11+ NIST 800-53 Jobs in Bangalore (Bengaluru) | NIST 800-53 Job openings in Bangalore (Bengaluru)
Apply to 11+ NIST 800-53 Jobs in Bangalore (Bengaluru) on CutShort.io. Explore the latest NIST 800-53 Job opportunities across top companies like Google, Amazon & Adobe.
SENIOR INFORMATION SECURITY ENGINEER (DEVSECOPS)
Key Skills: Software Development Life Cycle (SDLC), CI/CD
About Company: Consumer Internet / E-Commerce
Company Size: Mid-Sized
Experience Required: 6 - 10 years
Working Days: 5 days/week
Office Location: Bengaluru [Karnataka]
Review Criteria:
Mandatory:
- Strong DevSecOps profile
- Must have 5+ years of hands-on experience in Information Security, with a primary focus on cloud security across AWS, Azure, and GCP environments.
- Must have strong practical experience working with Cloud Security Posture Management (CSPM) tools such as Prisma Cloud, Wiz, or Orca along with SIEM / IDS / IPS platforms
- Must have proven experience in securing Kubernetes and containerized environments including image security,runtime protection, RBAC, and network policies.
- Must have hands-on experience integrating security within CI/CD pipelines using tools such as Snyk, GitHub Advanced Security,or equivalent security scanning solutions.
- Must have solid understanding of core security domains including network security, encryption, identity and access management key management, and security governance including cloud-native security services like GuardDuty, Azure Security Center etc
- Must have practical experience with Application Security Testing tools including SAST, DAST, and SCA in real production environments
- Must have hands-on experience with security monitoring, incident response, alert investigation, root-cause analysis (RCA), and managing VAPT / penetration testing activities
- Must have experience securing infrastructure-as-code and cloud deployments using Terraform, CloudFormation, ARM, Docker, and Kubernetes
- B2B SaaS Product companies
- Must have working knowledge of globally recognized security frameworks and standards such as ISO 27001, NIST, and CIS with exposure to SOC2, GDPR, or HIPAA compliance environments
Preferred:
- Experience with DevSecOps automation, security-as-code, and policy-as-code implementations
- Exposure to threat intelligence platforms, cloud security monitoring, and proactive threat detection methodologies, including EDR / DLP or vulnerability management tools
- Must demonstrate strong ownership mindset, proactive security-first thinking, and ability to communicate risks in clear business language
Roles & Responsibilities:
We are looking for a Senior Information Security Engineer who can help protect our cloud infrastructure, applications, and data while enabling teams to move fast and build securely.
This role sits deep within our engineering ecosystem. You’ll embed security into how we design, build, deploy, and operate systems—working closely with Cloud, Platform, and Application Engineering teams. You’ll balance proactive security design with hands-on incident response, and help shape a strong, security-first culture across the organization.
If you enjoy solving real-world security problems, working close to systems and code, and influencing how teams build securely at scale, this role is for you.
What You’ll Do-
Cloud & Infrastructure Security:
- Design, implement, and operate cloud-native security controls across AWS, Azure, GCP, and Oracle.
- Strengthen IAM, network security, and cloud posture using services like GuardDuty, Azure Security Center and others.
- Partner with platform teams to secure VPCs, security groups, and cloud access patterns.
Application & DevSecOps Security:
- Embed security into the SDLC through threat modeling, secure code reviews, and security-by-design practices.
- Integrate SAST, DAST, and SCA tools into CI/CD pipelines.
- Secure infrastructure-as-code and containerized workloads using Terraform, CloudFormation, ARM, Docker, and Kubernetes.
Security Monitoring & Incident Response:
- Monitor security alerts and investigate potential threats across cloud and application layers.
- Lead or support incident response efforts, root-cause analysis, and corrective actions.
- Plan and execute VAPT and penetration testing engagements (internal and external), track remediation, and validate fixes.
- Conduct red teaming activities and tabletop exercises to test detection, response readiness, and cross-team coordination.
- Continuously improve detection, response, and testing maturity.
Security Tools & Platforms:
- Manage and optimize security tooling including firewalls, SIEM, EDR, DLP, IDS/IPS, CSPM, and vulnerability management platforms.
- Ensure tools are well-integrated, actionable, and aligned with operational needs.
Compliance, Governance & Awareness:
- Support compliance with industry standards and frameworks such as SOC2, HIPAA, ISO 27001, NIST, CIS, and GDPR.
- Promote secure engineering practices through training, documentation, and ongoing awareness programs.
- Act as a trusted security advisor to engineering and product teams.
Continuous Improvement:
- Stay ahead of emerging threats, cloud vulnerabilities, and evolving security best practices.
- Continuously raise the bar on a company's security posture through automation and process improvement.
Endpoint Security (Secondary Scope):
- Provide guidance on endpoint security tooling such as SentinelOne and Microsoft Defender when required.
Ideal Candidate:
- Strong hands-on experience in cloud security across AWS and Azure.
- Practical exposure to CSPM tools (e.g., Prisma Cloud, Wiz, Orca) and SIEM / IDS / IPS platforms.
- Experience securing containerized and Kubernetes-based environments.
- Familiarity with CI/CD security integrations (e.g., Snyk, GitHub Advanced Security, or similar).
- Solid understanding of network security, encryption, identity, and access management.
- Experience with application security testing tools (SAST, DAST, SCA).
- Working knowledge of security frameworks and standards such as ISO 27001, NIST, and CIS.
- Strong analytical, troubleshooting, and problem-solving skills.
Nice to Have:
- Experience with DevSecOps automation and security-as-code practices.
- Exposure to threat intelligence and cloud security monitoring solutions.
- Familiarity with incident response frameworks and forensic analysis.
- Security certifications such as CISSP, CISM, CCSP, or CompTIA Security+.
Perks, Benefits and Work Culture:
A wholesome opportunity in a fast-paced environment that will enable you to juggle between concepts, yet maintain the quality of content, interact and share your ideas and have loads of learning while at work. Work with a team of highly talented young professionals and enjoy the comprehensive benefits that company offers.
About Us:
We are not just an AD agency or a creative agency, we are a Communication Company. Founded in 2014, Moshi Moshi is a young, creative, gutsy, and committed communication company that wants its clients to always Expect the EXTRA from it. Our primary clientele consists of Startups and corporations like Ola, Zoomcar, Mercedes Benz, ITC, Aditya Birla Group, TATA Group, MTV, IHCL, Jaquar, Sobha, Simple Energy, and Godrej amongst others. We have a huge team of creative folks, marketers, learners, developers, and coders who believe Moshi Moshi is an experience rather than a company.
Job Role: Talent Acquisition Specialist
Experience Level: 2 + Years
Location: Bangalore, Karnataka (On-site).
Job Overview:
We are seeking an experienced and dynamic Talent Acquisition Specialist to join our team. As a Talent Acquisition Specialist, you will play a critical role in driving our talent acquisition strategy and ensuring we attract and hire top-tier talent to support our company's growth and objectives.
Responsibilities:
• Develop and execute comprehensive talent acquisition strategies aligned with the company's goals and objectives.
• Utilize various channels and platforms to proactively source, engage and build a robust pipeline of qualified candidates for current and future hiring needs.
• Conduct thorough screening and assessment of candidates to ensure alignment with job requirements, cultural fit and potential for long-term success within the organization.
• Coordinate and facilitate interviews, ensuring a positive candidate experience while effectively evaluating candidates' skills, qualifications and potential.
• Collaborate with hiring managers to develop competitive and compelling offers, negotiate terms and facilitate the offer acceptance process.
• Contribute to employer branding initiatives and recruitment marketing efforts to enhance the
company's reputation as an employer of choice and attract top talent.
• Provide regular reports and insights to the supervisor, identifying areas for improvement and optimization
• Stay abreast of industry trends, best practices and innovative recruitment strategies and continuously seek opportunities to enhance and optimize the talent acquisition process.
• Build strong partnerships and collaborate effectively with internal stakeholders, including hiring managers, HR colleagues and leadership, to ensure alignment and success in talent acquisition
efforts.
Requirements:
• Bachelor's degree in Human Resources, Business Administration or a related field.
• 2+ years of progressive experience in talent acquisition, with a focus on full-cycle recruitment,
preferably in a fast-paced and dynamic environment.
• Proven track record of successfully sourcing, attracting and hiring top-tier talent across various functions and levels.
• Strong understanding of recruitment best practices, talent acquisition trends and employment laws and regulations.
• Exceptional communication, interpersonal and relationship-building skills, with the ability to effectively engage and influence stakeholders at all levels.
• High level of professionalism, integrity and discretion, with a commitment to upholding
confidentiality and ethical standards.
• Demonstrated ability to thrive in a collaborative team environment while also being able to work autonomously and drive results independently.
An L2 Technical Support Engineer with Python knowledge is responsible for handling escalated, more complex technical issues that the Level 1 (L1) support team cannot resolve. Your primary goal is to perform deep-dive analysis, troubleshooting, and problem resolution to minimize customer downtime and ensure system stability.
Python is a key skill, used for scripting, automation, debugging, and data analysis in this role.
Key Responsibilities
- Advanced Troubleshooting & Incident Management:
- Serve as the escalation point for complex technical issues (often involving software bugs, system integrations, backend services, and APIs) that L1 support cannot resolve.
- Diagnose, analyze, and resolve problems, often requiring in-depth log analysis, code review, and database querying.
- Own the technical resolution of incidents end-to-end, adhering strictly to established Service Level Agreements (SLAs).
- Participate in on-call rotation for critical (P1) incident support outside of regular business hours.
- Python-Specific Tasks:
- Develop and maintain Python scripts for automation of repetitive support tasks, system health checks, and data manipulation.
- Use Python for debugging and troubleshooting by analyzing application code, API responses, or data pipeline issues.
- Write ad-hoc scripts to extract, analyze, or modify data in databases for diagnostic or resolution purposes.
- Potentially apply basic-to-intermediate code fixes in Python applications in collaboration with development teams.
- Collaboration and Escalation:
- Collaborate closely with L3 Support, Software Engineers, DevOps, and Product Teams to report bugs, propose permanent fixes, and provide comprehensive investigation details.
- Escalate issues that require significant product changes or deeper engineering expertise to the L3 team, providing clear, detailed documentation of all steps taken.
- Documentation and Process Improvement:
- Conduct Root Cause Analysis (RCA) for major incidents, documenting the cause, resolution, and preventative actions.
- Create and maintain a Knowledge Base (KB), runbooks, and Standard Operating Procedures (SOPs) for recurring issues to empower L1 and enable customer self-service.
- Proactively identify technical deficiencies in processes and systems and recommend improvements to enhance service quality.
- Customer Communication:
- Maintain professional, clear, and timely communication with customers, explaining complex technical issues and resolutions in an understandable manner.
Required Technical Skills
- Programming/Scripting:
- Strong proficiency in Python (for scripting, automation, debugging, and data manipulation).
- Experience with other scripting languages like Bash or Shell
- Databases:
- Proficiency in SQL for complex querying, debugging data flow issues, and data extraction.
- Application/Web Technologies:
- Understanding of API concepts (RESTful/SOAP) and experience troubleshooting them using tools like Postman or curl.
- Knowledge of application architectures (e.g., microservices, SOA) is a plus.
- Monitoring & Tools:
- Experience with support ticketing systems (e.g., JIRA, ServiceNow).
- Familiarity with log aggregation and monitoring tools (Kibana, Splunk, ELK Stack, Grafana)
Designing, building, and automating ETL processes using AWS services like Apache Sqoop, AWS S3, AWS CLI, Amazon
EMR, Amazon MSK, Amazon Sagemaker.
∙Developing and maintaining data pipelines to move and transform data from diverse sources into data warehouses or
data lakes.
∙Ensuring data quality and integrity through validation, cleansing, and monitoring ETL processes.
∙Optimizing ETL workflows for performance, scalability, and cost efficiency within the AWS environment.
∙Troubleshooting and resolving issues related to data processing and ETL workflows.
∙Implementing and maintaining security measures and compliance standards for data pipelines and infrastructure.
∙Documenting ETL processes, data mappings, and system architecture.
Key Responsibilities
- Design and Build complicated Workflow
- Understanding the user persona and deliver slick experience
- Experience in JavaScript (ReactJS / Redux) React Native, HTML, CSS, JQuery, HTTP
- Strong understating of XML, JSON, DOM, and w3c standards
- Providing technical expertise for every phase of the project lifecycle; from concept development to solution design, implementation, optimization and support
- Be an Interface with Stockholder sand architects to create technology specifications from business requirements for one or more modules within the project
- Responsible to prepare the technical design of the components within the module (one or more of client/web presentation tier, server tier, data access and data model, integration component, package function customization)
- Proficient in articulating the pros and cons of using a certain technology stack or component or design pattern versus another to the clients and project team and drives selection of technologies, designs to come up with the optimal architecture
- Drives the performance tuning, re-design and re-factoring for a module
- Contributes to designing and implementing the build, release process as well as system configuration and deployment characteristics of the application
- Implements (hands-on) the module components based on prevailing Framework and Open-source standards & its best practices.
- Mentors the team (people working on the module and other project team members) on technology concepts and best practices for design, implementation and other processes
NET Lead (Need B3) Job Description:
Responsibilities / Expectations
- Tech/team lead requirement in the ICS Simplification domain in the MAAS application.
- 5-8 years of total IT experience.
- At least 4 years in Application Development/Maintenance/Support using .NET Framework
- Should be able to perform migration of legacy applications to Cloud/On Prem by thoroughly understanding the integration and compatibility requirements
- Should be able to Debug and resolve the Application related issues with Migration, and compatibility with the latest Windows/RHEL environment
Skills required
Technical Skills (Must have)
- Strong understanding of .NET Architecture and Compatibility requirements
- Understanding of Data Architecture, and Implementing Databases
- Understanding on Data Migrations, Data Integrations.
- Application & Application security knowledge (certificates/authentication/authorization)
Technical Skills (Good to have)
- knowledge in Cloud resources - Storage, Networking, Security, Identity, Management.
- Experience in Migration of legacy applications to Cloud/On Prem
Soft Skills
- Should interact / communicate effectively with Different domains for application Installation and issue resolution
- Need to interact with other teams related to any integrations with application migration.
- Effective Stakeholder/Customer Management.
- Engaging with necessary stakeholders and SMEs.
- Good Problem Solving skills and approach
- Team handling and Mentoring
- Handling and Minimising Escalations.
Weekly/ fortnightly/ Monthly status to customer & connect with customer.
● We provide a platform for you to grow exponentially along with the organisation.
● Grow with a team having strong foundations in software engineering practices.
● First-hand experience with a wide range of technologies that work at scale.
● Your role is not just subjected to coding , you will be involved in the end to end product phase from ideation to the product going live.
● Our focus is not from which tier 1 college you come from rather it is the skills/competencies you have and the progression you have shown in your career graph.
● Learn in an environment passionate about knowledge-sharing.
● Have a pivotal role in the transformation of our engineering culture.
Responsibilities:
● Work closely with our product and design teams to customize the user experience.
● Design components by translating product requirements, break down projects into tasks and provide accurate estimates. Build scalable and reliable technology solutions at a rapid pace.
● Prototype new and redesign features.
● A focus on UI design principles and making apps work intuitively.
● Strong coding abilities and experience with Dart.
● Actively participate in design and code reviews to build robust applications and prototypes.
● A willingness to dive deep, experiment rapidly and get things done.
● Understanding of object-oriented software development.
● Prior experience in working with social apps is a plus.
● Experience in working with machine learning applications, hardware features is a plus.
● Prior product building experience or from a startup background would be a plus.
Must-Have:
- Core Java (Must be good in Core Java concepts, Java programming practices, Clean coding.)
- Spring Framework(Must have working experience in Spring Core)
- Any SQL framework(hands-on working experience in any of these: Hibernate/JPA/MyBatis/Spring Data/Others)
- Hands-on experience in REST API
- Hands-on experienceSQL Database(any of the databases: Oracle/MySQL/PostgreSQL/SQLServer)
- Must have working experience with basic GIT
- Maven or Gradle (Must have working experience in building Java projects using maven or Gradle.)
- Should be able to work independently under someone's guidance.
Good to have:
- Advanced Java(Threading, Performance optimization)
- Spring Boot
- Other Spring frameworks(Spring Security, Spring Batch, Others)
- Microservices - Any NoSQL database(MongoDB, Cassandra, others)
- Application designing concepts.
We are looking for a Software Engineer - Java with experience in building high-performing, scalable, enterprise-grade applications.
You will be part of a talented software team that works on mission-critical applications. Software Engineer - Java roles and responsibilities include managing Java/Java EE application development while providing expertise in the full software development lifecycle.
Responsibilities
- Contribute in all phases of the development lifecycle
- Write well designed, testable, efficient code
- Ensure development is in compliance with specifications
- Prepare and produce releases of software components
- Support continuous improvement by investigating alternatives and technologies and presenting these for architectural review
Qualifications
- BSc/BE/BTech in Computer Science, Engineering or a related field
- 2+ years Experience with Java
- Proven hands-on Software Development experience
- Proven working experience in Java development
- Hands on experience in designing and developing applications using Java EE platforms
- Object Oriented analysis and design using common design patterns.
- Profound insight of Java and JEE internals (Classloading, Memory Management, Transaction management etc)
- Excellent knowledge of Relational Databases, SQL and ORM technologies (JPA2, Hibernate)
- Experience in the Spring Framework
- Experience as a Sun Certified Java Developer
- Experience in developing web applications using at least one popular web framework (JSF, Wicket, GWT, Spring MVC)
- Experience with test-driven development


