11+ NIST 800-53 Jobs in Bangalore (Bengaluru) | NIST 800-53 Job openings in Bangalore (Bengaluru)

SENIOR INFORMATION SECURITY ENGINEER (DEVSECOPS)

Key Skills: Software Development Life Cycle (SDLC), CI/CD

About Company: Consumer Internet / E-Commerce

Company Size: Mid-Sized

Experience Required: 6 - 10 years

Working Days: 5 days/week

Office Location: Bengaluru [Karnataka]

Review Criteria:

Mandatory:

• Strong DevSecOps profile
• Must have 5+ years of hands-on experience in Information Security, with a primary focus on cloud security across AWS, Azure, and GCP environments.
• Must have strong practical experience working with Cloud Security Posture Management (CSPM) tools such as Prisma Cloud, Wiz, or Orca along with SIEM / IDS / IPS platforms
• Must have proven experience in securing Kubernetes and containerized environments including image security,runtime protection, RBAC, and network policies.
• Must have hands-on experience integrating security within CI/CD pipelines using tools such as Snyk, GitHub Advanced Security,or equivalent security scanning solutions.
• Must have solid understanding of core security domains including network security, encryption, identity and access management key management, and security governance including cloud-native security services like GuardDuty, Azure Security Center etc
• Must have practical experience with Application Security Testing tools including SAST, DAST, and SCA in real production environments
• Must have hands-on experience with security monitoring, incident response, alert investigation, root-cause analysis (RCA), and managing VAPT / penetration testing activities
• Must have experience securing infrastructure-as-code and cloud deployments using Terraform, CloudFormation, ARM, Docker, and Kubernetes
• B2B SaaS Product companies
• Must have working knowledge of globally recognized security frameworks and standards such as ISO 27001, NIST, and CIS with exposure to SOC2, GDPR, or HIPAA compliance environments

Preferred:

• Experience with DevSecOps automation, security-as-code, and policy-as-code implementations
• Exposure to threat intelligence platforms, cloud security monitoring, and proactive threat detection methodologies, including EDR / DLP or vulnerability management tools
• Must demonstrate strong ownership mindset, proactive security-first thinking, and ability to communicate risks in clear business language

Roles & Responsibilities:

We are looking for a Senior Information Security Engineer who can help protect our cloud infrastructure, applications, and data while enabling teams to move fast and build securely.

This role sits deep within our engineering ecosystem. You’ll embed security into how we design, build, deploy, and operate systems—working closely with Cloud, Platform, and Application Engineering teams. You’ll balance proactive security design with hands-on incident response, and help shape a strong, security-first culture across the organization.

If you enjoy solving real-world security problems, working close to systems and code, and influencing how teams build securely at scale, this role is for you.

What You’ll Do-

Cloud & Infrastructure Security:

• Design, implement, and operate cloud-native security controls across AWS, Azure, GCP, and Oracle.
• Strengthen IAM, network security, and cloud posture using services like GuardDuty, Azure Security Center and others.
• Partner with platform teams to secure VPCs, security groups, and cloud access patterns.

Application & DevSecOps Security:

• Embed security into the SDLC through threat modeling, secure code reviews, and security-by-design practices.
• Integrate SAST, DAST, and SCA tools into CI/CD pipelines.
• Secure infrastructure-as-code and containerized workloads using Terraform, CloudFormation, ARM, Docker, and Kubernetes.

Security Monitoring & Incident Response:

• Monitor security alerts and investigate potential threats across cloud and application layers.
• Lead or support incident response efforts, root-cause analysis, and corrective actions.
• Plan and execute VAPT and penetration testing engagements (internal and external), track remediation, and validate fixes.
• Conduct red teaming activities and tabletop exercises to test detection, response readiness, and cross-team coordination.
• Continuously improve detection, response, and testing maturity.

Security Tools & Platforms:

• Manage and optimize security tooling including firewalls, SIEM, EDR, DLP, IDS/IPS, CSPM, and vulnerability management platforms.
• Ensure tools are well-integrated, actionable, and aligned with operational needs.

Compliance, Governance & Awareness:

• Support compliance with industry standards and frameworks such as SOC2, HIPAA, ISO 27001, NIST, CIS, and GDPR.
• Promote secure engineering practices through training, documentation, and ongoing awareness programs.
• Act as a trusted security advisor to engineering and product teams.

Continuous Improvement:

• Stay ahead of emerging threats, cloud vulnerabilities, and evolving security best practices.
• Continuously raise the bar on a company's security posture through automation and process improvement.

Endpoint Security (Secondary Scope):

• Provide guidance on endpoint security tooling such as SentinelOne and Microsoft Defender when required.

Ideal Candidate:

• Strong hands-on experience in cloud security across AWS and Azure.
• Practical exposure to CSPM tools (e.g., Prisma Cloud, Wiz, Orca) and SIEM / IDS / IPS platforms.
• Experience securing containerized and Kubernetes-based environments.
• Familiarity with CI/CD security integrations (e.g., Snyk, GitHub Advanced Security, or similar).
• Solid understanding of network security, encryption, identity, and access management.
• Experience with application security testing tools (SAST, DAST, SCA).
• Working knowledge of security frameworks and standards such as ISO 27001, NIST, and CIS.
• Strong analytical, troubleshooting, and problem-solving skills.

Nice to Have:

• Experience with DevSecOps automation and security-as-code practices.
• Exposure to threat intelligence and cloud security monitoring solutions.
• Familiarity with incident response frameworks and forensic analysis.
• Security certifications such as CISSP, CISM, CCSP, or CompTIA Security+.

Perks, Benefits and Work Culture:

A wholesome opportunity in a fast-paced environment that will enable you to juggle between concepts, yet maintain the quality of content, interact and share your ideas and have loads of learning while at work. Work with a team of highly talented young professionals and enjoy the comprehensive benefits that company offers.

Job Summary

We are looking for a highly motivated and technically strong Proposal / Application

Engineer to join our steam turbine engineering team. The candidate will be

responsible for preparing techno-commercial proposals, performing thermodynamic

and cycle calculations, developing heat & mass balance diagrams, and supporting

basic engineering activities for steam turbine projects.

The role requires close coordination with sales, design, project execution,

procurement, and manufacturing teams to deliver optimized and technically

compliant solutions for industrial steam turbine applications. The ideal candidate

should possess strong knowledge of thermodynamics, steam cycles, turbine

auxiliaries, and application engineering practices.

Key Responsibilities

Proposal Engineering

 Analyse and review customer RFQs (Request for Quotations) for steam

turbine systems and auxiliary equipment.

 Prepare detailed techno-commercial proposals for steam turbines, auxiliaries,

and balance-of-plant (BOP) systems.

 Coordinate with customers, consultants, and internal departments for

technical clarifications.

 Review tender specifications, data sheets, P&IDs, and customer

requirements.

 Prepare technical deviations, compliance statements, and proposal

documentation.

 Support sales and business development teams during technical discussions

and bid negotiations.

 Participate in customer meetings and technical presentations whenever

required.

 Ensure timely submission of proposals with complete technical and

commercial documentation.

Application Engineering & Thermodynamic Calculations

 Perform steam cycle analysis and thermodynamic calculations for various

turbine applications.

 Carry out turbine selection based on steam parameters, process

requirements, extraction conditions, and power output.

 Prepare and optimize heat & mass balance calculations for cogeneration and

captive power plants.

 Develop turbine performance calculations, steam consumption calculations,

and efficiency evaluations.

 Prepare basic sizing calculations for turbine auxiliaries including:

o Condensers

o Deaerators

o HP/LP Heaters

o Gland Steam Systems

o Ejector/Vacuum Systems

o Cooling Water Systems

 Evaluate operating scenarios and suggest optimized technical solutions for

improved efficiency and reliability.

 Support performance guarantee calculations and technical offer preparation.

Basic Engineering Activities

 Prepare Heat & Mass Balance Diagrams (HMB/H&MB).

 Prepare Process Flow Diagrams (PFDs) and support P&ID development.

 Prepare basic engineering documents including:

o Technical datasheets

o Equipment specifications

o Utility consumption calculations

o Instrument lists

o Valve schedules

 Coordinate with design and drafting teams for preparation of GA drawings and

system layouts.

 Support engineering standardization and document control activities.

 Ensure engineering deliverables comply with applicable international

standards such as API, ASME, IEC, DIN, and ISO.

Cross-Functional Coordination

 Work closely with mechanical design, electrical, instrumentation,

procurement, and project teams.

 Coordinate with vendors for technical inputs and auxiliary equipment

selection.

 Support manufacturing and commissioning teams for technical clarifications.

 Assist project execution teams during engineering review and customer

approval stages.

Required Skills & Competencies

 Strong knowledge of:

o Thermodynamics

o Steam turbine operations

o Rankine cycle

o Cogeneration systems

o Heat & mass balance preparation

 Experience in proposal engineering and application engineering for steam

turbines or thermal systems.

 Proficiency in engineering calculations using MS Excel.

 Knowledge of AutoCAD and engineering documentation practices.

 Understanding of turbine auxiliaries and power plant systems.

 Ability to interpret technical specifications and process documents.

 Strong analytical and problem-solving skills.

 Good technical writing and communication skills.

Exp: 10 to 15 Years

CTC: up to 25 LPA

Core skill required:

• In-depth knowledge of Angular 8 or above , Typescript, JavaScript , HTML, and CSS
• Should have adequate knowledge of API Development Technologies to guide the Team to develop the API code and get it tested
• Excellent communication and interpersonal skills, with the ability to lead and mentor technical teams
• Should have good knowledge of the current Technology trends to implement techniques which can enhance the security, performance and stability of the product
• Should have good knowledge in preparing the Low Level Design and ensure the developers are having full understanding before commencement of work
• Good Knowledge of the DevOps process for CI/CD will be an added advantage
• Should have a solid understand of SDLC process using Waterfall, Iterative or Agile Methodology
• Good Knowledge of Quality Processes and Quality Standards
• Have experience in handling risk and providing mitigation strategies to the Product Manager

Primary skills:

• 8+ years of experience Angular 8+ version, Type Script
• Minimum 5 years of experience on Web Application development HTML, CSS, JavaScript/JQuery, Entity framework and Linq Queries
• Been on a Lead role and led a team of 3-5 people for a period of 1 - 2 years
• Must have a good exposure on query writing and DB management for writing stored procedures/ user-defined functions
• Should have a very good understanding of the project architecture
• Should provide Technical guidance to the team to get the task completed on time.
• Assist project manager in the project coordination/management

Kindly share your resume on 82008 31681

We are looking for a senior SaaS Inside sales professional who can drive software products sales in India & International markets. You are someone who likes working with data and insights and making decisions based on it. An eager candidate to make an impact at Xoxoday and thrive in a fast-paced, dynamic, hyper-growth environment and can operate fluidly between the 30,000-foot strategy level and the micro-detail to get things right.The AVP Inside sales ll work closely with the founders & CXOs on sales and demand generation.

• Should be able to set up the inbound, outbound process globally 
• To be responsible for setting up SMB sales engine for global markets 
• Expert in defining GTM initiatives and rolling this out with proper tracking 
• Collaborate with other functions in order to develop sales strategy for enhancing the company's growth
• Effectively create and articulate ROI in various negotiations
• Ensure that the organisation meets its stipulated growth goals
• Adept in using best of technology and practices to scale the operations. Hands on knowledge of tools like Hubspot, Outreach, Demandbase, Lusha, etc ll be required. 
• Should be able to maximise salesperson efficiency and output through mentoring and counselling. 

• Overall experience of 8-10 years out of which atleast experience of 3 to 4 years in setting up the process for a SaaS company in India selling to global markets 
• Working out of the Bangalore office and mostly in USA time zone
• Hands on experience to pick initiatives and work himself and then train team on calling pitch, email formats, campaigns creation and handling inbound engine.
• Is deeply analytical, comfortable navigating data and working in ambiguity.
• Exemplary communication and relationship building skills at all levels from senior executives to Individual Contributors.

You will closely work with the sales leadership. You ll have interactions with sales teams and marketing teams globally. 

Xoxoday is a rapidly growing fintech SaaS firm that propels business growth while focusing on human motivation. Backed by Giift and Apis Partners Growth Fund, Xoxoday offers a suite of three products - Plum, Empuls, and Compass. Xoxoday works with more than 2500 clients across 10+ countries and over 2.5 million users. Headquartered in Bengaluru, Xoxoday is a 300+ strong team with four global offices in San Francisco, Dublin, Singapore, Dubai.

We look forward to connecting with you. Once we review your resume, the next step will be a discovery call followed by detailed interviews. There ll be three rounds of interviews. 

• 3+ years of experience in designing digital products.
• Ability to understand short and long-term goals of the product and business.
• Excellent understanding of user-centred design and visual design principles.
• A good understanding of frontend principles to guide the team from an engineering point of view.
• Understanding of behavioural analytics and goes by data-driven decisions, when needed. 
• Excellent communication and presentation skills and the ability to clearly articulate design decisions to the team and leadership.
• Keen interest in applying user research, user-needs validation and usability evaluation.
• Self-driven, comfortable with a fast-paced, always user-focused.
• A portfolio that showcases experience creating visual UI systems involved in overall creative direction down to icon systems, transitions, etc.
• Extensive knowledge and understanding of web and mobile platforms (iOS, Android design guidelines as well as their limitations

• You will own a functional area - from product conception to its delivery to customers
• You will be designing and coding independently in multiple tech components related to your functional area
• You will also need to develop a deep understanding of non-functional requirements, such as reliability and availability, scale, horizontal scalability, etc., over time and make tech stack decisions accordingly
• You will also be actively mentoring our junior engineers. You need to someone who owns the codebase quality
• We are looking for seasoned engineers who are quality conscious, product thinkers, business cognizant and smart – not just coders
• Engineers get to significantly amplify the impact of their efficient work or creations with the scale that startups operates at
• Love the Startup Hustle? You have come to the right place!

Requirements:

• 2+ years of deep expertise with JavaScript (Node.js) and any objected oriented high level proprietary or open source language with strong programming constructs
• Substantial experience in building complex and scalable solutions
• Strong problem solving skills
• Good understanding of data structures & algorithms and their space & time complexities
• Strong technical aptitude and a good knowledge of CS fundamentals
• Hands-on experience working with Databases and Linux platform
• Strong object oriented design skills, ability to apply design patterns, and an uncanny ability to design intuitive module and class-level interfaces
• Experience in Consumer facing apps - Analytics SDKs integrations, Marketing SDKs integrations, Performance optimisation, SQL databases
• Should have developed and delivered successful mobile app projects
• Experience with Devops including Docker, AWS, Serverless

Perks

• Opportunity to start from scratch
• Flexible and cool work environment - Startup work culture
• Young and dynamic team
• Offsites
• Regular game and hangout sessions every week

• Research, outline, write and edit new and existing content, working closely with various departments to understand project requirements
• Independently gather information from subject matter experts to develop, organize, and write procedure manuals, technical specifications, and process documentation
• Work with development and support leads to identify all documentation repositories, revise and edit, and determine the best solution for data compilation and centralized storage
• Research, create, and maintain information architecture templates that uphold organizational and legal standards, and allow for easy data migration
• Develop content in alternative media forms for maximum usability, with a consistent and cohesive voice across all documentation

Preferred Qualifications

• Proven ability to handle multiple projects simultaneously, with an eye for prioritization
• Firm understanding of the systems development life cycle (SDLC)
• Previous software development experience
• Certification through the Society for Technical Communicators
• Experience using XML tools