Role Description The role will be responsible for supporting and executing IT security protocols; work proactively on a cross-functional level with other departments specifically with Engineering and IT; and assist in the planning and execution of IS security projects to comply with respective data security audits. - Support the implementation and maintenance of security strategy and framework in collaboration with engineering and IT - Assist in identifying security needs and contribute to the security roadmap with clear prioritization, including technical reviews of platforms and architecture - Communicate security requirements with architects and internal IT teams - Participate in security audits, including coordination with 3rd party vendors - Assist in responding to vendor Security assessment requests from prospects/customers - Support the process of third-party attestation & compliance (SOC, HIPAA, PCI, etc.) - Monitor and respond to security threat intelligence, vulnerability feeds, incidents and alerts in a timely manner - Assist in business continuity and disaster recovery planning, exercises, and any recovery activities - Conduct vulnerability assessments, support penetration testing engagements and support remediation efforts - Assist in maintaining security management system, documentation, policies, and procedures - Support data privacy compliance activities at the locations of operations including US state compliance (e.g. CCPA) and internationally (e.g. GDPR) - Assist in risk management work by supporting the maintenance of risk register and coordinate risk mitigation activities with the organization responsible personnel - Perform routine security monitoring of cloud and corporate IT environments - Provide guidance and awareness training to internal staff on security best practices and manage training platforms Qualifications - B.E or BS degree from an accredited college or university, or 5 years of work experience in information security - 5+ years of work experience in an information security role, ideally within a SaaS software company - Familiarity with start-up or high-growth company environments - Ability to participate in management level conversations on balancing business opportunities against security risks - Collaborative mindset with ability to work across cross-functional teams - Knowledge of common security requirements and certificates (e.g. ISC2 CSSLP, ISC2 CISSP, ISACA CISA, ISACA CISM, ISACA CRISC, CompTIA Security+, CEH) - Foundational knowledge of information security strategies with cloud computing platforms - Familiarity with agile software development methods - Knowledge of cloud-based IT infrastructure, collaboration, & security systems - Knowledge of essential cloud providers and their technologies (such as AWS, Google, Oracle and Microsoft) - Familiarity with networking and firewall systems - Knowledge of compliance frameworks such as ISO 27001, SOC 2, PCI, HIPAA - Exposure to working with third parties for attestation and compliance with data privacy information security regulations - Familiarity with data privacy standards, regulations and frameworks - Basic knowledge of technical security tools and processes - Data-driven, intellectually curious, and numerically inclined - Good organizational skills and attention to detail - Curiosity for continuous learning - Fluent English language skills Benefits - Be part of a fast-growing organization actively integrating AI into its products, processes, and future vision. - Exposure to working with a Microsoft gold partner organization with the latest technologies. - People first organization culture - Company Paid Group Mediclaim Insurance for employees, spouse and up to 2 Kids of INR 400,000 per annum - Company Paid Group Personal accidental insurance for employees of INR 1,000,000 per annum. - Company Paid & Manager approved Career Advancement Opportunities - Best-in-the-Industry referral policy. - 29 Paid leaves throughout the year - Company-paid Maternity leaves for female employees Company Description We are a global team of innovators and advocates transforming how financial data is captured, stored, and manipulated with our comprehensive suite of automation technology. Our platform seamlessly integrates with your existing ERP for an unrivaled end-user experience. We do the heavy lifting so accounting, procurement, and fundraising teams can do their best work. PairSoft’s aspires to be the strongest procure-to-pay platform for the mid-market and enterprise, with close integration to Microsoft Dynamics, Blackbaud, Oracle, SAP, Acumatica and Sage ERPs. At PairSoft, we are passionate about innovation, transparency, diversity, and advocating on behalf of our customers and communities we support. We offer exciting career opportunities and a collaborative culture that allows individuals to learn, grow, and create meaningful impact. We are expanding and seeking team players who are eager to jump in and contribute to our rapid growth! PairSoft is proud to be an equal opportunity workplace. We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity, veteran status or any other protected status. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. If you have a disability or special need that requires accommodation, please email us at: careers@pairsoft.com. To read our Candidate Data Privacy Notice - including GDPR - click here.

• Research into threats (such as root/jailbreak and hiding thereof, app tampering, runtime tampering, etc.) in mobile phone operating systems and applications on Android / iOS / Harmony OS Next. • Work with the team to develop protection mechanisms through reverse engineering, vulnerability research, exploitation and mitigation techniques and mobile/embedded development. • Work with the team to perform penetration test on V-Key’s products and applications. • Work with the team to script attacks and defences for mobile devices in general and for mobile applications. • Develop customer-facing security attack and defense demonstrations. • Work with the team on security solutions architectures involving not just the mobile device, but also other networked components, leveraging authentication protocols (OAuth2, FIDO2, etc.), and understanding and assessing cryptographic protocols and algorithms as needed.

• Implement and maintain cloud security controls in AWS and Azure environments in support of Enhanced Domain Awareness systems. • Ensure compliance with NIST 800-53 Rev. 5, FedRAMP, and DoD IL 2/4/5 security requirements. • Configure and manage Identity and Access Management (IAM) solutions and enforce least-privilege access. • Perform vulnerability assessments and support remediation activities across cloud-hosted resources. • Monitor cloud environments using SIEM and cloud-native security tools to detect and respond to threats. • Support Zero Trust architecture and continuous monitoring initiatives. • Collaborate with DevOps, infrastructure, and application teams to integrate security into the development and deployment lifecycle.

• Support security design and installation projects throughout North, South, and Central America, including new sites and expansion projects, post-occupancy projects, and technology upgrade projects. • Manage all aspects of project delivery, including collaborating with key stakeholders, managing multiple projects, and scopes of work. • Identify project schedule, scope parameters, and oversee security design and implementation per client design requirements and standards. • Manage early project initiation activities and develop project security scope, schedule, critical deliverables, and requirements. • Manage scheduling, status, and tracking of critical project tasks, issues, and deliverables. • Assist with the bid and award process. • Review bid leveling documentation and provide feedback on the award recommendation. • Evaluate SOW responses and prepare evaluation reports, to include evaluation criteria, scoring, and recommendation details. • Perform security site evaluations of potential client properties and review proposed design concepts. • Apply client system design standards to in-progress site design, collaborate with client owner and user group stakeholders to define use cases and verify functional requirements, and produce a security functional specification for the project. • Review all security system design documentation for compliance with published security requirements, technical standards, and installation standards. • Collaborate with project teams and stakeholders while managing site activation activities for physical security among project parties and stakeholders to drive schedule, quality, and cost.