Role Description On behalf of Tipalti, SD Solutions is looking for a dynamic and experienced Cyber Security Engineer (SecOps Engineer) to step onto a fintech unicorn rocketship! This role presents an exciting opportunity to work in a fast-growing company with great opportunities to make a difference. - Design, implement, and maintain security architectures and controls across the organization's cloud, SaaS, and corporate environments - Protect sensitive data across endpoints, SaaS applications, and cloud platforms by implementing and managing Data Loss Prevention (DLP) and data protection controls - Secure cloud infrastructure (AWS / Azure / GCP) by identifying misconfigurations, enforcing security baselines, and implementing cloud hardening and least-privilege access models - Maintain and manage security technologies such as Firewalls, WAF, EDR/XDR, IDS/IPS, SASE, DLP, IAM, and SIEM platforms - Identify, prioritize, and remediate vulnerabilities and security findings across infrastructure, SaaS applications, and cloud environments - Design and enforce identity and access controls, including SSO, MFA, RBAC, and privileged access management - Monitor and improve security posture by analyzing security telemetry, alerts, and logs across enterprise systems - Lead and execute cross-organizational security projects aimed at strengthening the company's overall security posture - Collaborate with Engineering, DevOps, IT, and Security Operations teams to implement security controls and reduce organizational risk - Ensure security controls and processes align with internal policies and compliance frameworks such as ISO 27001 and SOC 2 Qualifications - Minimum 5+ years of experience in Information Security, securing Linux and Windows environments – Must - 3+ years of experience in IT infrastructure or system engineering, including Active Directory – Must - 2+ years of experience managing enterprise security controls such as VPN, firewalls, EDR/XDR, IDS/IPS, patch management, and secure access platforms – Must - Strong background in network security, system security, and cloud infrastructure security - Experience implementing or operating Data Loss Prevention (DLP) or data protection solutions - Hands-on experience securing cloud environments (AWS, Azure, or GCP) and modern SaaS ecosystems - Familiarity with identity and access management technologies, including SSO, MFA, RBAC, and identity lifecycle processes - Experience with encryption, key management, and certificate management - Strong understanding of application security concepts and Layer 7 security mechanisms - Familiarity with security frameworks and compliance standards such as ISO 27001, SOC 2, or NIST - Excellent written and verbal communication skills in English, with the ability to collaborate across teams Requirements - Scripting and Automation: Proficiency in Python, PowerShell, or Bash scripting for automation - Security certifications (CISSP, CEH, Security+, etc.) Company Description Tipalti is transforming finance and helping the hottest companies grow and scale their global finance operations. We're also growing through a sustainable business model and looking to remove days of finance work every week so business leaders can focus on building a future-proofed, best-in-class finance operation. - World-changing businesses like Amazon, Twitch, Twitter, and Roblox use Tipalti to automate and scale their finance operations. - It is a global payables automation platform that provides a cloud solution to scale and automate global payables operations. - The startup has already raised $565M funding. - Tipalti: Shaping Global Finance Since 2010. - Silicon Valley Fintech Company. - 1000+ Employees Worldwide. - Global Offices in CA, London, Tel Aviv, Tbilisi, Medellin, Toronto, Vancouver and more. - 2500+ Trusted Clients including Amazon, GoDaddy, Roblox, Twitch. - $550M+ Total Funding. - Driving Financial Evolution.

Role Description The role will be responsible for supporting and executing IT security protocols; work proactively on a cross-functional level with other departments specifically with Engineering and IT; and assist in the planning and execution of IS security projects to comply with respective data security audits. - Support the implementation and maintenance of security strategy and framework in collaboration with engineering and IT - Assist in identifying security needs and contribute to the security roadmap with clear prioritization, including technical reviews of platforms and architecture - Communicate security requirements with architects and internal IT teams - Participate in security audits, including coordination with 3rd party vendors - Assist in responding to vendor Security assessment requests from prospects/customers - Support the process of third-party attestation & compliance (SOC, HIPAA, PCI, etc.) - Monitor and respond to security threat intelligence, vulnerability feeds, incidents and alerts in a timely manner - Assist in business continuity and disaster recovery planning, exercises, and any recovery activities - Conduct vulnerability assessments, support penetration testing engagements and support remediation efforts - Assist in maintaining security management system, documentation, policies, and procedures - Support data privacy compliance activities at the locations of operations including US state compliance (e.g. CCPA) and internationally (e.g. GDPR) - Assist in risk management work by supporting the maintenance of risk register and coordinate risk mitigation activities with the organization responsible personnel - Perform routine security monitoring of cloud and corporate IT environments - Provide guidance and awareness training to internal staff on security best practices and manage training platforms Qualifications - B.E or BS degree from an accredited college or university, or 5 years of work experience in information security - 5+ years of work experience in an information security role, ideally within a SaaS software company - Familiarity with start-up or high-growth company environments - Ability to participate in management level conversations on balancing business opportunities against security risks - Collaborative mindset with ability to work across cross-functional teams - Knowledge of common security requirements and certificates (e.g. ISC2 CSSLP, ISC2 CISSP, ISACA CISA, ISACA CISM, ISACA CRISC, CompTIA Security+, CEH) - Foundational knowledge of information security strategies with cloud computing platforms - Familiarity with agile software development methods - Knowledge of cloud-based IT infrastructure, collaboration, & security systems - Knowledge of essential cloud providers and their technologies (such as AWS, Google, Oracle and Microsoft) - Familiarity with networking and firewall systems - Knowledge of compliance frameworks such as ISO 27001, SOC 2, PCI, HIPAA - Exposure to working with third parties for attestation and compliance with data privacy information security regulations - Familiarity with data privacy standards, regulations and frameworks - Basic knowledge of technical security tools and processes - Data-driven, intellectually curious, and numerically inclined - Good organizational skills and attention to detail - Curiosity for continuous learning - Fluent English language skills Benefits - Be part of a fast-growing organization actively integrating AI into its products, processes, and future vision. - Exposure to working with a Microsoft gold partner organization with the latest technologies. - People first organization culture - Company Paid Group Mediclaim Insurance for employees, spouse and up to 2 Kids of INR 400,000 per annum - Company Paid Group Personal accidental insurance for employees of INR 1,000,000 per annum. - Company Paid & Manager approved Career Advancement Opportunities - Best-in-the-Industry referral policy. - 29 Paid leaves throughout the year - Company-paid Maternity leaves for female employees Company Description We are a global team of innovators and advocates transforming how financial data is captured, stored, and manipulated with our comprehensive suite of automation technology. Our platform seamlessly integrates with your existing ERP for an unrivaled end-user experience. We do the heavy lifting so accounting, procurement, and fundraising teams can do their best work. PairSoft’s aspires to be the strongest procure-to-pay platform for the mid-market and enterprise, with close integration to Microsoft Dynamics, Blackbaud, Oracle, SAP, Acumatica and Sage ERPs. At PairSoft, we are passionate about innovation, transparency, diversity, and advocating on behalf of our customers and communities we support. We offer exciting career opportunities and a collaborative culture that allows individuals to learn, grow, and create meaningful impact. We are expanding and seeking team players who are eager to jump in and contribute to our rapid growth! PairSoft is proud to be an equal opportunity workplace. We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity, veteran status or any other protected status. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. If you have a disability or special need that requires accommodation, please email us at: careers@pairsoft.com. To read our Candidate Data Privacy Notice - including GDPR - click here.

• Research into threats (such as root/jailbreak and hiding thereof, app tampering, runtime tampering, etc.) in mobile phone operating systems and applications on Android / iOS / Harmony OS Next. • Work with the team to develop protection mechanisms through reverse engineering, vulnerability research, exploitation and mitigation techniques and mobile/embedded development. • Work with the team to perform penetration test on V-Key’s products and applications. • Work with the team to script attacks and defences for mobile devices in general and for mobile applications. • Develop customer-facing security attack and defense demonstrations. • Work with the team on security solutions architectures involving not just the mobile device, but also other networked components, leveraging authentication protocols (OAuth2, FIDO2, etc.), and understanding and assessing cryptographic protocols and algorithms as needed.

• Implement and maintain cloud security controls in AWS and Azure environments in support of Enhanced Domain Awareness systems. • Ensure compliance with NIST 800-53 Rev. 5, FedRAMP, and DoD IL 2/4/5 security requirements. • Configure and manage Identity and Access Management (IAM) solutions and enforce least-privilege access. • Perform vulnerability assessments and support remediation activities across cloud-hosted resources. • Monitor cloud environments using SIEM and cloud-native security tools to detect and respond to threats. • Support Zero Trust architecture and continuous monitoring initiatives. • Collaborate with DevOps, infrastructure, and application teams to integrate security into the development and deployment lifecycle.