Threat Modeling Jobs in Bengaluru

Security Research Engineer Security Research Experience: 5 8 Years | Location: Bangalore | Employment Type: Full-Time About SecPod SecPod is a SaaS-based cybersecurity products company focused on prevention-first security. Our Saner Cloud platform is a unified CNAPP solution that combines AI-driven threat intelligence, automated vulnerability detection, and Cloud Security Posture Management (CSPM) to secure multi-cloud environments. Role Summary We are seeking a highly skilled Security Research Engineer to join our Security Research team. This role focuses on researching emerging cloud security threats, developing security intelligence feeds, building proof-of-concepts (PoCs) for misconfigurations, and creating automated remediation and compliance content. Key Responsibilities Threat Research: Conduct security research to develop intelligence feeds and checks with a strong emphasis on cloud security. Vulnerability & Risk Analysis: Identify and create PoCs for emerging cloud misconfigurations and security risks. Automation: Develop automation for research and validation tasks using Python or other scripting languages. Compliance & Remediation: Build remediation feeds for cloud misconfigurations and compliance benchmarks. Lifecycle Management: Manage the end-to-end lifecycle of research outputs, from initial development through production release. Required Qualifications & Skills Professional Experience: 5 8 years in security research or engineering, with at least 3 years in a senior technical role. Cloud Infrastructure: Hands-on experience with AWS, Azure, or GCP. Technical Fundamentals: Strong understanding of operating systems, networking, and computer science security. Programming: Proficiency in languages such as Python, C, C++, or Java. Environment Expertise: Experience across Linux/Unix, Windows, and virtualization environments. Compliance: Solid knowledge of cloud security and security benchmark compliance. Education Bachelor s degree (or equivalent) in Computer Science or a related field. Qualification : Bachelors degree (or equivalent) in Computer Science or a related field

Position: Security Engineer-2 Location: Bengaluru Employment Type: Full-Time Department: Engineering Job Description: We are seeking a proactive and skilled Security Engineer-2 to identify vulnerabilities, collaborate with development teams on mitigation strategies, and promote secure coding practices within the organization. You will play a critical role in ensuring the security and resilience of our products against emerging threats. Key Responsibilities: Conduct in-depth security assessments of products to discover vulnerabilities and demonstrate their exploitability and risk impact. Stay updated on emerging vulnerabilities and threats relevant to our products through independent research. Collaborate with developers to develop and implement mitigation and workaround plans according to security policies. Lead threat modeling and secure design review sessions with development teams to identify threats and define mitigation strategies. Conduct workshops to educate developers on threat modeling and secure coding principles. Prioritize and ensure mitigation of critical security defects during development sprints. Integrate and automate Static Application Security Testing (SAST) within the DevOps pipeline. Advocate and propagate secure coding principles across the development community. Serve as the primary point of contact for developers on critical secure development issues. Develop and deliver security training programs and technical workshops for developers and QA teams. Promote security awareness through tech talks and other knowledge-sharing activities. Required Qualifications and Skills: Strong knowledge of common vulnerabilities such as Cross-Site Scripting (XSS), SQL Injection, Cross-Site Request Forgery (CSRF), cryptographic weaknesses, and code injection. Proficiency in programming/scripting languages like Java, Ruby, and Python. Experience with cloud technologies and services. Ability to automate security testing processes and improve assessment productivity. Excellent communication skills to articulate security risks to both technical and non-technical audiences. Familiarity with industry-standard threat modeling, risk assessment, and vulnerability classification methodologies. Experience conducting white-box and grey-box security assessments, including architectural and API analysis. Knowledge of Secure Software Development Lifecycle (S-SDLC) and CI/CD integration. Bachelor s degree in Computer Science, Electrical Engineering, Computer Engineering, or equivalent experience in software engineering or security. Minimum 3 years of experience in application security or related security assessment roles. Deep understanding of attack vectors, exploits, and mitigation techniques, including chained attacks. Experience with languages such as Java, Go, Python, or Node.js (knowledge of multiple is a plus). Experience assessing cloud-native services, service meshes, and Kubernetes-based microservices. Strong problem-solving skills, able to think both offensively (like a hacker) and defensively (product security evaluation). Ability to learn new technologies and apply unconventional thinking to complex security challenges. Qualification : Bachelors degree in Computer Science, Electrical Engineering, Computer Engineering, or equivalent experience in software engineering or security

Red Team Hacker / Pen Tester (Onsite, Bangalore) Who We Are ColorTokens We re on a mission to keep businesses running safe and sound even when cyber attackers try to mess things up. Our next-gen platform, ColorTokens Xshield , stops ransomware and malware from spreading sideways inside companies, so critical stuff stays locked down and working. We ve got mad skills in spotting and controlling traffic between all kinds of devices and users from your typical laptops to IoT and medical gadgets. That means we can slice and dice security zones to keep bad actors contained. Forrester calls us a Leader in Microsegmentation (Q3 2024), and we help global companies avoid big $$$ downtime. Our Vibe We re all about hustling with heart. You ll get to own your projects, work with smart teammates, and solve tough problems that actually protect people from kids in hospitals to entire cities. If you re driven, curious, and ready to make a real impact, you ll fit right in. The Gig What You ll Do Run epic red team ops that mimic real-world hackers trying to break in. Hack (ethically!) into networks, apps (web, mobile, APIs), and cloud setups to find weaknesses. Build your own scripts and tools to level up your tests and dodge detection. Team up with defenders (blue team) to boost how we spot and stop attacks. Write clear, no-fluff reports with proof-of-concept hacks and smart fixes. Keep your finger on the pulse of the latest threats and hacker tricks. Jump into purple teaming and adversary simulations to sharpen our edge. Bachelor s in Cybersecurity, CS, or you ve got real-world chops that match. 6+ years deep in red teaming, pentesting across web, APIs, infrastructure, and cloud. Pro with tools like Cobalt Strike, Metasploit, Nessus, Burp Suite, Nmap, and scripting (Python/PowerShell/Bash). Solid grasp of MITRE ATT&CK, threat modeling, and adversary emulation. Know Windows & Linux inside out, Active Directory, plus cloud platforms (AWS, Azure, GCP). Bonus points if you re into social engineering, phishing, or physical security. Skilled at writing docs that actually make sense. Must-have certifications: OSCP is a must; CRTP, OSCE, OSEP, CRTE, GPEN, GXPN are pluses. Qualification : Bachelor's degree in Cybersecurity, Computer Science, or related field (or equivalent experience).

Position: Business Analyst Supply Chain Department: Supply Chain Location: Bengaluru Role Overview: We are seeking a detail-oriented and strategic Business Analyst to conduct in-depth market analysis focused on primary and secondary aluminium markets, both domestically and globally. This role will support procurement decision-making by identifying market opportunities and risks, ensuring alignment with company strengths to maximize profitability and sustain competitive advantage. Key Responsibilities: Conduct comprehensive analysis of market dynamics impacting pricing trends in primary and secondary aluminium sectors globally and domestically. Identify business opportunities that align with company capabilities to optimize procurement timing and strategies for short-term and long-term gains. Detect potential threats and weaknesses in the market environment and collaborate with leadership to develop effective mitigation strategies. Make swift, well-informed decisions by evaluating multiple scenarios and selecting optimal courses of action. Work independently and collaboratively with cross-functional teams to ensure cohesive business strategies. Communicate clearly and effectively to minimize misunderstandings and ensure accurate interpretation of market insights. Approach market research from multiple perspectives to ensure comprehensive analysis, considering all critical factors influencing decision-making. Guide the raw material procurement team in developing strategic procurement plans that respond to market fluctuations. Prepare and present detailed reports and presentations for senior management, highlighting key metrics, market changes, and actionable recommendations. Stay updated on regulatory changes, including customs duties, anti-dumping duties, and industry best practices, as well as emerging technologies affecting the aluminium market. Qualifications & Skills: Postgraduate degree in Business, Economics, Supply Chain Management, or a related field. Strong analytical skills with the ability to interpret complex market data and trends. Excellent communication and presentation skills. Ability to make independent, strategic decisions under pressure. Knowledge of regulatory frameworks and industry standards relevant to aluminium markets. Qualification : Postgraduate degree in Business, Economics, Supply Chain Management, or a related field.

Job Title: Software Engineer GPU Performance Location: Bengaluru Overview: We are looking for a highly skilled Software Engineer GPU Performance with a deep understanding of CUDA, GPU hardware architecture, and low-level performance optimization. The ideal candidate will have hands-on experience building high-performance GPU-based pipelines, optimizing time-continuous kernels, and dynamically managing processing loads between the CPU and GPU. Key Responsibilities: Utilize low-level CUDA APIs to implement and optimize GPU kernels and memory management strategies. Design and optimize pipelined image processing frameworks, ensuring seamless multi-block function execution and inter-block communication. Conduct low-level GPU performance analysis and optimizations using tools like: NVIDIA Nsight Compute NVIDIA Visual Profiler NVIDIA Graphics Developer Tools Optimize CUDA cores and kernels for maximum throughput, particularly in time-continuous processing scenarios. Implement dynamic load balancing between GPU kernels and processing functions. Design interleaved execution strategies between CPU and GPU, including real-time GPU control flow modifications from the CPU. Use NVIDIA Direct technologies for direct memory access from PCIe, USB, and display hardware, bypassing CPU intervention. Build systems to visualize GPU memory for debugging without requiring CPU transfers. Contribute to the design and optimization of foundational neural networks, including mathematical modeling of time-weighted kernels. Stay up to date with emerging GPU tools and platforms; exposure to NVIDIA Omniverse is a plus. Required Skills & Qualifications: Strong proficiency in C/C++. In-depth experience with low-level CUDA programming. Proficiency with Visual Studio toolchain and related debugging tools. Solid understanding of GPU hardware architecture and system-level performance tuning. Hands-on experience with GPU memory management, kernel interleaving, and CPU-GPU orchestration. Strong problem-solving skills and the ability to write clean, efficient, and maintainable code. Experience in neural network architecture design and low-level performance optimization is highly desirable. Exposure to Omniverse, real-time rendering, or simulation platforms is a bonus.

Cloud Architect Bangalore, India Location: Bangalore (Bengaluru) Experience: 8 to 15 Years Industry: IT Software / Cloud Computing Job Summary: We are seeking a seasoned Cloud Architect with deep expertise in designing and implementing secure, scalable cloud solutions across public and private cloud platforms. The ideal candidate will have strong knowledge of enterprise application and integration patterns, cloud-native microservices, and security architecture. Key Responsibilities: Architect and design cloud solutions leveraging AWS, Microsoft Azure, and Google Cloud Platform (GCP) Develop microservices-based applications using Docker and Kubernetes, and deploy them on cloud platforms Define security architectural requirements, including threat modeling, identity and access management, PKI, and secrets management Ensure cloud environments adhere to security protocols, compliance standards, and best practices for authentication and authorization Work with a wide range of cloud services including storage, networking, and security components Apply knowledge of Big Data ecosystems such as Hadoop and NoSQL databases to design scalable data processing architectures Deploy and manage cloud infrastructure using Terraform for infrastructure as code (IaC) Utilize configuration management tools like Puppet, Chef, and continuous integration tools such as Git and Jenkins Collaborate within Agile teams to deliver cloud architecture solutions efficiently Stay updated on emerging open-source technologies and integrate them into cloud architectures when applicable Required Skills & Qualifications: Extensive experience with both public and private cloud technologies Strong understanding of Enterprise Application Patterns and Integration Patterns Hands-on experience with containerization, microservices, and orchestration tools (Docker, Kubernetes) In-depth knowledge of cloud security, including threat modeling and compliance requirements Proficiency in managing cloud infrastructure on AWS, Azure, and/or GCP Familiarity with Big Data platforms and NoSQL databases Skilled in Infrastructure as Code (IaC) tools, especially Terraform Experience with automation and configuration management tools like Puppet, Chef, Git, and Jenkins Comfortable working in Agile development environments Preferred Qualifications: Bachelor s or Master s degree in Computer Science, Information Technology, or related field Relevant cloud certifications such as AWS Certified Solutions Architect, Azure Solutions Architect Expert, or Google Cloud Professional Architect Strong communication skills to articulate complex cloud architectures to diverse stakeholders Lead the design of innovative, secure, and scalable cloud architectures Work with cutting-edge cloud and container technologies in a dynamic environment Opportunity to grow professionally with access to training and certifications Qualification : Bachelors or Masters degree in Computer Science, Information Technology, or related field

Architect - Cyber Security | Bengaluru, India Location: Bangalore (Bengaluru) Experience: 12 to 20 Years Industry: IT Security / Cybersecurity Architecture Job Summary: We are looking for a seasoned Cyber Security Architect with over 12 years of experience designing and managing security architectures across multiple industries. The ideal candidate will bring strong expertise in secure design principles, SSDLC implementation, and cloud security especially within Azure environments. Key Responsibilities: Lead the development and management of enterprise-wide security architectures for global, multinational organizations Participate in Security Architecture Review Boards and drive secure coding practices along with Software Security Development Life Cycle (SSDLC) implementation Develop and enforce secure design principles and security standards across platforms Create and maintain current and future state architecture diagrams, supporting the technical roadmap with a comprehensive understanding of the technology market Deliver security solution architectures aligned with the enterprise architecture framework Provide expert guidance on securing multi-tenant cloud environments, with a focus on Microsoft Azure Collaborate with cross-functional teams to align security strategies with business goals and compliance requirements Required Skills & Qualifications: Minimum 12+ years of experience in security architecture across at least two different industries, preferably including cloud service providers Proven track record with security architecture development and governance in large-scale multinational companies Experience with secure coding, SSDLC, and security architecture review processes Strong proficiency in cloud security architecture, especially Azure multi-tenant environments Bachelor s or Master s degree in Information Security, Computer Science, or related field Must hold CISSP certification (Certified Information Systems Security Professional) Experience with architecture certification such as CISSP-ISSAP is highly preferred Additional certifications or memberships in SANS, ISACA, or similar cybersecurity organizations are a plus Azure Architecture or Azure Security certifications highly desirable Lead cybersecurity architecture in a global, dynamic enterprise environment Work with cutting-edge cloud technologies and secure multi-cloud ecosystems Grow professionally with access to industry-leading certifications and training Influence enterprise security strategy at the highest level Qualification : Bachelors or Masters degree in Information Security, Computer Science, or related field

Pipeline and GTM Senior Data Analyst Location: Bangalore, India About the Role Rubrik s Pipeline & GTM Strategy and Analytics team seeks a Senior Pipeline and GTM Data Analyst to ensure high-quality data for pipeline development, measurement, and operational efficiency. Reporting to the Senior Manager of Pipeline & GTM Strategy and Analytics, you will play a key role in pipeline analytics, dashboard creation, and providing operational support for the Sales Development Representative (SDR) team. Your analytical expertise will empower data-driven decisions to accelerate growth. Key Responsibilities SDR Operations Support: Support territory and quota planning to grow the Inside Sales organization and drive revenue. Analyze strategic funnel metrics and measure sales performance. Administer and optimize sales tools like Salesforce (SFDC), Outreach, ZoomInfo, LinkedIn Sales Navigator, and more. Enhance lead routing and customer-facing messaging processes. Collaborate with Sales, Marketing, and IT teams to improve lead qualification and pipeline growth. Use data-driven insights to improve Inside Sales functions, incorporating input from cross-functional teams such as Marketing and Finance. Analytics & Reporting: Build, prepare, and analyze reports to support pipeline analytics and special projects that drive pipeline growth (PG) attainment. Create and maintain real-time dashboards for actionable insights. Validate and ensure data quality for SDR and pipeline dashboards. Continuous Improvement & Innovation: Enhance data management processes for improved efficiency and accuracy. Stay current with industry best practices in data analytics and management. Implement new tools and techniques for better data preparation and validation. Cross-Functional Collaboration: Facilitate smooth communication between SDR Operations and Analytics teams. Provide accurate, timely data to all relevant teams for informed decision-making. Participate in team meetings, offering data-driven recommendations. Required Skills and Experience 5+ years in Sales Operations, Strategy, or a related analytical role. Bachelor s degree or equivalent practical experience. Strong communication skills (written and oral). Self-starter with the ability to work independently and collaborate across all business levels. Salesforce (SFDC) administration experience. Advanced proficiency in Microsoft Excel or Google Sheets, including complex modeling and robust analysis. Experience with Microsoft Office suite (Word, Excel, PowerPoint, Outlook). Skilled in data visualization tools such as Tableau, PowerBI, or similar. Comfortable managing and analyzing large datasets. Preferred: Experience with SQL and/or Python for data querying and automation. Rubrik (NYSE: RBRK) is on a mission to secure the world s data. With Zero Trust Data Security , we help organizations build resilience against cyberattacks, insider threats, and operational disruptions. Our AI-powered Rubrik Security Cloud protects data across enterprise, cloud, and SaaS applications, ensuring integrity, availability, and rapid business recovery.

Sales Compensation Analyst Location: Bangalore, India About the Role Rubrik is seeking a detail-oriented Sales Compensation Analyst to join our global team. In this role, you will administer and manage sales compensation plans, analyze financial data, streamline commission processes, and ensure alignment with business objectives. Reporting to the Manager Global Sales Compensation, you will play a critical role in driving accuracy and efficiency in sales incentives across Rubrik s salesforce. Key Responsibilities Sales Compensation Administration: Manage and maintain sales incentive compensation processes including MBOs, commissions, and SPIFF payouts. Ensure timely and accurate payouts while maintaining compliance with compensation policies for terminations, new hires, transfers, and retroactive adjustments. Process Improvement & Collaboration: Partner with HR, Finance, and Commission Accounting to align field coverage and compensation plans. Identify, streamline, and automate commission processes for improved efficiency. Provide training and support to sales teams on compensation plans and structures. Collaboration and Stakeholder Support: Deliver responsive support to Sales, HR, and Finance teams regarding compensation-related queries and initiatives. Proactively identify opportunities to enhance compensation processes and tools. Planning, Reporting & Documentation: Contribute actively to the annual operating planning process related to sales compensation. Support ad hoc reporting, analytics, and special projects as required. Maintain thorough documentation and internal controls over compensation processes. Experience and Skills Required 3+ years of experience in Sales Compensation, Sales Operations, Finance, or related functions. Strong knowledge of sales compensation plan design, principles, and best practices. Advanced proficiency in Microsoft Excel or Google Sheets for complex modeling and analysis. Excellent communication skills, both written and verbal. Self-motivated with the ability to work independently and collaborate across teams. Experience with AI or machine learning in data analysis and forecasting is a plus. Tools and Technologies Proficient with Microsoft Office Suite (Word, Excel, PowerPoint, Outlook). Experience with Xactly or similar sales compensation platforms highly preferred. Familiarity with Salesforce is an advantage. Collaborative and inclusive work culture. Opportunities to work on high-impact projects supporting a global sales team. Career growth and continuous learning in a dynamic tech environment. If you are passionate about sales compensation analytics and want to thrive in a fast-paced global organization, we want to hear from you! Join Us in Securing the World's Data Rubrik (NYSE: RBRK) is on a mission to secure the world s data. With Zero Trust Data Security , we empower organizations to achieve business resilience against cyberattacks, insider threats, and operational disruptions. Our AI-powered Rubrik Security Cloud secures data across enterprise, cloud, and SaaS applications helping businesses uphold data integrity, availability, and rapid recovery.

Job Title: Director / Sr Manager - Platforms Location: Bangalore, Karnataka, India Job Type: Full-Time (Hybrid Work Model) Experience Level: 10+ Years About Eightfold.ai: At Eightfold.ai, we are revolutionizing how organizations manage talent by leveraging the power of artificial intelligence. Our cutting-edge AI platform is transforming the way businesses hire, develop, and retain talent. By utilizing AI to understand individual skills and potential, we re solving the fundamental problem of matching people with the right opportunities. We are looking for a visionary engineering leader to drive the growth of our Core Infrastructure Team in India, shaping the foundation of our AI platform. About the Core Infrastructure Team: The Core Infrastructure Team at Eightfold is the backbone of the organization, responsible for the architecture, maintenance, and enhancement of critical infrastructure elements that support our entire technology stack. Our team builds and maintains systems for Search, Databases, Machine Learning Infrastructure, Data Warehouses, Developer Platforms, and Application Infrastructure. We ensure the scalability, security, and reliability of these services, which underpin every product that we offer to our users and customers. What You ll Own & Drive: As the Director / Sr Manager - Platforms, you will lead the technical direction for Eightfold's infrastructure, security, and analytics platforms, ensuring they meet the needs of our growing enterprise-scale business. Vision & Roadmap: Lead the strategy, roadmap, and execution of the Infrastructure, Security, and Analytics platforms. Team Building: Hire, mentor, and lead a high-performing engineering team, fostering a culture of innovation, excellence, and autonomy. Cross-Functional Collaboration: Partner with Product, Data, and DevOps teams to build secure, scalable systems that support business growth. Infrastructure Scaling: Ensure reliability, availability, and performance across both cloud (AWS, GCP) and on-prem environments. Security Leadership: Define and enforce security protocols, including threat modeling, vulnerability management, and compliance frameworks (SOC2, ISO27001, etc.). Operational Excellence: Champion modern engineering practices, including CI/CD, observability, and cost optimization. Analytics Platform Development: Lead the creation and scaling of an end-to-end Analytics Product stack including data warehouse, query engine, and dashboards. Ownership & Impact: Take ownership of the full product/technology lifecycle from vision, architecture, and deployment, ensuring long-term impact and success. What You Bring: Required Skills & Experience: 10+ Years of Engineering Experience: Significant experience in engineering with at least 3+ years in a leadership role leading teams at scale. Expertise in Cloud Infrastructure: Deep expertise in cloud-native infrastructure (AWS, GCP, etc.) and DevSecOps principles. Proven Success in Platform Scaling: A track record of building and scaling secure, reliable platforms at an enterprise level. Security Expertise: Leadership in security initiatives, including threat modeling, vulnerability management, and compliance. Excellent Communication: Strong communication skills, with the ability to influence and collaborate across engineering and business teams. Bonus Experience: Exposure to scaling analytics stacks (Snowflake, dbt, Airflow, Looker, etc.) is a plus. Leadership & Culture Building: Demonstrated success in building high-caliber teams and cultivating a thriving engineering culture. Impactful Leadership: Take on a high-leverage leadership role that shapes the foundation of Eightfold's AI platform and directly impacts the company s growth and success. Innovative Environment: Work with cutting-edge technologies and collaborate with brilliant minds to solve complex engineering challenges. Career Growth: As a leader at Eightfold, you will have the autonomy to drive strategic initiatives while building and scaling high-performing teams. Hybrid Work Model: Enjoy a flexible hybrid work model with the ability to work remotely while maintaining a strong in-office presence for team collaboration starting February 1, 2024. Comprehensive Benefits: Competitive salary, comprehensive family medical coverage, and eligibility for equity awards and discretionary bonuses or commissions. How to Apply: If you're a visionary engineering leader with a passion for building scalable, secure platforms and leading high-performing teams, we want to hear from you. Join Eightfold.ai and help us redefine how companies build, hire, and retain their workforce using AI-powered talent intelligence. Equal Opportunity Employer: Eightfold.ai is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees, regardless of race, color, religion, sex, sexual orientation, gender identity, national origin, age, or disability.

Job Title: Azure Infrastructure Architect Location: Bengaluru, Karnataka, India Department: Engineering About CloudSEK CloudSEK is one of India s leading cybersecurity product companies, focused on leveraging Artificial Intelligence and Machine Learning to identify and resolve digital threats in real-time. With a strong portfolio of products like CloudSEK XVigil, BeVigil, and SVigil, we provide advanced solutions for attack surface monitoring, cybersecurity risk management, and software supply chain protection. We are headquartered in Singapore and have expanded rapidly across India, Southeast Asia, and the Americas. At CloudSEK, we prioritize innovation, agility, and building impactful products that keep our customers ahead of emerging cybersecurity threats. About the Role: Azure Infrastructure Architect CloudSEK is looking for an Azure Infrastructure Architect to design, implement, and optimize cloud infrastructure solutions on Microsoft Azure. The ideal candidate will have deep expertise in Azure services, infrastructure automation, and security best practices, with a strong background in cloud architecture patterns. You will work closely with various stakeholders to align cloud strategies with business objectives, ensuring high availability, security, and scalability of enterprise applications. Key Responsibilities Cloud Architecture & Design: Design and implement highly scalable, resilient, and secure cloud infrastructure solutions on Microsoft Azure. Develop cloud adoption strategies, migration plans, and hybrid cloud architectures to meet business needs. Create architecture blueprints, reference architectures, and best practices tailored to Azure environments. Ensure compliance with the Azure Well-Architected Framework and other industry standards. Infrastructure & Automation: Architect and automate Infrastructure as Code (IaC) using tools like Terraform, ARM templates, Bicep, and Ansible. Implement CI/CD pipelines for infrastructure deployment using Azure DevOps, GitHub Actions, or Jenkins. Automate cloud operations, monitoring, and governance using Azure Automation, PowerShell, and Python. Security & Compliance: Design and enforce Azure security best practices including Azure Policy, RBAC, NSGs, Key Vault, Defender for Cloud, and Sentinel. Ensure adherence to regulatory frameworks like ISO 27001, SOC 2, GDPR, and HIPAA. Perform threat modeling, risk assessments, and define zero-trust architectures. Networking & Hybrid Cloud: Design and optimize Azure Virtual Networks (VNet), ExpressRoute, VPN Gateway, and Load Balancers for seamless operations. Implement hybrid cloud architectures, integrating on-premises data centers with Azure via Azure Arc. Optimize network performance, DNS, CDN, and traffic routing in cloud-native environments. Performance Optimization & Cost Management: Leverage Azure Cost Management to implement cost-effective cloud solutions and manage reserved instances. Optimize cloud resource utilization using Autoscaling, VM sizing, and Serverless computing models. Define and implement cloud governance policies to control costs and improve operational efficiency. Collaboration & Stakeholder Engagement: Collaborate with DevOps, Security, and Application teams to align infrastructure solutions with business needs. Provide technical leadership and guidance to engineering teams, ensuring alignment with industry trends and best practices. Act as a trusted advisor to leadership on cloud strategies, emerging technologies, and technical decision-making. Required Skills & Qualifications Technical Expertise: Azure Services: Experience with Azure Virtual Machines, Azure Kubernetes Service (AKS), Azure Functions, Azure Storage, Azure SQL, CosmosDB, and Azure Networking (VNet, NSG, VPN, ExpressRoute). Automation & IaC: Expertise in Terraform, ARM Templates, Bicep, Ansible, PowerShell, Python. DevOps & CI/CD: Knowledge of Azure DevOps, GitHub Actions, Jenkins, Kubernetes, Docker. Security & Compliance: Familiarity with Azure Security Center, Azure AD, Key Vault, Microsoft Defender for Cloud, Sentinel, and Zero Trust Model. Networking & Hybrid Cloud: Experience with ExpressRoute, Load Balancers, Private Link, Virtual WAN, Azure Arc. Monitoring & Logging: Proficiency with Azure Monitor, Log Analytics, Prometheus, and Grafana. Cloud Migration: Hands-on experience in cloud migrations using Azure Migrate, including planning and execution. Soft Skills: Strong problem-solving and analytical abilities. Excellent communication and stakeholder management skills. Ability to work in agile environments and across cross-functional teams. A passion for continuous learning and staying updated with the latest Azure technologies. Preferred Qualifications: Azure Certifications such as Azure Solutions Architect Expert (AZ-305), Azure Security Engineer (AZ-500), or Azure DevOps Engineer (AZ-400). Experience with multi-cloud environments (AWS, GCP). Familiarity with database technologies (SQL, NoSQL, PostgreSQL, MySQL). Location Bengaluru, Karnataka, India Education/Qualification Bachelor s degree in Engineering or Technology (B.Tech/BE). Years of Experience 10 to 15 years of professional experience in cloud infrastructure and architecture design. Be part of a fast-growing startup where you can make a direct impact. Competitive salary and a comprehensive benefits package. Access to cutting-edge technologies and continuous learning opportunities. Flexible working hours and a collaborative work culture focused on innovation and growth. If you're an experienced Azure Infrastructure Architect passionate about designing and optimizing cloud solutions with Microsoft Azure, we would love to hear from you! Join CloudSEK and be part of a forward-thinking team revolutionizing the cybersecurity landscape. Qualification : Bachelors degree in Engineering or Technology (B.Tech/BE).

Job Title: Data Science Manager Location: Bengaluru, Karnataka, India Department: Data Science Experience: 6 8 Years Employment Type: Full-Time About CloudSEK CloudSEK is one of India s most trusted cybersecurity product companies, building world-class AI-driven platforms to detect and resolve digital threats in real-time. Our suite of products XVigil, BeVigil, and SVigil serve Fortune 500s and government bodies across the globe. Headquartered in Singapore and expanding rapidly across Asia, India, and the Americas, CloudSEK s mission is to create a safer digital ecosystem through contextual threat intelligence and proactive security. Role Overview: Data Science Manager (Marketing Mix Modeling) We are looking for a highly analytical Data Science Manager with specialized experience in Marketing Mix Modeling (MMM) to lead data-driven strategic initiatives. You will be responsible for delivering predictive models that evaluate the impact of marketing investments and optimizing ROI. The role involves direct engagement with cross-functional teams, including marketing, finance, and strategy, to influence key business decisions. Key Responsibilities Project Management & Delivery: Collaborate with Engagement Managers, Account Delivery Managers, and client stakeholders to define and refine business requirements. Develop detailed project plans that align with business goals and delivery timelines. Lead end-to-end execution of MMM projects, monitoring milestones, scope, and quality. Host internal scrum meetings and external Weekly Business Reviews (WBRs) with clients. Ensure all deliverables codes, dashboards, presentations meet quality standards and timelines. Report on delivery scorecard metrics and implement corrective action plans to improve performance. Data Science & Modeling: Design and develop Marketing Mix Models (MMM) to assess the effectiveness of marketing channels. Apply advanced techniques in predictive modeling, machine learning, and linear regression. Interpret model outputs to guide media planning, budget allocation, and strategic forecasting. Stay up-to-date with evolving methodologies and tools in data science and ML. Team Leadership & Coaching: Assign tasks based on team members strengths and monitor performance. Provide both business and technical mentorship, guiding team members through challenges. Build a high-performance, collaborative, and innovative delivery environment. Encourage experimentation and ownership within the team. Required Skills & Qualifications Technical Skills (Must-Have): Expertise in Marketing Mix Modeling (MMM) and predictive analytics. Advanced proficiency in machine learning, statistics, and data interpretation. Working knowledge of Python and SQL for data manipulation and model development. Intermediate experience with project management tools and methodologies (Agile/Scrum). Familiarity with MS Excel, PowerPoint, and data visualization tools. Soft Skills: Strong business acumen with the ability to translate insights into financial and strategic impact. Excellent communication skills for interacting with mid-level to senior stakeholders. Strong leadership and interpersonal skills: coaching, conflict resolution, and negotiation. Ability to balance perfection and pragmatism when delivering real-world solutions. Preferred Educational Background: Bachelor s degree in Engineering, Statistics, Mathematics, Computer Science, or a related technical field. Candidates with non-technical degrees must demonstrate strong technical aptitude through prior work experience. Impactful Work: Build models that influence multi-million-dollar marketing decisions. Collaborative Culture: Work alongside a high-energy, motivated, and diverse team. Growth Opportunities: Drive meaningful outcomes with room to experiment and lead. Work-Life Balance: Enjoy flexible working hours, a relaxed work environment, and plenty of snacks! Location: Work out of our energetic and innovation-driven Bengaluru office.

Join Our Team as a Security Engineer Location: Bengaluru, India (On-site) Department: Global Information Security Reports to: Director of Information Security APAC At Cytiva, we are dedicated to advancing future therapeutics from discovery to delivery. As part of our Global Information Security Team, you ll work at the forefront of securing the systems, applications, and infrastructure that power critical healthcare solutions. Join us and play a key role in designing and implementing secure, resilient systems that ensure business continuity and safeguard our digital assets. What You Will Do Secure Architecture Design: Assist in developing and implementing secure architecture solutions for systems, applications, and infrastructure. Threat Modeling & Risk Assessment: Perform threat modeling and support security risk assessments to proactively identify vulnerabilities and mitigate potential threats. Design Reviews: Participate in security design reviews for applications and infrastructure across various environments, ensuring security best practices are followed. Security Technology Implementation: Deploy and manage enterprise security technologies, including Identity and Access Management (IAM), Data Loss Prevention (DLP), and Mobile Device Management (MDM). Regulatory Compliance: Ensure alignment with regulatory compliance and audit requirements, supporting the organization in maintaining secure, compliant systems. Who You Are Education: Bachelor s degree in Computer Science, Information Security, Cyber Security, or a related discipline. Experience: At least 5+ years of experience in security engineering or architecture, including expertise in threat modeling, risk assessment, and security architecture principles. Security Technologies: Hands-on experience with security technologies such as IAM, SIEM, EDR, DLP, and MDM. Cloud Security: Familiarity with cloud technologies (e.g., AWS, Azure, GCP) and cloud security best practices. Regulatory Compliance: Experience with frameworks and regulatory standards such as ISO 27001, NIST, and CIS Controls. Travel, Motor Vehicle Record & Physical/Environmental Requirements Travel: Ability to travel globally up to 10% of the time to support regional and global security initiatives. It Would Be a Plus If You Also Have: Experience conducting security design reviews for infrastructure, applications, and cloud environments. Expertise in implementing security standards and secure design patterns in alignment with frameworks like ISO 27001, NIST, and CIS Controls. Experience providing technical security advisory support to project teams, ensuring compliance with security and regulatory standards. Impactful Work: Your role directly influences the security and reliability of life-saving healthcare solutions used around the globe. Global Collaboration: Work with a diverse, dynamic, and global team of security experts dedicated to making a real difference. Career Development: Take advantage of opportunities for professional growth and continuous learning in a rapidly evolving industry. Apply now and join a global leader in advancing therapeutics and securing tomorrow s healthcare technologies. Qualification : Bachelors degree in Computer Science, Information Security, Cyber Security, or a related discipline.

Job Title: Security Engineer - II Location: Bangalore (On-site; full-time) About Locus: At Locus, we are redefining logistics decision-making with deep-tech solutions that drive efficiency, consistency, and transparency across industries like retail and FMCG/CPG. Founded in 2015 by Nishith Rastogi and Geet Garg, Locus has evolved from a women s safety geo-tracking app into a globally recognized logistics optimization platform. Our technology has empowered enterprises such as Unilever and Nestl to execute over a billion deliveries across 30+ countries. Guided by our commitment to innovation and sustainable growth, we transform complex supply chains into strategic growth enablers. Join us at Locus and be part of a team shaping the future of global logistics. Job Overview: Key Responsibilities: Conduct comprehensive threat modeling for applications, cloud infrastructure, and overall systems architecture. Perform secure code reviews and security assessments for web, Android, and iOS applications, with a strong focus on cloud infrastructure security. Proactively identify and mitigate vulnerabilities across platforms, collaborating with development and DevOps teams to implement secure solutions. Automate and streamline security processes, aligning with the principle that Complexity is the enemy of Security. Oversee Vulnerability Management and Patch Management processes, ensuring timely remediation. Design and implement robust security measures and contribute to Red Team activities, including assessments of cloud, network, wireless, physical, and social engineering scenarios. Take ownership of assigned tasks and drive the continuous improvement of security practices across the organization. Assist in setting up and maintaining monitoring systems to identify and respond to potential incidents in real time. Develop custom tools, scripts, and scanners to address unique security challenges and automate repetitive tasks. Provide architectural guidance for securing cloud-based applications and DevOps pipelines. Continuously stay updated on emerging security technologies and techniques, sharing knowledge with the team. Qualifications: 3-5 yrs experienced Sr security engineer. Expertise in cloud security (AWS, Azure, or GCP) with a strong understanding of securing applications and infrastructure in cloud environments. Proficiency in DevOps and DevSecOps practices, including secure CI/CD pipeline integration and automation. Strong knowledge of OWASP and SANS testing methodologies for identifying and mitigating security vulnerabilities. Good understanding of software security weaknesses, architecture vulnerabilities, and mitigation strategies. Hands-on experience in threat modeling, vulnerability assessments, and penetration testing. Proficiency in any scripting language - Python. Experience in developing or customizing tools, scanners, or extenders for specific security needs. Ability to work independently and collaboratively within a team to solve complex security challenges. Experience in implementing security monitoring systems for early incident detection. Strong problem-solving skills and the ability to think creatively to simulate attack scenarios. Certification in security-related fields (e.g., AWS Certified Security, CISSP, CEH, OSCP). Experience with container security and orchestration platforms like Kubernetes and Docker. Knowledge of Infrastructure as Code (IaC) tools like Terraform or CloudFormation. Familiarity with modern DevOps tools (e.g., Jenkins, GitLab, Ansible). Join Locus and become part of a visionary team that is redefining logistics through innovation and smart distribution. We provide competitive compensation, comprehensive benefits, and a collaborative environment where your expertise will drive both your growth and that of the organization. Locus is an equal opportunity employer dedicated to creating a diverse and inclusive workplace.

At FalconX, we re a team of operators, investors, and builders revolutionizing institutional access to the cryptocurrency markets. Positioned at the intersection of traditional finance and cutting-edge technology, FalconX addresses the unique challenges of the digital asset market, providing comprehensive solutions for all digital asset strategies. By acting as the connective tissue, we enable clients to navigate the ever-evolving crypto landscape with ease and precision. Job Title: Senior Cloud Engineer (Security Implementation) We re on the lookout for a highly skilled Senior Cloud Engineer to join our team. This role will focus on implementing and maintaining strong security measures for our cloud infrastructure, with a strong emphasis on hands-on security implementation and cloud security best practices. You ll play a crucial role in ensuring the integrity and safety of our cloud-based systems, leveraging cutting-edge technologies and best practices in cloud security. What You'll Do: Cloud Infrastructure Security Implement and maintain robust security measures for our cloud-based systems, with a primary focus on AWS technologies. Conduct regular vulnerability assessments and patching of EC2 instances using Ansible and other AWS-native tools. Develop and maintain Infrastructure as Code (IaC) using Terraform for IAM, Cloudflare, and other AWS components to automate and enhance security practices. Automation and Scripting Design, develop, and maintain automation scripts and workflows to streamline security operations and incident response. Create and update Ansible playbooks to ensure consistent and secure configurations across all cloud resources. Compliance and Best Practices Ensure our cloud infrastructure aligns with industry security standards and compliance requirements. Stay ahead of the curve on emerging cloud security threats and proactively implement measures to mitigate risks. Collaboration and Documentation Collaborate closely with DevOps and development teams to integrate security practices into the CI/CD pipeline. Maintain clear, comprehensive documentation on security processes, configurations, and incident response procedures. What You Need to Bring: Qualifications Bachelor s degree in Computer Science, Information Security, or a related field. 5+ years of experience in cloud engineering, with a focus on AWS technologies. Hands-on expertise with Terraform, Ansible, and key AWS services like EC2, IAM, Cloudflare, Kubernetes (K8s), etc. Proficiency in scripting languages such as Python or Bash. In-depth Knowledge Strong understanding of cloud security best practices and common vulnerabilities within cloud environments. Experience using cloud security tools to enhance security posture. Skills Excellent problem-solving skills with a sharp attention to detail, especially in high-pressure situations. Strong ability to implement scalable and reliable cloud infrastructure solutions with a focus on security. Preferred Qualifications: Certifications AWS Certified Security - Specialty or other cloud security certifications. Experience with multi-cloud environments (AWS, Azure, GCP). Familiarity with container security and Kubernetes. Knowledge of compliance frameworks such as SOC 2, ISO 27001, or PCI DSS. At FalconX, we are at the forefront of institutional crypto trading, constantly innovating to stay ahead of market trends and technological advancements. By joining us, you'll be an integral part of shaping the future of crypto markets and cloud security. You ll work with cutting-edge tools and technologies, tackling complex challenges and making a significant impact in an evolving industry. If you're passionate about cloud security and want to be part of a fast-paced, forward-thinking team, we d love to hear from you! Notice at Collection and Privacy Policy Applicants located in California or applying to a role based in California should review our Notice at Collection and Privacy Policy [here]. Qualification : Bachelor's degree in Computer Science, Information Security, or related field.

Job Title: Application Security Engineer About PhonePe Group PhonePe is India s leading digital payments company with 500 million registered users and 37 million merchants, covering over 99% of India s postal codes. Building on its leadership in digital payments, PhonePe has expanded into financial services, including insurance, mutual funds, stock broking, and lending. It has also ventured into adjacent tech-enabled businesses such as Pincode for hyperlocal shopping and Indus App Store, India s first localized app store. The PhonePe Group is a portfolio of businesses aligned with the company s vision to offer every Indian an equal opportunity to accelerate their progress by unlocking the flow of money and access to services. Culture At PhonePe, we empower our people and trust them to do the right thing. We create an environment that enables you to give your best every day, from day one. If you are passionate about building technology that impacts millions, ideating with the brightest minds, and executing with purpose and speed, PhonePe is the place for you! Job Description We are looking for a skilled Application Security Engineer to join our team and strengthen our security posture. You will proactively identify and mitigate vulnerabilities across our web applications, APIs, and mobile apps. The ideal candidate will have a strong background in penetration testing, secure code review, and security automation. Roles & Responsibilities (What You Will Do) Penetration Testing: Perform penetration testing on web applications, APIs, and mobile apps, providing in-depth vulnerability analysis and remediation guidance. Secure Code Review: Conduct both manual and automated secure code reviews, primarily in Java, Python, and JavaScript. Security Automation: Develop security automation solutions using Python to streamline testing, improve coverage, and reduce manual effort. Collaborate with Development Teams: Work closely with development teams to ensure timely resolution of security issues within fast-paced release cycles. Threat Modeling: Create and maintain threat models, applying threat modeling techniques to proactively identify and mitigate design-level security risks. Security Education: Foster a security-first mindset by educating developers on secure coding practices, common vulnerabilities, and attack vectors. Effectively communicate security findings to stakeholders. What Makes You a Great Fit Experience: 1-5 years of experience in application security, penetration testing, or related fields. Penetration Testing Expertise: Strong penetration testing expertise with tools like Burp Suite, OWASP ZAP, semgrep, MobSF, Jadx-GUI, and other mobile security testing frameworks. DevSecOps Knowledge: Experience integrating security into the SDLC and familiarity with DevSecOps tools. Secure Coding Knowledge: Proficiency in secure coding principles, OWASP Top 10, CWE, and exploit techniques. Scripting Skills: Strong scripting skills (Python preferred) for security automation. Communication Skills: Excellent communication and stakeholder management abilities. Continuous Learning: Passion for continuous learning and staying updated on security trends. Certifications (Optional): Certifications like OSCP, OSWE, CRTP, or a proven Bug Bounty track record and/or CTF participation are a plus. PhonePe Full-Time Employee Benefits Insurance Benefits: Medical Insurance, Critical Illness Insurance, Accidental Insurance, Life Insurance. Wellness Program: Employee Assistance Program, Onsite Medical Center, Emergency Support System. Parental Support: Maternity and Paternity Benefits, Adoption Assistance Program, Day-care Support. Mobility Benefits: Relocation Benefits, Transfer Support Policy, Travel Policy. Retirement Benefits: Employee PF Contribution, Flexible PF Contribution, Gratuity, NPS, Leave Encashment. Other Benefits: Higher Education Assistance, Car Lease, Salary Advance Policy. Why Work at PhonePe Working at PhonePe is a rewarding experience. With great people, a work environment that thrives on creativity, and the opportunity to take on roles beyond your defined job description, PhonePe offers a chance to grow your career in an innovative, dynamic company.

Job Title: Security Architect Identity & Access Management Location: Bengaluru, India Company: Blue Yonder Experience: 10+ years (including at least 5+ years in IAM) Education: Bachelor's or Master's degree in Cybersecurity, Computer Science, or related field About Blue Yonder Blue Yonder is a recognized leader in AI-driven supply chain solutions, trusted by global brands to optimize their digital commerce and supply chain operations. We thrive on innovation, collaboration, and creating technology that powers smarter supply chains. As we continue to strengthen our security posture, we are seeking a Security Architect IAM to own, evolve, and safeguard Blue Yonder s identity landscape, ensuring consistent and compliant IAM controls across the organization s global footprint. Role Scope The Security Architect IAM will play a strategic and hands-on role in defining, implementing, and managing end-to-end identity and access management capabilities for Blue Yonder. This role requires deep technical expertise, leadership acumen, and a strong understanding of cloud-based identity ecosystems, ensuring secure access to critical systems and data. Key Responsibilities Define, develop, and manage a comprehensive IAM strategy, aligned with Blue Yonder s business goals, security policies, and compliance mandates. Design, implement, and enhance authentication, authorization, identity provisioning, access governance, and privileged access management (PAM) solutions, adopting best practices and industry standards. Conduct risk assessments to identify IAM vulnerabilities and define risk mitigation plans. Lead the technical implementation of IAM solutions and provide ongoing oversight to ensure operational excellence. Develop and enforce IAM policies, procedures, and standards to foster consistent security across the enterprise. Ensure IAM solutions adhere to regulatory requirements (GDPR, HIPAA, PCI DSS, SOX) and align with frameworks like NIST-CSF and ISO/IEC 27001. Integrate IAM capabilities with other security solutions (SIEM, endpoint security, etc.) for comprehensive protection. Establish and track Key Risk Indicators (KRIs) and Key Performance Indicators (KPIs) for the IAM program. Stay updated with emerging threats, technology advancements, and industry trends, adapting the IAM strategy accordingly. Conduct maturity assessments and develop continuous improvement plans for the IAM service. Participate in security architecture reviews and work with enterprise architects to embed IAM controls into broader IT and product architecture. Partner with GRC teams to ensure all IAM-related risks are properly documented and managed, driving remediation where necessary. Collaborate with application development teams to ensure secure-by-design development and deployment of new applications. Required Qualifications & Experience 10+ years of overall cybersecurity experience, with at least 5+ years specifically focused on IAM. Strong background designing and implementing cloud-based IAM solutions (Azure AD, AWS IAM, GCP IAM). Proven expertise across: Active Directory, LDAP, SSO, MFA SAML, OAuth, OpenID Connect Privileged Access Management (PAM) and Identity Governance (IGA) Experience managing IAM programs across hybrid environments (on-prem & cloud). Strong understanding of: Secrets management, encryption, PKI, digital certificates Zero Trust Security models Experience identifying, analyzing, and remediating IAM-related security risks. Knowledge of regulatory requirements (GDPR, HIPAA, SOX, PCI DSS) and experience translating those into practical IAM controls. Demonstrated ability to lead complex IAM projects, collaborating across multiple business units and technical teams. Excellent communication and stakeholder management skills, capable of interacting with both technical teams and business leadership. Preferred Certifications CISM Certified Information Security Manager CISSP Certified Information Systems Security Professional Relevant Cloud Security certifications (Azure Security Engineer, AWS Security Specialty, GCP Security Engineer) Good to Have Skills Experience integrating IAM with: CI/CD pipelines and DevSecOps practices Containerized environments (Kubernetes, Docker) Exposure to distributed tracing and logging tools for IAM services. Experience automating IAM processes for provisioning, deprovisioning, and audit reporting. Be a part of a global leader in supply chain technology. Work on cutting-edge IAM technologies in a cloud-first environment. Partner with cross-functional teams to drive impactful security programs. Join a culture that values diversity, innovation, and continuous learning. Diversity & Inclusion at Blue Yonder At Blue Yonder, we celebrate diversity in all forms. Our DIVE (Diversity, Inclusion, Value & Equity) strategy ensures every associate feels included, respected, and empowered to bring their authentic self to work. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, sexual orientation, gender identity, national origin, disability, or veteran status. Qualification : Bachelor's or Master's degree in Cybersecurity, Computer Science, or related field

Senior Performance Engineer Are you ready to work on world changing technologies? Today, organizations need to move with increased agility and insight to grow and thrive. Boomi is one of the hottest tech companies in the SaaS/Cloud industry, named a Leader for the eighth year in a row in the Gartner Enterprise iPaaS Magic Quadrant and recently recognized by Inc. Magazine as one of the best workplaces. Our award-winning, patented technology is transforming the world of integration by making enterprise-class integration technology accessible and affordable to companies of all sizes. Boomi provides the foundation on which your business can evolve and innovate. According to a recent survey by Vanson Bourne, connected businesses are far outpacing their competitors. We help organizations connect everything and engage everywhere across any channel, device or platform. More than 7,000 organizations are using Boomi to run better, faster and smarter. Working at Boomi means doing what you love. We hire trailblazers with an entrepreneurial spirit who can solve challenging problems, make a real impact in technology and want to build something big. If you are passionate about solving hard problems, enjoy working with world-class people and developing cutting edge technology, you should explore a career with Boomi. Learn more at http://www.boomi.com/ or visit Boomi Careers. Join us as a Performance Engineer on our Performance, Scalability and Resiliency(PSR) Engineering team in Bangalore/Hyderabad, India to do the best work of your career and make a profound social impact. What you ll achieve As a Performance Engineer, you will be responsible for validating and recommending performance optimizations in Boomi s computing infrastructure and software. You will work with our Product Development and Site Reliability Engineering teams on Performance monitoring, tuning and tooling. You will: Analyze Software Architecture (monolith and micro-service) and identify potential areas of performance, scalability and resiliency improvements Identify KPIs, perform trending and analysis, identify patterns and engineer remedial solutions for a high performant, fault tolerant and resilient platform and application stack. Design, automate and perform scalability and resiliency tests using various tools like JMeter, Chaos Monkey or similar Use observability stack to improve diagnosability and trending around Performance bottlenecks Identify performance tuning opportunities and recommend remedial solutions Take the first step towards your dream career Every Boomer brings something unique to the table. Here s what we are looking for with this role: Essential Requirements Expert in performance engineering fundamentals - arrival rate, workload models, responsiveness, computing resource utilization, time complexity, scalability, resiliency etc.. Expert in monitoring the performance using native Linux OS, Application Performance Management(APM) and Infrastructure monitoring tools Experience in analyzing crash dump, thread dump, SQL slow query log and identify performance bottlenecks Expert in recommending optimal resource configurations in Cloud, Virtual Machine, Container and Container Orchestration technologies Flexibility to work in a remote and geographically distributed team environment Desirable Requirements Experience in writing data extraction and custom monitoring tools using any programming language - Java, Python, R , Bash or similar Experience in capacity planning and modelling using AI/ML, queueing models or similar approaches Performance tuning experience in Java or similar application code

At Tide, we re building a finance platform to help small businesses save time and money. We offer business accounts and banking services alongside a comprehensive set of administrative solutions, from invoicing to accounting. Launched in 2017, Tide is trusted by over 1 million small businesses worldwide and is available to SMEs in the UK, India, and Germany. Headquartered in London, we have offices in Sofia, Hyderabad, Delhi, Berlin, and Belgrade, with a global team of 2,000+ employees. As we expand into new markets, we re constantly seeking passionate individuals to help us empower small businesses. About the Team The Security Engineering Team at Tide is divided into three core areas: Product Security, Threat Detection & Response, and Identity. Product Security (this role) focuses on embedding security throughout our product lifecycle, from secure design reviews and threat modeling to penetration testing, ensuring security is baked into every stage of development. Threat Detection & Response builds a robust detection and automation platform, proactively defending against emerging threats and making Tide resilient. Identity manages Tide s staff identity platform, ensuring secure access with modern strategies like zero trust and multi-factor authentication. Collaboration is central to our work standups, shared channels, and cross-functional projects keep us aligned and cohesive. About the Role We re seeking a Senior Product Security Engineer with a passion for application security and resilient software development. You ll be responsible for hunting vulnerabilities in our web and mobile applications, collaborating with engineering teams to remediate strategically, and ensuring security is seamlessly integrated into our development process. You ll be an advocate for security across the organization, mentoring engineers, and introducing the latest security tools and trends. As a Senior Product Security Engineer, you will: Dive deep into mobile and web technologies to proactively hunt for vulnerabilities. Secure cloud-native applications, ensuring best practices across Tide s AWS cloud environment. Perform threat modeling and guide teams in secure design principles to prevent vulnerabilities. Remediate vulnerabilities through strategic initiatives and hands-on patching. Act as a subject matter expert across a range of security areas, particularly application security. Mentor and coach junior engineers, sharing your expertise to raise the security bar. Integrate security into our CI/CD pipelines, leveraging automation to catch vulnerabilities early. What We re Looking For: Extensive experience in Application Security (AppSec), with a deep understanding of concepts like Secure Enclave, URL Schemes vs. Universal Links, and presigned URLs in S3. Proficiency with tools like Burp Suite (bonus points if you ve built custom extensions). Excellent communication skills able to clearly articulate vulnerabilities and advocate for their remediation. Hands-on experience with cloud-native applications and consistently applying security best practices. Ability to write proof-of-concept (POC) scripts to demonstrate findings and their potential impact. A passion for the security community public speaking, blogging, bug bounties, or sharing your work on GitHub is a plus. Our Tech Stack: Cloud Environment: 100% containerized on AWS EKS. Infrastructure as Code (IaC): Managed via Terraform and Terragrunt. Deployment: GitOps with Argo CD, supported by Helm and Crossplane. CI/CD: GitHub Actions and all source code hosted on GitHub. What You ll Get in Return: Competitive salary Health Insurance (Self & Family) Term & Life Insurance OPD Benefits Mental Well-being Support through Plumm Learning & Development Budget WFH Setup Allowance Leave Benefits: 15 Privilege Leaves, 12 Casual Leaves, 12 Sick Leaves, 3 Paid Days Off for Volunteering or L&D Activities Stock Options Tidean Ways of Working: We support a flexible workplace model, balancing remote and in-person work to meet the needs of different teams. While remote work is encouraged, we believe in face-to-face interactions to foster innovation and strengthen team spirit. Our offices are hubs for collaboration and community-building. Diversity & Inclusion at Tide: At Tide, diversity and inclusion are at the heart of our culture. Our Tideans come from diverse backgrounds, bringing unique perspectives that help us build products that resonate with our members. We are committed to creating an environment where everyone s voice is heard, and all individuals regardless of ethnicity, gender identity, sexual orientation, or disability are welcomed and celebrated. We are One Team, fostering transparency and inclusion in everything we do.

Summary of Essential Job Functions The primary responsibility of the InfoSec Tech Lead is to ensure the organization's global information security, compliance, and risk management. The role involves collaborating with various teams to identify and implement security requirements for product applications and infrastructure. Minimum Requirements (Education & Work Experience) Education: Bachelor s/Master s degree in Computer Engineering or Information Science. Certifications (Preferred): OSCP, OSCE, ECSA|LPT, CPT, CEH. Experience: 5-7 years in Vulnerability Management, covering Application, Infrastructure, Cloud, Mobile Security, Secure Code Review, and IoT. Work Location: Bangalore, India (May require travel). Competency Requirements Hands-on experience in Network, Web-based, and Cloud Application Security Assessments including threat modeling, vulnerability assessments, and penetration testing. Knowledge of current information security trends. Familiarity with security bug classification frameworks (e.g., CVSS, DREAD) and application of classification methods. Expertise in Web Service vulnerability assessments. Understanding of Mobile Application Security (iOS/Android). Experience in code review methods and standards. Ability to develop proof-of-concept (POC) exploits for security vulnerabilities. Proficiency with web application vulnerability scanning tools (e.g., Acunetix, NTO Spider, BurpSuite Pro, WebInspect, Core Impact). Experience with network assessment tools and exploitations (e.g., Kali Framework, QualysGuard, Nessus, Nexpose, Nmap, Metasploit, Saint). Experience in static code review tools (e.g., Checkmarx, HP Fortify, IBM AppScan Source). Proficiency in at least two scripting languages (e.g., Python, Perl, PHP, Ruby, etc.). Ability to assess applications using OWASP, OSSTMM, CESG, CREST, NIST, ISSAF, PTES methodologies. Understanding of SDLC practices and adaptability to Agile methodologies. Experience in high-level programming languages (e.g., Java, C, C++, .NET (C#, VB)), with DAST code review as an added advantage. Knowledge of operating systems (Windows/Linux/UNIX IBM AIX, Sun Solaris, HP UX) and network equipment. Experience providing technical oversight to project teams to ensure quality engagements. Strong experience in mentoring, coaching, and leading teams in challenging environments. Familiarity with security compliance frameworks (PCI, SOC, GDPR). Other Requirements Strong ethics and integrity in business and information security. Proficiency in English (written and verbal communication skills). Ability to prepare professional reports and present findings to technical and executive stakeholders. Ability to interact with customers and understand security requirements. Job Responsibilities Conduct and manage Vulnerability Assessments and Penetration Testing (VAPT) for Infrastructure, Web Applications, and Web Services/APIs. Perform manual and automated security testing to identify vulnerabilities. Conduct periodic configuration audits for network devices, servers, and critical functions. Perform secure code reviews across multiple programming languages and recommend corrective actions. Assess SDLC processes for security compliance. Develop security testing scripts and procedures. Participate in security-related projects as per skillset. Continuously evaluate application architecture to enhance security processes. Analyze suspected vulnerabilities, collaborate with subject matter experts, and recommend remediation measures. Evaluate and recommend security products and solutions. Act as a security advisor for secure coding standards and security information management. Qualification : Bachelors/Masters degree in Computer Engineering or Information Science.