Lead Information Security Engineer
Posted today
Job Viewed
Job Description
The Role
• As the Program Security Engineer, you will report to the Business Security Officer, you will be relied upon to serve as a technical security expert supporting the development and sustainability of secure programs, products, and practices.
•You will be the subject matter expert in application security delivering tactical mentorship and strategic consulting in terms of building a security-focused culture, secure development best practices, and application security awareness as well as contextualizing the threat landscape and associated risks for the Program.
• Apply knowledge of security principles, theories and concepts to business and development life cycle.
• Take a Lead Security Position in larger, more complex initiatives for DevOps, IaaS/PaaS, Cloud and CI/CD strategic importance (e.g., global initiatives, cross functional/cross geographies).
Work closely with developers to evaluate business requests to determine feasibility.
• Provide and recommend optimal solutions to meet security and regulatory requirements in the design of new/enhanced systems.
• Ensure established security policies and standards are observed on projects.
• Active and critical participant in the design and implementation of the various program initiatives including the integration and migrations.
•Advise stakeholders on the implementation of MA Standards & Security Engineering principles.
• Proactively work to find solutions that align with business needs while operating within Mastercard’s risk tolerance that is scalable and can be applied across multiple programs and platforms. This requires the ability to collaborate with cross-functional teams and regularly articulate and communicate to diverse audiences and properly translate security and risk management terminology into business terms and recommend alternative solutions to these stakeholders.
• Responsible for all project documentation, including maintaining technical documents and business requirements
• Maintaining an understanding of security policies and regulatory compliance (i.e. ISO,PCI, GDPR etc.)
• Strong communication skills and technical skills with the ability to communicate between business and technical teams
• Responsible for understanding security policies and industry best practices & compliance
• Responsible for reviewing and providing feedback to management for improvements to front line metrics to ensure controls are being met as defined
Security Engineer
Posted today
Job Viewed
Job Description
Job description
As a Security Engineer - VAPT, you will be responsible for conducting comprehensive security assessments, identifying vulnerabilities, and implementing effective remediation strategies. Leveraging your expertise in penetration testing and ethical hacking, you will play a key role in enhancing the security posture of our clients' systems and networks. This position offers an exciting opportunity to work on challenging projects, collaborate with talented professionals, and contribute to the advancement of cybersecurity practices.
Key Responsibilities:
- Perform end-to-end Vulnerability Assessment and Penetration Testing (VAPT) for clients' IT infrastructure, applications, and networks.
- Conduct thorough security assessments using industry-standard tools and methodologies, including but not limited to, Nmap, Nessus, Metasploit, Burp Suite, and OWASP.
- Identify and exploit security vulnerabilities to assess the potential impact on clients' systems and data.
- Prepare detailed assessment reports outlining findings, risk levels, and recommended remediation measures.
- Collaborate with clients' IT teams to prioritize and address identified security issues in a timely manner.
- Develop and implement custom scripts or tools to enhance testing capabilities and automate repetitive tasks.
- Stay abreast of emerging security threats, vulnerabilities, and industry best practices to continually improve testing methodologies.
- Provide guidance and mentorship to junior security engineers, fostering a culture of knowledge sharing and skill development within the team.
Requirements:
- Bachelor's degree in Computer Science, Information Technology, or related field.
- 2+ years of experience in cybersecurity, with a focus on Vulnerability Assessment and Penetration Testing.
- Proficiency in using tools such as Nmap, Nessus, Metasploit, Burp Suite, and OWASP.
- Hands-on experience with various operating systems, including Windows, Linux, and Unix.
- Strong understanding of network protocols, web application architecture, and common security vulnerabilities.
- Certified Ethical Hacker (CEH), Offensive Security Certified Professional (OSCP), or similar certifications preferred.
- Excellent analytical skills and attention to detail, with the ability to prioritize and manage multiple tasks effectively.
- Effective communication skills, both verbal and written, with the ability to convey technical concepts to non-technical stakeholders.
- Proven track record of delivering high-quality security assessments and actionable recommendations
Security Engineer
Posted today
Job Viewed
Job Description
Company: Cache Labs
Location: Delhi/Mumbai, India (On-site)
Salary: ₹4 - ₹6 LPA
Experience: 1-2 years
Company Description
Cache Labs, founded by Saiman Shetty, is a technology company focused on solving real-world problems and transforming industries. The company's brands include Smart Green Card, Crazy Creators Capital, WordCraft AI, and Proximity, which all aim to deliver innovative solutions through technology, design, and strategy. Cache Labs values innovation, meaningful change, leadership development, and customer-centricity, guided by a culture of ownership and excellence.
Job Summary:
We are seeking a highly motivated and skilled Security Engineer to join our team. As a Security Engineer at Cache Labs, you will play a crucial role in protecting our systems and data from evolving cyber threats. You will be responsible for designing, implementing, and maintaining security measures to ensure the confidentiality, integrity, and availability of our critical assets. This is an excellent opportunity for someone looking to grow their career in a dynamic and challenging environment.
Responsibilities:
- Design, implement, and maintain security solutions, including firewalls, intrusion detection/prevention systems, antivirus software, and other security tools.
- Conduct regular security assessments, vulnerability scans, and penetration testing to identify and mitigate security weaknesses.
- Develop and enforce security policies, procedures, and standards.
- Monitor security systems and logs to detect and respond to security incidents.
- Investigate security breaches and incidents, and implement corrective actions.
- Collaborate with other teams to integrate security into the software development lifecycle.
- Stay up-to-date with the latest security threats, vulnerabilities, and technologies.
- Provide security awareness training to employees.
- Participate in security audits and compliance initiatives.
- Document security configurations and procedures.
Qualifications:
- Bachelor's degree in Computer Science, Information Security, or a related field.
Security Engineer
Posted today
Job Viewed
Job Description
Job description
As a Security Engineer - VAPT, you will be responsible for conducting comprehensive security assessments, identifying vulnerabilities, and implementing effective remediation strategies. Leveraging your expertise in penetration testing and ethical hacking, you will play a key role in enhancing the security posture of our clients' systems and networks. This position offers an exciting opportunity to work on challenging projects, collaborate with talented professionals, and contribute to the advancement of cybersecurity practices.
Key Responsibilities:
- Perform end-to-end Vulnerability Assessment and Penetration Testing (VAPT) for clients' IT infrastructure, applications, and networks.
- Conduct thorough security assessments using industry-standard tools and methodologies, including but not limited to, Nmap, Nessus, Metasploit, Burp Suite, and OWASP.
- Identify and exploit security vulnerabilities to assess the potential impact on clients' systems and data.
- Prepare detailed assessment reports outlining findings, risk levels, and recommended remediation measures.
- Collaborate with clients' IT teams to prioritize and address identified security issues in a timely manner.
- Develop and implement custom scripts or tools to enhance testing capabilities and automate repetitive tasks.
- Stay abreast of emerging security threats, vulnerabilities, and industry best practices to continually improve testing methodologies.
- Provide guidance and mentorship to junior security engineers, fostering a culture of knowledge sharing and skill development within the team.
Requirements:
- Bachelor's degree in Computer Science, Information Technology, or related field.
- 2+ years of experience in cybersecurity, with a focus on Vulnerability Assessment and Penetration Testing.
- Proficiency in using tools such as Nmap, Nessus, Metasploit, Burp Suite, and OWASP.
- Hands-on experience with various operating systems, including Windows, Linux, and Unix.
- Strong understanding of network protocols, web application architecture, and common security vulnerabilities.
- Certified Ethical Hacker (CEH), Offensive Security Certified Professional (OSCP), or similar certifications preferred.
- Excellent analytical skills and attention to detail, with the ability to prioritize and manage multiple tasks effectively.
- Effective communication skills, both verbal and written, with the ability to convey technical concepts to non-technical stakeholders.
- Proven track record of delivering high-quality security assessments and actionable recommendations
Security Engineer
Posted today
Job Viewed
Job Description
Location: New Delhi, India
About Us:
At Sauce Labs, we empower the world's top enterprises - like Walmart, Bank of America, and Indeed - to deliver quality web and mobile applications at speed. Our industry-leading platform ensures continuous quality across the SDLC, using AI-powered analytics to identify key quality signals from development through production. With our unified solution, teams can release and innovate with confidence, knowing their apps will always look, function, and perform exactly as they should. Backed by TPG and Riverwood Capital, we are shaping the future of digital confidence - join us
The Role:
We are seeking a highly motivated and detail-oriented Security Engineer to join our Security Blue Team. This is an excellent opportunity for an individual passionate about cybersecurity to grow their experiences across a wide array of infrastructure and technologies, including mobile devices, Kubernetes, public cloud, and on-premises infrastructure. You will play a vital role in identifying vulnerabilities, implementing security controls, and contributing to our overall security posture.
Responsibilities:- Assist in the implementation and maintenance of security controls across our macOS, Linux, and Kubernetes environment, with a focus on Ubuntu and Google Kubernetes Engine.
- Assist the IT team in securing and monitoring corporate workstations and devices.
- Conduct regular security assessments and vulnerability scans using tools like Tenable Nessus or OpenVAS.
- Analyze security events and notifications, escalating internally as necessary.
- Perform triage and maintain ownership of vulnerabilities across a wide range of sources and teams.
- Apply knowledge of common security frameworks (MITRE ATT&CK, OWASP Top 10, CIS, etc.) to assess and improve security measures.
- Contribute to securing our cloud infrastructure, with a preference for Google Cloud Platform, applying CSPM and general cloud security best practices.
- Develop and maintain shell scripts (zsh or bash) for automation and security-related tasks.
- Establish, own and report on security-focused metrics, such as number and type of incidents, response times, SLA commitments, failed login attempts, or key rotation frequency.
- Document security configurations, procedures, and incidents.
- Own security-related policies and associated evidence and artifacts, including drafting and supporting policies critical to industry-standard audit programs and certifications.
- Participate in an on-call rotation supporting nights and weekends.
- Shift working hours to participate in global team ceremonies such as Stand Up, Planning, Refinement, and Retrospectives.
Required Skills:
- Associate's or Bachelor's of Science degree in a relevant field, or equivalent practical experience.
- 3-5 years of hands-on experience in IT support, systems administration, or cybersecurity-related positions.
- Demonstrable knowledge of Linux servers, preferably Ubuntu, including related usage and basic administrative tasks.
- Proficiency in a shell scripting language, such as zsh or bash.
- Familiarity with common security frameworks, such as MITRE ATT&CK, MITRE ATLAS, OWASP Top 10, Cyber Kill Chain, Pyramid of Pain, or similar.
- Understanding of Cloud Security Posture Management (CSPM) and general Cloud Security practices in at least one major cloud provider, with a preference for Google Cloud Platform.
- Experience leveraging vulnerability and security scanning tools, such as Tenable Nessus and OpenVAS, as well as the more generic scanning categories of SAST, DAST, and SCA.
- Experience working with or as a Cybersecurity Analyst.
- Experience working in verticals such as infrastructure security, application security, mobile security, corporate endpoint security, or SaaS Security.
- Builder and ownership mentality.
Nice-to-Have Qualifications:
- Experience administering macOS workstations.
- Experience securing corporate endpoints and workstations, such as Windows, macOS, Android, or iOS, especially in a hybrid work environment.
- Experience as a SysAdmin.
- Experience with programming or automation systems, such as Ansible, Python, or SaltStack.
- Experience building a highly available open source SIEM, such as Wazuh, Security Onion, or building from scratch leveraging technologies such as Graylog, ElasticSearch or OpenSearch, or similar.
- Experience responding to or managing IDS systems, such as Suricata, Zeek, Snort, Wazuh, Falco, or similar.
- Experience with DFIR tools, such as Velociraptor, OSQuery, or similar.
- Experience managing and owning the deployment and implementation of critical inline security systems – such as an IDP, WAF, or Taps – in a production environment.
- Experience with Kubernetes, either as a user or administrator, at a level equivalent to CKAD, CKA, or CKS.
- Experience in TPRM.
- Experience with industry-standard auditing frameworks and certifications, such as SOC 2, ISO 27001, or ISO 42001.
- Experience using and/or security AI or LLM systems.
Please note our privacy terms when applying for a job at Sauce Labs.
Sauce Labs is proud to be an Equal Opportunity employer and values diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, gender identity/expression/status, sexual orientation, age, marital status, veteran status or disability status.
Security responsibilities at Sauce
At Sauce, we will commit to supporting the health and safety of employees and properties, partnering with internal stakeholders to learn and act on ever-evolving security protocols and procedures. You'll be expected to fully comply with all policies and procedures related to security at the department and org wide level and exercise a 'security first' approach to how we design, build & run our products and services.
Security Engineer
Posted today
Job Viewed
Job Description
As a Security Engineer - VAPT, you will be responsible for conducting comprehensive security assessments, identifying vulnerabilities, and implementing effective remediation strategies. Leveraging your expertise in penetration testing and ethical hacking, you will play a key role in enhancing the security posture of our clients' systems and networks. This position offers an exciting opportunity to work on challenging projects, collaborate with talented professionals, and contribute to the advancement of cybersecurity practices.
Key Responsibilities:
- Perform end-to-end Vulnerability Assessment and Penetration Testing (VAPT) for clients' IT infrastructure, applications, and networks.
- Conduct thorough security assessments using industry-standard tools and methodologies, including but not limited to, Nmap, Nessus, Metasploit, Burp Suite, and OWASP.
- Identify and exploit security vulnerabilities to assess the potential impact on clients' systems and data.
- Prepare detailed assessment reports outlining findings, risk levels, and recommended remediation measures.
- Collaborate with clients' IT teams to prioritize and address identified security issues in a timely manner.
- Develop and implement custom scripts or tools to enhance testing capabilities and automate repetitive tasks.
- Stay abreast of emerging security threats, vulnerabilities, and industry best practices to continually improve testing methodologies.
- Provide guidance and mentorship to junior security engineers, fostering a culture of knowledge sharing and skill development within the team.
Requirements:
- Bachelor's degree in Computer Science, Information Technology, or related field.
- 2+ years of experience in cybersecurity, with a focus on Vulnerability Assessment and Penetration Testing.
- Proficiency in using tools such as Nmap, Nessus, Metasploit, Burp Suite, and OWASP.
- Hands-on experience with various operating systems, including Windows, Linux, and Unix.
- Strong understanding of network protocols, web application architecture, and common security vulnerabilities.
- Certified Ethical Hacker (CEH), Offensive Security Certified Professional (OSCP), or similar certifications preferred.
- Excellent analytical skills and attention to detail, with the ability to prioritize and manage multiple tasks effectively.
- Effective communication skills, both verbal and written, with the ability to convey technical concepts to non-technical stakeholders.
- Proven track record of delivering high-quality security assessments and actionable recommendations
Security Engineer
Posted today
Job Viewed
Job Description
and contract management systems which enable contracting in a trustable, safe, legal, and
convenient manner. Our biometric user authentication system and blockchain-based digital trail
ensure non-repudiation. This increases compliance and enforceability in the court of law. We
consist of a tech-savvy team and are backed by investors who are enthusiastic about creating
solutions with technology.
Working at Signzy
● At Signzy we breathe software and exploit the latest technologies to create the most
amazing products. We comprise a tech-savvy team and are backed by investors who are
enthusiastic about creating solutions using technology.
● Signzy is looking for an Security Engineer . If you think you have what it
takes to get the job done, this is an invitation to be a part of the future!
JD for Security Engineer-1 Role
Responsibilities:
Application Security
Perform secure code reviews , threat modeling, and static/dynamic application security testing (SAST/DAST).
Integrate and maintain automated scanning tools (e.g., Semgrep, Snyk, Trivy, Gitleaks) in CI/CD pipelines.
Collaborate with developers to remediate vulnerabilities and embed security in SDLC.
Guide on secure architecture patterns (authentication, authorization, data encryption, API security, mobile app protections like SSL pinning and mTLS).
Infrastructure & Cloud Security
Harden cloud infrastructure (AWS/GCP/Azure), including IAM, VPC design, encryption, and network segmentation.
Implement infrastructure-as-code security checks for Terraform, Helm, and Kubernetes deployments.
Conduct internal and external penetration tests , configuration reviews, and vulnerability management for servers, containers, and endpoints.
Support continuous monitoring (WAF, SIEM, EDR/MDM) and incident response
Security Assessments & Compliance
Lead periodic security assessments : vulnerability assessments, penetration testing, firewall rule reviews, user-access audits, and network segmentation reviews.
Document findings, track remediation, and provide risk-based recommendations.
Assist with evidence gathering for ISO 27001, SOC 2, PCI-DSS, GDPR, and internal security audits.
Continuous Improvement
Research emerging threats (e.g., supply-chain attacks, npm/package ecosystem risks) and recommend mitigations.
Contribute to security runbooks, policies, and developer awareness sessions.
Qualification
Must Have
2–4 years of experience in application or infrastructure security engineering.
Strong understanding of web/mobile security, OWASP Top 10, cloud security fundamentals, and Linux/Unix systems.
Hands-on experience with CI/CD pipelines and common security tools (SAST, DAST, container scanners, SIEM/EDR).
Hands-on with SAST/DAST tools (e.g., Burp Suite, OWASP ZAP, Semgrep, Fortify)
Knowledge of network & OS hardening (Linux, cloud workloads).
Experience with internal and external penetration testing methodologies.
Familiarity with common tools: Nmap, Metasploit etc.,
Hands on experience with Mobile application security testing (Android and iOS)
Familiarity with threat modeling frameworks (STRIDE, MITRE ATT&CK) and SBOM management.
Scripting or programming skills (Python, Go, Bash) for automation and custom tooling.
Should have fundamental knowledge of cloud environments
Security-first mindset with curiosity and analytical thinking.
Ability to review firewall rules, ACLs, and security groups for least-privilege.
Understanding of network segmentation and zero-trust principles.
Ability to translate complex vulnerabilities into actionable, developer-friendly guidance.
Collaborative approach to working with engineering, DevOps, and compliance teams.
Strong reporting & documentation skills (writing assessment reports).
Knowledge of security standards (ISO 27001, NIST 800-53, CIS Benchmarks).
Good to Have
Container & K8s Security : Familiarity with Trivy, Falco, Kubescape, Kyverno.
IaC Security : Experience with Terraform/CloudFormation scanning (Checkov, Tfsec).
DevSecOps Integration: Embedding security tests into CI/CD (GitLab, GitHub Actions, Jenkins).
Advanced API Security : Hands-on with API gateways (Kong, Apigee, AWS API Gateway) and WAF tuning.
Cloud-Native Security : Experience with GuardDuty, Security Hub, AWS Config, GCP SCC.
Emerging Areas : AI/ML model security.
Certifications (good-to-have, not must) : OSCP or Cloud Security certs (AWS Security Specialty).
Be The First To Know
About the latest Cissp Jobs in Delhi !
Security engineer
Posted today
Job Viewed
Job Description
Security Engineer
Posted 13 days ago
Job Viewed
Job Description
Job description
As a Security Engineer - VAPT, you will be responsible for conducting comprehensive security assessments, identifying vulnerabilities, and implementing effective remediation strategies. Leveraging your expertise in penetration testing and ethical hacking, you will play a key role in enhancing the security posture of our clients' systems and networks. This position offers an exciting opportunity to work on challenging projects, collaborate with talented professionals, and contribute to the advancement of cybersecurity practices.
Key Responsibilities:
- Perform end-to-end Vulnerability Assessment and Penetration Testing (VAPT) for clients' IT infrastructure, applications, and networks.
- Conduct thorough security assessments using industry-standard tools and methodologies, including but not limited to, Nmap, Nessus, Metasploit, Burp Suite, and OWASP.
- Identify and exploit security vulnerabilities to assess the potential impact on clients' systems and data.
- Prepare detailed assessment reports outlining findings, risk levels, and recommended remediation measures.
- Collaborate with clients' IT teams to prioritize and address identified security issues in a timely manner.
- Develop and implement custom scripts or tools to enhance testing capabilities and automate repetitive tasks.
- Stay abreast of emerging security threats, vulnerabilities, and industry best practices to continually improve testing methodologies.
- Provide guidance and mentorship to junior security engineers, fostering a culture of knowledge sharing and skill development within the team.
Requirements:
- Bachelor's degree in Computer Science, Information Technology, or related field.
- 2+ years of experience in cybersecurity, with a focus on Vulnerability Assessment and Penetration Testing.
- Proficiency in using tools such as Nmap, Nessus, Metasploit, Burp Suite, and OWASP.
- Hands-on experience with various operating systems, including Windows, Linux, and Unix.
- Strong understanding of network protocols, web application architecture, and common security vulnerabilities.
- Certified Ethical Hacker (CEH), Offensive Security Certified Professional (OSCP), or similar certifications preferred.
- Excellent analytical skills and attention to detail, with the ability to prioritize and manage multiple tasks effectively.
- Effective communication skills, both verbal and written, with the ability to convey technical concepts to non-technical stakeholders.
- Proven track record of delivering high-quality security assessments and actionable recommendations
Security Engineer
Posted today
Job Viewed
Job Description
Project Role Description : Apply security skills to design, build and protect enterprise systems, applications, data, assets, and people. Provide services to safeguard information, infrastructures, applications, and business processes against cyber threats.
Must have skills : SailPoint IdentityIQ
Good to have skills : Microsoft Active Directory, Microsoft Azure Active Directory
Minimum 5 year(s) of experience is required
Educational Qualification : 15 years full time education
Summary: Manage the on premise and cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of cloud security controls and transition to cloud security-managed operations. Roles & Responsibilities: •Strong knowledge of Azure Active Directory Architecture and maintenance, Knowledge on O365 IAM, Knowledge of Active Directory Sites and services • Good experience in integrating applications Modern authentication protocols, knowledge on On-Premises AD, Azure AD, experience on MFA, creating Conditional Access policies, experience on DNS, DHCP SMTP • Knowledge of Microsoft PKI Technologies, Knowledge of Implementing Managing Upgrading ADFS • Modernize on-premises security tools integrated with Active Directory, Helping team members with technical issues, Resource planning. Professional & Technical Skills: • Active Directory replication, Group Policies, Sites and services, Trusts, DNS/Dynamic DNS. • Synchronization of users and groups from Azure AD to Azure AD DS • Organizational Unit architecture to support Active Directory consolidation • Group Policy Object migration to support workstation and server policies • Build and configuration of Migration Manager for Active Directory • Migration of workstations/servers from the on-premises AD domains to Azure AD DS • Azure Active Directory Identity Management • Configure Azure AD SSO using Modern auth protocols-SAML, OAUTH, OIDC, • Manage Microsoft Azure Active Directory permission Additional Information: • The candidate should have minimum 5 years of experience in Microsoft Active Directory/Azure Active Directory. • This position is based at our Noida/Gurugram office. • BE/ B Tech or equivalent • Required Skills: MS AD, Azure AD, SSO, MFA, PKI • Preferred Skills: Scripting15 years full time education
About Accenture
We work with one shared purpose: to deliver on the promise of technology and human ingenuity. Every day, more than 775,000 of us help our stakeholders continuously reinvent. Together, we drive positive change and deliver value to our clients, partners, shareholders, communities, and each other.We believe that delivering value requires innovation, and innovation thrives in an inclusive and diverse environment. We actively foster a workplace free from bias, where everyone feels a sense of belonging and is respected and empowered to do their best work.At Accenture, we see well-being holistically, supporting our people’s physical, mental, and financial health. We also provide opportunities to keep skills relevant through certifications, learning, and diverse work experiences. We’re proud to be consistently recognized as one of the World’s Best Workplaces™.Join Accenture to work at the heart of change.Visit us at
Equal Employment Opportunity Statement
We believe that no one should be discriminated against because of their differences. All employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, militaryveteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status or any other basis as protected by applicablelaw. Our rich diversity makes us more innovative, more competitive, and more creative, which helps us better serve our clients and our communities.