity, and tools to execute institutional strategies from start to scale. Role Overview We are looking for a Security Operations Engineer to strengthen our cybersecurity posture and protect our systems, data, and clients. In this role, you will monitor, detect, and respond to threats across on-premise and cloud environments, conduct investigations, perform threat hunting, and automate security operations. Key Responsibilities Monitor, detect, and respond to security incidents across cloud and on-premise environments. Analyze security alerts from various tools to identify potential threats and anomalies. Conduct forensic investigations and deep-dive analysis to identify trends and attack techniques. Perform proactive threat hunting across endpoints, networks, and cloud environments. Analyze security logs and behavioral patterns to detect Indicators of Compromise (IOCs). Investigate security incidents and provide actionable mitigation and remediation recommendations. Develop and refine threat hunting methodologies using frameworks like MITRE ATT&CK. Automate threat detection and response processes using scripting languages such as Python, PowerShell, or Bash. Continuously monitor emerging threats, vulnerabilities, and attack trends to improve strategies. Required Qualifications Bachelor s degree in Cybersecurity, Computer Science, Information Technology, or related field. 3+ years of experience in Security Operations, Threat Hunting, or a similar cybersecurity role. Hands-on experience working with log data for detection and response (Cloud, EDR, Network, etc.). Experience developing and deploying detection rules (Yara, Sigma, SQL-based rules, etc.). Strong understanding of network security monitoring, packet analysis, and log correlation. Deep knowledge of advanced threat detection methodologies and threat intelligence. Proficiency in analyzing attacker TTPs using frameworks like MITRE ATT&CK. Skilled in scripting and automation for security operations (Python, PowerShell, Bash). Familiarity with endpoint security, identity management, cloud security, and incident response. Protect critical systems, data, and client assets from emerging cyber threats. Play a key role in detecting, investigating, and responding to security incidents. Collaborate with cross-functional teams to strengthen security posture and operational resilience. Drive proactive threat hunting and automation to improve efficiency and effectiveness. Qualification : Bachelors degree in Cybersecurity, Computer Science, Information Technology, or related field

Position: Security Engineer-2 Location: Bengaluru Employment Type: Full-Time Department: Engineering Job Description: We are seeking a proactive and skilled Security Engineer-2 to identify vulnerabilities, collaborate with development teams on mitigation strategies, and promote secure coding practices within the organization. You will play a critical role in ensuring the security and resilience of our products against emerging threats. Key Responsibilities: Conduct in-depth security assessments of products to discover vulnerabilities and demonstrate their exploitability and risk impact. Stay updated on emerging vulnerabilities and threats relevant to our products through independent research. Collaborate with developers to develop and implement mitigation and workaround plans according to security policies. Lead threat modeling and secure design review sessions with development teams to identify threats and define mitigation strategies. Conduct workshops to educate developers on threat modeling and secure coding principles. Prioritize and ensure mitigation of critical security defects during development sprints. Integrate and automate Static Application Security Testing (SAST) within the DevOps pipeline. Advocate and propagate secure coding principles across the development community. Serve as the primary point of contact for developers on critical secure development issues. Develop and deliver security training programs and technical workshops for developers and QA teams. Promote security awareness through tech talks and other knowledge-sharing activities. Required Qualifications and Skills: Strong knowledge of common vulnerabilities such as Cross-Site Scripting (XSS), SQL Injection, Cross-Site Request Forgery (CSRF), cryptographic weaknesses, and code injection. Proficiency in programming/scripting languages like Java, Ruby, and Python. Experience with cloud technologies and services. Ability to automate security testing processes and improve assessment productivity. Excellent communication skills to articulate security risks to both technical and non-technical audiences. Familiarity with industry-standard threat modeling, risk assessment, and vulnerability classification methodologies. Experience conducting white-box and grey-box security assessments, including architectural and API analysis. Knowledge of Secure Software Development Lifecycle (S-SDLC) and CI/CD integration. Bachelor s degree in Computer Science, Electrical Engineering, Computer Engineering, or equivalent experience in software engineering or security. Minimum 3 years of experience in application security or related security assessment roles. Deep understanding of attack vectors, exploits, and mitigation techniques, including chained attacks. Experience with languages such as Java, Go, Python, or Node.js (knowledge of multiple is a plus). Experience assessing cloud-native services, service meshes, and Kubernetes-based microservices. Strong problem-solving skills, able to think both offensively (like a hacker) and defensively (product security evaluation). Ability to learn new technologies and apply unconventional thinking to complex security challenges. Qualification : Bachelors degree in Computer Science, Electrical Engineering, Computer Engineering, or equivalent experience in software engineering or security

Position: Business Analyst Supply Chain Department: Supply Chain Location: Bengaluru Role Overview: We are seeking a detail-oriented and strategic Business Analyst to conduct in-depth market analysis focused on primary and secondary aluminium markets, both domestically and globally. This role will support procurement decision-making by identifying market opportunities and risks, ensuring alignment with company strengths to maximize profitability and sustain competitive advantage. Key Responsibilities: Conduct comprehensive analysis of market dynamics impacting pricing trends in primary and secondary aluminium sectors globally and domestically. Identify business opportunities that align with company capabilities to optimize procurement timing and strategies for short-term and long-term gains. Detect potential threats and weaknesses in the market environment and collaborate with leadership to develop effective mitigation strategies. Make swift, well-informed decisions by evaluating multiple scenarios and selecting optimal courses of action. Work independently and collaboratively with cross-functional teams to ensure cohesive business strategies. Communicate clearly and effectively to minimize misunderstandings and ensure accurate interpretation of market insights. Approach market research from multiple perspectives to ensure comprehensive analysis, considering all critical factors influencing decision-making. Guide the raw material procurement team in developing strategic procurement plans that respond to market fluctuations. Prepare and present detailed reports and presentations for senior management, highlighting key metrics, market changes, and actionable recommendations. Stay updated on regulatory changes, including customs duties, anti-dumping duties, and industry best practices, as well as emerging technologies affecting the aluminium market. Qualifications & Skills: Postgraduate degree in Business, Economics, Supply Chain Management, or a related field. Strong analytical skills with the ability to interpret complex market data and trends. Excellent communication and presentation skills. Ability to make independent, strategic decisions under pressure. Knowledge of regulatory frameworks and industry standards relevant to aluminium markets. Qualification : Postgraduate degree in Business, Economics, Supply Chain Management, or a related field.

Senior Security Specialist Location: Bengaluru, Karnataka, India Employment Type: Full-time About Serko: Serko is a leading tech platform revolutionizing global business travel and expense technology. Joining Serko means becoming part of a passionate team of travelers and technologists dedicated to transforming the business travel marketplace. With offices worldwide and a new hub in Bengaluru, we embrace diversity and authenticity to create meaningful impact. Our fast-growing India team seeks motivated professionals to help build world-class products and experiences. Role Overview: We are looking for a highly skilled Senior Security Specialist with a strong software engineering and DevSecOps background. This role will lead security initiatives, manage risks, oversee security operations, ensure compliance, and report to senior management. You will work closely with agile development teams to embed security throughout the software development lifecycle, driving robust, scalable security solutions. Key Responsibilities: Lead integration of security practices into the DevOps lifecycle, embedding security into software development and deployment pipelines. Collaborate with development and operations teams to identify and mitigate security risks across applications, infrastructure, and pipelines. Implement and maintain security automation and orchestration tools to improve security posture and operational efficiency. Identify, assess, and manage security risks; develop and implement mitigation strategies. Oversee daily security operations, including monitoring, incident response, and threat intelligence. Ensure compliance with security policies and external standards such as PCI-DSS and SOC2. Prepare and present detailed security reports to senior management, highlighting risks and mitigation plans. Lead security awareness campaigns to educate employees on emerging threats and best practices. Stay current on emerging security technologies and trends, particularly in Azure security and DevSecOps. Evaluate and recommend security tools and solutions to enhance the organization's security posture. Qualifications & Experience: 5+ years in a senior security role focused on Security Operations, Risk Management, and Compliance within software engineering environments. Deep understanding of security attack and defense methods; hands-on experience with ethical hacking tools preferred. Proven experience with DevSecOps tools such as SAST and DAST. Expertise in Microsoft security products including Azure Security Center, Defender, Azure AD, and Sentinel. Relevant certifications such as CISSP or equivalent highly preferred. Excellent communication, presentation, and documentation skills. Strong team collaboration and leadership skills. Bachelor s degree in Computer Science, Cybersecurity, or related field; certifications may substitute for degree. What We Offer: Competitive base salary and discretionary incentive plan based on individual and company performance. Access to learning and development platforms to own your career growth. Comprehensive family medical coverage, meal coupons, transport allowances, and mobile & internet reimbursement. Flexible work policies supporting work-life balance. An engaging environment with great tools, support, and opportunities to innovate and deliver high-quality results. Qualification : Bachelors degree in Computer Science, Cybersecurity, or related field; certifications may substitute for degree.

Technical Program Manager Location: Bangalore, India About the Team The Technical Program Management (TPM) team drives planning, management, and execution of major technical programs for Rubrik s Engineering organization across a broad portfolio of cloud data management products. The team skillfully balances multiple, often conflicting priorities to deliver high-quality products through strategic communication, business insight, and collaborative influence. About the Role Rubrik is seeking an experienced Technical Program Manager to join the Engineering Program Management organization in Bangalore. Reporting to the Director of TPM, you will lead complex, cross-functional programs in a fast-paced environment. Your focus will be on maintaining project momentum, removing obstacles, managing risks, and ensuring timely delivery of features and products with a high standard of quality. What You ll Do Plan, manage, and execute multiple major technical programs annually for the Engineering organization. Collaborate closely with Engineering, Product Leadership, Customer Support, and other teams to prioritize and deliver new product features. Lead cross-functional teams, running coordination meetings such as scrum of scrums, managing feature prioritization, milestone tracking, risk mitigation, and escalations. Oversee product release management including metrics, processes, and beta programs. Drive continuous process improvements to enable predictable and consistent execution. Define program success metrics and track progress throughout the product development lifecycle. Manage competing priorities using logical problem-solving, effective communication, and influence without direct authority. Experience & Qualifications Bachelor s degree or higher in engineering or a related technical field. 3+ years of experience in engineering program or project management. Proven success leading large projects or initiatives in complex, fast-moving environments. Strong understanding of Agile methodologies and experience working closely with cross-functional teams to deliver quality products on time. Familiarity with product development lifecycle, software release processes, metrics, and tools. Detail-oriented with strong problem-solving skills to prioritize and mitigate risks. Excellent verbal and written communication skills. Preferred Experience Experience with release management in SaaS and on-premises environments is a plus. About Rubrik Rubrik is on a mission to secure the world s data with its Zero Trust Data Security platform. Leveraging machine learning, Rubrik Security Cloud protects data across enterprise, cloud, and SaaS applications ensuring data integrity, availability, and resilience against cyber threats and operational disruptions. Qualification : Bachelors degree or higher in engineering or a related technical field.

Audit Analyst II - IT Audit & Compliance Location: Bangalore, Karnataka Full Time Experience: 3-4 Years Work Environment: Work from Office (Occasional travel required) About the Team & Role: We are seeking a motivated and detail-oriented IT Audit Analyst to join our Audit & Compliance team. This role involves planning, executing, and reporting on IT audits across various domains, including IT infrastructure, cloud environments, SaaS applications, and compliance frameworks like ISO 27001, ISO 27701, and PCI DSS. The successful candidate will evaluate IT controls, identify risks, and recommend practical solutions to improve the organization's IT governance, risk management, and control environment. You will work independently on moderately complex audits and assist senior auditors on larger engagements. Key Responsibilities: Audit Planning & Execution: Assist in the development of risk-based IT audit plans. Plan and execute audits covering infrastructure, cloud services (AWS), and SaaS applications. Develop audit programs and testing procedures to evaluate IT controls. Compliance & Framework Audits: Conduct audits against IT security and privacy frameworks, including ISO 27001 (Information Security), ISO 27701 (Privacy Information), and PCI DSS (Payment Card Industry Data Security Standard). Risk Assessment & Analysis: Identify IT risks and control weaknesses during audits. Analyze findings and assess potential business impacts. Evaluate risk mitigation strategies. Reporting & Communication: Document audit work, prepare draft reports with findings and recommendations, and communicate results to management and stakeholders. Collaboration & Improvement: Collaborate with IT teams, business units, and external auditors. Stay up-to-date with emerging technologies, IT security threats, and audit methodologies. Contribute to continuous improvement efforts for the audit function. Qualities We re Looking For: Education & Experience: Education: Bachelor s degree in Information Systems, Computer Science, Cybersecurity, Business Administration, or related field. Experience: 3-4 years of progressive experience in IT Audit, Information Security, IT Risk Management, or a related field. Technical Skills: Strong understanding of IT infrastructure components (networks, operating systems, databases, servers, virtualization). Solid knowledge of cloud computing, specifically auditing cloud environments (AWS focus). Experience auditing SaaS solutions and assessing third-party/vendor risk management. Knowledge of IT general controls (ITGCs) and application controls. Framework & Standard Knowledge: Demonstrated experience with ISO 27001, ISO 27701, and PCI DSS standards. Familiarity with other frameworks such as NIST Cybersecurity, COBIT, and SOX ITGCs is a plus. Audit Skills: Proficiency in IT audit methodologies, risk assessment techniques, and control testing procedures. Strong analytical, problem-solving, and critical-thinking skills. Excellent written and verbal communication skills, with the ability to articulate technical issues to both technical and non-technical audiences. Attention to detail and ability to manage multiple tasks and deadlines. Proficiency with Microsoft Office Suite. Certifications & Tools: Professional certifications such as CISA, CISSP, CISM, CRISC, AWS Certified Security Specialty or similar are highly desirable. Experience with GRC (Governance, Risk, Compliance) tools. Experience with data analysis tools like ACL, IDEA, or Excel PowerQuery/Pivot. Joining our team means becoming part of a dedicated, high-performing group focused on IT governance, risk management, and compliance. As an IT Audit Analyst, you'll have the opportunity to work on exciting, challenging audits, develop your skills, and contribute to continuous improvement initiatives. We offer a collaborative and innovative environment where you can grow professionally while making an impact on the organization s success. Equal Employment Opportunity: We are an Equal Employment Opportunity employer. We do not discriminate based on race, religion, color, national origin, sex (including pregnancy, childbirth, reproductive health decisions, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, genetic information, political views or activity, or other applicable legally protected characteristics. Qualification : Bachelors degree in Information Systems, Computer Science, Cybersecurity, Business Administration, or related field.

Job Title: Lead Systems Software Engineer Location: Bengaluru, Karnataka, India (On-Site) Team Overview: Join our Application Security team at Cloud Software Group, where we focus on protecting web applications and services from security threats. As a part of this passionate team, you will engage in application layer attack protection, threat intelligence, and the mitigation of OWASP attacks. We are highly focused on emerging security trends and delivering cutting-edge solutions to defend against advanced cyber threats. Job Description: As a Lead Systems Software Engineer, you will be responsible for implementing, configuring, and maintaining Web Application Firewalls (WAFs) to safeguard web applications and services. This role involves identifying security threats, performing security assessments, and collaborating with cross-functional teams to ensure security best practices are followed throughout the development lifecycle. Key Responsibilities: WAF Implementation & Maintenance: Implement and maintain Web Application Firewalls (WAFs) to protect web applications and services from security threats, including bot attacks. Security Policies & Rules: Develop and manage security policies and rules for WAFs to ensure the prevention of OWASP-Top-10 vulnerabilities, unauthorized access, data breaches, and other security incidents. Security Assessments & Penetration Testing: Conduct security assessments and penetration testing of web applications and services to identify vulnerabilities and recommend remediation measures. Collaboration: Work closely with other security teams and developers to ensure security best practices are integrated into the design, development, and maintenance of web applications and bot management systems. Emerging Threats Awareness: Stay informed on the latest security threats, technologies, and best practices to continually improve the security posture and protect against evolving threats for WAF and API. Incident Response: Participate in incident response and investigations as needed to identify the root cause of security incidents and implement corrective actions to prevent recurrence. Continuous Improvement: Lead initiatives to improve processes, systems, or products to enhance job area performance. Address complex security problems by considering multiple issues across various specialties. Qualifications: Education: Bachelor s (BE/B.Tech) or Master s degree in Computer Science, Information Security, or related fields, or equivalent work experience. Experience: 9-11 years of experience in network protocols (TCP, UDP, HTTP, DNS, SSL/TLS) and web application security, with a focus on WAFs and bot mitigation. Technical Expertise: Experience with industry-leading WAFs such as Citrix NetScaler AppFirewall, Imperva, ModSecurity, or F5 BIG-IP ASM. Proficiency in C, C++, and scripting languages like Python and Perl. Analytical Skills: Strong problem-solving abilities with a demonstrated capacity to identify and respond to security threats quickly. Communication Skills: Excellent verbal and written communication skills with the ability to collaborate effectively across teams and with stakeholders. About Us: Cloud Software Group is one of the largest cloud solution providers globally, serving over 100 million users. Our suite of cloud-based products powers productivity and collaboration, enabling real work to get done from anywhere. We value passion for technology, risk-taking, and innovation. If you re ready to be part of a company on the brink of transformative growth, now is the perfect time to join us. We are committed to Equal Employment Opportunity (EEO) and compliance with all applicable laws, ensuring a diverse and inclusive workplace for all. This position is ideal for individuals passionate about cybersecurity and looking to be at the forefront of web application protection and security innovations. Qualification : Bachelors (BE/B.Tech) or Masters degree in Computer Science, Information Security, or related fields, or equivalent work experience.

Job Title: Senior Systems Software Engineer Location: Bengaluru, Karnataka, India Team Overview: Join a team of Application Security experts at Cloud Software Group, where we focus on securing web applications and services. Our team is passionate about application layer attacks, protection mechanisms, threat intelligence, and protecting against OWASP threats. We re constantly evolving, staying at the forefront of emerging security trends. Job Description: As a Senior Systems Software Engineer, you will be responsible for implementing, configuring, and maintaining Web Application Firewalls (WAFs) to secure web applications and services from potential threats, including bot attacks. This role involves ensuring the effective operation of WAFs to prevent common vulnerabilities and unauthorized access, conducting security assessments, and collaborating with other security and development teams to enhance the security posture of our web applications. Key Responsibilities: WAF Implementation & Maintenance: Implement, configure, and maintain Web Application Firewalls (WAFs) to protect against security threats like OWASP-Top-10 vulnerabilities, unauthorized access, data breaches, and bot attacks. Security Policy & Rule Development: Develop and manage security policies and rules for WAFs to enhance their effectiveness in preventing security incidents. Penetration Testing & Security Assessments: Perform security assessments and penetration testing of web applications and services to identify vulnerabilities and recommend remediation actions. Collaboration: Work closely with other security teams, developers, and stakeholders to ensure security best practices are followed in the design, development, and deployment of features for web applications and bot management. Stay Updated on Security Trends: Keep informed about emerging security threats and technologies, continually improving security mechanisms to safeguard against new threats for WAF and API. Incident Response: Participate in incident response and investigations to understand the root cause of security breaches and implement corrective actions to prevent future incidents. Process Improvement: Lead initiatives for improving processes, systems, and products to optimize the performance and effectiveness of security measures. Qualifications: Education: Bachelor's (BE/B.Tech) or Master s degree in Computer Science, Information Security, or related fields, or equivalent professional experience. Experience: At least 5 years of experience working with network protocols like TCP, UDP, HTTP, DNS, SSL/TLS, and web application security, particularly in WAF and bot mitigation. Technical Skills: Proficiency with industry-leading WAF solutions like Citrix NetScaler AppFirewall, Imperva, ModSecurity, or F5 BIG-IP ASM. Experience in programming languages such as C, C++, and scripting languages like Python or Perl. Problem-Solving Skills: Strong analytical and problem-solving abilities to identify, assess, and mitigate security threats quickly. Communication & Collaboration: Excellent communication skills, with the ability to effectively collaborate with stakeholders across teams. About Us: Cloud Software Group is one of the world s largest providers of cloud solutions, empowering more than 100 million users globally. At Cloud Software Group, we re building the future of work, enabling people to get things done from anywhere. Our team thrives on passion for technology, embracing the courage to take risks and innovate. We re on the brink of another significant leap in technology evolution and we need experts like you to help us get there. If you're passionate about cybersecurity and eager to drive innovations, this is the perfect time to join us and be part of something transformative. Qualification : Bachelor's (BE/B.Tech) or Masters degree in Computer Science, Information Security, or related fields, or equivalent professional experience.

Technical Consultant - Security Intel & Operations Consulting Services Location: Bangalore, Karnataka, India Job Type: Full-Time Experience Level: Senior Introduction: At IBM Consulting, we believe that work is more than just a job it's a calling. In the role of Technical Consultant - Security Intel & Operations, you will be part of our Client Innovation Centers (Delivery Centers), where we deliver deep technical and industry expertise to both public and private sector clients across the globe. Our team helps clients to innovate, adopt new technologies, and improve their security posture. Your Role and Responsibilities: As a Senior SOC Analyst working within the 24/7 Cyber Fusion Center (CFC), your role will involve the proactive monitoring, triaging, analyzing, and escalating incidents in client environments. You will be tasked with utilizing various cyber operations tools and technologies to analyze data, detect security threats, and mitigate risks. Your expertise will contribute to maintaining the security integrity of client systems and ensuring efficient incident response. Key Responsibilities: Incident Monitoring & Analysis: Monitor and analyze security events using various cybersecurity tools like SIEM, IDS/IPS, Firewalls, network traffic logs, cloud platforms, and SOAR solutions to detect potential threats and mitigate risks. Perform event correlation using multiple data sources to understand the nature of security incidents and determine their impact on client environments. Threat Detection & Mitigation: Analyze alerts to identify active threats, perform root cause analysis, and apply appropriate mitigation techniques for both structured and unstructured environments. Evaluate security incidents across AWS and Azure environments, analyzing system, network, and email security events. Proactive Cybersecurity Measures: Conduct root cause analysis of security events and recommend actions to address vulnerabilities. Contribute to the development and constant improvement of SOC runbooks and playbooks to optimize security operations. Collaboration & Reporting: Work closely with cross-functional teams to escalate critical incidents and provide daily summary reports on activities relevant to cyber operations. Lead discussions on incident trends, perform cyber operations trend analysis, and report on findings to ensure continuous security enhancement. Continuous Improvement: Recommend improvements to automations, alert fidelity, and security controls to improve security efficacy and response time. Engage in team meetings, calls, and chats, contributing technical insights to enhance security strategies and tactics. Required Education and Experience: Education: Bachelor s Degree in Computer Science, Information Technology, Cybersecurity, or related fields. A Master s Degree is preferred but not required. Experience: Extensive experience working as a SOC Analyst or similar cybersecurity roles, especially in a 24/7 security operations center environment. Proficient in event analysis, log analysis, and network event management. Hands-on experience with cloud environments such as AWS and Azure, with a focus on cybersecurity threats and mitigations. Solid understanding of TCP/IP network security, modern attack techniques, exploitation methods, and operating system security. Preferred Technical and Professional Experience: Security Tools & Platforms: Experience with CyberArk, Azure SSO, and other enterprise security technologies. Knowledge of enterprise web technologies and cutting-edge security infrastructures. Familiarity with security automation tools and best practices for improving alert fidelity and security controls. Advanced Event & Threat Analysis: Proven ability to perform high-quality triage and in-depth analysis of security alerts. Experience in documenting incidents and escalating critical issues with appropriate cyber operations reports. Communication & Collaboration: Strong verbal and written communication skills, with the ability to convey complex security concepts to both technical and non-technical stakeholders. Ability to actively contribute to team discussions, runbook creation, and security playbook updates. Global Impact: Join a globally recognized team working at the forefront of cybersecurity, helping to shape the future of digital security. Career Development: IBM offers a strong focus on professional growth, offering learning opportunities, certifications, and exposure to the latest security technologies. Collaborative Culture: Be part of a collaborative and dynamic team, working together to tackle the most pressing security challenges faced by businesses around the world. If you are ready to contribute to the security and resilience of leading global organizations, we invite you to apply and be a part of our forward-thinking security team at IBM Consulting. Qualification : Bachelors Degree in Computer Science, Information Technology, Cybersecurity, or related fields.

Job Title: Security Engineer - II Location: Bangalore (On-site; full-time) About Locus: At Locus, we are redefining logistics decision-making with deep-tech solutions that drive efficiency, consistency, and transparency across industries like retail and FMCG/CPG. Founded in 2015 by Nishith Rastogi and Geet Garg, Locus has evolved from a women s safety geo-tracking app into a globally recognized logistics optimization platform. Our technology has empowered enterprises such as Unilever and Nestl to execute over a billion deliveries across 30+ countries. Guided by our commitment to innovation and sustainable growth, we transform complex supply chains into strategic growth enablers. Join us at Locus and be part of a team shaping the future of global logistics. Job Overview: Key Responsibilities: Conduct comprehensive threat modeling for applications, cloud infrastructure, and overall systems architecture. Perform secure code reviews and security assessments for web, Android, and iOS applications, with a strong focus on cloud infrastructure security. Proactively identify and mitigate vulnerabilities across platforms, collaborating with development and DevOps teams to implement secure solutions. Automate and streamline security processes, aligning with the principle that Complexity is the enemy of Security. Oversee Vulnerability Management and Patch Management processes, ensuring timely remediation. Design and implement robust security measures and contribute to Red Team activities, including assessments of cloud, network, wireless, physical, and social engineering scenarios. Take ownership of assigned tasks and drive the continuous improvement of security practices across the organization. Assist in setting up and maintaining monitoring systems to identify and respond to potential incidents in real time. Develop custom tools, scripts, and scanners to address unique security challenges and automate repetitive tasks. Provide architectural guidance for securing cloud-based applications and DevOps pipelines. Continuously stay updated on emerging security technologies and techniques, sharing knowledge with the team. Qualifications: 3-5 yrs experienced Sr security engineer. Expertise in cloud security (AWS, Azure, or GCP) with a strong understanding of securing applications and infrastructure in cloud environments. Proficiency in DevOps and DevSecOps practices, including secure CI/CD pipeline integration and automation. Strong knowledge of OWASP and SANS testing methodologies for identifying and mitigating security vulnerabilities. Good understanding of software security weaknesses, architecture vulnerabilities, and mitigation strategies. Hands-on experience in threat modeling, vulnerability assessments, and penetration testing. Proficiency in any scripting language - Python. Experience in developing or customizing tools, scanners, or extenders for specific security needs. Ability to work independently and collaboratively within a team to solve complex security challenges. Experience in implementing security monitoring systems for early incident detection. Strong problem-solving skills and the ability to think creatively to simulate attack scenarios. Certification in security-related fields (e.g., AWS Certified Security, CISSP, CEH, OSCP). Experience with container security and orchestration platforms like Kubernetes and Docker. Knowledge of Infrastructure as Code (IaC) tools like Terraform or CloudFormation. Familiarity with modern DevOps tools (e.g., Jenkins, GitLab, Ansible). Join Locus and become part of a visionary team that is redefining logistics through innovation and smart distribution. We provide competitive compensation, comprehensive benefits, and a collaborative environment where your expertise will drive both your growth and that of the organization. Locus is an equal opportunity employer dedicated to creating a diverse and inclusive workplace.

Job Title: Lead Engineer Software Test & Release Location: Bangalore Job Summary We are looking for a skilled Security Test and Automation Engineer with 7-9 years of experience in Security Verification and Validation, particularly on Embedded Systems. The ideal candidate will have 3-4 years of leadership experience in managing a team of security test engineers and hands-on expertise in scripting languages like Python, Java, and AI/ML-based tools. The primary responsibility will be to develop and execute security testing strategies across various domains including Devices, Automotive, Medical Devices, and Telecom Infrastructure (Wireless and Wired). Key Responsibilities Security Test Strategy: Develop and execute a comprehensive security test and automation strategy across multiple domains like Devices, Automotive, Medical Devices, and Telecom Infrastructure. Collaborate with project teams to capture best practices, share knowledge about the latest tools and technologies, and identify opportunities for new solution development. Understand client requirements for security testing and prepare proposals related to Security and Penetration Testing. Penetration Testing: Work with clients to understand their testing needs (e.g., number and types of systems for testing). Plan, create, and execute penetration methods, scripts, and tests to assess the security of systems. Perform remote or on-site security testing of a client s network or infrastructure to uncover vulnerabilities. Simulate security breaches to test system vulnerabilities and identify potential threats. Generate detailed reports outlining security issues, the level of risk, and recommendations for remediation. Team Leadership and Development: Lead and mentor a team of security test engineers, providing guidance on technical challenges and professional growth. Conduct reviews of designs, code, and test plans to identify risks and ensure quality deliverables. Identify training needs for the team and provide support for their technical development. Risk Analysis and Requirement Management: Conduct requirement analysis and feasibility studies, considering risk identification and mitigation. Perform system-level work estimation and ensure timely delivery of high-quality work. Ensure traceability of requirements from design to delivery, while optimizing code and ensuring test coverage. Continuous Improvement: Participate in technical initiatives within the project and organization, delivering training and maintaining a high level of technical competence through ongoing self-study and technical assessments. Identify and implement improvements in security testing practices and tools. Required Skills and Experience 7-9 years in Security Verification and Validation on Embedded Systems. 3-4 years of experience leading a team of security test engineers. Hands-on experience with scripting languages like Python, Java, and AI/ML-based tools. Experience in penetration testing and security assessments for embedded systems and network infrastructures. Technical Expertise: Strong knowledge of security testing methodologies, vulnerability assessments, and penetration testing. Proficiency in scripting languages (Python, Java, Perl, Shell scripts, TCL). Experience in Automation Frameworks for security testing. Understanding of network protocols (2G, 3G, LTE, 5G) and security concerns within telecommunications and embedded systems. Certifications: Bachelor s degree in Engineering or equivalent. Certifications in Security Testing (e.g., Certified Ethical Hacker - CEH) are highly desirable. Tools and Technologies: Experience with test and trace/log collection tools such as QXDM, QCAT, QPST, Prism, and other telecom instruments (e.g., Anritsu, Keysight). Familiarity with automation scripting tools like RTD (for Anritsu) or equivalent. Knowledge of Linux host platforms and network simulation tools. Specialization: Expertise in 2G, 3G, 4G, 5G, Interop Testing, and VSAT-SATCOM technologies. Understanding of 3GPP specifications and network vendor tests. Desirable Skills Strong problem-solving and analytical skills to identify vulnerabilities and assess risks in systems. Ability to provide strategic and actionable insights based on security findings. Ability to communicate complex security issues to non-technical stakeholders. Leadership and mentoring capabilities to guide junior engineers and promote team development. Work Environment Location: Bangalore Opportunity to work in a dynamic environment with the latest tools and technologies in the security testing domain. If you have a passion for security testing and automation, along with a desire to lead and contribute to impactful projects, this is the perfect opportunity for you! Apply now to join our team and make a significant impact in the field of security testing.

Principal Architect Identity Management Experience: 14+ Years Education: Bachelor s Degree in Engineering (or equivalent) About Saviynt Saviynt is an identity authority platform that empowers organizations to secure and manage digital access while enabling innovation. As businesses navigate digital transformation and increasing cyber risks, Saviynt s Enterprise Identity Cloud provides unparalleled visibility, control, and intelligence to protect users while ensuring seamless access to essential tools and technologies. Role Overview As a Principal Architect Identity Management, you will be responsible for designing, deploying, configuring, and implementing Saviynt s leading Identity Governance (IGA) solutions based on customer requirements. You will provide technical leadership, consulting expertise, and industry best practices to ensure seamless solution deployment while mentoring junior engineers. Key Responsibilities Strategic Leadership & Solution Architecture Provide thought leadership on IGA solutions, with a specific focus on Saviynt s technology. Develop best-in-class solutions that align with customer functional and non-functional requirements. Serve as a trusted advisor to customers, offering consulting expertise and strategic guidance. Deployment & Implementation Architect, design, and deploy Saviynt s Identity Governance solutions. Lead implementation and integration of Saviynt with critical applications and infrastructure. Ensure compliance with approved lifecycle methodologies, documentation standards, and testing protocols. Troubleshoot and resolve technical issues through debugging, research, and investigation. Collaboration & Technical Oversight Engage directly with customers, ensuring their success through expert guidance. Provide technical oversight and mentorship to mid-level and junior engineers. Train and develop top talent to become Saviynt technology experts. Collaborate with operations and product engineering teams to advocate for new features. Pre-Sales & Business Development Support Offer technical pre-sales support for direct and partner sales teams. Provide real-world expertise in creating solutions, proof of concepts, and implementations. Conduct competitive research to address and dispel customer objections effectively. Contribute to RFP responses and proposals as needed. Process Improvement & Compliance Ensure high-quality solution delivery within the defined timeline and budget. Stay updated with industry best practices, standards, and cybersecurity trends. Adhere to Saviynt s security & privacy policies (Data Classification, Access Control, Incident Response, etc.). What You Bring 14+ years of experience in Identity Governance & Access Management (IGA/IAM). Expertise in User Lifecycle Management, Provisioning, Reconciliation, Access Certification, SOD, and Cloud Security. Strong knowledge of Java/J2EE, SQL, REST/SOAP Web Services, and Directory Services. Experience in solution architecture, customization, and deployment of Identity Management products. Hands-on experience in direct customer interaction, consulting, and advisory roles. Strong technical presentation and communication skills. Proven problem-solving and analytical skills. Experience in pre-sales, RFP responses, and proposal writing. Preferred (Good to Have): Cybersecurity certifications: CISSP, CISA, CISM, CompTIA Security+, CEH, etc. Saviynt or equivalent IGA product certification. High-growth, Platform-as-a-Service (PaaS) company revolutionizing identity security. Tremendous learning opportunities through challenging yet rewarding projects. Collaborative & inclusive work environment where your impact is valued. Work with some of the world s leading enterprises on cutting-edge IAM solutions. Saviynt is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender identity, sexual orientation, disability, or veteran status. If you're an experienced IAM Architect with a passion for customer success and innovation, we d love to hear from you! Qualification : Bachelors Degree in Engineering (or equivalent)

At Juniper We believe the network is the greatest vehicle for knowledge, understanding, and human advancement. Delivering an experience-first, AI-Native Network pivots on the creativity and commitment of our people a consistent and dedicated practice we call the Juniper Way. Summary This position is part of the L1 Technical Assistance Center (TAC), supporting Juniper s SRX Firewall customers worldwide. About the Role This role offers a unique opportunity to address a wide range of challenging technical issues for global customers, stay ahead in the rapidly evolving security industry, and continuously develop new skills. You will be part of a collaborative, supportive team, working on diverse tasks that ensure each day is engaging and dynamic. Key Responsibilities Work in a highly dynamic Technical Assistance Center (TAC) environment with a strong focus on customer satisfaction. Quickly diagnose and resolve customer issues to deliver a remarkable customer experience. Serve as a customer advocate, ensuring timely problem resolution while understanding the network environment and business impact. Take full ownership of problem resolution, reproduction, and escalation when necessary. Collaborate within a team-oriented environment, demonstrating flexibility to work on weekends/holidays as required. Continuously learn and adapt to emerging technologies. Mandatory Skills VPN Expertise: Strong knowledge of VPN design, implementation, troubleshooting, and encryption algorithms (e.g., DES, 3DES, MD5, SHA, PKI). Core Networking Knowledge: Thorough understanding of the TCP/IP protocol suite, OSI model, and ability to apply this knowledge to network troubleshooting. Security and Firewall Experience: Proven knowledge of network security, access and perimeter control, vulnerability management, and intrusion detection. Familiarity with SYN flood, replay attacks, and related mitigation techniques. Data Network Experience: Proficiency in LAN/WAN hardware, physical layer infrastructure, data transmission facilities, and interconnecting devices. Troubleshooting Tools: Expertise in using utilities such as lookup, traceroute, ping, netstat, and packet analysis tools like Wireshark and tcpdump. Routing Protocols: Deep understanding of OSPF, BGP, RIP, IPSEC VPN, xDSL, and multicast technologies. Layer 2 Technologies: Strong knowledge of VLANs, VLAN tagging (802.1q), LACP, VLAN trunking, and STP (802.1D and other implementations). Requirements B.E. in Electronics Engineering or Computer Science with 1 3 years of experience in supporting, designing, or implementing IP networks. Hands-on experience in troubleshooting, implementation, and support of large-scale IP networks. Preferred Skills Application Layer Protocols: Working knowledge of FTP, DNS, SNMP, HTTP/HTTPS, LDAP, RADIUS, SMTP, and user authentication mechanisms. Security Products: Experience in providing support for security products such as firewalls, IPS/IDS, and Unified Threat Management (UTM) systems (e.g., URL filtering, antivirus, anti-spam). Operating Systems: Understanding and troubleshooting Windows, Unix, and macOS environments, including related technologies like NIS, NFS, Sun-RPC, and MS-RPC in security-enabled settings. Preferred Certifications JNCIA-JUNOS, JNCIS-Security, JNCIA-FWV, JNCIS-FWV, CCNA, CCNP or equivalent certifications are a strong plus. Join us and be part of the Juniper Way, where we encourage you to: Be Bold Build Trust Deliver Excellence Juniper Networks is an equal-opportunity employer, committed to fostering diversity and inclusivity. We do not discriminate based on race, religion, color, gender, sexual orientation, age, disability, or veteran status. Reasonable accommodation will be provided throughout the hiring process for individuals with disabilities. Qualification : B.E. in Electronics Engineering or Computer Science with 13 years of experience in supporting, designing, or implementing IP networks.

Job Description: As a member of the HPE Global IT team, you will play a crucial role in enabling enterprise-wide IT transformation. This includes driving innovative solutions that help simplify operations for customers and supporting the company s consumption-based IT offerings. You will be tasked with leading and developing complex business applications and information systems, while ensuring compliance with technical and business requirements. Key Responsibilities: Solution Design & Implementation: Lead the design and implementation of Identity and Access Management (IAM) and Privileged Access Management (PAM) solutions, with a strong focus on Zero Trust security models. Design and deploy solutions related to CyberArk, Beyond Trust, HashiCorp Vault, and other PAM technologies. Work closely with business units to assess their needs and create comprehensive solutions that align with HPE s security and technical standards. Technical Leadership & Mentorship: Provide technical guidance and mentoring to junior developers and cross-functional teams. Take ownership of the architecture of complex PAM systems, providing expertise in the integration of cloud access models and IAM technologies. Represent the team to external clients, ensuring effective delivery and implementation of solutions. Process Improvement & Innovation: Suggest and implement process improvements based on industry standards and the Zero Trust security framework. Contribute to the strategic direction of the team, providing innovative solutions to complex technical challenges. Lead proof-of-concept (POC) initiatives and manage the deployment of IAM and PAM solutions. Cross-Functional Collaboration: Collaborate with other departments and vendors to troubleshoot, resolve issues, and ensure smooth integration of solutions. Work closely with security teams to ensure PAM solutions meet the organization s security requirements and compliance standards. Documentation & Reporting: Document technical specifications, procedures, and best practices for implementing IAM/PAM solutions. Contribute to architectural reviews and ensure solutions comply with both internal and external security and technical standards. Requirements: Education & Experience: Typically, a Bachelor's degree in a technical field (Computer Science, Information Technology, etc.) or equivalent experience. Minimum of 10 years of relevant experience or 8 years with a Master s degree. Technical Expertise: Advanced knowledge and hands-on experience with modern IAM/PAM platforms (CyberArk, Beyond Trust, HashiCorp Vault, etc.). Experience with Windows Active Directory, Microsoft Azure AD, and REST API programming. Strong understanding of CyberArk Core PAS, Secure Password Vault, Privileged Session Manager, and other PAM components. Skills & Competencies: Excellent communication skills, both written and verbal, with the ability to explain complex technical solutions to non-technical stakeholders. Strong troubleshooting and problem-solving skills, with the ability to manage multiple tasks effectively. Demonstrated experience leading cross-functional teams, with a focus on developing and deploying complex security solutions. Preferred Skills: Experience with cloud security models and the integration of IAM/PAM solutions in cloud environments. Familiarity with Agile methodology and DevOps principles. Relevant certifications in CyberSecurity (CISSP, CISM, etc.) and IAM/PAM technologies. What We Offer: Health & Wellbeing: A comprehensive suite of benefits to support physical, financial, and emotional wellbeing for you and your loved ones. Personal & Professional Development: Career development programs to help you grow in your field or pivot to other areas within the company. We are committed to providing opportunities to help you reach your career goals. At HPE, we believe in the power of diverse teams and flexible work environments. We are committed to fostering an inclusive culture that drives innovation and makes bold moves to redefine what's next. Whether you re working on cutting-edge technology or collaborating with a global team, HPE offers the perfect environment for you to thrive. Qualification : Bachelor's degree or equivalent experience and a minimum of 10 years of related experience or a Master's degree and a minimum of 8 years of experience.

Position Overview: We are seeking a highly skilled and experienced Member of Technical Staff QA Security to join our dynamic team at Aryaka. As a Senior QA Engineer, you will play a crucial role in ensuring the security and integrity of our SASE products by conducting thorough security assessments, designing and executing test plans, and collaborating with development teams to address vulnerabilities. Your expertise will help shape our network security solutions and contribute to the success of organizations worldwide. Key Responsibilities: 1. Conduct Security Assessments: Perform comprehensive security assessments of SASE products to identify vulnerabilities, weaknesses, and misconfigurations. Utilize both manual and automated testing tools to uncover security vulnerabilities and potential exploitation vectors. 2. Design and Execute Test Plans: Develop and implement test plans and methodologies to evaluate the effectiveness of firewall configurations in defending against unauthorized access, malicious activities, and other security threats. Perform penetration testing on firewall devices to simulate real-world attacks and assess resilience against advanced threats. 3. Analyze and Report Findings: Analyze firewall logs, traffic patterns, and rule sets to identify anomalies and security incidents. Generate detailed reports outlining findings, including identified vulnerabilities, potential impacts, and recommended remediation measures. 4. Collaborate with Development Teams: Work closely with firewall development teams to prioritize and address security issues identified during testing phases. Provide technical guidance and recommendations regarding firewall security best practices, configuration hardening, and threat mitigation strategies. 1. Stay Informed on Security Trends: Keep up to date with the latest firewall technologies, security trends, and industry best practices to continuously improve firewall testing methodologies. Participate in the development and implementation of security policies, procedures, and standards related to firewall security testing. Qualifications: Education: Bachelor s degree in Computer Science or a related field. Experience: 3-7 years of experience as a QA Engineer. Technical Skills: Strong understanding of firewall technologies, including stateful inspection, packet filtering, application layer filtering, and intrusion prevention systems (IPS), CASB, and DLP. Knowledge of common security vulnerabilities and attack vectors, including OWASP Top 10, SQL injection, cross-site scripting, and buffer overflows. Familiarity with web application security standards and protocols (e.g., SSL/TLS, OAuth, SAML). Experience with cloud security (AWS, Azure, GCP) and container security is a plus. Hands-on experience with firewall testing tools such as Nmap, Nessus, Metasploit, and Wireshark. Understanding of network protocols, the TCP/IP stack, and common attack vectors used to exploit firewall vulnerabilities. Experience with scripting languages (e.g., Python) for automation and custom tool development is a plus. Soft Skills: Excellent analytical and problem-solving skills with the ability to identify and mitigate security risks effectively. Strong communication skills to convey technical concepts to both technical and non-technical stakeholders. Ability to work independently and as part of a team in a dynamic and fast-paced environment. Certifications: CISSP, CCSP, or CEH certifications are preferred. Employee Value Proposition (EVP): At Aryaka, we offer a dynamic and innovative work environment where you will have the opportunity to make a significant impact in the network security industry. Our commitment to cutting-edge technology and customer satisfaction provides a platform for continuous learning and professional growth. Qualification : Bachelors degree in Computer Science or a related field.

The Principal Threat Research Engineer will identify, analyze, and mitigate evolving cyber threats by creating and maintaining effective threat detection signatures. This role requires deep expertise in understanding modern cyber threats, malware behavior, and signature writing for advanced threat detection technologies. You will work closely with cross-functional teams, such as threat intelligence, incident response, and security product development, to enhance the organization s defense capabilities and provide strategic insight into the threat landscape. Key Responsibilities: Signature Writing & Development: i) Design and develop accurate, high-quality signatures and detection rules for threat detection systems (IDS/IPS, AV, EDR). ii) Improve and update detection logic to adapt to the latest threats, exploits, and attack vectors. iii) Optimize detection signatures to minimize false positives and maximize detection efficiency across various security platforms. Threat Research & Analysis: i) Lead in-depth research into emerging cyber threats, malware, APT groups, and TTPs (Tactics, Techniques, and Procedures). ii) Analyze attack patterns, behavior, and malicious code to identify new detection opportunities. iii) Track and understand evolving threat landscapes, including new vulnerabilities, exploits, and attack campaigns. Collaborative Threat Intelligence: i) Collaborate with global threat intelligence teams to share threat research findings and develop a comprehensive understanding of adversarial behavior. ii) Maintain relationships with external threat-sharing communities and organizations to stay up-to-date on the latest threat information. iii) Support the security team in responding to active threats, providing detection strategies and remediation guidance. Detection Engineering & Optimization: i) Work closely with the detection engineering team to integrate custom and third-party signatures into existing detection platforms (SIEM, IDS/IPS, EDR). ii) Identify gaps in current detection methodologies and implement improved detection capabilities for advanced threats, such as zero-day exploits, fileless malware, and APT campaigns. iii) Conduct performance testing and tuning of signatures to ensure system stability and effectiveness under various network environments. Thought Leadership & Knowledge Sharing: i) Act as a subject matter expert on threat detection, signature development, and malware analysis for internal and external stakeholders. ii) Lead and mentor junior threat researchers and engineers by providing guidance, training, and technical expertise. iii) Create research reports, blogs, whitepapers, and presentations to communicate key research findings and trends to technical and non-technical audiences. Required Qualifications: Bachelor s or Master s degree in Computer Science, Cybersecurity, Information Security, or a related field. 8+ years of experience in cybersecurity, with a focus on threat research, signature development, or malware analysis. Proven experience in writing and optimizing signatures for IDS/IPS, antivirus, and endpoint detection and response (EDR) solutions. Deep knowledge of cyber threats, including malware, ransomware, phishing, and advanced persistent threats (APTs). Strong understanding of network protocols, system internals (Windows, Linux), and attack techniques such as fileless malware, obfuscation, and evasion. Proficiency with malware analysis tools (e.g., IDA Pro, Ghidra), network analysis tools (e.g., Wireshark, Zeek), and sandbox environments. Experience with signature formats such as YARA, Snort, Suricata, and regular expression-based detection logic. Familiarity with MITRE ATT&CK framework and how it maps to threat detection and signature development. Strong problem-solving and analytical skills, with an ability to think critically about threat detection and mitigation strategies. Excellent verbal and written communication skills, with the ability to convey complex threat intelligence and detection strategies to a diverse audience. Ability to work collaboratively across teams and mentor junior team members. Preferred Qualifications: Relevant cybersecurity certifications such as CISSP, GIAC, OSCP, or GREM. Expertise in scripting and automation (Python, PowerShell, Bash) to automate threat research and signature writing processes. Experience with cloud-based threat detection and response (e.g., AWS GuardDuty, Azure Sentinel). Familiarity with advanced hunting techniques, including threat hunting using logs, endpoint data, and network data. Employee Value Proposition (EVP): At Aryaka, we offer a dynamic and innovative work environment where you will have the opportunity to make a significant impact in the network security industry. Our commitment to cutting-edge technology and customer satisfaction provides a platform for continuous learning and professional growth. Qualification : Bachelors or Masters degree in Computer Science, Cybersecurity, Information Security, or a related field.

Our Exciting Opportunity: We are looking for a Security Engineer to manage, track, and support security-related activities within our organization, ensuring the continuous availability and performance of services as per Service Level Agreements (SLA). This role will involve incident management, security tool integration, process improvement, and governance reporting. As a Security Engineer, you will play a key role in ensuring that security incidents are identified, responded to, and resolved effectively and quickly. You'll work with various teams to mitigate risks and improve overall security posture. What you will do: Incident Management: Respond to after-hours security incidents (on-call support). Coordinate event collection, log management, and compliance automation. Address day-to-day security change requests related to security operations. Conduct research and intelligence gathering on emerging threats and exploits. Create new security rules based on identified threats. Perform postmortem analysis of logs, traffic flows, and activities to identify malicious activity. Analyze security incidents involving networking devices, operating systems, endpoint analysis, and network attacks. Work with Technical Authority teams to resolve security incidents. Provide Root Cause Analysis for security incidents, outages, or impairments. Administer authentication and access controls, including user provisioning and deprovisioning. Tools Integration: Integrate security tools (SIEM, VA, IAM) with various network nodes. Deploy policies, signatures, parsers, and rules for security infrastructure. Communicate with vendors (e.g., SIEM, IPS/IDS, IAM) for application-related issues. Process Improvement: Mentor Level 1 analysts to improve detection capabilities within the Security Operations Center (SOC). Prepare Use Cases and MOPs (Method of Procedures) based on identified scenarios. Create and maintain technical operational work instructions. Drive continuous improvement by identifying opportunities to enhance current processes. Governance and Reporting: Provide business intelligence reporting based on SOC and customer needs. Identify and report risks related to security. Perform periodic security reporting and present findings to management or customers. To be successful in this role, you must have: Strong knowledge of information security concepts and best practices. Experience with SIEM tools (e.g., McAfee ESM, QRadar, ArcSight, Splunk). Experience with scanning tools (e.g., Nessus, Qualys, IBM AppScan). Experience with PAM tools (e.g., BeyondTrust, CyberArk). Knowledge of Linux and MS Windows systems with a technical understanding of TCP/IP networks. Understanding of enterprise computing environments, distributed applications, and security controls. Key Qualifications: Education: Graduate in Computer Science or a similar field. Experience: 5 to 11 years of experience, with at least 2 years in IT and 2 years in security. Certifications (Preferred): ITIL certification CCSP (Certified Cloud Security Professional) OSCP (Offensive Security Certified Professional) Security+ CCNA Security or similar certifications. Why This Role? This is a fantastic opportunity for a Security Engineer to develop your career by working with cutting-edge security technologies and supporting a highly dynamic and crucial role in an organization. You will have the chance to mentor junior team members, improve security processes, and work with state-of-the-art tools to ensure the highest levels of security for the organization. Apply now to join our team and contribute to maintaining and improving the security infrastructure! Qualification : Graduate in Computer Science or similar

Basic Qualification: 16 - 21 Years of professional experience. Experience in Regulatory life Cycle till Phase 4. Location - Bangalore. Would you like to drive change and transformation efforts that enable successful regulatory outcomes for GSK? If so, this Manager, Regulatory Asset Oversight role could be an ideal opportunity to explore. As Manager, Regulatory Asset Oversight, you will manage multiple projects and teams simultaneously and will provide assessments (metrics, data) and conclusions/action plans within and across departments. You ll identify risks associated with submission data and information packages, and lead in the creation, maintenance and continuous improvement of Regulatory processes, policies and systems. This role will provide YOU the opportunity to lead key activities to progress YOUR career, these responsibilities include some of the following In close collaboration with the GRL and RMT, develop and maintain a holistic view of the global regulatory integrated plan at the asset level for operationalizing the Global Regulatory Strategy and supporting the GRL in ensuring appropriate resource is engaged to deliver to the plan, Drive the execution of the agreed plans to ensure team is on-track to deliver per the Global Regulatory Strategy (GRS), performing scenario planning, impact analyses, critical path analyses and facilitate risk mitigation in response to any issues/risks that arise. Leverage expertise to assist RMTs and GRLs with submission delivery strategies that align with R&D objectives, e.g. Hyper-Acceleration, Acceleration in regions. Implement a structured approach with assigned RMTs to ensure that the submission delivery strategy is aligned with the Global Submission Strategy (GSS) throughout the late-stage Development lifecycle. Proactively partner as a Single Point of Contact with RMT, Submission Coordination, and Publishing colleagues to identify and remove barriers that will prevent a successful outcome on defined filing strategies. Drive the RMT Meeting and other Cross-Functional, Regulatory-Owned Engagements for success ensuring logistics, agenda topics and meeting materials are available and organized for the use of the team. Proactively identifies upcoming activities or milestones which might impact regulatory deliverables and escalates of issues and blockers to the Director, Regulatory Asset Oversight, and leadership. Promote and drive the use of integrated Regulatory technologies to provide real-time, accurate submission status information (visuals and reports) for RMTs to highlight compliance from central dispatches through to registrations across markets. Maintains meaningful metrics and KPIs to assess individual and team performance which are aligned across the Regulatory Asset Oversight function. Support the GRL in the preparation of governance reviews leveraging data from RIM systems and ensuring accuracy, completeness, and fit for purpose. Facilitate discussions with LOCs and RMTs as needed to ensure aligned submission delivery strategy and efficient lifecycle filing strategies from lead markets through to regional expansion. Why you? Basic Qualifications: We are looking for professionals with these required skills to achieve our goals: Bachelor s Degree Extensive knowledge of drug development and manufacturing and supply processes. Broad and deep knowledge of worldwide regulatory requirements. Successfully managed multiple projects Preferred Qualifications: If you have the following characteristics, it would be a plus: Degree in Chemistry, pharmacy or closely related science Demonstrated professional growth in global regulatory affairs including communication of evolving/emerging trends and policies. Broad knowledge base across regulatory functions. Experience in influencing and negotiating with GSK personnel as well as external partners in a variety of settings. Line management experience Why GSK? Our values and expectationsare at the heart of everything we do and form an important part of our culture. These include Patient focus, Transparency, Respect, Integrity along with Courage, Accountability, Development, and Teamwork. As GSK focuses on our values and expectations and a culture of innovation, performance, and trust, the successful candidate will demonstrate the following capabilities: Agile and distributed decision-making using evidence and applying judgement to balance pace, rigor and risk. Managing individual and team performance. Committed to delivering high quality results, overcoming challenges, focusing on what matters, execution. Implementing change initiatives and leading change. Sustaining energy and well-being, building resilience in teams. Continuously looking for opportunities to learn, build skills and share learning both internally and externally. Developing people and building a talent pipeline. Translating strategy into action - a compelling narrative, motivating others, setting objectives and delegation. Building strong relationships and collaboration, managing trusted stakeholder relationships internally and externally. Budgeting and forecasting, commercial and financial acumen. Uniting science, technology and talent to get ahead of disease together. GSK is a global biopharma company with a special purpose to unite science, technology and talent to get ahead of disease together so we can positively impact the health of billions of people and deliver stronger, more sustainable shareholder returns as an organisation where people can thrive. We prevent and treat disease with vaccines, specialty and general medicines. We focus on the science of the immune system and the use of new platform and data technologies, investing in four core therapeutic areas (infectious diseases, HIV, respiratory/ immunology and oncology). Our success absolutely depends on our people. While getting ahead of disease together is about our ambition for patients and shareholders, it s also about making GSK a place where people can thrive. We wan...

Senior Manager, Security Operations Center (SOC) Location: Bangalore Type: Full-Time Experience Required: 8+ Years (3+ in Leadership) Role Overview: Strategic Cyber Defense We are seeking a Senior Manager to lead and modernize our SOC operations across enterprise and product environments. You will oversee a high-performance team dedicated to threat detection, advanced detection engineering, and incident response. This role is a strategic blend of technical mastery leveraging AI and SOAR and people leadership, focused on building a resilient, automation-first security culture. Core SOC Service Offerings & Expertise Advanced Defense & Detection: Detection Engineering: Implement Detection-as-Code practices and prioritize backlogs based on the evolving threat landscape. Threat Intelligence & Hunting: Deliver actionable intel and execute structured threat hunting hypotheses to proactively identify stealthy adversaries. Deception & Validation: Manage deception strategies (honeypots/tokens) and use attack emulation tools to validate detection logic effectiveness. Forensics: Lead digital forensic investigations, evidence acquisition, and post-incident analysis. Automation & Technology Stack: Azure Ecosystem: Advanced proficiency with Microsoft Sentinel, Defender XDR, and Defender for Cloud using KQL. Cloud Operations: Strong knowledge of security operations across Azure, AWS, and preferably GCP. SOAR & AI: Champion the integration of Security Orchestration, Automation, and Response (SOAR) and AI to drive SOC efficiency. Key Responsibilities Leadership & Strategy: Team Development: Coach and mentor the SOC team, conducting regular 1-on-1s and fostering a growth-oriented culture to prevent burnout. Roadmap Execution: Help define a comprehensive SOC strategy and maturity framework aligned with organizational risk management. Stakeholder Liaison: Act as a trusted advisor to Product, IT, and Development leaders to integrate security into cross-functional workflows. Metrics & Operational Excellence: Data-Driven Reporting: Develop dashboards (e.g., Power BI) to track KPIs, KRIs, and detection coverage. Incident Lifecycle: Lead the lifecycle of escalated incidents, conduct root cause analysis, and execute tabletop exercises. 24/7 MDR Strategy: Define operational procedures for Managed Detection and Response (MDR) and sustainable on-call rotations. Qualifications for Success Proven Leadership: 8+ years in InfoSec with specific experience leading SOC or MDR functions. Azure Mastery: Deep technical expertise in the Microsoft security stack. Framework Knowledge: Familiarity with MITRE ATT&CK, Purple Teaming, and cloud-native detection. Soft Skills: Exceptional ability to simplify complex technical content for executive-level communication.

Security Research Engineer Security Research Experience: 5 8 Years | Location: Bangalore | Employment Type: Full-Time About SecPod SecPod is a SaaS-based cybersecurity products company focused on prevention-first security. Our Saner Cloud platform is a unified CNAPP solution that combines AI-driven threat intelligence, automated vulnerability detection, and Cloud Security Posture Management (CSPM) to secure multi-cloud environments. Role Summary We are seeking a highly skilled Security Research Engineer to join our Security Research team. This role focuses on researching emerging cloud security threats, developing security intelligence feeds, building proof-of-concepts (PoCs) for misconfigurations, and creating automated remediation and compliance content. Key Responsibilities Threat Research: Conduct security research to develop intelligence feeds and checks with a strong emphasis on cloud security. Vulnerability & Risk Analysis: Identify and create PoCs for emerging cloud misconfigurations and security risks. Automation: Develop automation for research and validation tasks using Python or other scripting languages. Compliance & Remediation: Build remediation feeds for cloud misconfigurations and compliance benchmarks. Lifecycle Management: Manage the end-to-end lifecycle of research outputs, from initial development through production release. Required Qualifications & Skills Professional Experience: 5 8 years in security research or engineering, with at least 3 years in a senior technical role. Cloud Infrastructure: Hands-on experience with AWS, Azure, or GCP. Technical Fundamentals: Strong understanding of operating systems, networking, and computer science security. Programming: Proficiency in languages such as Python, C, C++, or Java. Environment Expertise: Experience across Linux/Unix, Windows, and virtualization environments. Compliance: Solid knowledge of cloud security and security benchmark compliance. Education Bachelor s degree (or equivalent) in Computer Science or a related field. Qualification : Bachelors degree (or equivalent) in Computer Science or a related field