At Zensar, we’re “experience-led everything”. We are committed to conceptualizing, designing, engineering, marketing, and managing digital solutions and experiences for over 130 leading enterprises. We are a company driven by a bold purpose: Together, we shape experiences for better futures. Whether for our clients, our people, or the world around us, this belief powers everything we do. At the heart of our culture is ONE with Client - a set of four core values that reflect who we are and how we work: One Zensar, Nurturing, Empowering, and Client Focus. Part of the $4.8 billion RPG Group, we’re a community of 10,000+ innovators across 30+ global locations, including Milpitas, Seattle, Princeton, Cape Town, London, Zurich, Singapore, and Mexico City. We believe the best work happens when individuality is celebrated, growth is encouraged, and well-being is prioritized. We are an equal employment opportunity (EEO) and affirmative action employer, committed to creating an inclusive workplace. All qualified applicants will be considered without regard to race, creed, color, ancestry, religion, sex, national origin, citizenship, age, sexual orientation, gender identity, disability, marital status, family medical leave status, or protected veteran status.
Offensive + Defensive Security - Specialist
Location
India
Posted
2 days ago
Salary
0
Seniority
Mid Level
No structured requirement data.
Job Description
Offensive + Defensive Security - Specialist
Zensar
Role Description A lean, high-impact team focused on vulnerability discovery, attack simulation, and remediation enablement. - Developer-led profiles with a cybersecurity mindset - Experience in: - Penetration testing / ethical hacking / red teaming - Identifying vulnerabilities and supporting remediation - Ability to operate across offensive and defensive security domains Team composition: - Mix of: - Highly skilled / senior specialists - Mid-level / support resources (testing, analysis, support activities) Deployment model: - 1 role - Flexible / remote (not required to be on-site) Company Description At Zensar, we’re “experience-led everything”. We are committed to conceptualizing, designing, engineering, marketing, and managing digital solutions and experiences for over 130 leading enterprises. We are a company driven by a bold purpose: Together, we shape experiences for better futures. Whether for our clients, our people, or the world around us, this belief powers everything we do. At the heart of our culture is ONE with Client - a set of four core values that reflect who we are and how we work: One Zensar, Nurturing, Empowering, and Client Focus. Part of the $4.8 billion RPG Group, we’re a community of 10,000+ innovators across 30+ global locations, including Milpitas, Seattle, Princeton, Cape Town, London, Zurich, Singapore, and Mexico City. We believe the best work happens when individuality is celebrated, growth is encouraged, and well-being is prioritized. We are an equal employment opportunity (EEO) and affirmative action employer, committed to creating an inclusive workplace. All qualified applicants will be considered without regard to race, creed, color, ancestry, religion, sex, national origin, citizenship, age, sexual orientation, gender identity, disability, marital status, family medical leave status, or protected veteran status.
Related Guides
Related Categories
Related Job Pages
More Security Engineer Jobs
Data Security Engineer
CasheaCompra ahora y paga después, en cuotas sin interés. El impulso que mereces.
• Proteger los datos de la compañía a lo largo de todo su ciclo de vida (ingesta, procesamiento, almacenamiento, consumo y eliminación). • Diseñar e implementar controles técnicos (especialmente en GCP) con foco en DLP, gobierno del dato, gestión de accesos, cifrado/keys, monitoreo y respuesta ante incidentes de datos. • Definir y mantener el modelo de clasificación y manejo de datos. • Implementar y mejorar controles de protección de datos: acceso, cifrado y gestión de llaves, y hardening.
SAP Security & GRC Engineer
Bright Vision TechnologiesBright Vision Technologies is a forward-thinking software development company dedicated to building innovative solutions that help businesses automate and optimize their operations. We leverage cutting-edge technologies to create scalable, secure, and user-friendly applications. We recognize that our people are our strength. We are an equal opportunity employer and place a high value on diversity and inclusion. We do not discriminate on the basis of any protected attribute. We make reasonable accommodations for applicants’ and employees’ religious practices and beliefs, as well as mental health or physical disability needs. Bright Vision Technologies is an Equal Opportunity Employer, including Disability/Veterans.
Role Description We are seeking an experienced SAP Security & GRC Engineer to design, implement, and operate security and access-control frameworks for complex SAP landscapes, including S/4HANA, ECC, BW/4HANA, Fiori, BTP, and SuccessFactors. In this role you will be responsible for: - SAP role design - User provisioning - Segregation-of-duties analysis - Audit support - Technical operation of SAP GRC suites The ideal candidate will combine deep expertise in SAP authorization concepts with strong hands-on experience operating SAP GRC Access Control and Process Control, and will partner closely with audit, compliance, and business teams to deliver a secure, auditable SAP environment. Qualifications - Bachelor’s degree in Computer Science, Engineering, or a related technical discipline. - Five or more years of SAP Security / GRC experience in enterprise landscapes. - Strong hands-on experience with SAP authorization concepts and role design. - Deep experience operating SAP GRC Access Control (ARA, ARM, BRM, EAM). - Experience supporting SAP audits and remediation activities. - Hands-on experience securing Fiori, BTP, and cloud SAP applications. - Familiarity with SAP IDM or third-party IGA tooling. - Working knowledge of SAP Process Control. - Strong understanding of regulatory frameworks such as SOX, GxP, and PCI. - Excellent communication and documentation skills. Requirements - Design and maintain SAP authorization concepts and role structures aligned with business processes and least-privilege principles. - Build and maintain master, derived, composite, and business roles for S/4HANA, ECC, and Fiori applications. - Configure and operate SAP GRC Access Control (ARA, ARM, BRM, EAM), including ruleset management, mitigating controls, and emergency access management. - Perform segregation-of-duties analysis and remediation in collaboration with business process owners and internal audit. - Configure user provisioning workflows in SAP GRC ARM, including request types, approval paths, and integration with IDM/IAM platforms. - Operate SAP GRC Process Control for continuous controls monitoring and policy management. - Implement security for Fiori applications, including catalogs, groups, and front-end authorizations. - Configure and operate security for SAP BTP and cloud applications using XSUAA, IAS, and IPS. - Support SAP audits (SOX, GxP, PCI) and respond to audit findings with documented remediation plans. - Implement transport security, table logging, and audit logging in line with internal security policies. - Monitor and remediate SAP Security Notes in coordination with Basis and DBA teams. - Maintain comprehensive, current technical documentation — including architecture diagrams, design decisions, configuration references, runbooks, and operational procedures. - Mentor junior team members and support knowledge transfer across the security team. Benefits - Competitive base salary commensurate with experience, plus benefits.
IT - Cyber Security Specialist IV
EverforthEverforth Apex, a division of Everforth and formerly Apex Systems, an IT staffing and workforce solutions firm, provides recruiting and staffing services to lar
Title: IT - Cyber Security Specialist IV Job Description: Job#: 3039262 Location: Home, Arkansas (Teleworker) Pay Range: $75 - $85 per hour Employee Type: Contract Role Overview An Information System Security Officer (ISSO) is sought to join a team supporting the ClaimsCore Program. This role involves overseeing activities related to system security authorization, compliance, and continuous monitoring for a federal environment. The ISSO will be instrumental in ensuring secure and compliant systems across both legacy integrations and modern cloud-based platforms, supporting major cybersecurity initiatives for the Centers for Medicare & Medicaid Services (CMS). Key Responsibilities - Serve as the ISSO for the ClaimsCore Program, ensuring compliance with FISMA Moderate, FedRAMP Moderate, and CMS ARS 5.1 security controls. - Oversee the Authorization to Operate (ATO) process, including the preparation and maintenance of all Security Authorization (SA) and Certification & Accreditation (C&A) documentation. - Conduct risk and vulnerability assessments, track remediation activities, and ensure zero open Critical/High vulnerabilities at go-live. - Manage security incidents, ensuring notification within 1 hour, and coordinate with stakeholders on mitigation and reporting. - Develop, maintain, and update security policies, procedures, SSPs, SOPs, and other RMF documentation. - Support annual and ad hoc federal security assessments, including CSRAP, CFO, and OMB A123 reviews. - Manage POA&M entries, validate mitigation strategies, and support audit responses. - Perform continuous monitoring activities, analyze security reports, and recommend corrective actions. - Collaborate with engineering, operations, and program management teams to embed security into system design. - Provide subject matter expertise on NIST 800-53 controls, FedRAMP requirements, and CMS-specific security processes. - Ensure all system changes follow proper security impact analysis procedures prior to deployment. - Support contractor, government, and third-party security assessments. Required Qualifications Education & Experience: - Minimum of 8 years of experience with a BS/BA degree; or - Minimum of 6 years of experience with an MS/MA degree; or - Minimum of 3 years of experience with a PhD. Technical Skills & Experience: - Demonstrated experience as an ISSO or similar security lead on federal programs following FISMA, NIST RMF, and FedRAMP requirements. - Hands-on experience developing and reviewing RMF documentation (SSP, SAR, POA&M, CMP, Incident Response Plan, Contingency Plan, etc.). - Experience conducting or supporting risk assessments, vulnerability analysis, and security audits. - Familiarity with CMS ARS 5.1, CMS ATO processes, and federal cybersecurity reporting requirements. - Experience supporting incident response processes, including rapid notification and coordination. - Strong understanding of vulnerability management tools and processes (e.g., Nessus, Tenable.sc, Qualys). - Ability to communicate effectively with both technical and non-technical stakeholders. - U.S. Citizenship is required. Preferred Qualifications - Relevant certifications such as CISSP, CISM, Security+, CEH, or CAP. - Previous experience supporting CMS, federal healthcare programs, or large federal IT modernization efforts. - Experience in hybrid environments involving legacy systems and cloud platforms (AWS/Azure) subject to FedRAMP Moderate controls. - Familiarity with continuous monitoring processes and automation tools. - Experience supporting external audits such as CSRAP, CFO, and OMB A-123. - Knowledge of secure software development practices and DevSecOps concepts. - Experience with enterprise-scale government contractors or large federal IT programs. Everforth Apex is a world-class IT services company that serves thousands of clients across the globe. When you join Everforth Apex, you become part of a team that values innovation, collaboration, and continuous learning. We offer quality career resources, training, certifications, development opportunities, and a comprehensive benefits package. Our commitment to excellence is reflected in many awards, including ClearlyRateds Best of Staffing® in Talent Satisfaction in the United States and Great Place to Work® in the United Kingdom and Mexico. Everforth Apex uses a virtual recruiter as part of the application process. Click here for more details. By applying for this job, you agree to receive calls, AI-generated calls, text messages, or emails from Everforth Apex and its affiliates, and contracted partners. Frequency varies for text messages. Message and data rates may apply. Carriers are not liable for delayed or undelivered messages. You can reply STOP to cancel and HELP for help. You can access our privacy policy at https://www.apexsystems.com/privacy-policy Everforth Apex Benefits Overview: Everforth Apex offers a range of supplemental benefits, including medical, dental, vision, life, disability, and other insurance plans that offer an optional layer of financial protection. We offer an ESPP (employee stock purchase program) and a 401K program which allows you to contribute typically within 30 days of starting, with a company match after 12 months of tenure. Everforth Apex also offers a HSA (Health Savings Account on the HDHP plan), a SupportLinc Employee Assistance Program (EAP) with up to 8 free counseling sessions, a corporate discount savings program and other discounts. In terms of professional development, Everforth Apex hosts an on-demand training program, provides access to certification prep and a library of technical and leadership courses/books/seminars once you have 6+ months of tenure, and certification discounts and other perks to associations that include CompTIA and IIBA. Everforth Apex has a dedicated customer service team for our Consultants that can address questions around benefits and other resources, as well as a certified Career Coach. You can access a full list of our benefits, programs, support teams and resources within our ‘Welcome Packet’ as well, which an Everforth Apex team member can provide. Everforth Apex Systems is an equal opportunity employer. We do not discriminate or allow discrimination on the basis of race, color, religion, creed, sex (including pregnancy, childbirth, breastfeeding, or related medical conditions), age, sexual orientation, gender identity, national origin, ancestry, citizenship, genetic information, registered domestic partner status, marital status, disability, status as a crime victim, protected veteran status, political affiliation, union membership, or any other characteristic protected by law. Everforth Apex will consider qualified applicants with criminal histories in a manner consistent with the requirements of applicable law. If you require an accommodation under the Americans with Disabilities Act to participate in an interview with a virtual recruiter or to use our website for a search or application, please contact our Benefits Department . Please note that this contact information is strictly to be used for medical ADA accommodations and that no other inquiries will be answered. UnitedHealthcare creates and publishes the Transparency in Coverage Machine-Readable Files on behalf of Everforth Apex Systems.
IT - Information Assurance - Security Engineer III
EverforthEverforth Apex, a division of Everforth and formerly Apex Systems, an IT staffing and workforce solutions firm, provides recruiting and staffing services to lar
IT - Information Assurance - Security Engineer III Location: United States Employee Type: Contract Location: Home, AR, US Job Type: Pay Range: $52 - $62 per hour Job Description: Job#: 3039270 Job Description: IT - Information Assurance/Security Engineer III Location: Home, Arkansas (Teleworker) Role Overview We are seeking a Senior Security Analyst to join a team of skilled professionals. The ideal candidate will play a pivotal role in safeguarding and strengthening the security posture of the ClaimsCore platform by performing comprehensive security analysis, vulnerability assessments, and compliance monitoring. This position will support ongoing system maintenance, platform enhancements, and major modernization activities by providing expert security guidance, reviewing configurations, and ensuring alignment with enterprise and federal security standards. The Senior Security Analyst will contribute directly to the reliability, resilience, and integrity of systems supporting federal health mission partners. Key Responsibilities - Performing security analysis, vulnerability assessments, and compliance monitoring for the ClaimsCore platform. - Reviewing, interpreting, and validating security scan results from tools such as Tenable, Qualys, or similar enterprise vulnerability platforms. - Prioritizing remediation efforts and tracking vulnerability resolution against established SLA timelines. - Coordinating with development, operations, and infrastructure teams to ensure timely remediation and secure configuration management. - Supporting internal and external audit activities, including evidence collection, control validation, and implementation of corrective actions. - Reviewing system and application security configurations to ensure alignment with enterprise standards, NIST guidelines, and Zero Trust principles. - Providing actionable security recommendations to technical teams and participating in design reviews for secure implementation of new features or system updates. - Monitoring compliance with security policies, procedures, and regulatory requirements, and escalating deviations as appropriate. - Assisting in the development and continuous improvement of security processes, documentation, and reporting dashboards. - Supporting incident response activities by analyzing potential vulnerabilities, misconfigurations, and threat vectors relevant to the ClaimsCore environment. Required Qualifications Education: A Bachelor of Science or Bachelor of Arts degree with 5 years of experience, a Master of Science or Master of Arts degree with 3 years of experience, or a PhD with 0 years of experience is required. Experience: 5-8+ years of experience in security analysis, vulnerability management, or cybersecurity operations in a large enterprise or federal environment. Experience supporting compliance, audit activities, or regulatory requirements for federal or large enterprise systems is also required. Technical Skills: - Hands-on experience with vulnerability scanning platforms (e.g., Tenable.sc, Tenable Nessus, Qualys) and an understanding of CVE, CVSS, and vulnerability lifecycle processes. - Demonstrated ability to analyze scan data, identify false positives, and translate technical findings into clear, actionable remediation tasks. - Familiarity with security frameworks and standards including NIST 800-53, NIST CSF, RMF, and CIS benchmarks. - A strong understanding of secure configuration principles for operating systems, cloud platforms, and application environments. - Effective communication skills (verbal and written) with both technical and non-technical stakeholders. - U.S. Citizenship may be required based on project needs. Preferred Qualifications - Security-related certifications such as Security+, CySA+, GSEC, CEH, CISSP, CISM, or equivalent. - Experience with cloud environments (AWS, Azure, or GCP) and associated security services or baseline configurations. - Experience supporting large modernization efforts or legacy-to-cloud migrations. - Knowledge of SIEM platforms, security automation workflows, and log analysis. - Experience working in Agile or DevSecOps environments and providing security input throughout SDLC processes. - Familiarity with federal healthcare systems or related compliance requirements. - Experience generating security reports and presenting findings to leadership or program stakeholders. Everforth Apex is a world-class IT services company that serves thousands of clients across the globe. When you join Everforth Apex, you become part of a team that values innovation, collaboration, and continuous learning. We offer quality career resources, training, certifications, development opportunities, and a comprehensive benefits package. Our commitment to excellence is reflected in many awards, including ClearlyRateds Best of Staffing in Talent Satisfaction in the United States and Great Place to Work in the United Kingdom and Mexico. Everforth Apex uses a virtual recruiter as part of the application process. Click here for more details. By applying for this job, you agree to receive calls, AI-generated calls, text messages, or emails from Everforth Apex and its affiliates, and contracted partners. Frequency varies for text messages. Message and data rates may apply. Carriers are not liable for delayed or undelivered messages. You can reply STOP to cancel and HELP for help. You can access our privacy policy at https://www.apexsystems.com/privacy-policy Everforth Apex Benefits Overview: Everforth Apex offers a range of supplemental benefits, including medical, dental, vision, life, disability, and other insurance plans that offer an optional layer of financial protection. We offer an ESPP (employee stock purchase program) and a 401K program which allows you to contribute typically within 30 days of starting, with a company match after 12 months of tenure. Everforth Apex also offers a HSA (Health Savings Account on the HDHP plan), a SupportLinc Employee Assistance Program (EAP) with up to 8 free counseling sessions, a corporate discount savings program and other discounts. In terms of professional development, Everforth Apex hosts an on-demand training program, provides access to certification prep and a library of technical and leadership courses/books/seminars once you have 6+ months of tenure, and certification discounts and other perks to associations that include CompTIA and IIBA. Everforth Apex has a dedicated customer service team for our Consultants that can address questions around benefits and other resources, as well as a certified Career Coach. You can access a full list of our benefits, programs, support teams and resources within our 'Welcome Packet' as well, which an Everforth Apex team member can provide. Everforth Apex Systems is an equal opportunity employer. We do not discriminate or allow discrimination on the basis of race, color, religion, creed, sex (including pregnancy, childbirth, breastfeeding, or related medical conditions), age, sexual orientation, gender identity, national origin, ancestry, citizenship, genetic information, registered domestic partner status, marital status, disability, status as a crime victim, protected veteran status, political affiliation, union membership, or any other characteristic protected by law. Everforth Apex will consider qualified applicants with criminal histories in a manner consistent with the requirements of applicable law. If you require an accommodation under the Americans with Disabilities Act to participate in an interview with a virtual recruiter or to use our website for a search or application, please contact our Benefits Department at [email protected] or 804-523-8228. Please note that this contact information is strictly to be used for medical ADA accommodations and that no other inquiries will be answered. UnitedHealthcare creates and publishes the Transparency in Coverage Machine-Readable Files on behalf of Everforth Apex Systems. Employee Type: Contract Location: Home, AR, US Job Type: Pay Range: $52 - $62 per hour Similar Jobs - Information Security Engineer - IAM - Information Security Engineer - NC - Information Security Engineer - NC - Information Security Engineer - TX - LEAD INFORMATION SECURITY ENGINEER
