155 Security Assessment jobs in India

Here is what one of our leaders, Senior Director of Security Compliance (),has to say about the role : "Our team is dedicated to not only protecting our cloud platform but also fostering a culture that values people and their growth. We work with incredible customers across a wide variety of industries, providing unique and exciting security challenges every day. If you're looking for a role that offers the chance to work with industry experts then this is the place for you! Come and be a part of a team where your contributions are valued, and your development is a priority.”

iManage is committed to providing an excellent candidate experience and will never ask you to engage in recruitment activity via text and exclusively communicates from emails using the @imanage.com domain. If you have any concerns or questions about communications you have received, please send them to so our team members can review.

We offer a flexible working policy that supports the health and well-being of our iManage employees.

As an organization, we value collaborating and learning from our peers in person, while providing the necessary flexibility for our employees to have a meaningful work-life balance.

Please reach out to learn more.

Being a Security Compliance Analyst at iManage Means… You are a dynamic individual excited and ready to take your Information Security career to the next level.

You are comfortable working with a broad range of stakeholders; IT, engineering, security operations, suppliers, pre sales and customer security compliance teams.

As a key member of our Security team, you will have no shortage of interesting and varied work to learn from.  You will assist the team with customer security assessments and our supplier due diligence, help maintain our security knowledge library, work on projects to build automation to accelerate response times, contribute to risk assessments relating to our suppliers, and more.

In addition, you will translate our customer and supplier security findings into actionable requirements for operations and engineering teams.

Here is what one of our leaders, Senior Director of Security Compliance ( Michael Hall ),has to say about the role : "Our team is dedicated to not only protecting our cloud platform but also fostering a culture that values people and their growth.

We work with incredible customers across a wide variety of industries, providing unique and exciting security challenges every day.

If you're looking for a role that offers the chance to work with industry experts then this is the place for you!

Come and be a part of a team where your contributions are valued, and your development is a priority.” iM Responsible For…   Responding to customer security questionniares, audits, and enquiries, including calls.

Prioritizing the customer security queue and handling escalations and issues from our customer community.

Contributing to the creation and maintenance of customer security documentation and internal knowledge base.

Partnering with Sales teams to ensure due diligence assessments, InfoSec questionnaires and RFPs are completed to deadlines.

Reviewing supplier security responses, such as SIG questionnaires, evidence, and SOC2 Reports to ensure they meet our high standards for security.

Contributing to automation projects, such as the use of AI, to speed up customer response times.

Provide feedback and KPI’s to management regarding customer security.

iM Qualified Because I Have…   Bachelor’s degree in Engineering, Computer Science, IT or equivalent experience.

This role is for one of the Weekday's clients

Min Experience: 6 years

Location: Mumbai

JobType: full-time

Qualifications:

• Bachelor’s or Master’s degree in Computer Science, Information Technology, Engineering, or a related field
• Relevant certifications preferred: CISSP, OSCP, CRISC, CSSLP

Experience:

• 10–12 years in cyber security, including 8+ years of hands-on experience in:
• Security assessments for web, mobile, APIs, network, infrastructure, and platforms
• Risk evaluation for AI-driven products

Requirements

Technical Expertise:

• In-depth understanding of security frameworks and standards such as OWASP, SANS, MITRE ATT&CK
• Strong knowledge of threat vectors, exploitation techniques, and mitigation strategies
• Proficiency in threat modeling and gap analysis of security controls
• Familiarity with containerization technologies (Docker, OpenShift, Kubernetes) is a plus
• Experience in coding (1–2 years) is advantageous

Key Responsibilities:

• Perform architecture and data-flow reviews, threat modeling, and risk analysis
• Evaluate design documents (SRS, HLD/LLD, BCP) for potential security weaknesses
• Develop and maintain control checklists aligned with global security standards
• Conduct security risk assessments across applications, APIs, mobile platforms, microservices, infrastructure, and AI solutions
• Prepare comprehensive risk reports, classify risks based on severity, and monitor project adherence to security controls
• Recommend mitigation strategies and compensating controls to development and operations teams
• Collaborate effectively with internal teams, project managers, and customers
• Escalate high-impact risks that affect the overall security posture
• Keep up-to-date with evolving cyber threats and actively contribute to team knowledge sharing
• Train and mentor team members on security best practices and methodologies

Personal Attributes:

• Strong communication skills—both written and verbal
• High attention to detail and critical thinking ability
• Capable of explaining complex risk concepts in a clear, simple manner
• Skilled at managing multiple priorities in a fast-paced environment
• Self-motivated, adaptable, and able to work independently or as part of a team

Key Skills:

• Cybersecurity
• Risk Assessment & Advisory
• OWASP, MITRE, SANS
• CISSP, OSCP, CRISC (preferred)
• Threat Modeling
• Application & Infrastructure Security
• AI Product Risk Evaluation
• Container Security

This is a remote position.

Job Title: AI Security & Compliance Specialist
Experience Required: 4 + Years
Work Location: Remote
Notice Period: Immediate Joiner

Job Overview:

We are looking for an experienced and proactive AI Security & Compliance Specialist to join our team on a 12-month contract-to-hire engagement. The ideal candidate will have solid experience in implementing ISO 27001 and working knowledge of AI-specific security concerns, as well as a growing familiarity with ISO 42001 and the NIST Cybersecurity Framework (CSF). You will play a critical role in ensuring the trustworthiness, security, and compliance of AI systems within our organization.

Key Responsibilities:

• Implement and manage security controls for AI systems across their lifecycle — from data collection and model training to deployment and monitoring.
  
• Address AI-specific threats such as data poisoning , model inversion , adversarial attacks , and prompt injection vulnerabilities.
  
• Lead or support the implementation and maintenance of ISO 42001 (Artificial Intelligence Management System) for trust, ethics, and robustness in AI systems.
  
• Conduct comprehensive AI-specific risk assessments , identifying risks associated with bias, privacy, and societal impacts.
  
• Develop, update, and align AI security , data governance , and information security policies with ISO 42001 requirements.
  
• Assist in internal and external audits and prepare for ISO 42001 certification .
  
• Contribute to the continuous improvement of ISO 27001 (Information Security Management System) .
  
• Support in risk assessments , gap analysis , and ensure adherence to compliance requirements .
  
• Assess cybersecurity posture using NIST CSF , identify gaps, and develop mitigation strategies.
  
• Draft, review, and update organizational governance policies and compliance documentation .
  

Required Qualifications:

Education:

• Bachelor’s degree in Engineering , Computer Science , or a related technology discipline.
  

Certifications (Preferred but not mandatory):

• ISO 27001 Lead Implementer/Lead Auditor , Security+ , CEH , CISA , ISO 42001 Lead Implementer , or AI security certifications.
  

Experience:

• 4 to 8 years of total experience in information security, compliance, or technology risk .
  
• 2 to 3 years of experience in risk/compliance related to AI systems or involvement in AI governance projects is desirable.
  

Key Skills & Knowledge:

• Strong practical knowledge of ISO 27001 implementation, maintenance, or audit processes.
  
• Familiarity with NIST CSF and its practical application in organizational settings.
  
• Awareness or hands-on involvement with AI security , including model security , data governance , and bias mitigation .
  
• Exposure to ISO 42001 or AI risk management frameworks is highly desirable.
  
• Experience in conducting technology risk assessments , managing information security audits , and delivering risk advisory services .
  
• Excellent understanding of security frameworks, policies, and compliance controls.
  

Who We Are

At Kyndryl, we design, build, manage and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl? We are always moving forward – always pushing ourselves to go further in our efforts to build a more equitable, inclusive world for our employees, our customers and our communities.

The Role

Infrastructure Specialists at Kyndryl are project-based subject matter experts in all things infrastructure – good at providing analysis, documenting and diagraming work for hand-off, offering timely solutions, and generally “figuring it out.” This is a hands-on role where your feel for the interaction between a system and its environment will be invaluable to every one of your clients.

There are two halves to this role: First, contributing to current projects where you analyze problems and tech issues, offer solutions, and test, modify, automate, and integrate systems. And second, long-range strategic planning of IT infrastructure and operational execution. This role isn’t specific to any one platform, so you’ll need a good feel for all of them. And because of this, you’ll experience variety and growth at Kyndryl that you won’t find anywhere else.

You’ll be involved early to offer solutions, help decide whether something can be done, and identify the technical and timeline risks up front. This means dealing with both client expectations and internal challenges – in other words, there are plenty of opportunities to make a difference, and a lot of people will witness your contributions. In fact, a frequent sign of success for our Infrastructure Specialists is when clients come back to us and ask for the same person by name. That’s the kind of impact you can have!

This is a project-based role where you’ll enjoy deep involvement throughout the lifespan of a project, as well as the chance to work closely with Architects, Technicians, and PMs. Whatever your current level of tech savvy or where you want your career to lead, you’ll find the right opportunities and a buddy to support your growth. Boredom? Trust us, that won’t be an issue.

Your future at Kyndryl
There are lots of opportunities to gain certification and qualifications on the job, and you’ll continuously grow as a Cloud Hyperscaler. Many of our Infrastructure Specialists are on a path toward becoming either an Architect or Distinguished Engineer, and there are opportunities at every skill level to grow in either of these directions.

Who You Are

You’re good at what you do and possess the required experience to prove it. However, equally as important – you have a growth mindset; keen to drive your own personal and professional development. You are customer-focused – someone who prioritizes customer success in their work. And finally, you’re open and borderless – naturally inclusive in how you work with others.

Required Technical and Professional Experience

Preferred Technical and Professional Experience

Being You

Diversity is a whole lot more than what we look like or where we come from, it’s how we think and who we are. We welcome people of all cultures, backgrounds, and experiences. But we’re not doing it single-handily: Our Kyndryl Inclusion Networks are only one of many ways we create a workplace where all Kyndryls can find and provide support and advice. This dedication to welcoming everyone into our company means that Kyndryl gives you – and everyone next to you – the ability to bring your whole self to work, individually and collectively, and support the activation of our equitable culture. That’s the Kyndryl Way.

What You Can Expect

With state-of-the-art resources and Fortune 100 clients, every day is an opportunity to innovate, build new capabilities, new relationships, new processes, and new value. Kyndryl cares about your well-being and prides itself on offering benefits that give you choice, reflect the diversity of our employees and support you and your family through the moments that matter – wherever you are in your life journey. Our employee learning programs give you access to the best learning in the industry to receive certifications, including Microsoft, Google, Amazon, Skillsoft, and many more. Through our company-wide volunteering and giving platform, you can donate, start fundraisers, volunteer, and search over 2 million non-profit organizations. At Kyndryl, we invest heavily in you, we want you to succeed so that together, we will all succeed.

Essential Job Functions

• Administers access control processes which may include badging, rights for accessing databases or other technologies by adding or removing user names from access control lists to ensure/maintain the integrity of and safeguard information.
• Oversees maintaining of current set of valid users, issuing and recalling certificates and secure identifications to and from individual users and defining groups. Ensures passwords are reset as needed to maintain appropriate access control. Coordinates the visitor control process to ensure that only authorized personnel are granted access to security information including badge requirements.
• Coordinates and monitors sensitive aspects of security programs to ensure compliance with client, government and/or company security policies and procedures. Administers the production and submission of appropriate government forms to ensure the proper guidance for the protection and handling of industrial security, NSI and other security information.
• Develops and implements security procedures, ensuring compliance with program requirements, policies, procedures and processes including personnel, physical and administrative security systems and procedures. Participates in security procedures associated with the accreditation of information systems. Conducts audits to ensure adherence.
• Ensures destruction of confidential information in accordance with policies and procedures.
• Develops, coordinates and may conduct security education programs to assist in educating personnel about security systems, individual security responsibilities and the importance of security.
• Investigates or oversees the investigation of losses and security violations and recommends corrective actions. Implements approved course of action as appropriate. Develops investigative reports and documentation as required.

Basic Qualifications

• Bachelor's degree or equivalent combination of education and experience
• Bachelor's degree in computer science, information technology, business management, criminal justice or related field preferred
• Three or more years of experience in security policies and procedures, information systems security or computer operations
• Experience working with company software and hardware products
• Experience working with domain structures, user authentication and digital signatures
• Experience working with industrial and/or National Security Information security systems and implementation procedures
• Possess a security clearance as required by contract or government regulations (i.e. at the Secret level and/or certified information security systems professional (CISSP) certification)

Other Qualifications

• Research skills
• Good personal computer and business solutions software skills
• Strong communication skills to interact with team members, customers, management and support personnel
• Strong analytical and problem solving skills for design, creation and testing of security systems
• Ability to work independently and as part of a team

Work Environment

• Office environment