7,417 Information Security jobs in India
Senior Information Security Engineering Consultant, ITC
Posted 1 day ago
Job Viewed
Job Description
WHO YOU’LL WORK WITH
Candidate will primarily be part of Application Security Consulting team and work with your peers in Corporate Information Security and partner with internal groups, GT domains across Nike, reporting into Director, Information Security Engineering Consulting, ITC.
WHO WE ARE LOOKING FOR
We’re looking for a Sr. Application Security Consultant . This role will serve as a trusted security advisor to Nike technology teams and business partners. Provide critical input and guidance to key partners to ensure that Nike applications, solutions and business processes are aligned with Nike Information Security Program. The focus areas for this role are Risk Reduction, Information Security by Design. The scope of work may involve Application Security, Cloud Security, Consumer and Business to Business Security.
The candidate needs to have strong Information Security knowledge, extremely strong written and verbal communication skills and a demonstrated ability to communicate across all areas and levels of the business. They should also be able to comprehend complex business initiatives, leveraging excellent analytical and problem-solving skills. We are seeking a motivated self-starter who is has a track record of taking ownership of information security challenges and driving them to resolution.
Bachelor's degree in Computer Science or Business Information Management or equivalent work experience
5+ years of experience in information security, training, or information technology disciplines
Technical knowledge and demonstrated ability to communicate with both highly technical audiences and non-highly technical audiences
Ability to adjust communication style and approach, from strategic leadership to highly technical audiences
Ability to pull a diverse group of individuals with different goals together and organize productive discussions driving towards results
Analytical and problem-solving skills; record of identifying solutions for complex problems
Ability to establish cross functional personal networks within Nike
Ability to understand and explain of various information security standards, regulations, and protocols
Demonstrated Experiences with Cloud Security.
Excellent analytical and problem-solving abilities
Adaptability to evolving threats in the fast-paced cybersecurity landscape.
Security certifications like CISSP, CSSLP, CCSP, CISM , CRISC are preferred but equivalent knowledge will be considered.
WHAT YOU’LL WORK ON
If this is you, you’ll be working with the Application Security Consulting team to perform these key tasks:
Assessment of solutions and Identification of risks within the Nike eco-systems
Assessing controls for highly sensitive Nike data along with various stake holders
Providing critical input and guidance which aligns to Nike Information Security standards when considering key priorities, the threat landscape, and risk appetite of Nike, Inc.
Working closely with Nike Business and Technical teams to produce secure solutions at the speed of business
Assisting technology and business teams to comprehend and prioritize security related work
Reporting on progress addressing threats, risks, or any challenges to Nike Leadership
Risk Assessment & Vulnerability Management,Policy & Strategy Development, Security consulting, Security Awareness Training, Reporting & Communication and Current security trends
Support and consult various stakeholders across Vulnerability Management, Cloud Goverenance, and Secure software life cycle practices.
NIKE, Inc. is a growth company that looks for team members to grow with it. Nike offers a generous total rewards package, casual work environment, a diverse and inclusive culture, and an electric atmosphere for professional development. No matter the location, or the role, every Nike employee shares one galvanizing mission: To bring inspiration and innovation to every athlete* in the world. NIKE, Inc. is committed to employing a diverse workforce. Qualified applicants will receive consideration without regard to race, color, religion, sex, national origin, age, sexual orientation, gender identity, gender expression, veteran status, or disability.
Senior Information Security Engineer, ITC
Posted 1 day ago
Job Viewed
Job Description
WHO ARE WE LOOKING FOR
We’re looking for a Sr. Cybersecurity Engineer who:
Understands and is experienced in our realm of capabilities and toolsets that we leverage including Endpoint Protection, Web proxy security, email security, IDS/IPS, WAF, PKI and Advanced Threat Protection.
Has more than 5+ years’ experience on the Security products for Security Technology Management team to provide hands-on technical and tactical expertise to a 24x7 team (Support during India business hours) of dedicated security engineers focused on maintaining operational stability while reducing risk.
You will work on a team of experienced security professionals who are passionate about their work and Nike. We are a diverse, cross-functional team that collaborates globally across the organization with a variety of stakeholders from service desk technicians to system architects, developers and lawyers
WHAT WILL YOU WORK ONSupport the deployment, and ongoing maintenance of security controls that protect Nike’s systems and data. Primary focus on web proxy products and end point security.
Assess, analyze, and optimize operational tasks, functions and processes.
Provide technical and tactical expertise to a 24x7 team during India business hours. Also, provide support to Sev1 and Sev2 incidents as part of on-call responsibility to dedicated security engineers focused on maintaining operational stability while reducing risk
Administer and maintain endpoint security controls.
Maintaining proper saturation of endpoint security controls; versions, scoping and exclusions.
Documentation of Knowledgebase articles, How-to’s, policies and procedures.
You will report into the Cybersecurity Solutions & Delivery team. You will partner closely with Cyber Defense, Data Protection, Windows Client/Server Platform and Cloud Security/Automation teams to assess, analyze, and optimize operational tasks, functions and processes.
WHAT YOU BRINGYou have strong problem-solving skills in 2 or more of the above listed capabilities/toolsets and thrive on your ability to determine root cause and provide relevant solutions.
Industry certifications relevant to the role: web proxy certifications, end point certifications will provide an added advantage.
An operational mindset is in your blood; the ad-hoc change of evening or weekend plans is seen as an opportunity to grow and excel.
Ability to juggle multiple priorities where you are the driving force ensuring completion and on-time delivery.
Cloud, automation and scripting aren’t just buzz words but synonymous with your delivery methods.
Change is an opportunity and ambiguity doesn’t rattle you.
You leverage excellent written and verbal communication skills in a clear business relevant manner that is adjusted to the audience; up, down and across the organization.
Independent sound decision making is the skill most used on a daily basis.
Collaboration, mentoring and training members of your team are an innate core skillset
Passionate about security and self-driven, to one-day become an expert.
You rely on your previous enterprise experience and enjoy the challenge of slaying large and ever-changing technical dragons.
Your formal education is, or work experience is similar to, a Bachelor’s Degree in Information Technology, Information Security/Assurance, Engineering, or related field of study.
If you believe your approach to security balances risk against the needs of the business; you excel in a highly-matrixed, organized-chaos environment we want to hear from you.
Principal Information Security Engineering Consultant, ITC
Posted 1 day ago
Job Viewed
Job Description
WHO YOU’LL WORK WITH
Candidate will primarily be part of Application Security Consulting team and work with your peers in Corporate Information Security and partner with internal groups, GT domains across Nike, reporting into Director, Information Security Engineering Consulting, ITC.
WHO WE ARE LOOKING FOR
We’re looking for an Principal Application Security Consultant. This role will serve as a trusted security advisor to Nike technology teams and business partners. Provide critical input and guidance to key partners to ensure that Nike applications, solutions and business processes are aligned with Nike Information Security Program. The focus areas for this role are Risk Reduction, Information Security by Design. The scope of work may involve Application Security, Cloud Security, Consumer and Business to Business Security.
The candidate needs to have strong Information Security knowledge, extremely strong written and verbal communication skills and be recognized for ability to drive communications across all areas and levels of the business. They should also be able to increase comprehension of complex business initiatives, inspiring the use of excellent analytical and problem-solving skills across the business and technology partners. We are seeking a motivated self-starter who is has a track record of leading ownership of information security challenges and driving them to resolution.
Bachelor's degree in Computer Science or Business Information Management or equivalent work experience
9+ years of experience in information security, training, or information technology disciplines
Technical knowledge and confidence in leading communications with both highly technical audiences and non-highly technical audiences
Ability to adjust communication style and approach, from strategic leadership to highly technical audiences
Deep understanding of AI/ML techniques, security frameworks (e.g., NIST AI RMF, CSA CCM)
Ability to analyze complex AI systems and identify vulnerabilities and risks
Ability to pull a diverse group of individuals with different goals together and inspire productive discussions inspiring alignment, to deliver strategic results
Analytical and problem-solving skills; assisting and driving others to identify solutions for complex problems
Ability to establish cross functional personal networks within Nike
Ability to enhance other’s understanding of various information security standards, regulations, and protocols
Drives strategic utilization of Cloud Security.
Excellent analytical and problem-solving abilities
Adaptability to evolving threats in the fast-paced cybersecurity landscape.
Security certifications like CISSP, CSSLP, CCSP, CISM , CRISC are preferred but equivalent knowledge will be considered.
WHAT YOU’LL WORK ON
If this is you, you’ll be working with the Application Security Consulting team to perform these key tasks:
Assessment of solutions and Identification of risks within the Nike eco-systems
Assessing controls for highly sensitive Nike data along with various stake holders
Providing critical input and guidance which aligns to Nike Information Security standards when considering key priorities, the threat landscape, and risk appetite of Nike, Inc.
Working closely with Nike Business and Technical teams to produce secure solutions at the speed of business
Assisting technology and business teams to prioritize security related work
Driving reports on reducing threats, risks, or any challenges to Nike Leadership
Support and consult various stakeholders across Vulnerability Management, Cloud Goverenance, and Secure software life cycle practices.
Risk Assessment & Vulnerability Management,Policy & Strategy Development, Security consulting, Security Awareness Training, Reporting & Communication and Current security trends
Drive Innovation across processes and day-to-day consultant tasks listed above.
Manage and educate smaller teams / or junior team members
Lead Information Security Engineering Consultant, ITC
Posted 1 day ago
Job Viewed
Job Description
WHO YOU’LL WORK WITH
Candidate will primarily be part of Application Security Consulting team and work with your peers in Corporate Information Security and partner with internal groups, GT domains across Nike, reporting into Director, Information Security Engineering Consulting, ITC.
WHO WE ARE LOOKING FOR
We’re looking for a Lead Application Security Consultant. This role will serve as a trusted security advisor to Nike technology teams and business partners. Provide critical input and guidance to key partners to ensure that Nike applications, solutions and business processes are aligned with Nike Information Security Program. The focus areas for this role are Risk Reduction and Information Security by Design. The scope of work may involve Application Security, Cloud Security, Consumer and Business to Business Security.
The candidate needs to have strong Information Security knowledge, extremely strong written and verbal communication skills and proven experience communicating across all areas and levels of the business. They should also be able to lead discussions to comprehend complex business initiatives, demonstrating excellent analytical and problem-solving skills. We are seeking a motivated self-starter who has a track record of leading ownership of information security challenges and driving them to resolution.
Bachelor's degree in Computer Science or Business Information Management or equivalent work experience
7+ years of experience in information security, training, or information technology disciplines
Technical knowledge and proven experience in communicating with both highly technical audiences and non-highly technical audiences
Ability to adjust communication style and approach, from strategic leadership to highly technical audiences
Ability to pull a diverse group of individuals with different goals together and lead productive discussions driving towards results
Analytical and problem-solving skills; record of identifying solutions for complex problems
Ability to establish cross functional personal networks within Nike
Ability to lead discussions for various information security standards, regulations, and protocols
Experience and comprehension of Cloud Security and adaptability to evolving threats in the fast-paced cybersecurity landscape.
Excellent analytical and problem-solving abilities and skills to Influence stakeholders
Conduct security assessments of SAP ERP environments—including SAP S/4HANA, Finance, and Supply Chain modules to identify vulnerabilities and recommend mitigation strategies aligned with enterprise security standards.
Collaborate with cross-functional teams to ensure secure integration of SAP systems with enterprise-grade solutions, enforcing best practices in identity management, access control, and data protection.
Security certifications like CISSP, CSSLP, CCSP, CISM , CRISC are preferred but equivalent knowledge will be considered.
WHAT YOU’LL WORK ON
If this is you, you’ll be working with the Application Security Consulting team to perform these key tasks:
Assessment of solutions and Identification of risks within the Nike eco-systems
Assessing controls for highly sensitive Nike data along with various stake holders
Providing critical input and guidance which aligns to Nike Information Security standards when considering key priorities, the threat landscape, and risk appetite of Nike, Inc.
Working closely with Nike Business and Technical teams to produce secure solutions at the speed of business
Assisting technology and business teams to prioritize security related work
Building Reports on reducing threats, and risks, or any challenges to Nike Leadership
Support and consult various stakeholders across Vulnerability Management, Cloud Goverenance, and Secure software life cycle practices.
Risk Assessment & Vulnerability Management,Policy & Strategy Development, Security consulting, Security Awareness Training, Reporting & Communication and Current security trends
Drive Innovation across processes and day-to-day consultant tasks listed above.
Senior Information Security Engineer, Insider Threat, ITC
Posted 1 day ago
Job Viewed
Job Description
WHO WILL YOU WORK WITH
You will be part of Corporate Information Security (CIS), reporting into the Data Protection Engineering team under Insider Threat. You will work closely with other CIS, Technical Operations, and Deskside Support teams.
WHAT WILL YOU WORK ON
You’ll be working with the Data Protection team and performing these key tasks:
Deployment and support of data loss prevention tools and capabilities across a globally distributed environment
Identify and implement opportunities to mature the Data Protection Platform Operations program in partnership with Data Protection Core Engineering and other technology partners
Work with peers throughout Nike Inc. to collect input on needed security capabilities
Coordinate troubleshooting activities with end users and collect details for investigations, coordinating with other engineering resources and our vendor partners
Perform Quality Assurance tests on a variety of applications to ensure compatibility
Gain understanding of the effectiveness of security policies and technologies
Contribute to the development of an annual Security roadmap outlining key initiatives in support of the Nike Information Security Strategy
Support management in understanding architectural and operational information risk within/against Nike
Develop business cases for the adoption of new technology, standards, and processes
Participate in projects or programs with significant risk and complexity to achieve milestones and objectives, modeling reliability and optimism
Staying current on security technologies, trends, standards, and best practices.
Continually update relevant security skills
Other duties and responsibilities as assigned
WHO ARE WE LOOKING FOR
As a Senior Information Security Engineer on our Insider Threat team, you will use your knowledge of international standards, industry best practices, professional experience, collaboration, and good judgment to implement an information security strategic roadmap focused on monitoring and protecting Nike’s most sensitive digital information. This role will be part of a team that is responsible for developing, implementing, and maintaining security technology footprint for data loss prevention which allows Nike to move rapidly and securely into new business enabling technologies.
You bring with yourself:
A bachelor’s degree in computer science or related filed, or equivalent work experience
4+ years of information technology experience with a minimum of 3 years in an information security related role
Knowledge of information security standards, principles, and practices
Demonstrated relevant security expertise in implementing, deploying, and supporting secure solutions and services for a mix of the following areas:
Enterprise Data Loss Prevention, including SaaS-based DLP and on-prem Data Loss Prevention capabilities
CASB solutions (API-based and inline)
Workstation Operating Systems (Windows / MacOS)
Enterprise Digital Rights Management capabilities
Office 365 security capabilities
Enterprise Device Management capabilities
Knowledge and experience in national and international privacy laws and regulations
Demonstrated proficiency at the techniques that go into the implementation of solution architectures, including requirements discovery and analysis, application of abstraction, formulation of solution context, solution alternatives identification and assessment, technology selection, and implementation
The ability to assess risk and translate it to business relevant considerations and facts
The ability to learn and apply new concepts quickly
Proven analytical and problem-solving ability
Excellent communication, balancing details and context and demonstrating good judgement with timely updates, risks, and opportunities
Excellent organization, and interpersonal skills with the ability to appropriately communicate and translate complex security risks to dollars
Ability to balance and prioritize work
Must be trustworthy in keeping sensitive data confidential
Senior Information Security Engineer
Posted today
Job Viewed
Job Description
Wells Fargo is seeking a Senior Information Security Engineer as a part of our network infrastructure team to support network segmentation program, cyber risk and threat identification by proactively and continuously monitoring the internal and external landscape for events, risks, threats, malicious code, vulnerabilities, and attacks related to the Financial Services industry or Wells Fargo Specifically. Candidate should be highly motivated with Remote Access solutions / VPN-Engineering to join our dynamic team. Remote Access solution team provides technical expertise in designing and implementing secure remote access solution and managing the infrastructure of a large organization. The primary goal for this role is to ensure system reliability of secure remote access with enhanced operational procedures and troubleshooting end users' issues
**In this role, you will:**
+ Design, document, test, maintain, and provide issue resolution recommendations for highly complex security solutions related to network security
+ Follow change and incident management formal processes
+ Review and correlate security logs for troubleshooting
+ Identify security vulnerabilities and issues, perform risk assessments, and evaluate remediation alternatives
+ Collaborate and influence all levels of professionals including managers
+ Lead a team to achieve objectives
+ Lead or participate in computer security incident response activities for moderately complex events
+ Conduct technical investigation of security related incidents and post incident digital forensics to identify causes and recommend future mitigation strategies
+ Provide security consulting on medium projects for internal clients to ensure conformity with corporate information, security policy, and standards
+ Design, document, test, maintain, and provide issue resolution recommendations for moderately complex security solutions related to networking, cryptography, cloud, authentication and directory services, email, internet, applications, and endpoint security
+ Review and correlate security logs
+ Utilize subject matter knowledge in industry leading security solutions and best practices to implement one or more components of information security such as availability, integrity, confidentiality, risk management, threat identification, modeling, monitoring, incident response, access management, and business continuity
+ Identify security vulnerabilities and issues, perform risk assessments, and evaluate remediation alternatives
+ Collaborate and consult with peers, colleagues and managers to resolve issues and achieve goals
**Required Qualifications:**
+ 4+ years of Information Security Engineering experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education
+ 2+ years of network routing and switching experience
+ 4+ years Palo Alto firewall experience (infrastructure and policy) - including PAN-OS advanced configuration, Application-based (App-ID), User-ID integration with Active Directory or Azure AD, SSL decryption (both inbound and outbound), Threat prevention, URL filtering, Wildfire, and DNS security.
+ 2+ years expertise in Panorama - template stacks, device groups, policy hierarchy, logging, reporting, custom dashboards, role-based control
+ 2+ years expertise with Palo Alto advanced features - Zone protection profiles and DoS policies, Decryption policy tuning and troubleshooting, SD-WAN or virtual wire deployments
+ Flexibility to support implementations outside of standard business hours.
+ Deliver high-quality technical artifacts, engineering solutions aligned with business objectives.
**Desired Qualifications:**
+ Experience with Global Protect
+ Experience with Ansible
+ information security experience including experience in one or more of the following security disciplines: information security monitoring, incident response, vulnerability management, host/network forensics, cyber-crime investigation, penetration testing, business continuity, or cyber threat intelligence
+ Experience with documentation creation/maintenance
+ Ability to provide leadership by coaching, training, and mentoring
+ Splunk experience
+ Agile experience
+ CCNA or CCNA-Security or Palo Alto Networks Certified Network Security Engineer (PCNSE) certified.
+ Leading and/or supporting the Palo Alto Global Protect VPN infrastructure operations with on-call responsibilities.
+ 2+ years of Intermediate to Advanced level experience with scripting/automation using tools such as: Bash, Ansible Playbook/Role Development, PowerShell, Python, etc.
+ 2+ years advanced understanding of Network concepts like DNS, Firewall and Load Balancing.
+ Proven experience with change and incident management practices in medium to large enterprise environments.
+ Basic understanding of TLS, Certificates, and MTLS.
+ Intimate knowledge of the inner workings of the Internet.
+ Experience with Agile Scrum or Kanban methodologies.
+ Excellent verbal, written, and interpersonal communication skills.
+ Advanced Information Security technical skills and solid knowledge and understanding of information security practices and policies.
+ ServiceNow, Jira and Confluence experience.
+ Technical documentation experience.
+ Strategic planning experience in translating leadership vision into executable strategies and initiatives.
+ Technology experience in the Financial Services sector.
+ Ability to coordinate completion of multiple tasks and meet aggressive time frames.
+ Advanced critical thinking, problem solving and technical troubleshooting abilities.
+ Strong analytical skills with high attention to detail and accuracy.
+ Experience with and the ability to thrive in a complex and fast-paced technology and/or information security organization, within a large enterprise environment.
+ Experience with Information Security Frameworks and standards (FFIEC, NIST, ISO).
+ Ability to work off hours and occasional weekends to support change activities.
+ Managed service delivery certifications like ITIL, Six Sigma will be beneficial.
**Job Expectations:**
+ This is a hybrid working position in the approved location 3 days per week and includes occasional after hours change implementation and issue resolution
+ Knowledge in maintaining, configuration, upgrades of Palo Alto platforms and configuring the Global Protect as per design.
+ Troubleshoot, identify and resolve Global Protect VPN issues and providing detailed root cause analysis regarding the problem.
+ Strong knowledge and experience in Palo Alto HIP/ Host-Checker policies, alert configuration.
+ Good knowledge of the TCP, HTTP, SSL protocol and headers, as well as packet-level protocol analysis capabilities.
+ Knowledge of Active Directory (machine/user objects, Organizational Units, group policy processing, etc.).
+ Strong knowledge and experience in the areas of IP routing, switching, load-balancing, and advanced network automation techniques and solutions.
+ Strong knowledge in the development of secure Network architectures and standards.
+ Strong experience with the application of advanced network-based technical security controls in large enterprise network environments.
+ Leading and/or supporting the Palo Alto Global Protect VPN infrastructure operations with on-call responsibilities.
+ Knowledge of DNS, DHCP, proxy technology, and Unix-based network appliances.
+ Experience with large-scale enterprise security solutions spanning multiple business functions and geographic locations.
+ Experience working with multifactor authentication.
+ Ability to work periodic after-hours work including participation in an on-call rotation.
+ Demonstrated enterprise experience in change management process.
+ Strong working knowledge of providing/understanding network security documentation.
+ Provide enterprise risk and threat communication efforts to key groups and the enterprise regarding potential threats and remediation efforts - including the ability to develop blog posts with effective analysis and actionable intelligence based on relevant security events.
+ Providing checklist, guidelines and implementation for Palo Alto Global Protect polices and investigation of security.
+ Intimate knowledge of the TCP, HTTP, SSL protocol and headers, as well as packet-level protocol analysis capabilities.
+ Track record of consistent proven experience with network infrastructure systems and Internet technologies.
+ Participates in the research, analysis, design, testing and implementation of complex computer network security/protection technologies for company information and network systems/applications.
+ Assists customers in identifying security solutions for the company's networks and virtual private networks, application systems, key public infrastructures, authentication and directory services to ensure the security of the network and confidential data.
+ Participates in computer security incident response activities and the technical investigations of security-related incidents.
+ Experience working in an environment utilizing Agile methodology and processing workflow using Jira tool.
+ Experience with logging, monitoring and data analysis tools such as Splunk, Google Cloud Platform and Grafana.
+ Experience at on-call support for network security related issues.
+ Periodic assignment to the team on-call rotation.
+ Support production deployments after-hours for Palo Alto infrastructure maintenance activities which involve communication and coordination with Engineering, Operations, Project Management, and Customer Application resources to ensure the scheduled deployments are successful.
**Posting End Date:**
1 Oct 2025
**_*Job posting may come down early due to volume of applicants._**
**We Value Equal Opportunity**
Wells Fargo is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, status as a protected veteran, or any other legally protected characteristic.
Employees support our focus on building strong customer relationships balanced with a strong risk mitigating and compliance-driven culture which firmly establishes those disciplines as critical to the success of our customers and company. They are accountable for execution of all applicable risk programs (Credit, Market, Financial Crimes, Operational, Regulatory Compliance), which includes effectively following and adhering to applicable Wells Fargo policies and procedures, appropriately fulfilling risk and compliance obligations, timely and effective escalation and remediation of issues, and making sound risk decisions. There is emphasis on proactive monitoring, governance, risk identification and escalation, as well as making sound risk decisions commensurate with the business unit's risk appetite and all risk and compliance program requirements.
Candidates applying to job openings posted in Canada: Applications for employment are encouraged from all qualified candidates, including women, persons with disabilities, aboriginal peoples and visible minorities. Accommodation for applicants with disabilities is available upon request in connection with the recruitment process.
**Applicants with Disabilities**
To request a medical accommodation during the application or interview process, visit Disability Inclusion at Wells Fargo ( .
**Drug and Alcohol Policy**
Wells Fargo maintains a drug free workplace. Please see our Drug and Alcohol Policy ( to learn more.
**Wells Fargo Recruitment and Hiring Requirements:**
a. Third-Party recordings are prohibited unless authorized by Wells Fargo.
b. Wells Fargo requires you to directly represent your own experiences during the recruiting and hiring process.
**Req Number:** R-
Cybersecurity Analyst (Penetration Tester)
Posted today
Job Viewed
Job Description
**The Position**
A healthier future. It's what drives us to innovate. To continuously advance science and ensure everyone has access to the healthcare they need today and for generations to come. Creating a world where we all have more time with the people we love.
That's what makes us Roche.
As a Cybersecurity Associate/Analyst (Penetration Tester), you'll be a key part of our security team. You'll be responsible for conducting comprehensive internal security assessments, identifying vulnerabilities, and recommending remediation measures to protect our organization's digital assets. Your work will directly help us maintain a robust security posture, ensuring the integrity and confidentiality of our data in a global healthcare environment.
**The Opportunity**
+ Perform penetration testing on web applications, networks, and systems to identify security vulnerabilities and weaknesses using both manual and automated tools.
+ Conduct in-depth analysis of security findings, prioritize risks, and provide detailed recommendations for remediation.
+ Develop and execute penetration testing plans, methodologies, and tools in accordance with industry best practices and standards.
+ Collaborate with cross-functional teams to implement security controls, mitigate risks, and enhance the overall security posture.
+ Document and report security assessment findings, including vulnerabilities, exploitation techniques, and recommended countermeasures.
+ Stay abreast of emerging threats, vulnerabilities, and security trends to proactively identify and address potential risks.
+ Provide technical expertise and guidance to support incident response activities and security awareness training programs.
+ Participate in security monitoring for existing and emerging vulnerabilities in a global environment.
**Who You Are**
+ You hold a Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field, or at least 1 to 2 years of equivalent work experience.
+ You have a certificate in eCPPT or OSCP. Having a CISSP certification is an advantage, or other relevant certifications (preferred).
+ You have proven experience in performing penetration testing and vulnerability assessments across a variety of platforms, operating systems, web application frameworks, networks, and cloud environments. Mobile app experience is a plus.
+ You are proficient in using penetration testing tools such as Metasploit, Burp Suite, Nmap, and Kali Linux.
+ You have a strong understanding of common security vulnerabilities and attack vectors, as well as mitigation strategies and best practices.
+ You are proficient with scripting or programming languages such as Python, PowerShell/C#, Bash, and Java. Familiarity with assembly is a plus.
+ You possess knowledge of and have demonstrated the ability to work within security frameworks and methodologies, such as MITRE ATT&CK, OWASP, and NIST.
+ You possess effective writing and communication skills, with the ability to clearly articulate technical findings and recommendations to both technical and non-technical stakeholders.
**Who we are**
A healthier future drives us to innovate. Together, more than 100'000 employees across the globe are dedicated to advance science, ensuring everyone has access to healthcare today and for generations to come. Our efforts result in more than 26 million people treated with our medicines and over 30 billion tests conducted using our Diagnostics products. We empower each other to explore new possibilities, foster creativity, and keep our ambitions high, so we can deliver life-changing healthcare solutions that make a global impact.
Let's build a healthier future, together.
**Roche is an Equal Opportunity Employer.**
Be The First To Know
About the latest Information security Jobs in India !
Lead Information Security Engineering Consultant, ITC
Posted today
Job Viewed
Job Description
Candidate will primarily be part of Application Security Consulting team and work with your peers in Corporate Information Security and partner with internal groups, GT domains across Nike, reporting into Director, Information Security Engineering Consulting, ITC.
**WHO WE ARE LOOKING FOR**
We're looking for a **Lead Application Security Consultant.** This role will serve as a trusted security advisor to Nike technology teams and business partners. Provide critical input and guidance to key partners to ensure that Nike applications, solutions and business processes are aligned with Nike Information Security Program. The focus areas for this role are Risk Reduction and Information Security by Design. The scope of work may involve Application Security, Cloud Security, Consumer and Business to Business Security.
The candidate needs to have strong Information Security knowledge, extremely strong written and verbal communication skills and proven experience communicating across all areas and levels of the business. They should also be able to lead discussions to comprehend complex business initiatives, demonstrating excellent analytical and problem-solving skills. We are seeking a motivated self-starter who has a track record of leading ownership of information security challenges and driving them to resolution.
+ Bachelor's degree in Computer Science or Business Information Management or equivalent work experience
+ 7+ years of experience in information security, training, or information technology disciplines
+ Technical knowledge and proven experience in communicating with both highly technical audiences and non-highly technical audiences
+ Ability to adjust communication style and approach, from strategic leadership to highly technical audiences
+ Ability to pull a diverse group of individuals with different goals together and lead productive discussions driving towards results
+ Analytical and problem-solving skills; record of identifying solutions for complex problems
+ Ability to establish cross functional personal networks within Nike
+ Ability to lead discussions for various information security standards, regulations, and protocols
+ Experience and comprehension of Cloud Security and adaptability to evolving threats in the fast-paced cybersecurity landscape.
+ Excellent analytical and problem-solving abilities and skills to Influence stakeholders
+ Conduct security assessments of SAP ERP environments-including SAP S/4HANA, Finance, and Supply Chain modules to identify vulnerabilities and recommend mitigation strategies aligned with enterprise security standards.
+ Collaborate with cross-functional teams to ensure secure integration of SAP systems with enterprise-grade solutions, enforcing best practices in identity management, access control, and data protection.
+ Security certifications like CISSP, CSSLP, CCSP, CISM , CRISC are preferred but equivalent knowledge will be considered.
**WHAT YOU'LL WORK ON**
If this is you, you'll be working with the Application Security Consulting team to perform these key tasks:
+ Assessment of solutions and Identification of risks within the Nike eco-systems
+ Assessing controls for highly sensitive Nike data along with various stake holders
+ Providing critical input and guidance which aligns to Nike Information Security standards when considering key priorities, the threat landscape, and risk appetite of Nike, Inc.
+ Working closely with Nike Business and Technical teams to produce secure solutions at the speed of business
+ Assisting technology and business teams to prioritize security related work
+ Building Reports on reducing threats, and risks, or any challenges to Nike Leadership
+ Support and consult various stakeholders across Vulnerability Management, Cloud Goverenance, and Secure software life cycle practices.
+ Risk Assessment & Vulnerability Management,Policy & Strategy Development, Security consulting, Security Awareness Training, Reporting & Communication and Current security trends
+ Drive Innovation across processes and day-to-day consultant tasks listed above.
NIKE, Inc. is committed to employing a diverse workforce. Qualified applicants will receive consideration without regard to race, color, religion, sex, national origin, age, sexual orientation, gender identity, gender expression, protected veteran status, or disability. NIKE is committed to working with and providing reasonable accommodation to individuals with disabilities. If, because of a medical condition or disability, you need a reasonable accommodation for any part of the employment process, please call and let us know the nature of your request, your location and your contact information.
Security Specialist - Information Technology
Posted today
Job Viewed
Job Description
**We are looking for an Security Specialist - IT to be part of our Nestlé Nespresso Digital and Tech Team.**
**Position Snapshot:**
+ Location: Bengaluru, Karnataka, India
+ Type of Contract: Permanent
+ Grade: Band 2
+ Type of work: Hybrid
+ Work Language: Fluent Business English
**The Role:**
_The primary responsibility of the IT Security Specialist is to support the protection of information assets against cyber threats. This role will assist in the implementation and maintenance of secure practices for our IT products, platforms, and solutions to reduce risks to the organization. The specialist will monitor and analyze security systems, logs, and reports to identify vulnerabilities and respond to security incidents and breaches._
_In collaboration with IT and business units, the specialist will provide guidance and implement practices that align with established information security policies and standards, while contributing to the enhancement of cyber resilience in accordance with Nestlé and Nespresso standards. Additionally, the specialist will stay informed about emerging security threats, technologies, and trends through ongoing research._
**In This Role, You Will:**
+ Conduct security assessments of IT assets, including digital solutions (Websites, Mobile Applications, Cloud Solutions, etc.), to identify potential security risks.
+ Assist teams in ensuring that new products, platforms, and solutions are implemented per security and compliance policies and standards.
+ Support the management and configuration of Web Application Firewalls (WAF) to protect against web-based threats and attacks.
+ Aid in the investigation and response to cyber fraud cases, including account takeovers and customer security breaches, ensuring timely resolution and reporting.
+ Support forensic analyses of security-related incidents in accordance with organizational policies and legal requirements.
+ Participate in the information security risk assessment process and assists in reporting findings and treatment efforts.
+ Maintain documentation of security projects and initiatives to ensure clarity, consistency, and compliance with established standards.
**What We're Looking For:**
+ Bachelor's degree in Computer Science or similar
+ 2+ years of experience in IT security, information security, or a related field, with a focus on security assessments, incident response, and security compliance.
+ Proficiency in security technologies such as firewalls, intrusion detection/prevention systems, Web Application Firewalls (WAF), and anti-malware solutions.
+ Familiarity with cloud security practices and technologies.
+ Understanding of security protocols, encryption, and authentication mechanisms.
+ Knowledge of relevant security regulations and standards (e.g., PCI-DSS, GDPR, ISO 27001) and their application in a corporate environment.
+ Strong analytical and communications skill, with the ability to asses risks and make recommendations for improvement and convey complex security concepts to all stakeholders.
**Extra Skills That Set You Apart:**
+ Relevant certifications (e.g., CompTIA Security+, Certified Information Systems Security Professional (CISSP), Certified Ethical Hacker (CEH)) are a plus
**We Offer You:**
We offer more than just a job. We put people first and inspire you to become the best version of yourself.
+ Flexible work policies including core hours and options for working from home. Discuss with us during the recruitment process to understand what flexibility could look like for you!
+ Genuine opportunities for career and personal development through ongoing training and constant career opportunities reflecting our conviction that people are our most important asset.
+ Modern "smart office" locations providing agile workspaces. Our state-of-the-art campus is equipped with areas to co-create, network, and chill!
+ International, dynamic & inclusive working environment with attractive additional benefits.
+ The pride to work for a B Corp certified company and one of the world's most trusted brands.
**The Hiring Process:**
+ **Your Application:** Submit your application, and we'll review it carefully (make sure your CV is in English as the hiring team is international).
+ **Initial Screening:** Relevant candidates will be contacted by our Talent Acquisition team for an initial interview.
+ **Hiring Manager Interview:** Selected candidates will then meet with the hiring manager to discuss the role and their experience in more detail.
+ **Stakeholder Interview:** Candidates will engage with potential team members to assess fit and collaboration.
+ **Leadership & HRBP Interaction:** Candidates will have a discussion with our leadership team & HRBP.
+ **Feedback:** After interviews, we provide feedback to all candidates.
+ **Job Offer:** Successful candidates will receive a formal offer.
+ **First Working Day:** Once the offer is accepted, we'll welcome you on your first day!
**About Nespresso:**
The Nespresso story began with a simple but revolutionary idea: enable anyone to create the perfect cup of espresso coffee.
Since 1986, Nespresso has redefined and revolutionized the way millions of people enjoy their coffee.
We are a Company committed with the Climate change and we aim to achieve carbon neutrality as soon as possible and net-zero GHG emissions by 2050 at the latest.
In 2019 we created the digital hub in Barcelona to offer the best customer experience and innovation to B2C and B2B channels.
_We encourage the diversity of applicants across gender, age, ethnicity, nationality, sexual orientation, social background, religion or belief and disability._
People are at the heart of our success - all 14,000 of them. We actively cultivate diversity, inclusion and belonging in the workplace. We celebrate individuality, believing that your authenticity and uniqueness can help us to grow and thrive together
Step outside your comfort zone; share your ideas, way of thinking and working to make a difference to the world, every single day. You own a piece of the action - make it count.
**Join Nestlé #beaforceforgood**
Network and Security SME

Posted today
Job Viewed
Job Description
At Kyndryl, we design, build, manage and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl? We are always moving forward - always pushing ourselves to go further in our efforts to build a more equitable, inclusive world for our employees, our customers and our communities.
**The Role**
As a System Administrator at Kyndryl, you'll solve complex problems and identify potential future issues across the spectrum of platforms and services. You'll be at the forefront of new technology and modernization, working with some of our biggest clients - which means some of the biggest in the world.
We are looking for a skilled Senior Network Security Engineer with strong expertise in Palo Alto NGFWs, centralized management via Panorama, Skybox/Tufin Tool, Arista Network and Global Protect VPN solutions. The role requires hands-on operational management with architect-level design and implementation experience , ensuring our firewall and Network infrastructure is both resilient and aligned with business needs. The ideal candidate will act as an operations expert, handling critical incidents while mentoring junior engineers and ensuring the stability of enterprise environments.
There's never a typical day as a System Administrator at Kyndryl, because no two projects are alike. You'll be managing systems data for clients and providing day-to-day solutions and security compliance. You'll oversee a queue of assignments and work directly with technicians, prioritizing tickets to deliver the best solutions to our clients.
One of the benefits of Kyndryl is that we work with clients in a variety of industries, from banking to retail. Whether you want to broaden your knowledge base or narrow your scope and specialize in a specific sector, you can find your opportunity here. You'll also get the chance to share your expertise by recommending modernization options, identifying new business opportunities, and cultivating relationships with other teams and stakeholders. Does the work get challenging at times? Yes! But you'll collaborate with a diverse group of talented people and gain invaluable management and organizational skills, which will come in handy as you move forward in your career.
Your future at Kyndryl
Every position at Kyndryl offers a way forward to grow your career, from Junior System Administrator to Architect. We have opportunities for Cloud Hyperscalers that you won't find anywhere else, including hands-on experience, learning opportunities, and the chance to certify in all four major platforms. One of the benefits of Kyndryl is that we work with clients in a variety of industries, from banking to retail. Whether you want to broaden your knowledge base or narrow your scope and specialize in a specific sector, you can find your opportunity here.
**Who You Are**
You're good at what you do and possess the required experience to prove it. However, equally as important - you have a growth mindset; keen to drive your own personal and professional development. You are customer-focused - someone who prioritizes customer success in their work. And finally, you're open and borderless - naturally inclusive in how you work with others.
Required Technical and Professional Expertise:
+ Having 10+ years of experience in network and security operations.
+ Configure, manage, and troubleshoot Palo Alto Next-Generation Firewalls (NGFWs), including security policies, NAT, VPNs (IPSec/SSL), URL filtering, and threat prevention.
+ Manage Panorama for centralized policy and log management.
+ Manage firewall policies, NAT, SSL decryption, URL filtering, threat prevention, and logging/reporting.
+ Administer Panorama for centralized firewall management, including policy creation, device group management, templates, and software upgrades
+ Proficiency in configuring security profiles (URL filtering, Anti-Spyware, Threat Prevention, WildFire).
+ Troubleshooting using CLI and packet captures on Palo Alto devices.
+ In Depth Understanding of Palo Alto High Availability.
+ Create and configure Global Protect remote VPN
+ Troubleshooting Wildfire issue
+ In Depth knowledge of App-ID , Content -ID and User-ID
+ Good understanding of networking fundamentals (TCP/IP, routing, NAT, VLANs, IPSec/SSL).
+ Maintain documentation, Run books for designs, configurations, and operational procedures.
+ Review firewall policy /compliance configuration via Skybox.
+ Monitor and resolve firewall health, logs, and alerts; escalate and resolve incidents in line with SLAs.
+ Configure, deploy, and manage Arista EOS-based switches and routers in data center and enterprise environments.
+ Design and implement spine-leaf architectures, VXLAN/EVPN overlays, and MLAG for scalable, resilient networks.
+ Configure and troubleshoot routing protocols (BGP, OSPF, IS-IS, eBGP/iBGP) and VRFs.
+ Deploy, integrate, and operate Arista Cloud Vision for centralized management, automation, compliance, and telemetry.
+ Working knowledge of Cloud Network technologies (Azure, AWS, GCP and others)
+ Perform rule analysis, optimization, and compliance reporting using Skybox and Tufin platforms.
+ Mentor junior engineers and act as an escalation point for complex operational issues.
Preferred Technical and Professional Experience:
+ Proven expertise with Palo Alto Firewalls (Panorama, Global Protect, threat prevention, HA)
+ Strong experience in Skybox and Tufin for firewall policy management, optimization, and compliance reporting.
+ Solid hands-on background with Arista Routing & Switching platforms.
+ Deep understanding of networking & security protocols: IPS/IDS, SSL/TLS, BGP, OSPF, VXLAN, segmentation.
+ Proficiency with troubleshooting tools: Wireshark, tcpdump, NetFlow, Cloud Vision Telemetry.
+ Familiarity with automation/scripting (Python, Ansible, APIs) is an advantage.
+ Strong troubleshooting and problem-solving skills.
+ Ability to work independently under pressure while collaborating with cross-functional teams.
+ Good communication skills for coordination and escalation handling.
+ Detail-oriented with strong documentation and process discipline.
+ Certifications preferred: PCNSE (Palo Alto), Arista ACE/CCNP/CCIE, Skybox/Tufin certifications, CISSP.
**Being You**
Diversity is a whole lot more than what we look like or where we come from, it's how we think and who we are. We welcome people of all cultures, backgrounds, and experiences. But we're not doing it single-handily: Our Kyndryl Inclusion Networks are only one of many ways we create a workplace where all Kyndryls can find and provide support and advice. This dedication to welcoming everyone into our company means that Kyndryl gives you - and everyone next to you - the ability to bring your whole self to work, individually and collectively, and support the activation of our equitable culture. That's the Kyndryl Way.
**What You Can Expect**
With state-of-the-art resources and Fortune 100 clients, every day is an opportunity to innovate, build new capabilities, new relationships, new processes, and new value. Kyndryl cares about your well-being and prides itself on offering benefits that give you choice, reflect the diversity of our employees and support you and your family through the moments that matter - wherever you are in your life journey. Our employee learning programs give you access to the best learning in the industry to receive certifications, including Microsoft, Google, Amazon, Skillsoft, and many more. Through our company-wide volunteering and giving platform, you can donate, start fundraisers, volunteer, and search over 2 million non-profit organizations. At Kyndryl, we invest heavily in you, we want you to succeed so that together, we will all succeed.
**Get Referred!**
If you know someone that works at Kyndryl, when asked 'How Did You Hear About Us' during the application process, select 'Employee Referral' and enter your contact's Kyndryl email address.
Kyndryl is committed to creating a diverse environment and is proud to be an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, pregnancy, disability, age, veteran status, or other characteristics. Kyndryl is also committed to compliance with all fair employment practices regarding citizenship and immigration status.