Company: Deloitte
Location: Bengaluru, Karnataka, India
LinkedIn post

Experience: 4 to 12 yrs


Job Title: Application Security SME

Location: Bangalore, India (Mandatory)

Best fit Roles:

Web Application Penetration Testing, API Testing, Network Penetration Testing Mobile Application Penetration Testing, Source Code Review, Thick Client Application Testing

Certifications: Certified Ethical Hacker (CEH), Certified Red Team Professional (CRTP), Certified AppSec Pentester (CAPen), Certified API Security Analyst (CASA), OffSec Certified Professional (OSCP)



Job Title: SDLC SUPPORT SME

Location: Pune, India

Best fit Roles: SAST SME, DAST SME , DevSecOps Integration specialist, SDLC Secure Developer, Automated Scripting Knowledge

The Key Skills

  • Proficient in SDLC Security with experience in both Agile and Waterfall Software Development Life Cycles.
  • Understanding of integration & automation of various security technologies including SAST, DAST, MAST, IAST, container security tools within DevOps tooling pipeline (Jenkins, GitHub, Chef, Ansible, Nexus, etc).
  • Understanding of platform-specific security risks, common vulnerabilities for web and architectures that are commonly used by mobile application. (HTML, XML, JavaScript, JSON, REST, Microservices etc.).

Tools

  • Proficiency in one or more tools like Checkmarx, Invicti(Netsparker), Quokka(Kryptowire), IriusRisk, Aquasec, etc.




Job Title: Vulnerability Management SME

Location: Hyderabad, India (Preferred) || Pune, India

Requirement: CISA, CRISC, CISM, CISSP, CGEIT

The Key Skills

  • In-Depth knowledge of Vulnerabilities, Threat, Risk, Vulnerabilities Identification and Remediation.
  • Must have knowledge of Security Testing and good exposure of vulnerabilities listed in OWASP Top 10/SANS 25.
  • Cultivate a culture of continuous self-improvement, professional development, and self-directed learning, encouraging team members to maintain subject matter expertise in both their specific areas and the broader cybersecurity domain.
  • Expertise in Risk and Compliance Management, Vulnerability Management, and Security Testing.


Job Title: CyberArk Engineer

Location: Mumbai

The Key Skills:

  • Proven experience working as a CyberArk Engineer, CyberArk Administrator, or similar role, with at least 2+ years of experience in designing, implementing, and supporting CyberArk solutions.
  • Expertise in CyberArk PAS Suite components, including EPV, PSM, CPM, PVWA, and AIM, and proficiency in CyberArk REST API, PACLI, and scripting languages (PowerShell, Python, etc.).
  • Strong understanding of privileged access management (PAM) concepts, principles, and best practices, including privileged account discovery, rotation, and monitoring.
  • Experience with integrating CyberArk with identity governance, ticketing, SIEM, and other security and IT systems using APIs, connectors, and integration frameworks.
  • Familiarity with regulatory compliance standards, such as NIST, PCI DSS, GDPR, HIPAA, and SOX, and experience with compliance assessments and audits.


Job Title: SailPoint IIQ Developer

Location: Mumbai

The Key Skills:

  • 3+ years of experience working as a SailPoint IIQ Developer or similar role in Identity and Access Management.
  • In-depth knowledge of SailPoint IIQ architecture, components, and capabilities.
  • Strong proficiency in scripting and programming languages such as Java, BeanShell, PowerShell, or Python.
  • Experience with IAM concepts and technologies, including RBAC, SSO, LDAP, OAuth, and SAML.
  • Hands-on experience with integration technologies such as REST APIs, SOAP, JDBC, and SCIM.
  • Familiarity with cloud platforms (e.g., AWS, Azure, GCP) and their IAM services is a plus..

Preferred (Good-to-Have) Credentials:

  • SailPoint Certified IdentityIQ Associate or Professional certification.
  • Relevant certifications such as CISSP, CISM, or IAM certifications (e.g., CIAM, CIMP) are a plus.


Job Title: IBM Verify Governance

Location: Pune

  • Proven experience with IAM and with the IBM Verify product family, including IBM Verify Access, IBM Verify Governance, and IBM Verify SaaS


Job Title: Saviynt

Location: Pune

Desired qualifications

  1. 2 to 4 years of experience working in Identity-IGA Domain with minimum 2 years of experience in Saviynt Identity Platform.
  2. Strong understanding of identity and access management principles.
  3. Proficiency in programming languages such as Java, Python, or PowerShell.
  4. Experience in working with cloud platforms such as AWS, Azure, or GCP.
  5. Saviynt certification(s) preferred.


Job Title: Incident Response

Location: Bangalore

The Key Skills:

  • Experience on EDR tools for Incident response and threat hunting (Crowdstrike, MS Defender, Sentinel One)
  • Certifications like ECIH v2, CHFI, GCIH or GCIA is preferred


Job Title: ISMS

Location: Delhi

The key skills required are as follows:

  • Responsible for ISO 27001 based Information Security Management System implementation and sustenance
  • Responsible for advising clients on Business Continuity Planning, IT Disaster Recovery planning
  • Assess client information security posture, identify the gaps/risks in the existing environment and develop solutions to mitigate the identified gaps/risk
  • Responsible to assist client in review / implement Information Security controls in areas as mentioned, but not limited to: Change management process, Incident management process, Backup process, User identity and access management, Antivirus management, SLA performance and monitoring, Media handling & Exchange of information, Physical and environmental Security, and Media & Information Handling


Job Title: PCI DSS

Location: Mumbai


Job Title: SIEM/Sentinle/Chronicle

Location: Bangalore

The Key Skills:

  • Proven experience working with QRadar SIEM and other security tools.
  • Ability to drive call and summarizing it post discussion.
  • Deep understanding on Windows, DB, Mail cluster, VM and Linux commands.
  • Good Understanding of Firewall, IDP/IPS, SIEM functioning
  • Strong understanding of network protocols, TCP/IP, and security technologies.
  • Familiarity with log analysis and correlation techniques.
  • Knowledge of security incident response methodologies and best practices.
  • Understanding of common security frameworks (e.g., NIST, ISO 27001).


Job Title: Forescout

Location: Bangalore

The Key Skills:

  • Proven experience in configuring and designing Forescout solutions.
  • In-depth knowledge of network security principles and practices.
  • Familiarity with cybersecurity frameworks and compliance standards (e.g., NIST, ISO 27001).
  • Strong analytical and problem-solving skills.
  • Excellent communication and interpersonal skills.
  • Relevant certifications (e.g., Forescout Certified Administrator/Engineer) are a plus.
  • Experience with scripting languages (e.g., Python) for automation is desirable.