20 Defense Engineer jobs in India

Entity:

Technology

Job Family Group:

IT&S Group

Job Description:

You will work with

You will be working for response and management of cyber incidents, applying an intelligence-led approach for identification, mitigation, and rapid response to safeguard bp on a global scale. By applying lessons learned and data analytics, they establish engineering principles and improve the technology stack to continuously bolster bp's cybersecurity posture.

Let me tell you about the role

As an Azure Security Engineer, you will define and govern security standards and frameworks across bp’s Azure cloud environment, ensuring robust policy enforcement and continuous risk reduction. You’ll own the implementation of Azure security guardrails, posture management, and compliance monitoring using tools like Microsoft Defender products and Wiz.

This role is central to hardening Azure networks, automating security controls, and collaborating to embed security into every stage of cloud solution delivery. Your work will directly build bp’s cloud security governance and resilience.

What you will deliver

• Define and govern Azure security standards and guardrails across subscriptions, management groups, and landing zones—codified via Azure Policy/Initiatives.
• Own Azure security posture management: tune and operate controls and dashboards and Wiz for Azure; drive risk reduction with service owners through clear findings, SLAs, and automated remediation.
• Harden Azure network and perimeter: reference architectures and control baselines for NSGs/ASGs and segmentation patterns suitable for internet, partner, and private access scenarios.
• Detect, respond, and automate for Azure: detections and playbooks in Microsoft Sentinel (KQL analytics, Logic Apps automation), integration with Wiz Defend and bp’s forensic/incident processes; support to Unity reviews and develop assessments for Azure solutions.
• Measure and communicate compliance: define methods to continuously supervise alignment, publish scorecards and actionable metrics, and maintain clear documentation and mentorship for product and platform teams.

• Work with engineering teams to support the remediation and validation of vulnerability mitigations and fixes.
• Integrate security validations into continuous integration/continuous deliver (CI/CD) pipelines and develop scripts to automate security tasks.
• Maintain clear, detailed documentation of security procedures and policies, including how to embed and measure security on our cloud, infrastructure or data environments.

What you will need to be successful (experience and qualifications)

• Over three years of practical experience in Azure security engineering within large environments, including policy and guardrail develop and remediation in collaboration with delivery teams, with a comprehensive understanding of the Hub and Spoke architecture.
• Practical experience crafting, planning, productizing, maintaining and detailing reliable and scalable data, infrastructure, cloud and/or platform solutions
• Proven expertise with Microsoft Defender for Cloud (CSPM/CWPP) and a CNAPP (e.g., Wiz) to identify risks and orchestrate remediation across Azure subscriptions and landing zones
• Deep knowledge of Microsoft Entra ID (Conditional Access, MFA, PIM, Identity Protection, workload identities), Azure RBAC, and least‑privilege patterns.
• Solid grasp of network security in Azure: NSGs/ASGs, Private Link, Azure Firewall, WAF/App Gateway/Front Door, DNS/private endpoints, and Zero‑Trust segmentation patterns.
• Hands‑on with AKS security (Azure Policy for K8s, admission control, secrets, network, image provenance) and container security (Defender for Containers, ACR scanning, SBOM, signing).
• Proficiency in PowerShell and/or Python; strong Git field; ability to build reusable security templates, checks, and automations.
• Understanding of applicable frameworks and controls (NIST CSF/800‑53, ISO 27001, CIS Benchmarks) and how to map them to Azure controls and Defender regulatory compliance.
• Relevant certifications are a plus: AZ‑500, SC‑200 (Security Operations Analyst), SC‑300 (Identity and Access Administrator), SC‑100 (Cybersecurity Architect); broader credentials (e.g., CISSP/CCSP) welcome.
• Continuous learning approach; clear communicator who can create concise standards, patterns, and runbooks and influence product/platform teams without direct authority.

About bp

bp is a global energy business with a purpose to reimagine energy for people and our planet. We aim to be a very different kind of energy company by 2030, helping the world reach net zero and improving people’s lives. We are committed to creating a diverse and inclusive environment where everyone can thrive. Join bp and become part of the team building our future!

We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.

Legal Disclaimer:

We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, sex, gender, gender expression, sexual orientation, age, marital status, socioeconomic status, neurodiversity/neurocognitive functioning, veteran status or disability status. Individuals with an accessibility need may request an adjustment/accommodation related to bp’s recruiting process (e.g., accessing the job application, completing required assessments, participating in telephone screenings or interviews, etc.). If you would like to request an adjustment/accommodation related to the recruitment process, please contact us.

If you are selected for a position and depending upon your role, your employment may be contingent upon consistency to local policy. This may include pre-placement drug screening, medical review of physical fitness for the role, and background checks.

Travel Requirement

Up to 10% travel should be expected with this role

Relocation Assistance:

This role is eligible for relocation within country

Remote Type:

This position is a hybrid of office/remote working

Skills:

Legal Disclaimer:

We are an equal opportunity employer and value diversity at our company. We do not discriminate on the basis of race, religion, color, national origin, sex, gender, gender expression, sexual orientation, age, marital status, socioeconomic status, neurodiversity/neurocognitive functioning, veteran status or disability status. Individuals with an accessibility need may request an adjustment/accommodation related to bp’s recruiting process (e.g., accessing the job application, completing required assessments, participating in telephone screenings or interviews, etc.). If you would like to request an adjustment/accommodation related to the recruitment process, please  contact us .

If you are selected for a position and depending upon your role, your employment may be contingent upon adherence to local policy. This may include pre-placement drug screening, medical review of physical fitness for the role, and background checks.

This position will be involved in developing/engineering SIEM/SOAR solutions across the current and future security portfolio, with a strong initial focus on Microsoft Sentinel. The ideal candidate should have experience configuring, managing, and optimizing Azure Sentinel to support a mature SOC. This role involves working closely with IT security teams to enhance our security posture while ensuring compliance with industry standards and best practices.
**Responsibilities**
+ Manage all aspects of a SIEM/SOAR, including subscription management, query optimization, workbook/playbook management, analytic rules, and cost optimization.
+ Collaborating internally and across the organization in driving cloud adoption of security technologies.
+ Stay current with industry trends, best practices, and emerging technologies related to DevOps and cloud computing.
+ Extensive collaboration with technical and business facing stakeholders to engineer solutions which exceed customer expectations and drive significant business value.
+ Implement and monitor security standards across development, testing, and production environments.
+ Collaborate with Cloud operational & engineering teams to resolve deployment issues and ensure smooth operations.
+ Deploy, configure, and manage Azure Sentinel solutions for effective security monitoring and incident response.
+ Integrate Azure Sentinel with various data sources, native and non-native connectors, and Azure services to ensure comprehensive threat visibility across the organization.
+ Create and fine-tune analytics rules, workbooks, and playbooks to automate and improve threat detection and response processes.
+ Utilize futuristic tools, technology, and frameworks for enhancing business experience.
+ Participate in the development of a healthy product backlog, ensuring agile practices are followed.
+ Proactively identify opportunities to improve and automate existing technologies.
+ Support strategic vision for new infrastructure and systems by providing input on roadmaps/value maps in partnership with business stakeholders that aligns with the overall corporate strategy.
+ Support organizational wide Disaster Recovery and Business Continuity plans and strategy so the organization is prepared for potential events.
+ Support 24x7 security operations as needed.
**Qualifications:**
**Basic Qualifications:**
+ Bachelor's degree in Computer Science, Cyber Security, or Information Systems.
+ 2+ years of proven hands-on experience with SIEM & SOAR, with a strong preference for Microsoft Sentinel.
+ Microsoft certifications such as: SC-200 and SC-100
+ knowledge of Azure DevOps tools and services, including Azure Pipelines, Repos, Artifacts, and Boards.
+ Familiarity with threat intelligence platforms and cybersecurity frameworks such as NIST or MITRE ATT&CK.
+ 1+ year with engineering expertise with Full stack, hands-on expertise with infrastructure including IaC such as Terraform or ARM templates.
+ 1+ year of experience developing end-end using APIs and/or scripting languages such as Powershell, Python, YAML, JSON, NodeJS, etc.
+ 1+ year leading projects and implementations.
+ Proficiency in creating custom queries using Kusto Query Language (KQL).
**Preferred Qualifications:**
**Technical Skills:**
+ Understanding, with hands-on experience, of IT Security and Security Engineering technologies such as CASB, CSPM, Email Security Gateways, SIEM/SOAR, Endpoint Protection, EDR/XDR, DLP, etc.
+ Significant experience with security orchestration, automation, and response (SOAR) tools.
+ Technical knowledge of cloud platforms: Azure is strongly preferred.
+ Experience engineering reusable tools and self-service capabilities with automated infrastructure operations
+ Experience in creating frontend components that support accessibility
+ Proven experience in engineering solutions that improve the developer or user experience and productivity.
+ Hands-on experience setting up CI/CD pipelines. OpenShift Tekton, or GitHub Actions, or alike Knowledge of secure coding practices
+ Experience setting up serverless functions using GCP Cloud Run or Cloud functions, and configuring the respective cloud provider for scaling
+ Robust knowledge of system design principles including reliability, availability, and scalability
+ Understanding of security frameworks
+ Experience setting up logging and monitoring services (Dynatrace, GCP Ops Suites)
+ Proven ability to implement and prove out POCs with speed, vision and quality
+ Strong consulting and analytical skills and a risk management mindset
**Other Skills:**
+ Demonstrates the ability to be highly collaborative with peers across the organization.
+ Possess a high tolerance for ambiguity and ever-changing technology environment.
+ Possess a strong bias for action.
+ Naturally curious and stays on top of emerging trends and threats.
+ interpersonal skills, with the ability to communicate effectively at all levels of the organization.
+ Familiarization with agile concepts.
+ Ability to thrive in working in a fast-paced, technologically forward-leaning environment and are not afraid to push the boundaries of security capabilities.
+ A sense of intellectual curiosity and a burning desire to learn.
You may not check every box, or your experience may look a little different from what we've outlined, but if you think you can bring value to Ford Motor Company, we encourage you to apply!
**Requisition ID** : 45081

Optum is a global organization that delivers care, aided by technology to help millions of people live healthier lives. The work you do with our team will directly improve health outcomes by connecting people with the care, pharmacy benefits, data and resources they need to feel their best. Here, you will find a culture guided by inclusion, talented peers, comprehensive benefits and career development opportunities. Come make an impact on the communities we serve as you help us advance health optimization on a global scale. Join us to start **Caring. Connecting. Growing together.**
As part of the Cyber Defense (CD) organization, the Perimeter Network Pentest Coordinator
role is responsible for executing CD strategy for UnitedHealth Group (UHG) and its affiliates through facilitating a complete annual network penetration test, defining scope of the attack surface, identifying ownership of domains and IPs, defining cloud scope, and working with application teams as a subject matter expert throughout the pentest process. Position will also be responsible for working on metrics around the network pentest. The portfolio of services the Ethical Hacking team covers include penetration testing of web apps, networks, entities owned by UHG, and the related technologiesprocesses that enable the team functions to run at scale within a large, heavily segmented Global Fortune 10 company.
**Primary Responsibilities:**
+ Work as part of an agile penetration testing team, empowered to execute objectives in a thorough and timely fashion
+ Work independently meeting all deadlines and able to prioritize and rebalance workload with a dynamic application backlog
+ Define attack surface scope by partnering with various teams and utilizing attack surface management tools, DNS tools, attestation from AEs.
+ Automate manual scope processes.
+ Meet policy and contractual deadlines for network pentest, communicating timelines with leadership.
+ Communicate with teams and vendors, facilitating the process, establishing meetings, and ensuring tests are completed in timeline outlined in policy and in the vendor statement of work
+ Identify ownership of vulnerabilities, and create automated processes, partnering with other teams to ensure reduction in manual effort for future network pentests.
+ Report vulnerabilities found via vendor pentesting to the vulnerability reporting system, and facilitate retesting in accordance with policy and vendor statement of work
+ Effectively communicate successes and obstacles with fellow team members and team lead(s)
+ Interface with customer contact(s) and staff in a constructive and professional manner
+ Have subject matter expertise in application vulnerabilities, pentesting process, project management, cloud deployment, containerization, and automation
+ Ethically operate with appreciable latitude in developing methodology and applying it in the field
+ Ability to communicate clearly and effectively through oral or written communication with all levels in the organization
+ Ability to initiate, design, execute, complete, and provide metrics on projects independently with minimal direction
+ Drive cross-team efforts to address systemic risks across the business
+ Act as an overall SME and force multiplier for team through mentoring, education, training, etc.
+ Occasionally on-call support is required for the position
+ Comply with the terms and conditions of the employment contract, company policies and procedures, and any and all directives (such as, but not limited to, transfer and/or re-assignment to different work locations, change in teams and/or work shifts, policies in regard to flexibility of work benefits and/or work environment, alternative work arrangements, and other decisions that may arise due to the changing business environment). The Company may adopt, vary or rescind these policies and directives in its absolute discretion and without any limitation (implied or otherwise) on its ability to do so
**Required Qualifications:**
+ Undergraduate degree or equivalent experience
+ 3+ years of experience in Information Security OR Information Security certification
+ Experience with OWASP framework
+ Proficiency in at least one scripting language (Perl, Python, Bash, PowerShell, VBA, etc.)
**Preferred Qualifications:**
+ Experience with PowerApps or other automation tools
+ Experience with Power BI or other BI metrics and reporting
+ Experience in API development
+ Experience in AI development
+ Experience in project management
+ Experiencecertification in penetration testing (PenTest+, CEH, etc)
+ Experience with Linux, command-line, and Windows Server management
_At UnitedHealth Group, our mission is to help people live healthier lives and make the health system work better for everyone. We believe everyone - of every race, gender, sexuality, age, location and income - deserves the opportunity to live their healthiest life. Today, however, there are still far too many barriers to good health which are disproportionately experienced by people of color, historically marginalized groups and those with lower incomes. We are committed to mitigating our impact on the environment and enabling and delivering equitable care that addresses health disparities and improves health outcomes - an enterprise priority reflected in our mission._
#SSTech

Manager of Cloud Security Engineering
Job Category: Engineering & Cloud
Location: India - Karnataka - Bangalore
**Meet Our Team:**
Cloud Security and Network Engineering (CSNE) is responsible for solving low-layer needs of Pega Cloud clients. The team relies on decades of IT experience to rapidly architect, develop and deploy solutions for complex security and networking problems. CSNE is process-oriented and adopts LEAN principles to continuously improve solution speed and quality. CSNE partners closely with the Cloud Service Reliability and Cloud Engineering teams to ensure every solution is secure, reliable, available, and observable.
**Picture Yourself at Pega:**
You will be part of a highly innovative company changing how companies work and optimize their outcomes. In this role you will be part of a highly collaborative team that is well versed and skilled in their space. You will be an adaptive/flexible change agent driving data driven decisioning while seeing the benefits of your hard work turn into business outcomes.
**What You'll Do at Pega:**
+ Lead, mentor, and develop a team of network security engineers, fostering a culture of innovation and continuous improvement.
+ Set performance goals, conduct regular performance reviews, and provide coaching to enhance team effectiveness.
+ Collaborate with cross-functional teams and stakeholders to align network security initiatives with business objectives.
+ Develop and execute a comprehensive network connectivity and security strategy for Cloud Environments (AWS and GCP).
+ Assess current network security posture and recommend improvements to enhance security, scalability, and reliability.
+ Stay updated with emerging security threats and trends to proactively address potential risks.
+ Ensure compliance with industry standards and best practices for cloud security.
+ Implement and maintain secure connectivity options like VPN, VPC Peering, Privatelink, providing customer the secure access to their Cloud Infrastructure in AWS and GCP.
+ Working experience on Kubernetes and Containerization.
+ Lead incident response efforts for network security breaches and connectivity failures, including analysis and mitigation
+ Assist with migration and upgrade of customer's networking and security infrastructure on Pega
**Who You Are:**
+ Passionate about Cloud Technologies and well versed with Networking concepts, services, and best practices
+ Experience with VPC, WAF, VDI and Cloud Native Networking and Monitoring Tools.
+ Hand-On coding experience (preferably python/golang)
+ Experience with CICD and source control tools
+ Have knowledge of Linux operating systems and system administration
+ Strong understanding of cloud security concepts and best practices
+ Strong analytical and problem-solving skills.
+ Excellent communication and teamwork skills.
**What You've Accomplished:**
**Required Qualification**
Bachelor of Engineering in Computer Science, Information Technology, or related field. 10+ years of Industry Experience
+ At least 3+ years of experience in Managing and Building high performant team
+ Hand-On development (preferably python) and SDLC experience
+ 5+ years of relevant experience in AWS, WAF, VPC, VPN and DevSecOps.
+ Excellent communication skills, including the ability to communicate complex technical concepts to non-technical stakeholders.
+ Knowledge of cloud security best practices, including security architecture and design, network security, and incident response.
**Desired Qualification**
+ Experience with cloud security-related tools like
+ Experience with container security and Kubernetes.
+ Experience with SDLC and DevSecOps processes and technologies
+ Familiarity with regulatory compliance frameworks.
**Pega Offers You:**
+ Gartner Analyst acclaimed technology leadership across our categories of products
+ Continuous learning and development opportunities
+ An innovative, inclusive, agile, flexible, and fun work environment
+ Competitive global benefits program inclusive ofpay + bonus incentive, employee equity in the company
+ #LI-SK1
Job ID: 22373
**AI in Action -** Pega embraces the power of artificial intelligence. We encourage all employees to actively engage with AI technologies and continually explore ways to responsibly integrate AI into our products and processes.
**Culture -** At Pegasystems, we foster an environment where people feel valued and empowered to contribute their best. With global clients across industries and regions, we know our success depends on the unique perspectives, experiences, and talents of our people. Ours is a workplace where everyone can grow, collaborate, and deliver meaningful outcomes.
We encourage candidates from all backgrounds and experiences and focus on the core competencies and mindset needed to thrive in a role.
As an Equal Opportunity employer, Pegasystems will not discriminate in its employment practices due to an applicant's race, color, religion, sex, sexual orientation, gender identity, national origin, age, genetic information, veteran or disability status, or any other category protected by law.
**Export Compliance -** For positions requiring access to technical data subject to export control regulations such as this, Pegasystems may need to obtain export license approval from the U.S. Government and EU Authorities for certain individuals.
**Accommodations -** If you require reasonable accommodations under the Americans with Disabilities Act (US only) or comparable regional regulations in completing this application, interviewing, completing any pre-employment testing, or otherwise participating in the employee selection process,or contact (US only) 1-888-PEGA-NOW and/or 225 Wyman Street Waltham, MA 02451 ATTN: Benefits.
It is Pega's policy to engage, recruit, hire, promote, train, discipline, and compensate in all job classifications, without regard to race, color, sex, religion, national origin, age, disability, sexual orientation, gender identity, veteran status, or any other category protected by law.

**Job Description**
The Oracle Cloud Infrastructure (OCI) team can provide you the opportunity to build and operate a suite of massive scale, integrated cloud services in a broadly distributed, multi-tenant cloud environment. OCI is committed to providing the best in cloud products that meet the needs of our customers who are tackling some of the world's biggest challenges.
We offer unique opportunities for smart, hands-on security engineers with the expertise and passion to solve difficult problems in distributed highly available services and virtual infrastructure. At every level, our engineers have a significant technical and business impact designing and building innovative new systems to power our customer's business critical applications. Our customers run their businesses on our cloud, and our mission is to provide them with the most secure cloud services.
We are looking for a seasoned security engineering professional to drive the development and architecture strategy of a new security platform. This is a Director level position that demands strong development and leadership experience. You'll have expertise and passion in building out teams and platforms to solve difficult security problems in distributed systems, multi-tenant services and large-scale infrastructures. If this is you, at Oracle Cloud you can help design and build innovative new systems from the ground up. These are exciting times in our space - we are growing fast and working on ambitious new initiatives.
Things you'll do:
+ Drive a team to prototype, design, and implement a new trusted infrastructure
+ Define and implement security solutions for new and challenging problems
+ Drive and champion security tool development
+ Design and build security and network mechanisms, along with best practices
Must have Qualifications:
+ Bachelor's degree in Computer Science or related field
+ 6+ years of experience in engineering management or related field or equivalent experience
+ Experience managing network and security solution teams
+ Strong security and network experience, particularly with focus in the following areas:
+ Network, Security, and Identity
+ Service architecture and Design Patterns
+ Strong collaboration and communication skills
Preferred Qualifications
+ Master's degree in Computer Science or related field
+ Experience working in a large cloud or Internet software company
+ Experience building out new cloud development teams
+ Experience leading development of net-new Cloud services
+ Strong knowledge of Application Security and of Security platforms in the Cloud infrastructure.
+ Experience collaborating with software development teams, data scientists, business and other technical roles
+ Experience with Windows and Linux
**Responsibilities**
+ Responsible for leading the design and build of security systems, applications, environments, and architectures.
+ Oversee the implementation of security systems, applications, environments, and architectures and ensure compliance with information security standards and corporate security policies and procedures.
+ Collaborate with our partners to understand customer need to build an innovative security platform.
+ Participate in network solution and architecture design process. Responsible for developing standalone features to support new trusted infrastructure platform.
+ Provide technical advice and direction to support the design and development of secure architectures.
Career Level - M4
**About Us**
As a world leader in cloud solutions, Oracle uses tomorrow's technology to tackle today's challenges. We've partnered with industry-leaders in almost every sector-and continue to thrive after 40+ years of change by operating with integrity.
We know that true innovation starts when everyone is empowered to contribute. That's why we're committed to growing an inclusive workforce that promotes opportunities for all.
Oracle careers open the door to global opportunities where work-life balance flourishes. We offer competitive benefits based on parity and consistency and support our people with flexible medical, life insurance, and retirement options. We also encourage employees to give back to their communities through our volunteer programs.
We're committed to including people with disabilities at all stages of the employment process. If you require accessibility assistance or accommodation for a disability at any point, let us know by emailing or by calling in the United States.
Oracle is an Equal Employment Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability and protected veterans' status, or any other characteristic protected by law. Oracle will consider for employment qualified applicants with arrest and conviction records pursuant to applicable law.

**Software Principal Engineer**
The Software Engineering team delivers next-generation application enhancements and new products for a changing world. Working at the cutting edge, we design and develop software for platforms, peripherals, applications and diagnostics - all with the most advanced technologies, tools, software engineering methodologies and the collaboration of internal and external partners.
Join us as a Software Principal Engineer on our **Security Engineering team in Bangalore** to do the best work of your career and make a profound social impact.
**What you'll achieve**
As a **Software Principal Engineer** , you will be responsible for embedding secure development practices and leading vulnerability management across Dell's product portfolio. You will collaborate closely with engineering and governance teams to drive security improvements and ensure secure, compliant product delivery.
**You will:**
+ Lead threat modeling, design security reviews, and vulnerability response processes to identify and mitigate risks
+ Drive secure code practices, vulnerability scanning, triage, and remediation coordination
+ Conduct security testing including functional, dynamic, and penetration testing to validate controls.
+ Manage release compliance artifacts and develop key security documentation
+ Mentor junior engineers and champion security maturity and privacy assessment initiatives
**Take the first step towards your dream career**
Every Dell Technologies team member brings something unique to the table. Here's what we are looking for with this role:
**Essential Requirements**
+ 8-12 years in product security engineering and vulnerability management with strong Security Development Lifecycle_SDL.
+ Experience in threat modeling, security design, and vulnerability management tools and processes.
+ Experience in compliance frameworks like ISO 27001, NIST 800-53, HIPAA.
+ Experience with penetration testing, container security, OS hardening, and secure CI/CD integration.
+ Experience in programming with Python, Java, Bash, Go, or similar for automation and tool integration
**Desirable Requirements**
+ Certifications such as CISSP, CCSP, CISM, CEH, OSCP, or CSSLP
+ Familiarity with PCI DSS, FedRAMP, or CCPA
**Who we are**
We believe that each of us has the power to make an impact. That's why we put our team members at the center of everything we do. If you're looking for an opportunity to grow your career with some of the best minds and most advanced tech in the industry, we're looking for you.
Dell Technologies is a unique family of businesses that helps individuals and organizations transform how they work, live and play. Join us to build a future that works for everyone because Progress Takes All of Us.
**Application closing date: 31-Oct-2025**
Dell Technologies is committed to the principle of equal employment opportunity for all employees and to providing employees with a work environment free of discrimination and harassment. Read the full Equal Employment Opportunity Policy.
#NJP
**Job ID:** R

Do you love the excitement and learning opportunity to study, analyse and deal with the most complex threats to digital security in today's world? Do you have the "learner" mindset, are willing to un-learn old skills and learn new ones every day? Are you excited by the potential of influencing the state of security of our entire company, every day? If yes, then this opportunity is for you.
Responsible for the installation, maintenance, support and optimization of all security-related components Facilitate incident response and forensic investigations Apply countermeasures to mitigate evolving security threats Work with other teams to ensure platform hardening, security maintenance, and vulnerability remediation procedures are followed Special Requirements Proficiency in KQL query and in a scripting language, preferably perl, PHP, or python a plus Must demonstrate basic knowledge of knowledge of Linux, Mac, and Strong understanding of Windows operating systems and networking protocols.
About CDO - Cyber Defense Operations. An organization led by Microsoft's Chief Information Security Officer enables Microsoft to deliver the most trusted devices and services. CDO's vision is to ensure all information and services are protected, secured, and available for appropriate use through innovation and a robust risk framework.
**Responsibilities**
+ Technical Insight: Provides technical insight on incident analysis and management, threat mitigation, forensics, malware analysis, and automation.
+ KRA and KPI Management: Ensures strong Key Result Areas (KRA) and Key Performance Indicators (KPI) management.
+ Collaboration: Embraces the values of Microsoft through coaching and collaboration, and partners with peer teams working in similar areas.
+ Stakeholder Management: Manages critical stakeholder calls and meetings (including non-business hours) while addressing critical security incidents.
+ Security Knowledge: Possesses extensive hands-on knowledge of security concepts including cyber-attacks, techniques, threat vectors, risk management, and incident management.
+ Automation Opportunities: Discovers potential automation opportunities or insights to enhance operational efficiency.
+ Product Collaboration: Collaborates and advises product teams on enhancing Microsoft's first-party security products by offering actionable feedback for improvement.
+ Team Environment: Cultivates a positive and inclusive team environment.
+ Operational Rigor: Demonstrates exceptional operational rigor with real-world experience in cyber security operations, threat mitigation and incident response.
+ Communication Skills: Exhibits excellent technical writing and oral communication skills.
+ Problem-Solving: Shows a systematic problem-solving mindset.
**Qualifications**
+ 8+ years of work experience, with a minimum of 6 years of experience in SOC.
+ Minimum 4 years of experience in Azure/Cloud
+ Hands on experience with incident analysis, Threat Actor related incident handling, Large Scale incident responder and Threat Hunting.
+ Understanding of Windows internals, Linux and Mac OS.
+ Understanding of various attack methods, vulnerabilities, exploits, malware.
+ Good Understanding of SIEM Console and tools such as Sentinel, Splunk, Qradar etc
+ Social engineering - given that humans are the weakest link in the security chain, an analyst's expertise can help with awareness training
+ Security assessments of network infrastructure, hosts and applications - another element of risk management.
+ Conduct root cause analysis and post-incident reviews.
+ Assist in tuning and optimizing detection rules and alerts.
+ Forensics - investigation and analysis of how and why a breach or other compromise occurred.
+ Develop and maintain incident response playbooks and standard operating procedures (SOPs).
+ Collaborate with IT, DevOps, and other teams to remediate vulnerabilities and improve security controls.
+ Troubleshooting - the skill to recognize the cause of a problem
+ DLP, AV, FIM, web proxy, email proxy, etc. - a comprehensive understanding of the tools utilized to protect the organization.
+ Excellent written and oral communication skills.
+ Security certifications such as GCIH, GCFA, GREM, CySA+ Knowledge of Azure Sentinel and KQL query is a must and added advantage.
+ Exposure to threat intelligence platforms and SOAR tools.
+ Knowledge of MITRE ATT&CK framework and incident response methodologies.
Microsoft is an equal opportunity employer. Consistent with applicable law, all qualified applicants will receive consideration for employment without regard to age, ancestry, citizenship, color, family or medical care leave, gender identity or expression, genetic information, immigration status, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran or military status, race, ethnicity, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable local laws, regulations and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application process, read more about requesting accommodations ( .

**Req ID:**
NTT DATA strives to hire exceptional, innovative and passionate individuals who want to grow with us. If you want to be part of an inclusive, adaptable, and forward-thinking organization, apply now.
We are currently seeking a AI Security Engineer - Shared Security Services Engineering to join our team in Banaglore, Karnātaka (IN-KA), India (IN).
Job Duties: AI Security Engineer contributes to the development of horizontal enterprise level security solutions built by "Shared Security Services Engineering" Team.
As a member of the team, you will be responsible for development, deployment, and maintenance of software security solutions to protect AI resources in the enterprise.
Key Responsibilities and Duties
- Collaborate with AI/ML and Security architecture teams to understand use case requirements, platform security posture and develop software solutions to protect AI applications
- Design and implement robust security measures to protect AI models from adversarial attacks, prompt injection, and jailbreaking attempts
- Develop data protection mechanisms to prevent data exposure in AI systems
- Create and maintain API services for AI security tools using modern frameworks
- Build and enhance monitoring solutions for AI security posture assessment
- Collaborate with cross-functional teams to integrate security controls into ML/AI workflows
- Implement data loss prevention capabilities for sensitive information across various communication channels
- Document security processes, architecture, and implementation details
Minimum Skills Required: Work Experience
- 8+ Years required
Technology: Full Stack (Java), React/Angular frameworks, Python or similar programming languages, AI/ML training and inference platforms (e.g., AWS Bedrock, AWS SageMaker), open-source and custom AI/ML models, Data Science tools, Terraform, and Helm charts.
Mandatory Skills:
- 8+ years of full stack development using Java, with hands-on experience in building scalable web applications.
- Strong foundation in machine learning, including model development, training, and integration into production systems.
- Capable of delivering end-to-end intelligent solutions by combining robust backend systems with AI-driven features.
- Experienced with modern frontend frameworks such as React or Angular for creating responsive and user-friendly interfaces.
- 3+ years' experience in API development based on REST, gRPC methodologies using FastAPI, Spring REST or similar frameworks
- 3+ years' experience in development and maintenance of cloud native applications using Kubernetes or other container management solutions
- Experience with development, deployment, performance tuning and maintenance of AI models and applications on cloud platform
Preferred Skills:
- Well versed in Python programming language including unit testing frameworks such as Pytest will be an added advantage.
- Good understanding of OWASP top 10 for AI and CISA guidelines for AI development. Preferrable to have a cybersecurity certification such as CISSP or like
- Understanding of security risks in AI & Gen AI applications related to prompt injection attacks, data leakage, adversarial testing etc.
- Experience with observability frameworks (OpenTelemetry)
**About NTT DATA**
NTT DATA is a $30 billion trusted global innovator of business and technology services. We serve 75% of the Fortune Global 100 and are committed to helping clients innovate, optimize and transform for long term success. As a Global Top Employer, we have diverse experts in more than 50 countries and a robust partner ecosystem of established and start-up companies. Our services include business and technology consulting, data and artificial intelligence, industry solutions, as well as the development, implementation and management of applications, infrastructure and connectivity. We are one of the leading providers of digital and AI infrastructure in the world. NTT DATA is a part of NTT Group, which invests over $3.6 billion each year in R&D to help organizations and society move confidently and sustainably into the digital future. Visit us at us.nttdata.com ( possible, we hire locally to NTT DATA offices or client sites. This ensures we can provide timely and effective support tailored to each client's needs. While many positions offer remote or hybrid work options, these arrangements are subject to change based on client requirements. For employees near an NTT DATA office or client site, in-office attendance may be required for meetings or events, depending on business needs. At NTT DATA, we are committed to staying flexible and meeting the evolving needs of both our clients and employees. NTT DATA recruiters will never ask for payment or banking information and will only use @nttdata.com and @talent.nttdataservices.com email addresses. If you are requested to provide payment or disclose banking information, please submit a contact us form, .
**_NTT DATA endeavors to make_** **_ **_accessible to any and all users. If you would like to contact us regarding the accessibility of our website or need assistance completing the application process, please contact us at_** **_ **_._** **_This contact information is for accommodation requests only and cannot be used to inquire about the status of applications. NTT DATA is an equal opportunity employer. Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status. For our EEO Policy Statement, please click here ( . If you'd like more information on your EEO rights under the law, please click here ( . For Pay Transparency information, please click here ( ._**