178 Security Consulting jobs in Bengaluru

**Introduction**
In this role, you'll work in one of our IBM Consulting Client Innovation Centers (Delivery Centers), where we deliver deep technical and industry expertise to a wide range of public and private sector clients around the world. Our delivery centers offer our clients locally based skills and technical expertise to drive innovation and adoption of new technology.
**Your role and responsibilities**
* Monitor threats and new attack techniques being disclosed in the wild
* Investigate events to determine if they are true events or false positives
* Communicate policies with end-users
* Create new ways to search for potentially suspicious events on systems
* Participate in projects to improve security monitoring toolkits as well as to improve defensive controls
* Provide different types of data to measure security and compliance
**Required technical and professional expertise**
* Vulnerability Management
**Preferred technical and professional experience**
* Qualys
IBM is committed to creating a diverse environment and is proud to be an equal-opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, caste, genetics, pregnancy, disability, neurodivergence, age, veteran status, or other characteristics. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.

**Introduction**
In this role, you'll work in one of our IBM Consulting Client Innovation Centers (Delivery Centers), where we deliver deep technical and industry expertise to a wide range of public and private sector clients around the world. Our delivery centers offer our clients locally based skills and technical expertise to drive innovation and adoption of new technology
**Your role and responsibilities**
* Senior SOC Analyst works within the 24/7 Cyber Fusion Center (CFC).
* The role is responsible for monitoring, triaging, analyzing and escalating incidents and events in the technology environment.
* This Senior SOC Analyst will evaluate data collected from a variety of cyber operations tools (e.g., SIEM, IDS/IPS, Firewalls, network traffic logs, cloud platforms, and SOAR solutions to analyze events that occur within the environments for the purposes of detecting and mitigating threats in both structured and unstructured situations.
* Individuals in this role are proactive and well-versed in log, identity, cloud, network, and root cause analysis
**Required technical and professional expertise**
* Senior SOC Analyst must have skills in email security, system event, network event, log analysis. Knowledge of common IT and security technology concepts with emphasis on TCP/IP network security, operating system security, modern attack and exploitation techniques is important.
* Experience conducting event analysis in AWS and Azure environments. Characterize and analyse alerts to understand potential and active threats.
* Perform event correlation using information gathered from a variety of sources within the enterprise to gain situational awareness and determine the nature and characteristics of events that could be an observed attack
**Preferred technical and professional experience**
* Document and escalate events/incidents that may cause adverse impact to the environment. Provide daily summary reports of events and activity relevant to cyber operations. Perform Cyber Operations trend analysis and reporting.
* Perform high-quality triage and thorough analysis for all alerts. Demonstrate effective communication skills both written and verbal. Actively engage in team chats, calls, and face to face settings. Constantly contribute to SOC runbooks/playbooks
* Recommend improvements to automations, alert fidelity, and security controls. Preferred Experience: Experience / Knowledge in CyberArk, Azure SSO. Knowledge of enterprise web technologies, security, and cutting-edge infrastructures
IBM is committed to creating a diverse environment and is proud to be an equal-opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, caste, genetics, pregnancy, disability, neurodivergence, age, veteran status, or other characteristics. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.

**Introduction**
In this role, you'll work in one of our IBM Consulting Client Innovation Centers (Delivery Centers), where we deliver deep technical and industry expertise to a wide range of public and private sector clients around the world. Our delivery centers offer our clients locally based skills and technical expertise to drive innovation and adoption of new technology
**Your role and responsibilities**
* Analyze and triage security incidents to determine their severity and impact on Infrastructure systems.
* Primary point of contact for Cyber Security Incident response in the Cyber Security Escalations team.
* Provide a first point of contact for L3 security escalations from the SOC team, ensuring a thorough review, escalation
**Required technical and professional expertise**
* Conduct in-depth analysis of security events, collaborating directly with different stakeholders to escalate and thoroughly investigate incidents.
* Participate in Security Incident Response Team in the identification, containment, eradication, and resolution of security issues, This involves understanding the scope, impact, and root cause of incidents to tailor the response effectively, Collaborate with SOC teams to ensure effective incident response and continuous improvement.
* Assist in the development and refinement of SOC processes, procedures, and playbooks, Create and maintain incident reports, documenting findings, actions taken, and lessons learned
**Preferred technical and professional experience**
* Stay current with emerging threats, vulnerabilities, and security technologies to proactively protect the organization. Notify Client of incident and required mitigation works.
* Track and update incidents and requests based on client's updates and analysis results. Good understanding on Phishing email analysis and their terminologies
* Having knowledge on EDR solutions (Preferred CrowdStrike), Participate in regular SOC team meetings and provide input on improving security posture. Communicate vertically and horizontally to keep stakeholders informed and involved on Security Operations matters
IBM is committed to creating a diverse environment and is proud to be an equal-opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, caste, genetics, pregnancy, disability, neurodivergence, age, veteran status, or other characteristics. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.

**Introduction**
In this role, you'll work in one of our IBM Consulting Client Innovation Centers (Delivery Centers), where we deliver deep technical and industry expertise to a wide range of public and private sector clients around the world. Our delivery centers offer our clients locally based skills and technical expertise to drive innovation and adoption of new technology
**Your role and responsibilities**
* The SIEM Administrator will be responsible for administering the deployed SIEM service. The candidate is also expected to have hands on experience of deploying a SIEM solution from scratch, where the candidate should have the skills and knowledge to gather all the required information to build the SIEM solution.
* In-depth knowledge of technical approaches in security analytics, monitoring and alerting. Maintains technical knowledge within areas of expertise.
* This role is also responsible for identifying, analyzing, developing new or tuning & Refinement of the content or use cases. Strong problem solving and troubleshooting skills including the ability to perform root cause analysis for preventative investigation
**Required technical and professional expertise**
* Should have experience in any of the query language i.e AQL ,KQL, SPL, LEQL etc for writing the complex queries & saved search creation.
* Should have strong knowledge of different cybersecurity frameworks i.e.MITRE, NIST and Cyber kill chain model.
* Should have understanding of regular expression writing and custom parsing
**Preferred technical and professional experience**
* Collaborate with key stakeholders within technology, application and cyber security to develop use cases to address specific business needs.
* Create technical documentation around the content deployed to the SIEM.
* Creates and develops correlation and detection rules with SIEM solution, reports & dashboards to detect emerging threats
IBM is committed to creating a diverse environment and is proud to be an equal-opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, caste, genetics, pregnancy, disability, neurodivergence, age, veteran status, or other characteristics. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.

**Introduction**
In this role, you'll work in one of our IBM Consulting Client Innovation Centers (Delivery Centers), where we deliver deep technical and industry expertise to a wide range of public and private sector clients around the world. Our delivery centers offer our clients locally based skills and technical expertise to drive innovation and adoption of new technology
**Your role and responsibilities**
* The SIEM Administrator will be responsible for administering the deployed SIEM service. The candidate is also expected to have hands on experience of deploying a SIEM solution from scratch, where the candidate should have the skills and knowledge to gather all the required information to build the SIEM solution.
* In-depth knowledge of technical approaches in security analytics, monitoring and alerting. Maintains technical knowledge within areas of expertise.
* This role is also responsible for identifying, analyzing, developing new or tuning & Refinement of the content or use cases. Strong problem solving and troubleshooting skills including the ability to perform root cause analysis for preventative investigation
**Required technical and professional expertise**
* Should have experience in any of the query language i.e AQL ,KQL, SPL, LEQL etc for writing the complex queries & saved search creation.
* Should have strong knowledge of different cybersecurity frameworks i.e.MITRE, NIST and Cyber kill chain model.
* Should have understanding of regular expression writing and custom parsing
**Preferred technical and professional experience**
* Collaborate with key stakeholders within technology, application and cyber security to develop use cases to address specific business needs.
* Create technical documentation around the content deployed to the SIEM.
* Creates and develops correlation and detection rules with SIEM solution, reports & dashboards to detect emerging threats
IBM is committed to creating a diverse environment and is proud to be an equal-opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, gender, gender identity or expression, sexual orientation, national origin, caste, genetics, pregnancy, disability, neurodivergence, age, veteran status, or other characteristics. IBM is also committed to compliance with all fair employment practices regarding citizenship and immigration status.

**Job Description**
We are looking for self-driven professionals interested in a career in Oracle. The position will independently program manage the ISO 27001 ISMS implementation for OFSS Ltd. In addition will also perform project review activities.
Working at Oracle & in this team provides you an opportunity to make a difference to overall business, continuous learning opportunities with access to best tools & courses and a fulfilling & inclusive environment.
Career Level - IC4
**Responsibilities**
1. As an Individual Contributor, perform the role of an Information Security Management System Implementation Lead
2. Work with senior management, various stakeholders from business, support function teams to implement the processes, controls and schedules of the extant standards the organization adhers to.
3. Program manage the ISO 27001 certification program by ensuring compliance to the various Oracle policies, ISMS procedures, ISO standards including front-ending the internal & external audits
4. Successfully transition the organization towards the new standards as and when new standards are applicable. (As an example: Transitioning from ISO 27001| 2013 to 2022 standards by adjusting processes, controls & ISMS activities ). Train ISMS members towards changes in standards and their impact on ISMS activities.
5. Additionally perform the role of a Senior Partner advisor who performs management oversight to partner projects that involves implementation of Oracle's Banking & OFSAA Products.
6. Perform audit on identified Oracle product implementation projects to measure project quality & execution effectiveness.
7. Continuously source, maintain, enrich evaluation of projects from various sources as determined by the management to build a repository of program successes, lessons learnt, corrective actions needed.
8. Build an objective evaluation score for projects / programs
SKILLS NEEDED
1. A Bachelor or Masters degree in Sciences, Engineering, Technology or accounting.
2. 20 plus years of experience with demonstrable experience in
1. audit / process quality management. With specific focus on Information security.
2. Must have led multiple ISO 27001 implementations or led audits.
3. Information Technology industry processes
4. Must have a thorough understanding of various standards, Practices & legislations in the field of information security.
3. Certifications
1. ISO 27001 Lead Auditor
2. Project Management Professional / Program Management Professional
4. Experience in Waterfall / Agile project methodologies.
5. Experience in project execution in IT industry.
6. Experience in performing project reviews of third-party projects, with a view to identifying strengths & opportunities for improvements in the project management process, project execution, resource skills, customer satisfaction & measurable project outcomes.
7. Excellent communication skills (written & verbal) at various hierarchy levels.
8. Excellent documentation skills with a varied audience - executive summaries for senior management, detailed reports for project team with actionable insights.
9. Although the job does not currently envisage any travel, willingness to travel Onsite to Customer location if required.
10. Should be able to join in 4-6 weeks of offer.
Career Level - IC4
**About Us**
As a world leader in cloud solutions, Oracle uses tomorrow's technology to tackle today's challenges. We've partnered with industry-leaders in almost every sector-and continue to thrive after 40+ years of change by operating with integrity.
We know that true innovation starts when everyone is empowered to contribute. That's why we're committed to growing an inclusive workforce that promotes opportunities for all.
Oracle careers open the door to global opportunities where work-life balance flourishes. We offer competitive benefits based on parity and consistency and support our people with flexible medical, life insurance, and retirement options. We also encourage employees to give back to their communities through our volunteer programs.
We're committed to including people with disabilities at all stages of the employment process. If you require accessibility assistance or accommodation for a disability at any point, let us know by emailing or by calling in the United States.
Oracle is an Equal Employment Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability and protected veterans' status, or any other characteristic protected by law. Oracle will consider for employment qualified applicants with arrest and conviction records pursuant to applicable law.

We are looking for self-driven professionals interested in a career in Oracle. The position will independently program manage the ISO 27001 ISMS implementation for OFSS Ltd. In addition will also perform project review activities. 

Working at Oracle & in this team provides you an opportunity to make a difference to overall business, continuous learning opportunities with access to best tools & courses and a fulfilling & inclusive environment.

Career Level - IC4

As an Individual Contributor, perform the role of an Information Security Management System Implementation Lead 

Work with senior management, various stakeholders from business, support function teams to implement the processes, controls and schedules of the extant standards the organization adhers to.

Program manage the ISO 27001 certification program by ensuring compliance to the various Oracle policies, ISMS procedures, ISO standards including front-ending the internal & external audits

Successfully transition the organization towards the new standards as and when new standards are applicable. (As an example: Transitioning from ISO 27001| 2013 to 2022 standards by adjusting processes, controls & ISMS activities ). Train ISMS members towards changes in standards and their impact on ISMS activities.

Additionally perform the role of a Senior Partner advisor who performs management oversight to partner projects that involves implementation of Oracle’s Banking & OFSAA Products.

Perform audit on identified Oracle product implementation projects to measure project quality & execution effectiveness.

Continuously source, maintain, enrich evaluation of projects from various sources as determined by the management to build a repository of program successes, lessons learnt, corrective actions needed.

Build an objective evaluation score for projects / programs

SKILLS NEEDED

A Bachelor or Masters degree in Sciences, Engineering, Technology or accounting.

20 plus years of experience with demonstrable experience in audit / process quality management. With specific focus on Information security. Must have led multiple ISO 27001 implementations or led audits. Information Technology industry processes Must have a thorough understanding of various standards, Practices & legislations in the field of information security.

Certifications ISO 27001 Lead Auditor Project Management Professional / Program Management Professional

Experience in Waterfall / Agile project methodologies.

Experience in project execution in IT industry.

Experience in performing project reviews of third-party projects, with a view to identifying strengths & opportunities for improvements in the project management process, project execution, resource skills, customer satisfaction & measurable project outcomes.

Excellent communication skills (written & verbal) at various hierarchy levels.

Excellent documentation skills with a varied audience – executive summaries for senior management, detailed reports for project team with actionable insights. 

Although the job does not currently envisage any travel, willingness to travel Onsite to Customer location if required.

Should be able to join in 4-6 weeks of offer.

Career Level - IC4

Description

:

Essential Responsibilities:

Establish overall business or technical strategy for risk management with significant impact on operations.

Influence executive-level decision-making through strategic risk assessments and recommendations.

Partner with stakeholders to implement strategies that reduce or transfer identified risks.

Monitor and analyze risk exposure to ensure alignment with organizational objectives.

Lead initiatives that contribute to long-term sustainability and resilience in the face of uncertainty.

Minimum Qualifications:

Minimum of 15 years of relevant work experience and a Bachelor's degree or equivalent experience.

Preferred Qualification:

Policy Development:  Define comprehensive and adaptive chargeback policies aligned with the global payments ecosystem, regulatory requirements, and industry best practices.

Ecosystem Coordination:  Engage and collaborate with internal stakeholders across product, legal, compliance, and external partners to ensure policies reflect the dynamics of PayPal World’s multi-party environment.

People Management: Build a team to manage the Chargeback infrastructure for PayPal World.

Process Management:  Design and manage end-to-end chargeback processes ensuring operational efficiency, accuracy, and fairness.

Performance Monitoring: Establish and track key performance indicators related to chargebacks, disputes, and risk exposure; implement continuous improvements using data-driven insights.

Risk Mitigation: Identify and react promptly to emerging fraud schemes, disputes patterns, and ecosystem shifts, adapting controls and policies accordingly.

Compliance and Reporting:  Ensure adherence to relevant regulatory frameworks and industry standards globally; provide reporting and risk communication to senior leadership.

Thought Leadership:  Represent PayPal in industry forums and regulatory discussions related to payments dispute management and risk.

Qualifications:

15+ years of experience in the payments industry with deep expertise in chargebacks, dispute resolution, and/or payment risk management.

5+ years of experience in people management roles is critical. Prior experience in setting up global teams is desirable.

Strong understanding of the payments infrastructure, digital wallets, acquiring and issuing banks, and regulatory environment globally.

Exceptional leadership and stakeholder management skills with experience collaborating across corporate and external ecosystems.

Data-driven mindset with expertise in performance analytics and continuous process improvement.

Experience in designing and managing chargeback or fraud dispute processes in a complex, multi-stakeholder, multi-regional payment ecosystem is highly desirable.

Subsidiary:

PayPal

Travel Percent:

10

PayPal does not charge candidates any fees for courses, applications, resume reviews, interviews, background checks, or onboarding. Any such request is a red flag and likely part of a scam. To learn more about how to identify and avoid recruitment fraud please visit .

For the majority of employees, PayPal's balanced hybrid work model offers 3 days in the office for effective in-person collaboration and 2 days at your choice of either the PayPal office or your home workspace, ensuring that you equally have the benefits and conveniences of both locations.

Our Benefits:

At PayPal, we’re committed to building an equitable and inclusive global economy. And we can’t do this without our most important asset—you. That’s why we offer benefits to help you thrive in every stage of life. We champion your financial, physical, and mental health by offering valuable benefits and resources to help you care for the whole you.

We have great benefits including a flexible work environment, employee shares options, health and life insurance and more. To learn more about our benefits please visit .

Who We Are:

to learn more about our culture and community.

Commitment to Diversity and Inclusion

PayPal provides equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, pregnancy, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state, or local law. In addition, PayPal will provide reasonable accommodations for qualified individuals with disabilities. If you are unable to submit an application because of incompatible assistive technology or a disability, please contact us at .

Belonging at PayPal:  

Our employees are central to advancing our mission, and we strive to create an environment where everyone can do their best work with a sense of purpose and belonging. Belonging at PayPal means creating a workplace with a sense of acceptance and security where all employees feel included and valued. We are proud to have a diverse workforce reflective of the merchants, consumers, and communities that we serve, and we continue to take tangible actions to cultivate inclusivity and belonging at PayPal.

Any general requests for consideration of your skills, please .

We know the confidence gap and imposter syndrome can get in the way of meeting spectacular candidates. Please don’t hesitate to apply.

Responsibilities and Accountabilities:

Complete Objectives and Key Results (OKR) as established by value teams, ensuring alignment with overall business goals.

Ensure risk assessment methodology, policies, standards and methods are in place to effectively manage regulatory, operational, and third-party risks across global business units.

Establish third party risk management standards including due diligence processes, contract terms, audit rights, and ongoing monitoring.

Develop and manage third party risk assessment program (KPI) and (KRI) metrics

Ensure monitoring for risk management lifecycle to include procedures for the risk register, risk exceptions, risk acceptance and management escalation based on the level of associated risk.

Ensure risk assessments are performed to identify and prioritize potential threats and vulnerabilities

Interpret and analyze third party security risk assessment results, report findings to business owners, and provide recommendations for remediation

Develop risk mitigation strategies and action plans in alignment with business objectives.

Act as a risk advisor to the business by analyzing, simplifying, and expressing complex problems in an easily consumable and meaningful way

Manage remediation plans to respond to previously unidentified or inadequately addressed risk areas

Monitor and assess IT risks on an ongoing basis and make recommendations for risk reduction

Evaluate existing risk monitoring metrics and tools, develop metrics and continue to enhance maturity of analytics. Develop security reports and dashboards for varied audience

Understand legal requirements and identify emerging security risks working with the relevant business groups to facilitate proactive implementation of mitigation measures

Implement tool to streamline and mature risk assessment activities

Develop and maintain documentation related to security requirements, policies, and procedures.

Providing training and support to teams on compliance-related matters and best practices.

Monitor industry trends and emerging threats to inform cyber and product security strategies.

Requirements

Required Qualifications:

Bachelor's degree in Computer Science, Information System or related field

8+ years of IT and/or security experience in a position related to this role (e.g., information security, compliance, audit, risk, etc.)

Demonstrated experience with security best practices and risk management operating in cloud environments such as AWS, Azure and in other 3rd party SAAS platforms

Demonstrated experience in third party risk management, managing security risks, developing and implementing security training programs

Demonstrated experience in teaming skills incorporating global cross-functional teams, peer relationships, informing, and understanding and appreciating differences

Knowledge of emerging technology risks, including cloud computing, agile development/CICD, cybersecurity, and privacy

Organized self-starter; versatile and capable of working with minimal management oversight

Proficient time management skills and ability to juggle multiple, competing priorities

Knowledge and understanding of information security best practices

Strong consultative skills, with the ability to advise and consult with business and technical professionals.

Preferred Qualifications:

Relevant certifications (e.g., CISSP, CISM) are a plus.