Home
Jobs

537 Cisa Jobs - Page 6

Setup a job Alert
JobPe aggregates results for easy application access, but you actually apply on the job portal directly.

10.0 - 20.0 years

25 - 40 Lacs

Pune, Bengaluru, Delhi / NCR

Hybrid

Hi , As per response to your profile which is uploaded in Job portals. Excellent job openings for Enterprise Security Archite ct in IT MNC If your already received email or not looking for job change/ irrelevant - please ignore it. Note: Apply for only Relevant & interested candidates. Please Note:-please refer your friends who are looking for job changes. Job Description: Enterprise Security Architect. JD:- Required Experience & Education:- Experience Minimum of 10 years of experience in enterprise architecture. Experience with leading teams and complex projects. Strong leadership, coaching and mentoring of resources in architecture functions. Knowledge of healthcare industry standards and regulations. Strong understanding of technology trends and emerging technologies. 5+ years of experience with developing and implementing enterprise cybersecurity and risk management architecture strategies and roadmaps. Experience with security risk management frameworks such as NIST-CSF, HITRUST, MITRE and compliance certifications such as HIPAA, PCI-DSS, SOC-II. 2+ years developing and maturing EcoSystem driven frameworks. Excellent problem-solving and critical thinking skills. Excellent written and verbal communication skills. Ability to work independently and in a team environment Education Bachelors degree in computer science, information technology or related field or equivalent combination of education/experience. 2- Preferred Experience & Education:- Experience 10 years of experience in enterprise architecture or similar roles. Direct hands-on experience with Teams, DevOps, Rally, JIRA, Confluence and other productivity tools. In-depth knowledge of and proven cloud experience with multi-cloud solutions and hybrid business intelligence stacks Experience with Cyber risk quantification methodologies. Experience with healthcare data terminologies, high-performance computing Experience with App Orchard, Job Description : Develop and maintain the enterprise cybersecurity and risk management architecture strategy and roadmap for our organization. Manage a team of architects. Responsible for the budget, and staff recruitment, performance, engagement, and retention. Work closely with CISO and other cybersecurity leadership to align our security technology investments with our business objectives. Define and maintain our enterprise cybersecurity architecture standards and guidelines. Provide leadership and guidance to our IT, security, and infrastructure teams. Ensure that our systems and solutions are integrated, scalable, and secure. Remain current with new cybersecurity threats and assess systems to ensure they can defend the business. Stay on top of new and disruptive trends in the security industry. Formally communicate trends to EA and CISO. Advise CISO and leadership team in vendor/product/service selection, assist in educating and persuading business and operational leaders with adoption of security controls. Own development of rolling 18-month cycle to achieve To-Be architecture for Cybersecurity and risk management. Review vendor technology roadmaps into cybersecurity domain roadmaps to ensure continuous improvements to cyber domain operations, including cost-to-serve and other financial KPIs. Oversee development and maturity of Cybersecurity response, containment, recovery and restore playbooks for the enterprise. Partner with office of CISO to deploy Enterprise and Cyber Resiliency processes, procedures and methods. Oversee development and maintenance of blueprint of Disaster Recovery of critical business systems from Cyber induced disaster events. Partner with IT, Applications, Operations, IT GRC, Cybersecurity and other teams to simulate a Cybersecurity disaster and recovery drills, tabletop exercises. Partner with CISO to document gaps and drive collaboration to remediate. Partner with CISO to develop cohesive strategy to implement frictionless security controls and achieve industry certifications, such as HITRUST, SOC-II Partner with CISO to develop implementable roadmap to deploy controls aligning to security industry best practices, such as Zero Trust Network Access, Defense in Depth. Stay up-to-date with emerging technologies and industry trends. Drive innovation and continuous improvement in our technology landscape. Collaborate with our IT and security teams to ensure that our technology investments comply with healthcare industry standards and regulations. Conduct architecture assessments and provide recommendations for improvement. Develop and maintain architecture-related policies and procedures. Provide guidance and support for technology procurement and vendor management 5. Certification Requirements /any-1. Required Certification in at least one of the common architecture frameworks (TOGAF, Zachman, DODAF, FEAF or FEAC) 2. Preferred Certifications in multiple common architecture frameworks such as TOGAF, Zachman, DODAF, FEAF, FEAC is preferred. Security industry certifications, such as CISSP, CISM etc Those who have relevant experience and Skills, as mentioned above please revert back ur updated resume to - Sreenivasa.k@happiestminds.com. It"s a kind request, Please provide the below mentioned details in Ur CV/mail before u send it to us. Total Exp: Relevant Exp:- Current Company: Current CTC: Expected CTC: Current Location: Preferred location: Notice Period: Degree: Regards, Many Thanks Regards Sreenivas Sreenivasa.k@happiestminds.com

Posted 1 week ago

Apply

3.0 - 8.0 years

22 - 25 Lacs

Mumbai

Work from Office

Essential Services : Role & Location fungibility About the role We are looking for a skilled professional to join our Information Security Team as a DevSecOps Manager. As a DevSecOps Manager, you will be responsible for implementation of Security tools in DevOps CI/CD (Continuous integration/Continuous Delivery) pipeline and publish security standards and best practices for Developers teams. Key Responsibilities Identifying Vulnerabilities Enable automated security scanning process to identify the known vulnerabilities in source code, Open-source library, and configuration. Provide technical leadership and direction in the DevSecOps domain. Analysis Troubleshoot DevSecOps pipeline implementation issue and support for successful deployment. Implement DevSecOps with multiple agile teams across various platforms, environments, and instances. Implement Automated DevSecOps template-based solutions for cloud environments. Implement Security Measures Understand the Security Requirements & Implement the new DevSecOps process. Integrate, Monitor and Improve Cloud Security controls via DevSecOps process in existing DevOps process. Perform assessment and help to mitigate Security findings and implement improvement Security measures. Configure Cloud Security Tools/Systems in a CI/CD Pipelines. Implementing Security scanning into Jenkins, Code Pipeline, and DevOps workflows. Define gating process metrics for security and implement in DevSecOps. Employ infrastructure as code to increase automation, scalability, and reliability. Reporting Prepare and provide necessary metrics, detailed reports, artifacts, executive summary and dashboard to leadership on a regular frequency. Build and maintain a set of tools that enable developers to self-serve for remediation. Monthly Dashboard Reporting for Leadership. Collaborate Capable of working in a dynamic environment, multi-department coordination and attaining the target. Qualifications & Skills Educational Qualification Engineering Graduate in CS, IT, EC or InfoSec, CyberSec or MCA equivalent. Certifications CSSLP, CISSP, GPEN, ECSA, CEH, CISM, CISA, or equivalent. Compliance Good understanding of cyber security trends & hacking techniques. Experience in analysing threats of cloud and application components. Familiarity with OWASP, SANS vulnerabilities along with its validations in source code and other security frameworks & Compliance. Ability to review assessment reports to provide risk mitigation & recommendations on that basis. Technical Skills Experience with various application security tools including SAST, DAST, Software composition analysis and application Penetration testing. Experience with Automation in testing or orchestration Selenium, Maven, Ant, Msbuild, Npm, Yarn, Jenkins, Gitlab, Bitbucket, etc. Knowledge of Agile and Scrum processes. Understanding of virtualization and container technologies (Docker, Kubernetes, etc). Communication Skills Outstanding communication abilities. Ability to effectively communicate the required recommendations.

Posted 1 week ago

Apply

6.0 - 7.0 years

9 - 13 Lacs

Mumbai

Work from Office

The Associate Manager, Internal Audit plays a critical role within the Risk and Audit Services team, serving as a trusted advisor responsible for the planning, execution, and reporting of diverse internal audit and risk advisory engagements, including SOX control testing. You will assess the efficacy of our organizations governance, risk management, and control processes across the organization. This position demands strong analytical and problem-solving skills and business acumen, as we'll as excellent communication and interpersonal skills. Job Responsibilities: Plan, execute and report on risk-based internal audit engagements to evaluate the effectiveness of governance, risk management, and control processes across the organization focused on financial, operational, compliance, and IT and cybersecurity risks. Conduct comprehensive Sarbanes-Oxley Act (SOX) testing to evaluate the design and operating effectiveness of internal control over financial reporting (ICFR) and disclosure controls & procedures (DC&P), including walkthroughs of material processes, testing of controls, and identification of control deficiencies. Lead or contribute to assigned real-time assessments and risk advisory engagements in adherence to the Risk and Audit Services methodology. Build relationships and collaborate with regional management teams to promote and support the implementation and maintenance of effective governance, risk management, and control processes. Identify and assess control deficiencies, potential risks, and areas for process improvement by applying the organization s 4S Principles: Simplify, Standardize, Scalable and Save Costs. Prepare engagement reports with clear findings, conclusions, and actionable recommendations for improvement. Communicate engagement results effectively to senior management and other key stakeholders. Collaborate closely with management to help remediate identified control deficiencies and ensure the timely completion of corrective actions. Collaborate closely with external auditors throughout SOX testing by, for example, conducting joint walkthroughs and ensuring to meet professional standards to maximize their reliance on the work performed by Risk and Audit Services. Requirements: Chartered Accountant (CA) or equivalent professional designation, or Certified Internal Auditor (CIA) designation. Certified Information Systems Auditor (CISA) is a plus. Minimum of 6-7 years of directly related work experience, with at least 3 of those years being risk-based internal audit experience. Strong understanding of the SOX requirements, internal control frameworks (COSO), and internal control testing methodologies. Excellent analytical and problem-solving skills. Strong business acumen, with the ability to understand and analyze business operations, as we'll as related risk and control interdependences and impact A self-motivated team player with the ability to adapt to a fast-paced, changing environment while effectively managing time and deliverables. Strong written and verbal communication skills, with the ability to effectively present complex matters to diverse stakeholders at all levels. Demonstrated ability to build and maintain strong, collaborative relationships across diverse teams and stakeholders. Proven capability to influence without direct authority and foster a culture of accountability. Experience with Enterprise Risk Management (ERM), fraud risk management, Business Continuity Management (BCM), and/or a Governance, Risk, Compliance (GRC) system is a plus. Limited travel (10% or less)

Posted 1 week ago

Apply

3.0 - 8.0 years

15 - 20 Lacs

Mumbai

Work from Office

Step into the role of Assistant Vice President at Barclays Internal Audit (BIA) in Mumbai, where you'll support the Audit Lead on audit executions to ensure timely and efficient delivery of audit results As an independent contributor, youll support collaborative audit reviews and guide junior team members in the completion of these reviews, You may be assessed on the key critical skills relevant for success in role, such as experience in either Global Markets and/or Corporate Banking business, as well as job-specific skillsets, Basic/ Essential Qualifications Experience in audit and business monitoring, Understanding of relevant regulatory and compliance environment in India, Relevant professional certifications, e-g CIA, CPA, or CISA, is preferred, Job Location is Mumbai, Purpose of the role To support the development of audits aligned to the banks standards and objectives by working collaboratively with colleagues, providing accurate information and recommendations, and complying with policies and procedures, Accountabilities Audit development and delivery support, including financial statements, accounting practices, operational processes, IT systems and risk management, Identification of operational risks to support the delivery of the Barclays Internal Audit (BIA) Audit Plan through risk assessments, Assessment of internal control effectiveness and their capability to identify and mitigate risk aligned to regulatory requirements, Communication of key findings and recommendations to stakeholders, including the Audit Owner, senior managers and directors, Identification of regulatory news and industry trends/developments to provide timely insight and recommendations for best practice, Assistant Vice President Expectations To advise and influence decision making, contribute to policy development and take responsibility for operational effectiveness Collaborate closely with other functions/ business divisions, Lead a team performing complex tasks, using well developed professional knowledge and skills to deliver on work that impacts the whole business function Set objectives and coach employees in pursuit of those objectives, appraisal of performance relative to objectives and determination of reward outcomes If the position has leadership responsibilities, People Leaders are expected to demonstrate a clear set of leadership behaviours to create an environment for colleagues to thrive and deliver to a consistently excellent standard The four LEAD behaviours are: L Listen and be authentic, E Energise and inspire, A Align across the enterprise, D Develop others, OR for an individual contributor, they will lead collaborative assignments and guide team members through structured assignments, identify the need for the inclusion of other areas of specialisation to complete assignments They will identify new directions for assignments and/ or projects, identifying a combination of cross functional methodologies or practices to meet required outcomes, Consult on complex issues; providing advice to People Leaders to support the resolution of escalated issues, Identify ways to mitigate risk and developing new policies/procedures in support of the control and governance agenda, Take ownership for managing risk and strengthening controls in relation to the work done, Perform work that is closely related to that of other areas, which requires understanding of how areas coordinate and contribute to the achievement of the objectives of the organisation sub-function, Collaborate with other areas of work, for business aligned support areas to keep up to speed with business activity and the business strategy, Engage in complex analysis of data from multiple sources of information, internal and external sources such as procedures and practises (in other areas, teams, companies, etc) to solve problems creatively and effectively, Communicate complex information 'Complex' information could include sensitive information or information that is difficult to communicate because of its content or its audience, Influence or convince stakeholders to achieve outcomes, All colleagues will be expected to demonstrate the Barclays Values of Respect, Integrity, Service, Excellence and Stewardship our moral compass, helping us do what we believe is right They will also be expected to demonstrate the Barclays Mindset to Empower, Challenge and Drive the operating manual for how we behave,

Posted 1 week ago

Apply

1.0 - 2.0 years

5 - 9 Lacs

Bengaluru

Work from Office

Are you passionate about cybersecurity and data securityIf your answer is a resounding yes, then we are hunting for you. As an Information Security Lead, your primary role will be to play a crucial role in protecting its information assets and ensure the confidentiality, integrity, and availability of data. In addition, your goal will stretch to ensure a holistic and effective approach to information security. The role requires a combination of technical expertise, leadership skills, and a deep understanding of the organizations business processes and objectives. Furthermore, your collaboration with cross-functional teams will contribute to the development and maintenance of an enterprise Business Continuity and Disaster Recovery Program, safeguarding our ability to navigate challenges and disruptions effectively. If you are a dynamic, results-oriented Information Security Lead who comes with a proven track record in steering MNCs toward unprecedented success, we invite you to seize this opportunity and make a profound impact on our global presence. Do you possess all the aforementioned skills and wish to make a difference in the world of food and technologyJoin us now! Develop, update, and maintain comprehensive information security and data privacy policies aligned with industry standards and regulatory requirements. Utilize strong IT administration skills to support and optimize our technical operations, ensuring a secure and efficient IT environment Plan, coordinate, and execute internal audits across diverse functions, evaluating adherence to information security policies and procedures Identify and mitigate information security risks through meticulous risk assessment, proposing effective mitigation strategies and overseeing their implementation Exhibit proficiency in vendor management, conducting vendor risk assessments, and establishing secure and reliable vendor relationships Design and manage enterprise-wide security awareness training programs, imparting knowledge and best practices to our global workforce Implement and manage the IT Security Risk Management Framework, aligning security efforts with organizational goals and risk appetite Coordinate security assessments and audits conducted by external certification bodies and clients, ensuring ongoing compliance and effective incident resolution Establish information security objectives, provide monthly measurement and analysis reports to management, and continually enhance our security posture Conduct BIA, risk assessment and develop business continuity and disaster recovery programs, coordinating with the Crisis management & BCP team and actively participating in periodic annual DR tests Collaborate with cross-functional teams to develop and maintain an Enterprise Business Continuity and Disaster Recovery Program Qualifications: Bachelor s degree in computer science, Information Technology, or a related field. Masters degree is a plus. Minimum 8+ years of experience in information security or related role Experience with cyber traceability frameworks and diligent adherence to principles of security components Proficiency in audit-ready protocols to ensure compliance and regulatory requirements are met Cloud security knowledge and experience, including securing cloud-based infrastructures, serverless architecture and services Demonstrated ethical hacking capabilities to proactively identify and address vulnerabilities, organizing and maintaining artifacts for documentation and accountability Skilled in training and mentoring teams to enhance security awareness and practices Strong understanding of secure design principles and their application in the development lifecycle Industry-recognized certifications such as CISSP, CISM, CISA, or equivalent is a plus Strong knowledge of security frameworks, standards, and best practices (ISO 27001, NIST, CIS, etc.) Experience with security technologies and tools, including firewalls, IDS/IPS, SIEM, VAPT, encryption, and multi-factor authentication Strong problem-solving skills and the ability to make decisions under pressure Experience with security incident response and business continuity planning Message from CEO: .

Posted 1 week ago

Apply

5.0 - 8.0 years

10 - 15 Lacs

Thane

Work from Office

Calling all innovators find your future at Fiserv, Were Fiserv, a global leader in Fintech and payments, and we move money and information in a way that moves the world We connect financial institutions, corporations, merchants, and consumers to one another millions of times a day quickly, reliably, and securely Any time you swipe your credit card, pay through a mobile app, or withdraw money from the bank, were involved If you want to make an impact on a global scale, come make a difference at Fiserv, Job Title Senior Manager, Audit What does a successful Senior Audit Manager do at Fiserv At Fiserv, within the dynamic world of our Corporate Assurance & Advisory Services (CAAS) department, we are dedicated to delivering world class audit and advisory services that elevate the performance of Fiserv and our clients This international team covers a wide range and scope of audit activities in the highly regulated payments and card industry! By joining the Audit team, you will be a key player in refining a diverse range of audits?spanning operational, compliance, financial, and info-security/cybersecurity, What You Will Do Provide guidance and direction to the planning process and the execution of fieldwork such as overseeing interviews and walkthroughs, reviewing materials, the design and execution of audit testing, analyzing results, drawing conclusions within the allotted time scheduled, Manage the audit lifecycle, staffing, scheduling, methodology and approach to testing and fieldwork and finally, the quality and timeliness of all work products you oversee You will be expected to provide weekly, monthly, or periodic status reporting and work with the CAAS leadership team to ensure the appropriate allocation and assignment of resources, Assist the Audit Director in the development and mentoring of Senior and Staff Auditors by providing regular and timely feedback regarding their execution of tasks performed during each audit engagement and their overall performance, What You Will Need To Have 7+ years of audit experience applying Auditing principles, methodology and standards in a risk-based environment across a variety of audit areas at varying degrees of complexity 5 + years of financial services industry experience and/or experience working in a public accounting firm 2+ years of experience managing other professionals Active professional Audit certification such as CPA, CIA, CISA, CFE Bachelors degree or an equivalent combination of education, work, and/or military experience What Would Be Great To Have Experience working with risk assessment methodologies, control activities, control monitoring, control evaluations and measurement of control effectiveness in accordance with regulatory compliance requirements such as corporate governance, consumer protection, AML/CTF and Financial Crimes, data protection/data privacy, ethics or conduct risk Important Info About This Role Were better together This role is fully on-site, This is a full-time, direct-hire position, and no contract options for unsolicited agency submissions will be considered, Thank You For Considering Employment With Fiserv Please Apply using your legal name Complete the step-by-step profile and attach your resume (either is acceptable, both are preferable), Our Commitment To Diversity And Inclusion Fiserv is proud to be an Equal Opportunity Employer All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, gender, gender identity, sexual orientation, age, disability, protected veteran status, or any other category protected by law, Note To Agencies Fiserv does not accept resume submissions from agencies outside of existing agreements Please do not send resumes to Fiserv associates Fiserv is not responsible for any fees associated with unsolicited resume submissions, Warning About Fake Job Posts Please be aware of fraudulent job postings that are not affiliated with Fiserv Fraudulent job postings may be used by cyber criminals to target your personally identifiable information and/or to steal money or financial information Any communications from a Fiserv representative will come from a legitimate Fiserv email address,

Posted 1 week ago

Apply

3.0 - 7.0 years

10 - 14 Lacs

Chennai

Work from Office

Senior Internal Auditor India, Chennai Hybrid, Office-Based ICON plc is a world-leading healthcare intelligence and clinical research organization Were proud to foster an inclusive environment driving innovation and excellence, and we welcome you to join us on our mission to shape the future of clinical development, Reporting to the Senior Manager of Internal Audit, you will join a fast paced and dynamic internal audit team supporting ICON's mission to help its clients accelerate the development of drugs and medical devices that save patient lives and improve their quality of life, As a key member of the ICON Group Internal Audit team, you will perform internal control, financial and operational audits for ICON plc, with emphasis on global project governance and risk assurance, What You Will Be Doing Manage various Sarbanes-Oxley (Sox) testing and reporting requirements across ICON's Divisions globally, Lead walkthroughs and risk assessments with process owners Review documentation and assess results to ensure adequate control design and identification of ?key? controls Serve as a main SOX contact for coordination with external auditors related to testing requirements/requests and issues Perform risk based internal audit assignments across ICON's Divisions globally, Consistently evaluate the adequacy and effectiveness of internal controls and compliance, relating to risks across all aspects of ICON, Co-ordinate & deliver quality audit reports containing realistic recommendations, agreed with Management ensuring they are achievable, cost effective and contribute to the business, Play an active role in ensuring any potential operational risk issues and matters, are monitored and communicated effectively, Collaborate with the Senior Manager of Internal Audit on relevant Audit Committee engagements, Analyse large amounts of data in an efficient and accurate manner, using your IT acumen, Familiarise yourself with the In-house SOX tool and look for ways of enhancing its use, Foster good working relationships with global cross-function teams in the business, Promote the Internal Audit brand internally and encourage stakeholders to engage with Internal Audit, Motivate, coach and develop more junior team members to excel in their roles and advance professionally, Your Profile Bachelor's degree in Accounting, Finance, or a related field (Relevant certifications such as CPA, CIA, or CISA are a plus), Must have extensive SOX experience to be considered for this role Big 4 trained preferred 3 years + Audit experience required Post qualification experience in industry preferred Strong Analytical Skills with Good IT Acumen, Strong report writing skills, excellent attention to detail and time management skills What ICON Can Offer You Our success depends on the quality of our people Thats why weve made it a priority to build a diverse culture that rewards high performance and nurtures talent, In addition to your competitive salary, ICON offers a range of additional benefits Our benefits are designed to be competitive within each country and are focused on well-being and work life balance opportunities for you and your family, Our Benefits Examples Include Various annual leave entitlements A range of health insurance offerings to suit you and your familys needs, Competitive retirement planning offerings to maximize savings and plan with confidence for the years ahead, Global Employee Assistance Programme, LifeWorks, offering 24-hour access to a global network of over 80,000 independent specialized professionals who are there to support you and your familys well-being, Life assurance Flexible country-specific optional benefits, including childcare vouchers, bike purchase schemes, discounted gym memberships, subsidized travel passes, health assessments, among others, Visit our careers site to read more about the benefits ICON offers, At ICON, inclusion & belonging are fundamental to our culture and values Were dedicated to providing an inclusive and accessible environment for all candidates ICON is committed to providing a workplace free of discrimination and harassment All qualified applicants will receive equal consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status, If, because of a medical condition or disability, you need a reasonable accommodation for any part of the application process, or in order to perform the essential functions of a position, please let us know or submit a request here Interested in the role, but unsure if you meet all of the requirementsWe would encourage you to apply regardless theres every chance youre exactly what were looking for here at ICON whether it is for this or other roles, Are you a current ICON EmployeePlease click here to apply

Posted 1 week ago

Apply

4.0 - 8.0 years

3 - 7 Lacs

Hyderabad / Secunderabad, Telangana, Telangana, India

On-site

At least two-year experience in a similar Information Security position Vulnerability research skills Experience in security assessments, pentesting web applications and infrastructure. Experience developing security tools and open source projects Attention to detail and good problem solving skills Very good knowledge of the technical foundations behind networking, operating systems and applications (TCP/IP, Linux, Windows, Web Technologies) Good understanding of Information Security processes and theory Good communication skills and customer-facing experience Experience in the following areas: Vulnerability management Risk management Qualifications Desired Security Certification (GIAC, OSCP, etc.) or similar qualification Experience integrating systems and tools via API's (programming, automation) Online Gaming security experience Experience in Application Security Regulatory and industry standards work: ISO27001, PCI-DSS, etc. Additional Information Additional information With the capacity to display initiative as part of a very strong Technology Governance team, this position plays a key role in ensuring the continued alignment of our Technology department with business objectives. The Candidate should be able to think laterally; suggest process improvements; drive results; Confident with other team members and able to engage with Vendor third parties to ensure Entain's data and confidentiality is maintained to the highest of security standards. Qualification Criteria Qualifications Security Certification (GIAC, OSCP, etc.) or similar qualification Experience integrating systems and tools via API's (programming, automation) Online Gaming security experience Experience in Application Security Regulatory and industry standards work: ISO27001, PCI-DSS, etc. Other relevant professional qualifications will be considered, although not a requirement, e.g. CISA, CISM, CISSP, GIAC, etc.

Posted 1 week ago

Apply

4.0 - 9.0 years

14 - 24 Lacs

Navi Mumbai, Pune, Mumbai (All Areas)

Work from Office

Cyber Security Auditor Location: Mumbai Leading Bank Work From office mail at manjeet.kaur@mounttalent.com whatsap at 8384077438 Roles and Responsibilities 4 years of experience (upto 12 yrs.) in the field of information security operations, Information System Audits encompassing experience into any of the Banking Technologies Domains Application Security, Database management and administration, / Network security and SOC / Payment systems in addition to IT General controls (ITGC). Exposure to the Banking / Finance / Payment industry domains would be preferrable. Hands-on experience in the following areas: Writing Information security policies, procedures, and processes Conducting risk assessment covering Cyber Security domains as noted below: Application Security: Mobile application assessment, OWASP security practices for applications, VA/PT/AppSec, source-code review, black/grey/white box testing, application SDLC, Strong knowledge of programming languages for applications. Database Security: Database administration and management - Oracle, MS SQL etc., Database Activity Monitoring tools, data security and localization. Payments Systems Security: Understand payment systems and architecture such as SWIFT, UPI, IMPS, ATM, Internet Banking, Mobile Banking, Core Banking System, payment gateway, ATM switch and terminal. Experience in PCI DSS implementation/assessment and ATM end-point security and Cards data security and operations. Networks Security: Managing firewalls, routers, proxy, WAF, email filtering, DLP, DDoS protection, data encryption, IPS/IDS, Incident response and investigate security breaches, VA-PT for networks. Security Operations Centre- Implementation and review. IT General Controls: Familiarity with Technical Security controls of Identity & Access Management, Network, Server, Application, Change management, Backup and Restoration etc. and process controls reviews. Understand BCP and DR processes and architecture. Experience in conducting reviews based on ISO standards and regulatory guidelines in banking sector for a medium to large sized organization would be preferred. Experience in conducting Information System Audits Must have experience in preparing quality deliverables such as audit reports, presentations etc. Excellent written, oral communication and presentation skills Excellent organizational and interpersonal skills Ability to work independently or as part of a team Information technology / Banking and Financial services / Auditing / Cyber Security consulting Candidate will have to travel extensively within Mumbai and across the country for performing audits, as per RBI requirements. Conducting audit of Information security policies, procedures, and processes to identify process/design gaps. Conduct audits of information security systems and infrastructure to verify systems are secure and support the related applications/business processes. Conducts audits in different banking technology domains such as Active Directory, WAF, Network access security, End-point security, Application VA/PT/AppSec, SDLC, Database management and security, PCI-DSS, ATM controls, Cards (Debit/Credit) security, Payment-gateway, Cloud and API Security and IT General Controls etc. Additional weightage will be given to candidates with experience in domains such as Cloud Security, API security. Developing project plans, work programs, evaluating system controls, identify risks and audit gaps, documenting results in proper audit report format, making recommendations, and communicating information to stakeholders. Support in maintaining audit checklist and documents, trend analysis, preparing presentations etc. Should be a self-learner and must keep updated with the latest security guidelines issued by regulators, international standards for information security, threats and vulnerabilities researched/discovered. Research public domain to keep up to date knowledge on latest banking applications / technologies and emerging technologies Cloud, Virtualisation, AI-ML, IOT etc. and ensure continuous learning in identified security competencies and new/emerging technologies. Experience into people management / team management will be preferred.

Posted 1 week ago

Apply

7.0 - 15.0 years

0 - 22 Lacs

Hyderabad, Chennai, Bengaluru

Work from Office

Roles and Responsibilities : Conduct code reviews to identify potential security vulnerabilities and provide recommendations for remediation. Collaborate with development teams to implement secure coding practices and ensure compliance with industry standards (e.g., CISA). Develop and execute test plans to validate the effectiveness of implemented controls, identifying areas for improvement. Provide guidance on risk management strategies, including assessment, mitigation, and monitoring of identified risks. Job Requirements : 7-15 years of experience in IT services & consulting with a focus on cyber security, control testing, or related fields. Certifications such as CISSP or CISA are highly desirable; equivalent experience may be considered. Strong understanding of software development life cycles, including design patterns, coding standards, and testing methodologies. Experience with conducting audits/assessments using various frameworks (e.g., ISO 27001) is an asset.

Posted 2 weeks ago

Apply

6.0 - 11.0 years

10 - 14 Lacs

Noida

Work from Office

Primary Responsibilities: Perform audits to identify control gaps and implement corrective action plans Ensure alignment of security policies/standards with IT infrastructure frameworks (e.g., ISO 2700x, NIST, ITIL) Monitor compliance with corrective action plans, and address non-compliance issues appropriately Demonstrate understanding of discovery technologies to identify system vulnerabilities (e.g. scanning tools) Establish appropriate security controls based on defined data classifications to align with applicable laws/regulations/standards Facilitate/lead security incident investigation Analyze business requirements and ensure that solutions meet established security policies and controls Maintain metrics and ensure reporting as appropriate Maintain current knowledge on information security topics and their applicability program requirements Communicate professionally with stakeholders/end users through multiple communication Comply with the terms and conditions of the employment contract, company policies and procedures, and any and all directives (such as, but not limited to, transfer and/or re-assignment to different work locations, change in teams and/or work shifts, policies in regards to flexibility of work benefits and/or work environment, alternative work arrangements, and other decisions that may arise due to the changing business environment). The Company may adopt, vary or rescind these policies and directives in its absolute discretion and without any limitation (implied or otherwise) on its ability to do so Required Qualifications: Bachelors degree or higher level of education 6+ years of Information security experience Experience with ISO27001 (ISMS), ISO31000 (Risk management), HITRUST CSF, NIST Cybersecurity Framework, SOC Type1/2 Demonstrated auditing skills and the ability to manage risk assessments / projects independently Demonstrated excellent communication skills both verbal and written Demonstrated good presentation skills particularly ability to present technology elements in manner personnel can follow and act Preferred Qualification: CISSP, CISA or ISO27001 Lead Implementer or Lead Auditor certification At UnitedHealth Group, our mission is to help people live healthier lives and make the health system work better for everyone. We believe everyoneof every race, gender, sexuality, age, location and incomedeserves the opportunity to live their healthiest life. Today, however, there are still far too many barriers to good health which are disproportionately experienced by people of color, historically marginalized groups and those with lower incomes. We are committed to mitigating our impact on the environment and enabling and delivering equitable care that addresses health disparities and improves health outcomes an enterprise priority reflected in our mission.

Posted 2 weeks ago

Apply

4.0 - 9.0 years

17 - 19 Lacs

Hyderabad

Work from Office

Job Description: Role Title : AVP, Risk Testing (L10) Company Overview : Synchrony (NYSE: SYF) is a premier consumer financial services company delivering one of the industry s most complete digitally enabled product suites. Our experience, expertise and scale encompass a broad spectrum of industries including digital, health and wellness, retail, telecommunications, home, auto, outdoors, pet and more. We have recently been ranked #2 among India s Best Companies to Work for by Great Place to Work. We were among the Top 50 India s Best Workplaces in Building a Culture of Innovation by All by GPTW and Top 25 among Best Workplaces in BFSI by GPTW. We have also been recognized by AmbitionBox Employee Choice Awards among the Top 20 Mid-Sized Companies, ranked #3 among Top Rated Companies for Women, and Top-Rated Financial Services Companies. Synchrony celebrates ~52% women diversity, 105+ people with disabilities, and ~50 veterans and veteran family members. We offer Flexibility and Choice for all employees and provide best-in-class employee benefits and programs that cater to work-life integration and overall well-being. We provide career advancement and upskilling opportunities, focusing on Advancing Diverse Talent to take up leadership roles. Organizational Overview : Synchronys Risk Team provides independent oversight of Synchrony s risk-taking activities to ensure safety and soundness, meet regulatory and legal requirements, and manage risks to the risk-appetite of the Board. Risk is responsible for independently assessing, quantifying, and overseeing risks & providing effective challenge. Risk serves as Synchrony s Second Line of Defense. Overall, Risk Team oversees and manages the Risk Program to support the business in anticipating and addressing risks, issues and challenges. Results are consistent with the respective strategic uses and complying with related overall risk, risk testing policies, standards, procedures as well as regulations. Our Risk organization consists of 4 pillars: Compliance, Credit & Financial Risk, Enterprise Risk and Operational Risk. Each of the pillars play a vital role in managing Risk and supports the business in anticipating and addressing risks, issues, and challenges. Role Summary/Purpose: Risk Testing is an independent 2nd line assurance process that, together with 1st line business surveillance and 3rd line independent audit, make up the three lines of defense that are the cornerstone of an effective control framework. This position is responsible for conducting and leading other associates in key control testing activities of Synchrony Bank ( SYB ) and Synchrony Financial ( SYF ) to assess compliance with applicable laws and regulations and ensure prompt remediation of control deficiencies. Key Responsibilities: Develop and execute control testing to ensure that key risks are mitigated. Document detailed test results to performance standards and meet required deadlines. Identify control gaps and potential issues, discuss viable solutions with the business to address gaps, and obtain management action plans for remediation. Communicate test results to leaders and other stakeholders throughout the business and provide periodic updates regarding status of testing activities. Provide effective challenge to the business regarding the assessment of risks and controls. Influence stakeholders and process owners to implement necessary process and control modifications to mitigate operational, regulatory, and financial risks. Provide guidance to process owners regarding key risks and mitigation strategies. Perform any special projects as assigned Required Skills/Knowledge: Bachelors degree with minimum 4+ years in Financial Services industry, or in lieu of a degree 6+ years of relevant work experience in Financial Services industry Minimum 2+ years of Audit, Testing, Surveillance. Minimum 3+ years in consumer banking laws and regulations Effective written and verbal communication skills Experience applying analytical skills and attention to detail Proven ability to work independently and meet deadlines Proficiency in Microsoft Office Suite applications Desired Skills/Knowledge: Minimum 2+ years of Audit, Testing, Surveillance Knowledge of process and systems related to Servicing, Collections, Credit, Fraud, and AML/BSA Effective written and verbal communication skills Experience applying analytical skills and attention to detail Proven ability to work independently and meet deadlines Proficiency in Microsoft Office Suite applications Demonstrated ability to communicate effectively with various levels of stakeholders Relevant industry certifications - CIA, CISA, CRCM, CAMS, CPA, etc. Eligibility Criteria: Bachelors degree with minimum 4+ years in Financial Services industry, or in lieu of a degree 6+ years of relevant work experience in Financial Services industry Work Timings: This role qualifies for Enhanced Flexibility and Choice offered in Synchrony India and will require the incumbent to be available between 06:00 AM Eastern Time - 11:30 AM Eastern Time (timings are anchored to US Eastern hours and will adjust twice a year locally). This window is for meetings with India and US teams. The remaining hours will be flexible for the employee to choose. Exceptions may apply periodically due to business needs. Please discuss this with the hiring manager for more details. For Internal Applicants : Understand the criteria or mandatory skills required for the role, before applying Inform your manager and HRM before applying for any role on Workday Ensure that your professional profile is updated (fields such as education, prior experience, other skills) and it is mandatory to upload your updated resume (Word or PDF format) Must not be any corrective action plan (Formal/Final Formal) L8+ Employees who have completed 18 months in the organization and 12 months in their current role and level are only eligible. Employees at L8+ can only apply for this opportunity. Level / Grade : 10 Job Family Group: Risk Management

Posted 2 weeks ago

Apply

5.0 - 7.0 years

15 - 20 Lacs

Mumbai

Work from Office

Company: Marsh Description: Job Profile: Manager, Cyber Risk Consulting, Marsh Location: Mumbai MMC Business Unit: Marsh MMC Office Name: Marsh McLennan Global Services India Private Limited (MMGS) MMGS Function: Knowledge Services Marsh is a global leader in insurance broking and risk management. In more than 130 countries, our experts in every facet of risk and across industries help clients to anticipate, quantify, and more fully understand the range of risks they face. Marsh Advisory is the consultative branch of Marsh, which operates internationally and provides solutions in the increasing needs of our clients to implement risk management programs within their organization.Marsh Advisory helps companies to change their risk profiles so they can improve resiliency, reduce claims, and minimize the total cost of risk. Businesses today regularly tackle multiple challenges; whether facing property and casualty, cyber, reputational, or other risks, Marsh Advisory can help. The global Cyber Risk Consulting (CRC) practice of Marsh Advisory supports customers to understand, estimate and mitigate cyber risks. This role is open in Marsh McLennan Global Services (MMGS) a global in-house center for MMC Group. The MMGS in Mumbai has a function called Knowledge Services which supports the MMC group by providing specialized services. Under the Knowledge Services function, there is Marsh Advisory team, which supports the global clients and colleagues, this role will initiate a new service line for Marsh Advisory team in Mumbai, which entails supporting the CRC colleagues in execution of the cyber consulting projects. What can you expect? Collaborate with the CRC practice in India, Middle East and Africa (IMEA) for delivery of the practices value proposition in the regions. Provide complete support to delivery of the desired deliverables as per the agreed scope of work with the client, and provide an efficient delivery model for Marsh CRC practice Play a key role in leading the delivery of multiple CRC projects Responsible for review and training of junior colleagues to ensure the deliverable is as per the expected quality framework. Moderate travel within India, Middle East, and Africa (IMEA) region for client engagements and collaboration with the CRC practice. We will count on you to : Support the IMEA CRC practice, and be hands-on in delivery of the consulting projects and mentor the junior colleagues in their projects Prepare deliverables for cyber consulting practice under the guidance of the CRC practice Conduct research on the clients cybersecurity risk areas and prepare a point of view for consulting Support the team towards constant innovation of cybersecurity approach and go-to-market strategy Quick learner of the CRC practices procedures and policies, and is able to explain the same to non-technical clients/colleagues Understand different domains within cybersecurity space and demonstrate passion Is on track to build specialization to demonstrate specialist knowledge in cybersecurity Contribute in research support for building a robust CRC practice deliverables Will be responsible to maintain key project track record and detailed process documentations Delivery of the projects would be done either remotely or onsite depending on the client requirement Ability to motivate the team members and take the high road to ensure client success Build proposals and pitch to potential clients, including developing compelling presentations and effectively communicating the value proposition of the Cyber Risk Consulting practice. What you need to have: The candidate must possess the following attributes: Post Graduate or equivalent from an institute of repute 5 to 7 years professional experience in cybersecurity consulting domain in Big 4 or boutique firms; At least one of the following Professional cyber security certifications (e.g. CISA, CISSP, ISO LA/LI or Security+) would be mandatory; Expertise in ICT security principles and controls. Candidate should ideally have hands on experience in conducting Cyber risk assessments, designing cyber security framework (including policies, procedures), ISO/IT GRC implementations, audits, license management, vendor risk management, DLP, IRM, compliance management, user awareness trainings and data privacy. Knowledge on Cyber Security standards / regulations. E.g. COBIT, NIST, ISO, GDPR, RBI Guidelines etc. Experience in IT Disaster Recovery Management. Operational or emerging technologies knowledge is a plus. Ability to develop quality reports, presentations, project trackers. Should be proficient in Ms. Office applications such as Word, PowerPoint, and Excel. Basic knowledge in Project, Teams, and Visio. Effective communicator who is able to share insights with clients/stakeholders Strong analytical problem solving skills and experience Smart, collaborative, relationship and outcome focused with the ability to make decisions where ambiguity exists; Ability to demonstrate sound judgment in the prioritization of competing work assignments, escalation of issues and the formulation of solutions; Effective organization skills with key attention to detail and delivery of high quality documentation with the ability to implement/influence change; Strong sense of business ethics and principles; Graduate degree in Computer Science, Engineering or Business Administration. Excellent English language skills, both verbal and written with the ability to communicate technical matters to a non-technical audience. Fluency in additional foreign languages constitutes an advantage. What is good to have: Experience in data governance/data privacy Experience of internal or external IT audit OT/ICS Cybersecurity knowledge Knowledge of technical assessments (VA/PT, WAPT, Config. Review etc.) Experience with developing cyber security strategies Experience in Ms. Visio, Ms. Project Fluency in foreign language constitutes an advantage. Marsh, a business of Marsh McLennan (NYSE: MMC), is the world s top insurance broker and risk advisor. Marsh McLennan is a global leader in risk, strategy and people, advising clients in 130 countries across four businesses: Marsh, Guy Carpenter, Mercer and Oliver Wyman. With annual revenue of $24 billion and more than 90,000 colleagues, Marsh McLennan helps build the confidence to thrive through the power of perspective. For more information, visit marsh.com, or follow on LinkedIn and X.

Posted 2 weeks ago

Apply

6.0 - 10.0 years

10 - 15 Lacs

Mumbai, Goregaon

Work from Office

Role & responsibilities Key highlights of the role are listed below (purely indicative and not limiting): Develop and execute the Information Security Audit Plan based on a risk-based approach. Conduct IT security audits, risk assessments, and compliance reviews across applications, infrastructure, and third-party vendors. Evaluate IT / Information Security policies, procedures, and controls to ensure compliance with ISO 27001, PCI-DSS, DPDPA, SOC 2, and other relevant standards. Identify security risks, control weaknesses, and process inefficiencies, providing recommendations for mitigation. Work closely with IT, IS, cybersecurity, and other business teams to ensure audit findings are addressed in a timely manner. Perform security assessments of cloud environments (AWS, Azure, GCP), network security, and application security Prepare detailed audit reports, executive summaries, and presentations to relevant stakeholders Monitor industry trends, regulatory changes, and emerging cyber threats to enhance the organizations security posture. Lead and conduct internal and external IT / security compliance audits, ensuring adherence to company policies and industry best practices. Mentor and guide the team in audit methodologies and best practices. Assist in IT and cybersecurity audits by external regulators (RBI, PCI-DSS, etc.). Applicants should possess the following attributes: Experience in ISO 27001, SOC 2, PCI-DSS or RBI, SEBI guidelines compliance. Knowledge of penetration testing, vulnerability assessments, and security operations. Hands-on experience with SIEM, DLP, IAM, and other security tools. Prior experience in a Big 4 audit firm or financial services sector is an advantage. Effective Team Management Excellent communication skills with the ability to present technical findings to nontechnical stakeholders Strong understanding of IT security frameworks, governance, risk, and compliance (GRC) principles. Familiarity with financial, regulatory or other requirements related to information security. Experience in performing security assessments of cloud environments (AWS, Azure, GCP), network security, and application security Strong analytical, problem-solving, and leadership skills.

Posted 2 weeks ago

Apply

15.0 - 20.0 years

15 - 20 Lacs

Mysore, Karnataka, India

On-site

How you'll make an impact: Engaging the third party and driving the ITGC operations across P&A (Platforms and Applications). Review that all the JSOX Controls are executed as per the standards and the required quality is being adhered to by the third party. Defining the key attributes needed to perform the controls effectively. Planning and ensuring that all the audits are completed in a timely manner in Coordination with the Control performers. Liaison between the P&A Application managers and the Control performers. Support Framework transition and optimization. Work out opportunities for efficiency improvements, automated controls, aggregation of controls, etc. Work out concept of internalization of Control Owner. Defining the KPI and come out with adequate measures to reduce the outsourcing costs without reducing the security risks to the applications. Supporting non JSOX audits and defining clear plans with timelines for all identified gaps, working on mitigations. Supporting non JSOX compliance maturity enhancements across P&A. Responsible to ensure compliance with applicable external and internal regulations, procedures, and guidelines. Living Hitachi Energy s core values of safety and integrity, which means taking responsibility for your own actions while caring for your colleagues and the business. Your background: The candidate should have more than 20 years professional experience and more than 15 years in Internal audits The candidate should be a CISA and ISO 27001 Certified The candidate should have extensive experience with compliance service The candidate should have extensive experience in dealing with diverse technological audits The candidate should have experience in dealing with regulatory audits and also have a track record of completing SOX audits testing on time The candidate should have experience in managing large, global and diverse teams include handling third parties The candidate should have worked with senior management, provided and discussed reporting Proficiency in both spoken & written English language is required.

Posted 2 weeks ago

Apply

7.0 - 10.0 years

3 - 11 Lacs

Pune, Maharashtra, India

On-site

Develop the culture of risk management across the organisation, and ensure effective identification, quantification, communication, and management of risks focusing on root cause analysis and resolution recommendations across domains Cyber, HR, Legal, Finance, etc. Proactively monitor and evaluate control effectiveness, identify gaps, and recommend enhancements to strengthen risk posture and regulatory compliance. Provide SME support to functional managers or Internal stakeholders in understanding and applying responsibilities towards risk and compliance providing recommendations as appropriate. Support the CIO and CISO, and work with internal stakeholders to: Participate in consultation and conduct gap analysis against new requirements Coordinate and facilitate IT / cyber security audits. Support Risk Owners and Tech teams in documenting control procedures, guidelines, etc. Ensure risk and control activities are completed in a timely and appropriate manner applying the correct governance route Report and publish Risks to senior leadership inclusive of providing content for Senior Leadership risk and control review forums/Committees. Ensure all governance attestations and sign-off from Senior leadership are completed including the conduct risk measures. Co-ordinate and track the tickets / findings in areas likeIT Operational Risks and Information Security Risks,Control Self assessments ,Internal/External Audit findings with appropriate CAPA,BCP / Disaster recovery ,Problem tickets with root cause analysis. Audit event co-ordination, Audit liaison and issue closure oversight (SOC 2 Type 2, ISO 27001, etc.) Lead pre-audit preparation activities with stakeholders (SOC 2 Type 2, ISO 27001, etc.) Provide first line of defense support in assessing risk and reviewing control issues Documentation of control procedures, standards and guidelines, etc. What youll bring: Bachelor s degree in IT or relevant field with a strong academic background A minimum of 7-10 Years of experience in Risk management and internal controls governance Strong communication & strategic influencing skills. Relevant experience working with senior leaders, building internal networks, and delivering high impact programs in complex -matrixed environments. Formal training or certification in Information Security, and/or 5+ years of experience or equivalent expertise in technology risk management, information security, or related field, emphasizing risk identification, assessment, and mitigation. Familiarity with risk management frameworks, industry standards, and financial industry regulatory requirements Proficient knowledge and expertise in data security, risk assessment & reporting, control evaluation, design, and governance, with a proven record of implementing effective risk mitigation strategies. Proficient in MS Office productivity suite (e.g., Word, Excel, PowerPoint, SharePoint). Advanced Excel skills strongly preferred CISM/CRISC/CISA/CISSP/CIA/MBA or relevant Risk Management / Audit certification Basic working knowledge of following (Majority of the points, if not all): -COBIT Control Objectives for Information and Related Technology -ISO/IEC 27001:2013 Code of Practice for Information Security Management -NIST SP 800-53 -NIST CSF -SOC1/SOC2/SOC3 -HIPAA/HITECH Security and Privacy Audit Protocol -Shared Assessments Standard Information Gathering (SIG) framework -US SOX Sarbanes Oxley Act -US HIPAA/HITECH Act -EU GDPR General Data Protection Regulation -US EU Privacy Shield -India Companies Act Additional Skills: Demonstrated ability to influence executive-level strategic decision-making and translating technology insights into business strategies for senior executives. Program level management up to and including Executive presentation and reporting. Knowledge and Experience of Technology Infrastructure. Understanding of Infrastructure Security Stakeholder management Willingness to adapt to evolving industry standards and technologies Ability to manage a wide variety of tasks and meet deadlines, and reliability/dependability Proven ability to work creatively and analytically in a problem-solving environment

Posted 2 weeks ago

Apply

8.0 - 13.0 years

25 - 30 Lacs

Bengaluru

Work from Office

Job Title: Information Security Officer (ISO) Corporate Title: AS Role Description The role of an Information Security Officer (ISO) is of a role holder aligned to a portfolio of applications (Application ISO). The ISO has the responsibility for the operational aspects of ensuring compliance with the Information Security Principles. The ISO is the primary contact for information security relevant matters within their area of responsibility. The ISO has a disciplinary reporting line into their Line Manager and a functional reporting line into the Divisional CISO. Your key responsibilities To assume the ownership and responsibility for the assigned IT assets, in line with the DB Group Information Security management processes and the Divisional ISMS. To support the development and maintenance of Information Security policies and procedures pertaining to the Unit in accordance with the Information Security policies and procedures of DB Group. To support the management of IS Risks within the Risk Appetite defined by the ISR. To execute the IS Risk assessments and compliance evaluations for assigned IT assets To ensure the execution of information security risk management requirements in their area of responsibility as additionally defined by the Divisional ISO (e.g., conducting risk assessments on an organizational basis, preparing and implementing management action plans to mitigate identified risks) To ensure the implementation of Identity and Access Management Processes and the execution of a periodic recertification of User Access Rights in their area of responsibility To provide timely updates to the Divisional ISO regarding the aforementioned information security management tasks To ensure that application entries regarding information security (e.g., Data Protection and Data Privacy fields) in the Groups inventory of applications are accurate and up to date To implement Segregation of Duty (SoD) rules for the assigned IT assets To contribute to the Information Security incident management process in the case of a security breach Keep oneself informed of the Information Security Principles and its subordinate documents and liaise with any other necessary parties to accomplish their tasks. These resources may be e.g., the TISO, ITAO or any other subject matter experts To ensure appropriate documentation of information security risk management in area of responsibility. This includes major decisions including identified and assessed risks as well as risk mitigation measures To deliver all items requested during regulatory and internal Information Security related audits Your skills and experience Essential Candidate should have a minimum of 8 years of business experience in an operation management / risk management capacity, working knowledge in various banking products with strong communications skills Knowledge on Information Security Controls, Data Protection Policy, Information classification principles and segregation of duties requirements within Banking Operations Good understanding of Regulatory, Compliance, Risk & Control Knowledge Have sound knowledge of Identity and Access Management Process Ability to multitask and manage multiple deliverables / projects that are highly visible and of strategic importance to our clients Ability to effectively communicate with clients internally and externally Must be a team player and facilitator Desirable Solid technical understanding of the business (CB Operations) including strong knowledge of application security related processes. Knowledge of electronic banking products and flow of instructions Computer proficiency in MS Office and ability to utilize IT initiatives to achieve a high degree of operational efficiency, optimize costs and add value to the service provided Innovative approach to work and continuously identify and implement process improvements Seek opportunities to improve service processes, minimize operational risk and reduce costs Strong analytical skills, detail orientation, service commitment and solid people management skills Strong awareness of risk control Education / Certification Graduation degree CRISC Desired: CISA/CISM/CISSP

Posted 2 weeks ago

Apply

0.0 - 4.0 years

9 - 10 Lacs

Bengaluru

Work from Office

Executives are typically project team members who will be involved in conducting process consulting/ internal audit/ risk consulting and execution of other solutions of GRCS Executives may lead a small team of analysts/trainees on engagements. Consistently deliver quality client services and take charge of the project area assigned to him/her. Monitor progress, manage risk and verify key stakeholders are kept informed about progress and expected outcomes. Demonstrate in-depth technical capabilities and professional knowledge. Demonstrate ability to assimilate to new knowledge. Possess good business acumen. Remain current on new developments in advisory services capabilities and industry knowledge. The job would require travel to client locations within India and abroad. THE INDIVIDUAL Have experience in process consulting/ internal audit/ risk consulting. Possess strong domain knowledge, understanding of business processes and possible risks in operations of various Sectors. Ability to perform and interpret process gap analysis. Understanding of control rationalization, optimization, effectiveness, and efficiency Strong analytical and problem-solving skills. Possess strong data analytics skills and knowledge of advanced data analytical tools will be an advantage. Strong written and verbal communication skills (presentation skills) Ability to work we'll in teams. Basic understanding of IT systems, Knowledge of MS office (MS Excel, PowerPoint, Word etc) Have the ability to work under pressure - stringent deadlines and tough client conditions which may demand extended working hours. Willingness to travel within India or abroad for continuous long periods of time. Demonstrate integrity, values, principles, and work ethic. Qualification Qualified CAs/ MBAs with 0 - 2 years OR Graduates with 2 - 4 years of relevant experience in risk consulting/ operations or compliance function role (Understanding of internal audit, business processes, sector understanding). Certifications like Certified Internal Auditor (CIA), Certified Information Systems Auditor (CISA) would be an added advantage. Compensation Compensation is competitive with industry standards. Details of the compensation breakup will be shared with short-listed candidates only. People BENEFITS Continuous learning program Driving a culture of recognition through ENCORE our quarterly rewards and recognition program Comprehensive medical insurance coverage for staff and family Expansive general and accidental coverage for staff Executive Health checkup (Manager & above, and for staff above the age of 30) Les Concierge desks. Internal & Global mobility Various other people friendly initiatives Strong commitment to our Values such as CSR initiatives

Posted 2 weeks ago

Apply

15.0 - 20.0 years

12 - 16 Lacs

Bengaluru

Work from Office

The Chief Security Officer (CSO) is responsible for the strategic leadership, direction, and oversight of all corporate security functions. This includes information security, physical security, risk management, incident response, compliance, and business continuity. The CSO will work closely with executive leadership and cross-functional teams to ensure the company s assets, employees, and data are protected. 1. Enterprise Security Leadership Own and evolve SmartQ s global security strategy covering cyber, infrastructure, product, data, and field security. Act as a strategic partner to product, engineering, and business teams, enabling innovation while maintaining strong security. Serve as the primary representative for security audits, stakeholder reviews, and compliance programs (SOC 2, ISO 27001, GDPR, Compass standards). 2. Infrastructure & Endpoint Security Drive secure development practices and zero-trust architecture across cloud environments (AWS/GCP). Lead configuration and monitoring of SIEM tools, firewalls, endpoint protection (Trend Micro, Zscaler), mobile device management (Intune), and enterprise patch and compliance tools (Tanium, OS license validation, AV coverage). Review codebases, infrastructure-as-code templates, and DevSecOps pipelines. Lead endpoint security hardening for enterprise laptops/desktops and POS/kiosk devices, ensuring full visibility and compliance. 3. Compliance & Risk Governance Design and implement internal security controls, vulnerability assessments, and threat intelligence frameworks. Oversee third-party security evaluations, vendor compliance, and deployment of governance tools (SQ Lens). Build operational compliance dashboards for real-time tracking of endpoint compliance (AV, patch, OS licensing, Zscaler). Ensure adherence to Compass Group, global, and regional data protection regulations. 4. Crisis Management & Incident Response Build a company-wide incident response program and conduct periodic drills. Lead incident response teams during breaches, ensuring rapid mitigation and transparent reporting. Maintain clear playbooks for POS, cloud, and field environments. 5. Security Awareness & Culture Building Build and mentor the InfoSec team. Champion a security-first culture through training programs, phishing simulations, and awareness campaigns. Drive targeted security awareness for field users (POS operators, kitchen staff, warehouse) ensuring operational teams understand and follow security best practices. Qualifications: Bachelor s degree in computer science, Engineering, or a related field (or equivalent experience). 15+ years in information security or cybersecurity leadership roles. Proven experience in cloud security, compliance audits, and vendor governance. Deep understanding of SOC 2, ISO 27001, GDPR frameworks. Proficiency in tools like SIEM, DLP, EDR, IAM, and secure SDLC practices. Certifications such as CISSP, CISM, CISA, or ISO 27001 LA. Strong communication skills and experience working with global teams and enterprise clients. Prior experience in high-growth B2B tech, consumer tech, retail, POS, or kiosk systems. Understanding of AI/ML security risks and modern data governance models. : .

Posted 2 weeks ago

Apply

15.0 - 20.0 years

40 - 45 Lacs

Ahmedabad

Work from Office

OPL, is a revolutionary digital credit infrastructure company that develops and integrates cutting-edge technology to automate and digitize lending for both borrowers and lenders. The company addresses the challenges of credit distribution to MSMEs and retail borrowers. To expand its digital footprint and utilize its infrastructure, the company is diversifying into several industry segments. Job Description: As the VP Security / Deputy CISO, you will be responsible for developing and implementing the companys information security strategy to ensure the confidentiality, integrity, and availability of our systems and data. You will lead a team of cybersecurity professionals and work closely with other departments to identify risks, implement security measures, and respond to security incidents. Key Responsibilities: Develop and implement the companys information security strategy, policies, and procedures. Lead a team of cybersecurity professionals, providing guidance, mentorship, and support. Conduct regular risk assessments and vulnerability assessments to identify and prioritize security risks. Implement security controls and measures to mitigate risks and ensure compliance with relevant regulations and standards. Monitor and analyze security events and incidents and respond promptly to security breaches or incidents. Oversee security awareness and training programs for employees to promote a culture of security awareness. Collaborate with other departments, including IT, legal, and compliance, to integrate security into all aspects of the business. Stay current with emerging cybersecurity threats, technologies, and best practices, and recommend appropriate security solutions and enhancements. Prepare and present reports on the companys security posture, incidents, and initiatives to senior management and stakeholders. Qualifications: Bachelors degree in computer science, information technology, cybersecurity, or a related field. Advanced degree or professional certifications (e.g., CISSP, CISM, CISA) preferred. Proven experience (15+ years) in a senior cybersecurity leadership role, with a track record of developing and implementing effective security strategies. Strong technical knowledge of cybersecurity technologies, tools, and best practices. Excellent leadership, communication, and interpersonal skills, with the ability to collaborate and influence stakeholders at all levels of the organization. Strong analytical and problem-solving skills, with the ability to prioritize and manage multiple projects and tasks effectively. Experience working in a regulated industry (e.g., finance, healthcare, government) preferred. Knowledge of relevant regulations and standards (e.g., GDPR, HIPAA, ISO 27001:2022) and experience with compliance assessments and audits. If you believe that the future lies in innovation and have the ability to come up with ideas that are unconventional in the fintech space, you can apply to be a part of the OPL team.

Posted 2 weeks ago

Apply

8.0 - 12.0 years

32 - 40 Lacs

Bengaluru

Work from Office

Function: Technology Risk - 1 st Line of Defence Industry: Banking & Financial Services (Institutional / Non-Retail) Job Summary: Our Global banking client is seeking a dynamic and technically sound AVP Technology Risk Professional to join, 1st Line of Defence (1LOD) risk function within the Institutional Banking Technology domain. This role requires hands-on experience in IT Risk and Controls, Cybersecurity, and Information Security, with a strong foundation in control testing and monitoring. The ideal candidate will have worked in the banking sector, preferably in a foreign bank, supporting non-retail (institutional) business units and engaging directly with banking and tech regulators across multiple geographies. Please contact Krati Arora or email your cv directly in word format with job reference number: JOB 14995 to Please note that due to the high number of applications only shortlisted candidates will be contacted. If you do not hear from us in the next 5 business days, we regret to inform you that your application for this position was unsuccessful. Apply for this Job Key responsibilities Act as the 1st line owner of technology risk and controls within institutional banking. Conduct control testing and monitoring, ensuring alignment with internal policies and regulatory expectations. Identify, manage, and report non-financial risks; escalate and track risk issues and findings to closure. Collaborate with 2nd line risk and assurance functions to ensure holistic risk coverage. Participating in or lead governance forums and meetings, driving risk discussions with stakeholders. Ensure timely documentation and remediation of audit findings and issues. Maintain compliance with risk governance frameworks, providing evidence of effective control operation. Support teams across 19 geographies, adapting to diverse regulatory and risk environments. Role requirements 8-12 years of experience in IT risk, technology controls, or technology assurance in the BFSI sector. Solid understanding of technology risk frameworks, information security, and cybersecurity principles. Hands-on experience with control design and testing, issue management, and risk assessments. Exposure to working with or managing tech or banking regulatory requirements. Strong stakeholder management and communication skills to engage across levels and functions. Demonstrated ability to think end-to-end in risk processes. Experience working in or with foreign banks and familiarity with global banking regulations Certifications (Preferred but not mandatory): CISA / CISM / CRISC / CISSP / ISO 27001 / or any other relevant industry certifications. Mandatory Requirements: Prior experience in the banking sector (non-negotiable). Understanding of risk and control management in the 1st Line of Defence. Proven capability to manage technology risks in a complex, global banking environment.

Posted 2 weeks ago

Apply

8.0 - 12.0 years

32 - 40 Lacs

Bengaluru

Work from Office

Act as the 1st line owner of technology risk and controls within institutional banking. Conduct control testing and monitoring, ensuring alignment with internal policies and regulatory expectations. Identify, manage, and report non-financial risks; escalate and track risk issues and findings to closure. Collaborate with 2nd line risk and assurance functions to ensure holistic risk coverage. Participating in or lead governance forums and meetings, driving risk discussions with stakeholders. Ensure timely documentation and remediation of audit findings and issues. Maintain compliance with risk governance frameworks, providing evidence of effective control operation. Support teams across 19 geographies, adapting to diverse regulatory and risk environments. Role requirements 8-12 years of experience in IT risk, technology controls, or technology assurance in the BFSI sector. Solid understanding of technology risk frameworks, information security, and cybersecurity principles. Hands-on experience with control design and testing, issue management, and risk assessments. Exposure to working with or managing tech or banking regulatory requirements. Strong stakeholder management and communication skills to engage across levels and functions. Demonstrated ability to think end-to-end in risk processes. Experience working in or with foreign banks and familiarity with global banking regulations Certifications (Preferred but not mandatory): CISA / CISM / CRISC / CISSP / ISO 27001 / or any other relevant industry certifications. Mandatory Requirements: Prior experience in the banking sector (non-negotiable). Understanding of risk and control management in the 1st Line of Defence. Proven capability to manage technology risks in a complex, global banking environment.

Posted 2 weeks ago

Apply

3.0 - 5.0 years

3 - 7 Lacs

Bengaluru

Work from Office

Collaborate with U.S.-based teams to conduct internal audits, risk assessments, and ERM projects. Prepare internal audit planning and scoping documents. Gain a deep understanding of clients business objectives, operations, processes, systems, and internal controls. Plan, execute, and report on internal audit engagements, including co-sourced/outsourced internal audits, internal control assessments, and compliance testing. Review operational and administrative processes to evaluate internal controls, identify risks, and assess process effectiveness and efficiency. Support project managers in engagement management tasks including timelines, budgets, and reporting. Develop and execute internal audit work plans and control testing procedures. Analyze risk and control findings and develop clear, actionable recommendations. Deliver high-quality services aligned with engagement and client expectations. Prepare updated working documents and contribute to deliverables for management consideration. Perform other duties as assigned in support of engagement success. Skills Familiarity with internal control frameworks (e.g., COSO 2013) and professional auditing standards (e.g., IIA IPPF) Experience with data analytics or tools such as Power BI Advanced proficiency in Microsoft PowerPoint ability to independently develop executive-level, visually compelling presentations. Strong command of other Microsoft Office applications (Excel, Word); experience with Microsoft Visio is a plus. Exceptional communication, analytical, organizational, and project management skills Ability to manage multiple priorities and engagements in a fast-paced, collaborative environment. Relevant certifications (e.g., CIA, CPA, CISA, Six Sigma) are a plus but not required. Education / Professional Experience/ Qualifications Bachelor s degree in accounting, Finance, Information Technology, MIS, Business Intelligence, or a related field Minimum of 3 years of relevant experience in internal audit or enterprise risk management (ERM), ideally within the healthcare, technology, or retail sectors. Coso, Internal Audit, Erm

Posted 2 weeks ago

Apply

4.0 - 9.0 years

7 - 11 Lacs

Bengaluru

Work from Office

Responsible for assessing, challenging, and testing the design and operational effectiveness of controls using TRs control framework by working collaboratively with control owners and stakeholders to improve the control testing process, including defining re-test cycles and evidence expected. About the Role: In this opportunity as Compliance Program Technical Auditor, you willassess, challenge, and test the design and operational effectiveness of controls using TRs control framework by working collaboratively with control owners and stakeholders to improve the control testing process, including defining re-test cycles and evidence expected. Execute a testing plan by communicating requirements to control owners, reviewing evidence submitted, agreeing on deficiencies found and finalizing the next steps in meeting control requirements. Oversee and act as a liaison for both external and internal audits. Identify procedures and practices that are not compliant with industry Frameworks Recommend and support stakeholders making changes to address non-compliance issues. Compile reports on audit results and present them to managers & supervisors. Propose efficiencies and automation where possible to optimize workflow. Work closely with other teams like ERM, Finance, business and application owners, third party or contractors supporting processes to report and track remediation plans for any control deficiencies identified. Ensure awareness about security risks, best practices and policy/standard requirements are essential to ensure compliance. Work independently, act decisively and ensure personal deadlines and team requirements are met. Willingness and drive to learn continuously and approach change with openness. About You: You're a fit for the role of Senior Business Technology Analyst if your background includes: Bachelor's degree in IT, Accounting, Finance or equivalent education and experience. At least 4+ years of relevant work experience in SoX, ITGC, SOC, PCI within Audit, Big 5, consulting firms or as line 1a or line 1b completing IT-IS control testing or working within a Governance or Compliance function across Financial Services organizations. One of these certifications in order of preference is essential CISA, CISSP, CCAK, CISM, CRISC. Strong ethical principles and understanding of business and IS ethics. Awareness about common security vulnerabilities of web and cloud applications and operating techniques from sources such as SANS, OWASP Top 10 and Cloud Security Alliance (CSA). Experience in testing Cloud controls and related technologies will be an asset. Excellent oral and written communication skills in English. Additional expertise in French, Spanish or another language will be an asset. Knowledge about GRC platforms like ServiceNow, Process Unity, RSA Archer, MetricStream and like. #LI-HS1 Whats in it For You Hybrid Work Model Weve adopted a flexible hybrid working environment (2-3 days a week in the office depending on the role) for our office-based roles while delivering a seamless experience that is digitally and physically connected. Flexibility & Work-Life Balance: Flex My Way is a set of supportive workplace policies designed to help manage personal and professional responsibilities, whether caring for family, giving back to the community, or finding time to refresh and reset. This builds upon our flexible work arrangements, including work from anywhere for up to 8 weeks per year, empowering employees to achieve a better work-life balance. Career Development and Growth: By fostering a culture of continuous learning and skill development, we prepare our talent to tackle tomorrows challenges and deliver real-world solutions. Our Grow My Way programming and skills-first approach ensures you have the tools and knowledge to grow, lead, and thrive in an AI-enabled future. Industry Competitive Benefits We offer comprehensive benefit plans to include flexible vacation, two company-wide Mental Health Days off, access to the Headspace app, retirement savings, tuition reimbursement, employee incentive programs, and resources for mental, physical, and financial wellbeing. Culture: Globally recognized, award-winning reputation for inclusion and belonging, flexibility, work-life balance, and more. We live by our valuesObsess over our Customers, Compete to Win, Challenge (Y)our Thinking, Act Fast / Learn Fast, and Stronger Together. Social Impact Make an impact in your community with our Social Impact Institute. We offer employees two paid volunteer days off annually and opportunities to get involved with pro-bono consulting projects and Environmental, Social, and Governance (ESG) initiatives. Making a Real-World Impact: We are one of the few companies globally that helps its customers pursue justice, truth, and transparency. Together, with the professionals and institutions we serve, we help uphold the rule of law, turn the wheels of commerce, catch bad actors, report the facts, and provide trusted, unbiased information to people all over the world. Thomson Reuters informs the way forward by bringing together the trusted content and technology that people and organizations need to make the right decisions. We serve professionals across legal, tax, accounting, compliance, government, and media. Our products combine highly specialized software and insights to empower professionals with the data, intelligence, and solutions needed to make informed decisions, and to help institutions in their pursuit of justice, truth, and transparency. Reuters, part of Thomson Reuters, is a world leading provider of trusted journalism and news. We are powered by the talents of 26,000 employees across more than 70 countries, where everyone has a chance to contribute and grow professionally in flexible work environments. At a time when objectivity, accuracy, fairness, and transparency are under attack, we consider it our duty to pursue them. Sound excitingJoin us and help shape the industries that move society forward. As a global business, we rely on the unique backgrounds, perspectives, and experiences of all employees to deliver on our business goals. To ensure we can do that, we seek talented, qualified employees in all our operations around the world regardless of race, color, sex/gender, including pregnancy, gender identity and expression, national origin, religion, sexual orientation, disability, age, marital status, citizen status, veteran status, or any other protected classification under applicable law. Thomson Reuters is proud to be an Equal Employment Opportunity Employer providing a drug-free workplace. We also make reasonable accommodations for qualified individuals with disabilities and for sincerely held religious beliefs in accordance with applicable law. More information on requesting an accommodation here. Learn more on how to protect yourself from fraudulent job postings here. More information about Thomson Reuters can be found on thomsonreuters.com.

Posted 2 weeks ago

Apply

3.0 - 5.0 years

5 - 7 Lacs

Mumbai, Bengaluru

Work from Office

About the Role: Grade Level (for internal use): 09 The Role This position is an individual contributor within the Internal Audit team responsible for performing audit engagements including U.S. Sarbanes-Oxley (SOX) Compliance testing. This position will contribute significantly to SOX testing efforts and evaluating compliance with corporate policies, assessing risks over the IT operating environment and identifying operational efficiencies. The Impact The IT SOX Specialist will work closely with your direct manager and the process owners to gain an understanding of key processes, key controls, identify control gaps by strengthening and monitoring the internal control environment to provide assurance in the accuracy of reported financial information for a leading data provider worldwide. Whats in it for you You will interact with key process owners and colleagues across the Company. You will also be responsible for completing the audits and projects as outlined in the Internal Audit Plan and play a critical role in assessing the effectiveness of the control environment and providing value added recommendations across the organization. You will gain a robust understanding of the operations of all divisions and functions within the company. Ability to collaborate with a global team of seasoned financial services/audit professionals and access to the latest technological and data analytic tools Competitive compensation package with excellent benefits, including generous paid time off, tuition reimbursement, parental leave and more Advancement opportunities in a global company with presence in 30+ geographies The Team / The Business We have teams made up of people that work effectively together, while working with the larger group of auditors. Opportunities are presented every day to work with people from a wide variety of backgrounds and to develop a close team dynamic with coworkers from around the globe. The Internal Audit function is a global team with presence in all regions (Americas, EMEA and Asia Pacific). The function is independent and reports functioning to the Audit Committee. Responsibilities Lead and perform IT audits focused on compliance with Sarbanes-Oxley (SOX) regulations, ensuring that IT general controls and IT automated controls are effectively designed and operating. Develop, document, and execute test plans for IT controls, ensuring that they meet SOX requirements and are functioning as intended. Utilize GenAI, data analytics and automation tools to enhance audit processes, identify trends, and uncover anomalies in IT systems. Evaluate the SDLC processes to ensure proper controls are in place during system development, implementation, and maintenance. Stay updated on emerging IT risks and controls, including cloud computing, cybersecurity threats, and data privacy regulations. Participate in projects across the internal audit department, including risk-based audits and project assurance initiatives, to enhance overall audit effectiveness and efficiency. What Were Looking For You will be an effective communicator, in both verbal and written form, and an analytical thinker who employs logic and persuasion to influence with diplomacy and tact. You will be a proactive, innovative, collegial team player who can be accountable and absorb/integrate ideas from diverse views, create partnerships and collaborate with others. You will be nimble in learning and support the implementation of agile techniques. You will be responsible for balancing stakeholders and building/fostering relationships with stakeholders. You have a strong interest to learn, embrace agile auditing techniques, adoption of data analytics and emerging tools to strengthen quality of audit execution and SOX controls testing. Basic Qualifications: The ideal candidate must be an experienced audit professional with skills in IT SOX, internal audit, or related roles in control function organizations. Experience/exposure with different data analytics tools (such as Tableau, Alteryx, Power BI, etc.). Agility to support different Internal Audit capabilities such as business/data/IT auditing and SOX compliance. Minimum 3-5 years of relevant experience of IT controls-based testing through planning audits, conducting audit procedures, and preparing audit reports. Understanding and operational application of Sarbanes-Oxley Section 404 Public Accounting experience. Knowledge of or experience with providing audit support during integrated financial and operational audits. Knowledge or experience with information security controls. Experience with electronic work papers and standard productivity tools Bachelor's or Master's degree in Computer Science, Engineering, Information Technology, or a related field. Willing to travel (domestic and international), limited to 10 - 15% Professional certifications preferred but not required (CISA, CIA, CPA, etc.). #L1-RS2 Whats In It For You Our Purpose: Progress is not a self-starter. It requires a catalyst to be set in motion. Information, imagination, people, technologythe right combination can unlock possibility and change the world.Our world is in transition and getting more complex by the day. We push past expected observations and seek out new levels of understanding so that we can help companies, governments and individuals make an impact on tomorrow. At S&P Global we transform data into Essential Intelligence, pinpointing risks and opening possibilities. We Accelerate Progress. Our People: Our Values: Integrity, Discovery, Partnership At S&P Global, we focus on Powering Global Markets. Throughout our history, the world's leading organizations have relied on us for the Essential Intelligence they need to make confident decisions about the road ahead. We start with a foundation of integrity in all we do, bring a spirit of discovery to our work, and collaborate in close partnership with each other and our customers to achieve shared goals. Benefits: We take care of you, so you cantake care of business. We care about our people. Thats why we provide everything youand your careerneed to thrive at S&P Global. Health & WellnessHealth care coverage designed for the mind and body. Continuous LearningAccess a wealth of resources to grow your career and learn valuable new skills. Invest in Your FutureSecure your financial future through competitive pay, retirement planning, a continuing education program with a company-matched student loan contribution, and financial wellness programs. Family Friendly PerksIts not just about you. S&P Global has perks for your partners and little ones, too, with some best-in class benefits for families. Beyond the BasicsFrom retail discounts to referral incentive awardssmall perks can make a big difference. For more information on benefits by country visithttps://spgbenefits.com/benefit-summaries Global Hiring and Opportunity at S&P Global: At S&P Global, we are committed to fostering a connected andengaged workplace where all individuals have access to opportunities based on their skills, experience, and contributions. Our hiring practices emphasize fairness, transparency, and merit, ensuring that we attract and retain top talent. By valuing different perspectives and promoting a culture of respect and collaboration, we drive innovation and power global markets. ----------------------------------------------------------- Equal Opportunity Employer S&P Global is an equal opportunity employer and all qualified candidates will receive consideration for employment without regard to race/ethnicity, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, marital status, military veteran status, unemployment status, or any other status protected by law. Only electronic job submissions will be considered for employment. If you need an accommodation during the application process due to a disability, please send an email to EEO.Compliance@spglobal.com and your request will be forwarded to the appropriate person. US Candidates Only The EEO is the Law Poster http://www.dol.gov/ofccp/regs/compliance/posters/pdf/eeopost.pdf describes discrimination protections under federal law. Pay Transparency Nondiscrimination Provision - https://www.dol.gov/sites/dolgov/files/ofccp/pdf/pay-transp_%20English_formattedESQA508c.pdf ----------------------------------------------------------- 203 - Entry Professional (EEO Job Group) (inactive), 20 - Professional (EEO-2 Job Categories-United States of America), FINANC202.1 - Middle Professional Tier I (EEO Job Group)

Posted 2 weeks ago

Apply
cta

Start Your Job Search Today

Browse through a variety of job opportunities tailored to your skills and preferences. Filter by location, experience, salary, and more to find your perfect fit.

Job Application AI Bot

Job Application AI Bot

Apply to 20+ Portals in one click

Download Now

Download the Mobile App

Instantly access job listings, apply easily, and track applications.

Featured Companies