496 Cybersecurity Specialist jobs in Bengaluru

Location : Remote / Bangalore

Employment Type : Full-time

Department : Security & Risk Management

Industry : IT Services & Consulting

Role Category : Cybersecurity, Information Security, Threat Management

As a Cybersecurity Engineer , you will play a critical role in safeguarding our systems, applications, and data against cyber threats. Your core responsibilities will include:

• Threat Detection & Prevention : Implement security measures to proactively identify and mitigate security vulnerabilities and threats across systems, applications, and networks.
• Incident Response : Respond to security incidents and breaches, conducting thorough investigations and implementing recovery and containment strategies.
• Security Monitoring : Set up and maintain security monitoring tools (e.G., SIEM , IDS/IPS ) to detect and analyze security events in real-time.
• Vulnerability Assessment & Penetration Testing : Conduct vulnerability assessments and penetration testing to identify weaknesses in systems and recommend remediation actions.
• Security Architecture & Design : Assist in designing and implementing secure architecture for IT infrastructure, ensuring compliance with industry standards and security best practices.
• Policy & Compliance : Develop and enforce security policies, procedures, and guidelines to ensure regulatory compliance (e.G., GDPR, HIPAA, PCI-DSS).
• Security Awareness Training : Provide training and guidance to teams on best practices for data protection, secure coding, and general security hygiene.
• Collaboration & Reporting : Collaborate with IT, DevOps, and development teams to ensure security is embedded throughout the software development lifecycle and infrastructure operations.
  

• Experience : 1–2 years of experience in Cybersecurity , Information Security , or related roles, with a focus on threat detection , incident response , and vulnerability management .
• Technical Skills :
• Experience with security monitoring tools like SIEM (e.G., Splunk, ELK Stack) and IDS/IPS (e.G., Snort, Suricata).
• Familiarity with network security protocols, firewalls, VPNs, and endpoint protection solutions.
• Knowledge of vulnerability assessment tools (e.G., Nessus, OpenVAS) and experience in performing penetration testing .
• Understanding of encryption , identity & access management (IAM) , and multi-factor authentication (MFA).
• Proficiency in network protocols and familiarity with secure network design.
• Familiarity with cloud security frameworks and best practices (e.G., AWS, Azure, GCP).
• Experience with incident management and forensics tools.
• Knowledge of security frameworks and standards (e.G., NIST , CIS , ISO 27001 , OWASP ).
• Education :
• B.E/B.Tech/M.E/M.Tech/MCA or equivalent in Computer Science, Information Security, or a related field.
  

• Cybersecurity
• Threat Detection & Prevention
• Incident Response
• Vulnerability Assessment & Penetration Testing
• SIEM Tools : Splunk, ELK Stack
• IDS/IPS : Snort, Suricata
• Network Security
• Encryption
• IAM & MFA
• Security Frameworks : NIST, OWASP, ISO 27001, CIS
• Cloud Security : AWS, Azure, GCP
• Security Architecture & Design
• Security Compliance : GDPR, HIPAA, PCI-DSS
• Penetration Testing Tools : Nessus, OpenVAS
• Incident Management
• Forensics Tools
• Security Awareness Training
  

• Immediate to 30 days preferred .

#CyberSecurity #InfoSec #SecurityEngineer #ThreatDetection #IncidentResponse #PenTesting #VulnerabilityManagement #SIEM #NetworkSecurity #IAM #MFA #CloudSecurity #AWS #Azure #GCP #NIST #ISO27001 #OWASP #Splunk #SecurityCompliance #IncidentManagement #SecurityFrameworks #TechJobs #RemoteJobs #BangaloreJobs #ITSecurity #DevSecOps #SecurityBestPractices

We are looking for a Security Engineer to join our cybersecurity team and strengthen redBus

defence against evolving cyber threats. This role involves monitoring, analysing, and responding

to security incidents while continuously improving our security framework. The ideal candidate

will have 7–10 years of experience in Security Operations, with deep expertise in Endpoint

Security, Network Security Controls, and Application/Data Security, hands-on experience with

relevant tools, and strong scripting skills.

Key Responsibilities:

• Monitor and analyse security events across endpoints, networks, cloud environments, and applications.
• Implement, manage, and optimize security controls using industry-leading security technologies.
• Ensure strong endpoint protection and proactively respond to vulnerabilities, incidents, and suspicious activities.
• Implement and manage CNAPP/DSPM solutions to identify, classify, and protect sensitive data across cloud and hybrid environments
• Manage and enhance email security to prevent phishing, malware, and other email-borne threats.
• Apply Zero Trust principles to strengthen access controls and identity security.
• Lead and support security incident detection, investigation, and remediation.
• Conduct application security assessments, including static (SAST) and dynamic (DAST) testing, to identify and remediate vulnerabilities.
• Collaborate with development teams to integrate security into the SDLC and promote secure coding practices.
• Develop and maintain security policies, procedures, and compliance documentation.
• Collaborate with IT, cloud, and product teams to improve the overall security posture.
• Automate security workflows and threat detection using Python, PowerShell, or Bash.
• Stay updated on emerging threats, vulnerabilities, and evolving security technologies.

Required Skills & Qualifications:

• 6–10 years of experience in cybersecurity, with a strong focus on endpoint, network, cloud,
• and application/data security.
• Hands-on expertise with:
• Endpoint Security: EDR, XDR, Incident Response, Malware Analysis, Threat Hunting
• Network Security: NAC, Firewalls, IDS/IPS, Network Segmentation, Zero Trust Access
• Cloud & Web Security: CNAPP, DSPM, CASB, Secure Web Gateway, DLP
• Application Security: SAST, DAST, API security testing, secure coding review, OWASP Top 10
• Email Security: Email analysis, authentication protocols, modern email threat defence, and
• threat intelligence integration
• Knowledge of security frameworks and compliance standards (NIST, ISO 27001, CIS, etc.).
• Experience in threat intelligence, vulnerability management, incident investigation, and
• application security risk assessment.
• Familiarity with SIEM platforms and log analysis techniques.
• Strong problem-solving skills, proactive learning attitude, and excellent communication/documentation capabilities.

Greetings from TCS!

We're looking for Experienced Professionals for the role of Automotive Cyber Security Engineer to join our dynamic team & drive the development of cutting edge solutions.

Role - Automotive Cyber Security Engineer

Required Technical Skill Set -

· Experience of working with type approval for R155.

· TARA execution

· Knowledge of ISO21434 standard.

Desired Experience Range - 5+YEARS

Location of Requirement - Bengaluru

Required Skills -

· Knowledge of connected communication technologies (CAN, Ethernet) · Knowledge within cybersecurity requirement system engineering · Previous experience of working as CS engineer or CS architect with focus on embedded engineering. · Experience of writing cybersecurity requirements based on common practices. · Knowledge of PKI (both Onboard (Vehicle/ ECU level) and Offboard (Cloud)) + Key Management System · Experience in developing and/or designing CS solutions specially SecOC on J1939 and LIN. · Familiar with Vector solutions within cybersecurity, HSM.

Good-to-Have -

- Previous experience of working with type approval for R155.

- Knowledge of TARA execution. FUSA knowledge.

- Knowledge of ISO21434 standard.

- Knowledge of deriving attack trees and deriving WP in TARA process.

Life on the team

A highly skilled and motivated Penetration Tester to join our dynamic cybersecurity team. In this role, you will be responsible for identifying vulnerabilities in our systems, applications, and networks through various penetration testing methodologies. You will play a critical role in strengthening our security posture and protecting our valuable assets from cyber threats.

What you’ll do

Core Responsibilities:

• Conduct comprehensive penetration tests: Execute internal and external network penetration tests, web application penetration tests, mobile application penetration tests, API penetration tests, cloud security assessments, and social engineering simulations.
• Vulnerability identification and analysis: Research, identify, and exploit security vulnerabilities in a variety of systems and applications.
• Red/Purple/Blue Teaming: participate in exercises with the goal of increasing cyber resilience for both offensive and defensive.
• Reporting and documentation: Prepare detailed and professional penetration test reports, including executive summaries, technical findings, risk ratings, and actionable recommendations for remediation.
• Collaboration and communication: Work closely with development, operations, and security teams to communicate findings, explain risks, and provide guidance on remediation strategies.
• Tooling and methodology enhancement: Continuously research and evaluate new penetration testing tools, techniques, and methodologies to improve testing efficiency and effectiveness.
• Security awareness: Contribute to the development and delivery of security awareness training for internal staff.
• Stay current: Keep abreast of the latest security threats, vulnerabilities, exploits, and industry best practices.
• Threat modelling: Participate in threat modelling exercises to identify potential attack vectors and design flaws.
• Ad-hoc security testing: Perform ad-hoc security assessments and provide expert advice on security-related matters as needed.

Critical Success Factors:

• Strong ethical hacking mindset: A genuine passion for breaking things and understanding how they work, coupled with an unwavering commitment to ethical conduct.
• Analytical and problem-solving skills: Ability to dissect complex systems, identify subtle vulnerabilities, and devise creative attack scenarios.
• Attention to detail: Meticulous in documenting findings and ensuring accuracy in reporting.
• Excellent communication skills: Ability to clearly and concisely communicate highly technical information to both technical and non-technical audiences, both verbally and in writing.
• Proactive and self-motivated: Ability to work independently and manage multiple projects simultaneously, demonstrating initiative and ownership.
• Adaptability and continuous learning: Eagerness to learn new technologies, tools, and methodologies in a rapidly evolving threat landscape.
• Results-oriented: Focus on delivering high-quality, impactful security assessments that drive tangible

What you’ll need

• Bachelor’s degree in Cybersecurity, Information Technology, or a related field.
• 10+ Years of experience
• OSCP, PNPT or equivalent certification
• At least three years’ experience working full-time as a penetration tester on the following areas as a minimum:
• Infrastructure
• Active Directory networks
• Web Application penetration testing
• Cloud security (Entra ID/Azure)
• (optional) IoT
• (optional) mobile
• (optional) physical security / social engineering
• Ability to develop custom tools, or adapt existing tooling for the task at hand
• (optional) public blogs, research or talks
• (optional) demonstrable experience contributing to open-source tools

Skills and Competencies

• Strong Knowledge in SIEM operations, Threat operations, security monitoring, SOC operations, ASM, incident response, and log management.
• Strong knowledge of tools and technologies such as MS Sentinel, ELM, SOAR, EDR solutions, and other SOC tooling.
• Familiarity with frameworks such as MITRE ATT&CK, NIST CSF, and ISO 27001.
• Exceptional leadership, communication, and stakeholder management skills.
• Participation and leading projects
• Full understanding of NIST 2 Domains and sub domains for SOC Operations
• CRTO, OSCE, OSEP, PEN-300, GXPN or equivalent certification (note: reasonable exceptions will be considered, e.G. years of experience, contribution to the field, etc.)
• At least five years' experience
• Coding experience
• Experience in training others, or managing teams

Job Title: Senior AI Engineer – Cybersecurity (Prevention-First Approach)

Location: Bengaluru, India (In-Office)

Company: SecPod Technologies

Experience: 6+ years in AI/ML development with a focus on cybersecurity or any technical domain

About SecPod

At SecPod , we are driven by a Prevention-First philosophy , building intelligent cybersecurity platforms that detect, predict, and prevent attacks before they occur. Our flagship product, empowers enterprises with automated vulnerability management, risk prioritization, and compliance, powered by cutting-edge analytics and AI.

We are now expanding our AI innovation team to redefine how cybersecurity can be automated and made predictive at scale.

Role Overview

As a Senior AI Engineer , you will be at the forefront of integrating artificial intelligence into SecPod’s cybersecurity ecosystem. You will design, develop, and deploy AI models for anomaly detection, threat prediction, behavioral analytics, and intelligent automation, enabling a truly proactive cybersecurity defense.

Key Responsibilities

• Design and implement machine learning and deep learning models to identify, predict, and prevent security threats.
• Build AI-driven frameworks for risk scoring, anomaly detection, and automated remediation.
• Collaborate with cybersecurity researchers to transform complex threat intelligence data into actionable insights.
• Work with product and data engineering teams to integrate AI pipelines into Saner platform and upcoming products.
• Research and prototype generative AI models for adaptive response, data summarization, and intelligent policy generation.
• Develop and maintain scalable data pipelines for continuous model training, monitoring, and optimization.
• Mentor junior AI engineers and contribute to building SecPod’s AI capability roadmap.

Qualifications & Skills

Must Have:

• Bachelor’s or Master’s in Computer Science, AI, Data Science, or related field.
• 6+ years of hands-on experience in machine learning, NLP, or deep learning.
• Strong programming skills in Python with experience in PyTorch, TensorFlow, or Scikit-learn.
• Solid grasp of data engineering, model deployment (MLOps), and REST-based integrations.
• Prior work in cybersecurity analytics, anomaly detection, or predictive modeling is highly desirable.
• Knowledge of threat intelligence, vulnerability data, or SOC workflows is a strong plus.
• Familiarity with cloud platforms (AWS, GCP, Azure) and DevOps/MLOps pipelines.

Good to Have:

• Experience with LLMs or GenAI applications for cybersecurity use cases.
• Exposure to graph-based analytics, time-series modeling, or behavior analytics.
• Contributions to open-source AI or cybersecurity projects.

Why Join SecPod?

• Be part of a pioneering Prevention-First cybersecurity company shaping the future of attack prevention.
• Work with cutting-edge AI + Cybersecurity technology stacks.
• A culture that values innovation, autonomy, and deep technical excellence.
• Opportunities for leadership growth.

The Application Security Engineer will play a vital role in ensuring the security and integrity of our software development lifecycle. This individual will work at the intersection of security, DevOps, and development to embed security into every stage of our process.

• Conduct manual and automated code reviews to identify vulnerabilities and areas for improvement
• Define and implement static and dynamic application security testing pipelines to ensure robust security measures
• Collaborate with development teams to remediate identified vulnerabilities and educate on secure coding standards
• Integrate security controls into CI/CD pipelines, define branch protection rules, and work closely with DevOps to implement security-as-code practices

To be successful in this role, the ideal candidate should have:

• 7-10 years of experience in Security Architecture, AppSec, or a combined development and security engineering role
• Strong hands-on experience in secure coding, application security testing, and source code analysis
• Solid knowledge of CI/CD pipelines, version control, and branch control strategies
• Familiarity with cloud platforms and regulatory or compliance frameworks

This role offers the opportunity to work with a talented team of professionals who are passionate about delivering high-quality, secure solutions. The ideal candidate will have a strong passion for cybersecurity and a desire to make a meaningful impact in this field.

The company is committed to creating a positive and inclusive work environment that fosters growth, learning, and collaboration. If you are a motivated and experienced professional looking for a new challenge, we encourage you to apply for this exciting opportunity.

Company Description

Foresiet is an AI-enabled SaaS-based Cybersecurity company that provides a comprehensive solution for Digital Risk Prevention. Leveraging the Cyber Digital Investigator platform, Foresiet proactively detects, monitors, and secures identity, data, and asset threats. Our unique combination of Human Intelligence (HUMINT) and Applied Research (HUMAN+TECHNOLOGY) protects individuals, enterprises, and the Federal Government.

Role Description

The specialist will be responsible for developing and maintaining automation processes.

• Develop and maintain sophisticated web scraping and automation scripts, troubleshooting issues,
• Understanding of CAPTCHA-solving approaches and working with proxy services, anti-blocking strategies: IP rotation, session management, fingerprinting/stealth, polite crawling (rate limiting, backoff), distributed workers & queueing.
• Social Media Scraping
• Integrate scalable captcha handling (human + automated fallbacks) and robust retry logic.
• Make the solution deployable (Docker + orchestration) and include monitoring, logging, and clear operational documentation.
• Creating and executing test cases, and ensuring quality assurance.
• Collaborate with the team to identify automation opportunities and implement solutions.
• Troubleshoot and debug technical issues related to scripts and data extraction.
• Stay updated with the latest trends in web technologies, anti-scraping measures, and AI tools.

Qualifications

• Process Automation, Automation skills
• Expert with web scraping libraries and tools such as Beautiful Soup and Scrapy
• Anti Blocking Strategy- Captcha Bypass, IP rotation, session management, fingerprinting/stealth, polite crawling (rate limiting, backoff), distributed workers & queueing.
• Social Media Scraping
• Troubleshooting skills
• Experience with creating and executing Test Cases
• Quality Assurance skills
• Proficiency in Python programming
• Familiarity with web scraping libraries and tools such as Beautiful Soup and Scrapy
• Excellent problem-solving and analytical skills
• Ability to work independently and remotely

About Us:

MUFG Bank, Ltd. is Japan’s premier bank, with a global network spanning in more than 40 markets. Outside of Japan, the bank offers an extensive scope of commercial and investment banking products and services to businesses, governments, and individuals worldwide. MUFG Bank’s parent, Mitsubishi UFJ Financial Group, Inc. (MUFG) is one of the world’s leading financial groups. Headquartered in Tokyo and with over 360 years of history, the Group has about 120,000 employees and offers services including commercial banking, trust banking, securities, credit cards, consumer finance, asset management, and leasing. The Group aims to be the world’s most trusted financial group through close collaboration among our operating companies and flexibly respond to all the financial needs of our customers, serving society, and fostering shared and sustainable growth for a better world. MUFG’s shares trade on the Tokyo, Nagoya, and New York stock exchanges.

MUFG Global Service Private Limited:

Established in 2020, MUFG Global Service Private Limited (MGS) is 100% subsidiary of MUFG having offices in Bengaluru and Mumbai. MGS India has been set up as a Global Capability Centre / Centre of Excellence to provide support services across various functions such as IT, KYC/ AML, Credit, Operations etc. to MUFG Bank offices globally. MGS India has plans to significantly ramp-up its growth over the next 18-24 months while servicing MUFG’s global network across Americas, EMEA and Asia Pacific.

Position details: ServiceNow Engineer

Location: MUFG Bank, BCIT Campus, Bangalore

Shift Timing: 2-11 PM IST( EMEA Shift, Need to be flexible)

2-3 days WFO in a week on hybrid mode

Main Purpose of the Role:

The ServiceNow Engineer will provide technical expertise, development, and support for the ServiceNow platform within MUFG’s Cyber Security Engineering team. The role is responsible for delivering robust and scalable ServiceNow solutions to support cyber security processes, with a particular focus on the SecOps Vulnerability Response (VR) module, integrations with other enterprise tools, and automation of key workflows. Acting as the subject matter expert, the role will ensure ServiceNow is effectively leveraged to improve efficiency, enhance compliance, and enable risk-informed decision making across EMEA operations.

The engineer will act as a trusted technical contact across the Cyber Security teams, often leading improvements into complex issues, supporting change deployments, and ensuring documentation and support materials are accurate and up to date. The role suits someone who enjoys solving problems, is comfortable with collaboration, and is ready to tackle varied challenges across the estate.

Key Responsibilities:

• You will act as the primary developer and technical SME for ServiceNow within the Cyber Security Engineering team, ensuring the platform is optimised to support vulnerability management, SecOps VR, and wider cyber security processes.
• Core Responsibilities:
• Develop, configure, and maintain ServiceNow modules, applications, and workflows.
• Provide platform-level support for ServiceNow issues, enhancements, and integrations.
• Implement integrations between ServiceNow and other security/IT platforms (e.G., Qualys, CMDB, SIEM, PAM, cloud-native tools).
• Support and enhance the SecOps Vulnerability Response (VR) module, including dashboards, automated assignment rules, and exception workflows.
• Collaborate with cyber security teams to automate workflows for vulnerability remediation, policy compliance, and reporting.
• Maintain alignment with secure-by-design principles, audit requirements, and governance standards.
• Perform ServiceNow platform upgrades, patching, and health checks.
• Write and maintain accurate technical documentation, development standards, and runbooks.
• Deliver custom dashboards, reports, and automation scripts to reduce manual workload.
• Participate in internal and external audit activities by gathering evidence and demonstrating platform functionality.

Risk Identification and Mitigation:

• Identify gaps and inefficiencies in ServiceNow workflows and integrations, recommending improvements.
• Support remediation tracking and risk acceptance processes through ServiceNow.
• Collaborate with IT Risk, Audit, and Compliance teams to ensure ServiceNow supports MUFG’s cyber risk framework.

Process Optimisation:

• Continuously refine ServiceNow development practices and coding standards.
• Embed automation and orchestration to improve efficiency of cyber security processes.

Audit and Governance Support:

• Ensure ServiceNow changes are fully documented, tested, and approved through governance forums (CAB, Security Design Authority).
• Align ServiceNow development activities with organisational risk policies, regulatory frameworks, and internal audit findings.

General:

• Be seen as the ServiceNow centre of excellence within MUFG’s Cyber Security Engineering team.
• Support operational security duties by enabling automation and reporting through ServiceNow.
• Responsibility covers EMEA for Bank and EMEA for Securities technology.

Key Deliverables:

• Fully supported and documented ServiceNow platform across Security Engineering use cases.
• Implementation packages and handover documents for new workflows, dashboards, and integrations.
• Stable and scalable integrations with vulnerability management, CMDB, and security tooling.
• Audit-ready documentation and evidence packs.
• Automation workflows that reduce manual workload and accelerate remediation.

Skills and Experience:

Education and Experience:

• Strong secondary-level education required (A-level or equivalent).
• Degree in Computer Science, Information Security, or related field desirable.
• 3–5 years of ServiceNow development experience in enterprise environments.
• Prior exposure to cyber security or information security roles is advantageous.

Knowledge and Skills:

• Strong hands-on experience in ServiceNow development: Business Rules, Client Scripts, UI Policies, Flow Designer, Catalog Items, and Integrations.
• Knowledge of SecOps VR module (vulnerability response) is highly beneficial.
• Proficiency in JavaScript, Glide API, REST / SOAP integrations.
• Familiarity with enterprise security tools (Qualys, SIEM, PAM, CMDB) is beneficial.
• Understanding of regulatory frameworks (ISO 27001, NIST, PCI DSS, SAMA).
• Strong troubleshooting skills across integrated systems.
• Automation / scripting exposure (PowerShell, Python, or Ansible) desirable.

Certifications:

• Essential: ServiceNow Certified System Administrator (CSA).
• ServiceNow Certified Application Developer (CAD).

Desirable:

• ServiceNow Certified Implementation Specialist (CIS – SecOps VR or ITSM).
• Security certifications such as Security+, CISSP, or CEH.

Job Title: SecOps Infrastructure Engineer/Administrator

Location: Bangalore

Responsibilities:

• Administer and maintain security products (web application firewall, IDS, (h)IPS, EDR, phishing training, vulnerability management, SIEM, etc)
• Conduct routine maintenance for SecOps servers (patching, hardening, upgrades, etc.) and deploy new servers as needed.
• Own Security Operations Infrastructure and interface with other operational teams around the organization.
• Act as a core member of the Incident Response Team, triaging, responding to and reporting incidents and associated metrics.
• Conduct routine log review of information security events, investigating and responding as necessary.
• Participate in on-call rotation.

Additional Roles and Responsibilities:

o Maintain a comprehensive understanding of our information systems.

o Work closely with the multiple operation teams to implement and enforce our policy.

o Conduct risk-based evaluation of policy exception requests.

o Monitor for triage and track remediation of vulnerabilities in our systems and networks.

Required Skills:

• Knowledge of endpoint and server operating systems (e.G. Linux, Windows, macOS) and relevant security risks, controls, and vulnerabilities.
• Strong knowledge of networking and network security fundamentals.
• Practical knowledge of enterprise security tools (anti-malware, firewalls, IDS/IPS, email monitoring, two-factor authentication, SIEM, etc.).
• Familiarity with AWS environments and AWS security tools.
• Familiarity with vulnerability management concepts, such as CVE and CVSS.
• Knowledge of and experience with compliance/remediation efforts of relevant domestic and international security standards and best practices such as India DOT requirements, PCI-DSS, GDPR, SOC2, HITRUST, etc.
• Scripting experience, python preferred.
• Infrastructure as code experience preferred.
• Familiarity with cloud computing environments and applications in a security context strongly preferred.
• Ability to quickly change priorities and handle simultaneous tasks.
• Excellent oral and written communications. Education/Pre-requisites:
• 4 or more years of experience in the information security field.
• BS degree in Computer Science, Cyber Security, Information Technology (or related discipline). Graduate degree in Information Assurance (or related discipline) or equivalent formal training and experience in Information Security preferred.
• GIAC or OffSec certifications preferred.