620 Cism Jobs - Page 10

Job Description: Job Title: Project Manager. Experience: 10+ Years. Job Type: 12 month contract and extendable. Job Location: Offshore (Remote) Mandatory skills: Have over 10+ years of rich experience in data protection, information security domain and Project Management. Experience of managing enterprise Data Protection projects and of direct and in-direct relationship with senior and executive management. Familiarity with advanced Data Privacy and Protection technologies, risk, threat and vulnerability assessments, and security measures. Strong experience and knowledge across the Data Protection and Information Security domains including technical measures, policy procedures, compliance management, risk management and Incident Response etc. Extensive knowledge of data protection solutions and technologies for Data Loss and leakage Prevention (DLP). Experience implementing and managing (DLP) solutions. Strong experience in Banking environment with strong understanding on key data protection regulations and standards such as ISO 27001, NIST CSF, GDPR etc. Skills and Application: Leads the development and implementation of comprehensive Data Protection strategies that address identified risks and compliance requirements, incorporating advanced technologies and methodologies to enhance security posture. Manages cross-functional teams to execute Data Protection initiatives, ensuring that projects are completed on time, within budget, and achieve desired outcomes. Strategic Insight: Integrates Data Protection and Information Security considerations into broader banks strategies, recognizing the importance of Data Protection in achieving business objectives and competitive advantage. Communicates the strategic value of Data Protection and Information Security investments to executive leadership and key stakeholders, advocating for resources and support to strengthen the organization's capabilities. Cultivates an organizational culture that prioritizes Data Protection, encouraging proactive security practices and continuous improvement across all departments. Strong interpersonal, analytical, and technical skills with strong decision making and prioritization skills. Sound knowledge of evolving advanced tech stacks and related control and risk universe from a data protection perspective. Sound knowledge and expertise in conducting risk assessment and management. The ideal candidate will have a degree in Information Security, Computer Science, or a related field. Professional certifications: CISSP, PMP, CCSP, CompTIA Security+, CIPT , CISM etc

: Job Title- Business Control Officer, AVP Location- Pune, India Role Description DWS Group (DWS) is one of the world's leading asset managers. Building on more than 60 years of experience and a reputation for excellence in Germany and across Europe, DWS has come to be recognized by clients globally as a trusted source for integrated investment solutions, stability, and innovation across a full spectrum of investment disciplines. We offer individuals and institutions access to our strong investment capabilities across all major asset classes and solutions aligned to growth trends. Our diverse expertise in Active, Passive and Alternatives asset management as well as our deep environmental, social and governance focus complement each other when creating targeted solutions for our clients. Our expertise and on-the-ground-knowledge of our economists, research analysts and investment professionals are brought together in one consistent global CIO View, which guides our investment approach strategically. DWS wants to innovate and shape the future of investingwith approximately 3,500 employees in offices all over the world, we are local while being one global team. We are investors entrusted to build the best foundation for our clients future. What well offer you 100% reimbursement under childcare assistance benefit (gender neutral) Sponsorship for Industry relevant certifications and education Accident and Term life Insurance Your key responsibilities This role will support India DCO office with activities as outlined below: Lead comprehensive control evaluations and substantive testing to independently assess the design and effectiveness of controls within the newly established Independent Testing Team Assess end to end business processes to identify significant gaps and determine issue root causes. Partners with business units to perform control evaluations, monitoring and testing efforts within Compliance and Operation Risk Framework to identify control gaps as well as opportunities for effectiveness and efficiency improvements. These assessments will include coverage for other regulatory programs including SOX Apply critical thinking skills to substantive testing techniques to thoroughly evaluate the effectiveness of high-risk business processes. Assess and monitor risks, ensuring compliance with firm standards, regulatory requirements, and industry best practices. Collaborate with cross-functional teams and stakeholders to support control design and effectiveness. Foster collaboration with Compliance and Operational Risk Officers on various engagements. This includes developing detailed test scripts, facilitating issue discussions, participating in business meetings, and drafting comprehensive final reports to ensure alignment and clarity. Develop and execute robust control test scripts aimed at identifying control weaknesses, determining root causes, and recommending practical solutions to enhance operational efficiency and control effectiveness. Document test steps and results in a comprehensive and organized manner, ensuring sufficient support and justification for testing conclusions. Maintain a high standard of documentation to facilitate transparency and accountability. Ensure compliance with internal policies, procedures, and external laws, rules, and regulations, while identifying necessary remediation actions. This includes developing and executing testing procedures, meticulously documenting results, drawing informed conclusions, making actionable recommendations, and distributing detailed compliance testing review reports. Lead meetings with business owners at various management levels, delivering testing results and supporting sustainable control enhancements. Identify and capitalize on opportunities to strengthen controls and improve operational efficiency. Your skills and experience Bachelor's degree in information security or related field required, with a preference towards master's degree. Demonstrated ability to analyse complex issues, develop and implement risk mitigation strategies, and communicate effectively with senior stakeholders. Proficient knowledge of risk management frameworks, regulations, and industry best practices Strong and progressive Auditing or Control Testing experience with current knowledge and understanding of Control testing methodology. Experience developing test scripts, audit programs, or testing templates. 6+ years in information security management and governance, with a focus on control design and testing Detailed experience in ISO 27001, GDPR, COBIT, KAIT, BAIT, etc. and other cyber security frameworks Good to have CertificationsCRISC, CISSP, CISM, CISA, ISO 27001 Lead Implementer/ Auditor Should possess strong communication skills (written/ spoken) Should be skilled to work with minimal supervision. Strong analytical and strategic mindset along with the ability to collaborate with different stakeholders including top management representatives. How well support you About us and our teams Please visit our company website for further information: https://www.db.com/company/company.htm

: Job TitleInformation Security Risk Specialist , AVP LocationMumbai, India Role Description An Information Technology & Security Risk Specialist to join the 2nd LoD Information Security & Technology Risk Team. The team is global, this role is within the Mumbai team (currently 1 person) which is being built out to support the global team. Should have a proven depth of knowledge and keen interest of Information Security and Technology and their application in large financial institutions. Working with other team members the role will input subject matter expertise and drive innovative approaches in applying risk management in an evolving threat environment. The team has a global footprint in Frankfurt, Singapore, London, Mumbai and USA. What well offer you 100% reimbursement under childcare assistance benefit (gender neutral) Sponsorship for Industry relevant certifications and education Accident and Term life Insurance Your key responsibilities Provide data and analytics reporting to support the team in monitoring the Information Security and Technology Risk Appetite, breaches and remediation. Where required support the implementation of automated data and analytics reporting process. Support the team delivery of Non-Financial Risk Management (NFRM) priorities such as risk & control assessments, scenario analysis, risk appetite. Monitor and challenge 1LOD Risk and Control Assessments (including results of 1LOD control testing/assurance). Perform 2LOD control assurance through targeted reviews of areas of concern. Gain an understanding and be able to articulate key Information Security and Technology regulatory requirements across APAC/MEA and their impact and implementation into the Information Security and Technology Risk Framework. Your skills and experience University degree (Computer Science, Business Administration or equivalent). Majors in Information Security and / or Risk Management are a plus. Experience (4+ years) in Information Security or Information Technology with experience in the Finance industry and/or a major Technology or Consultancy company preferred. Some level of technical understanding and training either as a data analyst, developer, business analyst or project manager. Knowledge of Information Security and Technology industry regulatory standards and/or Risk Frameworks (e.g. EBA Guidelines ISO / 27000 Series, COBIT 2019, DORA) are a plus. Relevant professional certifications e.g. CISSP, CISA, CISM, CRISC, ITIL, ISO27001 Lead Auditor or similar are a plus. Experience of working in large global teams yet comfortable working independently without day-to-day oversight and steer. Strong communication skills (English required). How well support you About us and our teams Please visit our company website for further information: https://www.db.com/company/company.htm We strive for a culture in which we are empowered to excel together every day. This includes acting responsibly, thinking commercially, taking initiative and working collaboratively. Together we share and celebrate the successes of our people. Together we are Deutsche Bank Group. We welcome applications from all people and promote a positive, fair and inclusive work environment.

1. Bachelors degree in Computer Science, Information Security, or a related field (Masters preferred). 2. 5+ years of hands-on experience in Identity and Access Management (IAM) architecture and solutions. 3. Expertise in IAM technologies such as Okta, Azure AD, SailPoint, ForgeRock, Ping Identity, or equivalent. 4. Strong knowledge of security architecture frameworks (e.g., SABSA, TOGAF, Zero Trust) and best practices. 5. In-depth understanding of authentication protocols such as SAML, OAuth, OpenID Connect, LDAP, Kerberos, etc. Experience with Privileged Access Management (PAM) solutions such as CyberArk, BeyondTrust, or similar tools. 6.Familiarity with cloud security architecture for IAM in environments like AWS, Azure, and GCP. 7.Proven experience in role-based access control (RBAC), identity governance, and directory services. 8. Solid understanding of compliance requirements and industry standards (e.g., NIST, ISO 27001) related to IAM.

We help the world run better At SAP, we enable you to bring out your best. Our company culture is focused on collaboration and a shared passion to help the world run better. How? We focus every day on building the foundation for tomorrow and creating a workplace that embraces differences, values flexibility, and is aligned to our purpose-driven and future-focused work. We offer a highly collaborative, caring team environment with a strong focus on learning and development, recognition for your individual contributions, and a variety of benefit options for you to choose from. What you`ll do We are seeking an Audit and Compliance Specialist to uphold the integrity of our certification processes for SAP s external accreditations, including SOC, NIST, PCI, C5, and ISO frameworks. This pivotal role involves a blend of technology and strategy, requiring hands-on engagement with auditing tools and methodologies to ensure compliance and remediation measures are top-notch. Your key responsibilities will be: Streamlining audit support in collaboration with SAP teams. Overseeing the execution and continuous improvement of external audits. Crafting insightful audit dashboards and communicating findings effectively to leadership. Enhancing operational protocols through vigilant monitoring, analysis, and evaluation. Spearheading audit procedures across SAP s diverse global business sectors. Elevating expertise in cutting-edge audit standards, cybersecurity trends, AI and cloud innovations. Aligning audit practices with overarching business goals and visions. Shaping policy through robust internal control dialogues. Fostering a collaborative environment for sharing best practices in audit support. Driving policy innovation by developing new processes, controls, methodologies. This role is an opportunity to make a significant impact on the integrity of our operations and contribute to our commitment to excellence. We look forward to welcoming a dedicated professional who is ready to take on this exciting challenge. What you bring (maximum character count 750): We re seeking a dynamic professional with: 8-12 years of audit, consulting, or industry experience, ideally from a Big 4 Audit firm. A Bachelor s/Master s degree in Business Administration, Computer Science, or related fields. Knowledge in IT/Cloud Audit frameworks such as C5, SOX, SSAE 16 - SOC 1 & SOC 2, PCI compliance, NIST, and ISO 27001. Understanding of business and IT processes, systems, controls, and emerging technologies. Strong English communication skills and ability to work collaboratively. German proficiency is a plus. A strong personality for effective interaction with customers. A team player mindset with a can do attitude. CISA, PMP, CISM, ISO27001, CCSP, or CISSP certification, or the willingness to obtain them. Join our dynamic team and make a significant impact. We look forward to welcoming you. #SecurityT3 Bring out your best SAP innovations help more than four hundred thousand customers worldwide work together more efficiently and use business insight more effectively. Originally known for leadership in enterprise resource planning (ERP) software, SAP has evolved to become a market leader in end-to-end business application software and related services for database, analytics, intelligent technologies, and experience management. As a cloud company with two hundred million users and more than one hundred thousand employees worldwide, we are purpose-driven and future-focused, with a highly collaborative team ethic and commitment to personal development. Whether connecting global industries, people, or platforms, we help ensure every challenge gets the solution it deserves. At SAP, you can bring out your best. We win with inclusion SAP s culture of inclusion, focus on health and well-being, and flexible working models help ensure that everyone - regardless of background - feels included and can run at their best. At SAP, we believe we are made stronger by the unique capabilities and qualities that each person brings to our company, and we invest in our employees to inspire confidence and help everyone realize their full potential. We ultimately believe in unleashing all talent and creating a better and more equitable world. SAP is proud to be an equal opportunity workplace and is an affirmative action employer. We are committed to the values of Equal Employment Opportunity and provide accessibility accommodations to applicants with physical and/or mental disabilities. If you are interested in applying for For SAP employees: Only permanent roles are eligible for the SAP Employee Referral Program, according to the eligibility rules set in the SAP Referral Policy . Specific conditions may apply for roles in Vocational Training. EOE AA M/F/Vet/Disability: Qualified applicants will receive consideration for employment without regard to their age, race, religion, national origin, ethnicity, age, gender (including pregnancy, childbirth, et al), sexual orientation, gender identity or expression, protected veteran status, or disability. Successful candidates might be required to undergo a background verification with an external vendor. Requisition ID: 422281 | Work Area: Information Technology | Expected Travel: 0 - 10% | Career Status: Professional | Employment Type: Regular Full Time | Additional Locations: #LI-Hybrid. Requisition ID: 422281 Posted Date: Jun 7, 2025 Work Area: Information Technology Career Status: Professional Employment Type: Regular Full Time Expected Travel: 0 - 10% Location:

About the role: This role offers the opportunity to provide oversight of technology risks across Swiss Re s global digital estate, with a particular focus on modern IT architectures, cloud platforms, and engineering practices. You ll conduct deep dives into areas of concern, influence how controls are embedded, and support the continuous evolution of our operational risk framework in line with emerging technology. With regular exposure to senior stakeholders and strategic programmes, this is a visible and impactful position at the interface between risk, technology, and innovation Key Responsibilities: Perform technology risk reviews and thematic assessments across digital platforms, IT operations, and transformation programmes. Provide an independent view on the design, implementation, and effectiveness of controls related to infrastructure, architecture and development. Assess risks linked to cloud platforms, digital service models, and emerging technologies, offering insight into architectural and engineering-related risk exposures where applicable. Collaborate with enterprise architects, platform leads, and cyber security teams offering constructive challenge while maintaining independence. Prepare & communicate risk dashboards, reports, and presentations for senior management and governance bodies, translating technical risk insights into business-relevant recommendations. Support the implementation and continuous improvement of Swiss Re s Operational Risk Management framework, including RCSA reviews, issue tracking, and incident response. Maintain awareness of regulatory, cyber, and technology trends, helping anticipate and manage emerging threats. About the team: The Digital & Technology Risk Management (DTRM) team acts as the 2nd Line of Defence for all digital and technology-related risks at Swiss Re. We provide independent oversight, challenge, and insight across Swiss Re s global digital landscape. Serving as an independent partner to the business, we help shape the Group s risk posture across various technology domains, ranging from infrastructure and application security to digital innovation and AI. Our commitment lies in driving high standards of resilience, informed risk-taking, and sound control practices through strong engagement and credible challenge. From reviewing control frameworks to assessing emerging risks, we help shape responsible innovation and build resilience into every layer of our technology environment About you: We are looking for a confident and forward-thinking risk professional who excels at bridging the gap between intricate technical details and overarching enterprise risk management. Experience & Capabilities Experienced with at least 7 years record in information technology/security risk management or risk consulting. Proven experience conducting risk assessments, spot checks , and thematic reviews in a complex, regulated environment. Experience of supporting and challenging Risk & Control Self-Assessments (RCSA) and scenario analysis and with risk appetite articulation. Technical & Tooling Familiarity with IT governance frameworks , secure architecture principles, and regulatory expectations (e.g. ISO27001, NIST, OWASP). Practical understanding of modern IT environments, including cloud platforms (Azure, AWS, AliCloud) and enterprise technologies such as Microsoft 365. Exposure to risk considerations across software development, platform engineering, or infrastructure is highly valued. Behavioural & Interpersonal Comfortable working independently , including collaboration with managers or stakeholders in different time zones. Strong stakeholder engagement and communication skills with the ability to influence and challenge at all levels. Demonstrated ability to balance business enablement with effective risk management . Clear communicator with the ability to convey complex concepts to both technical and business audiences. Certifications (Desirable) Certified in Risk and Information Systems Control (CRISC) Certified Information Security Manager (CISM) Other cloud/architecture/security or risk-related qualifications are an advantage. About Swiss Re Swiss Re is one of the world s leading providers of reinsurance, insurance and other forms of insurance-based risk transfer, working to make the world more resilient. We anticipate and manage a wide variety of risks, from natural catastrophes and climate change to cybercrime. We cover both Property & Casualty and Life & Health. Combining experience with creative thinking and cutting-edge expertise, we create new opportunities and solutions for our clients. This is possible thanks to the collaboration of more than 14,000 employees across the world. If you are an experienced professional returning to the workforce after a career break, we encourage you to apply for open positions that match your skills and experience. Keywords: Reference Code: 134392

About our opportunity We are part of the global CIO function tasked to deliver world-class built-in security in Ericsson. Our 100+ employees organization is global with the main hubs located in Sweden (HQ), India, USA, and the Philippines. We are inviting the application for Head of IT Sec AS Attack Surface Management. In this role, you will have the chance to be part of a passionate global team dedicated to fulfilling Ericsson s emerging journey building a strong, resilient, purposed and sustainable IT Security capability. Mandated to protect our company assets from emerging threats and risks, you will together with your colleagues lead the way to develop the future IT Security concepts and technology roadmaps in Ericsson You will Define and execute the enterprise-wide strategy for attack surface management aligned with the broader cybersecurity roadmap. Build and lead a high-performing ASM team covering asset discovery, vulnerability management, cloud security, penetration testing, and red teaming. Partner with business, IT, DevOps, and architecture teams to embed ASM principles in solution design and lifecycle. Oversee continuous asset discovery and inventory (including shadow IT, rogue systems, and exposed services). Manage vulnerability identification, classification, prioritization, and remediation across infrastructure, applications, and cloud environments. Lead API and third-party attack surface monitoring and ensure proactive risk reduction. Drive adoption of ASM platforms, exposure management tools, and threat intelligence integrations. Define KPIs, KRIs, and reporting for ASM effectiveness and risk posture across business units. Ensure alignment with security frameworks (e.g., NIST CSF, ISO 27001, MITRE ATT&CK) and regulatory compliance. Lead red/purple team exercises to validate security posture and feed improvements into the ASM program. Drive coordination with vulnerability management, SOC, architecture, DevSecOps, and compliance teams. Continuously evaluate ASM capabilities through tabletop exercises and exposure simulations. The Skills You Bring: Bachelor s or master s degree in computer science, Information Security, or related field. 10+ years in cybersecurity with at least 4 years in a leadership role managing attack surface or vulnerability management programs. Relevant certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or equivalent. Proven experience in managing hybrid IT environments including cloud (AWS, Azure, GCP), SaaS, and on-premises assets. Expertise in tools such as ASM platforms (e.g., CyCognito, Randori, Microsoft Defender ASM), VM platforms (Tenable, Crowdstrike, Qualys, Rapid7), and API security tools. Deep understanding of cloud security controls, CI/CD pipelines, external threat modeling, and exposure management. Familiarity with MITRE ATT&CK, NIST 800-53/CSF, OWASP Top 10, CIS Benchmarks. Strong leadership, stakeholder management, and team development skills. Ability to communicate technical risks and attack surface exposures in business language to executives and board members. Excellent leadership and people management skills, with the ability to inspire and guide a team of security professionals. Why join Ericsson? What happens once you apply? Primary country and city: India (IN) || Gurgaon Req ID: 768823

Role Summary: Designs and implements technical solutions for protecting the confidentiality, integrity and availability of sensitive information. Provides technical evaluations of client systems and assists with making security improvements. Provides technical support in the areas of vulnerability assessment, risk assessment, network security and security implementation. Conducts testing and audit log reviews to evaluate the effectiveness of current security measures. Conducts security product evaluations, and recommends products, technologies and upgrades to improve the client s security posture. Responsibilities : Customizes, validates, administers and supports a variety of enterprise wide information security platforms, systems, frameworks and applications, based on requirements provided by management; Develops implementation plans related to information security for systems, tools, platforms, and frameworks. Conducts security assessments of systems, tools, platforms, policies, procedures and frameworks. Creates designs and diagrams related to information security for systems, tools, platforms, and frameworks. Develops standard operating procedures for information security related to systems, tools, platforms, and frameworks. Leads audits and reviews designs for information security issues. Validates vulnerabilities identified during security testing, audits, and assessments, while reviewing for false positives. Understands large scale multi-tenant software products supporting multiple government agencies. Understands large scale software integrations of multiple software products. Acts as source for direction, training and guidance for less experienced information security engineers. Works with engineering teams to define and refine information security and systems management policies and settings. Evaluates new and emerging products, technologies and make recommendations to leadership concerning introduction of new technologies. Required Skills > 6 years of information security experience for state and/or federal agencies required. > 6 years of leading information security assessments, policy development, framework implementation, and tool implementation. Must have knowledge of one or more of the following products: Broadcom Identity Manager, Identity Suite and Single Sign On. Preferred Skills Undergraduate degree Certification from Information Security Program (CISM, CompTIA, GSEC, CISSP, etc.) Preferred. Preferred knowledge of one or more of the following products: Dell Nutanix, Dell VxRail, VMware ESXi/vCenter/NSX/SRM, Microsoft Windows Server, RedHat Enterprise Linux, MS SQL Server, Nagios, NewRelic APM/Infrastructure/Browser, Octopus Deploy, Puppet, Splunk, Veracode.

manage&improve Governance,Risk,and Compliance,GRC frameworks,setting up and leading assessments,implementing strategies,advising clients on how to mitigate cybersecurity risks and achieve compliance with industry standards and regulatory requirements

Position: Cyber Security Engineer Experience: 2 to 4 Yrs Location: Noida Education: B. E. / B. Tech. MCA Candidate Profile Strong experience in Vulnerability Management - vulnerability (infra and app) scans and remediation plans Strong knowledge in CERT-based Infrastructure Vulnerability Assessment & Management Audit support - support auditors mandate on the security system and artefacts Supprt in Governance (Security Operational Tasks support & governance). Compliance and Risk Management. Willing to work in Physical Security and Human Resource Security aspects Security incident management - Managing the end-to-end security incident lifecycle with corrective measures Security Reporting, Meetings & Communication - Prepare and develop security report as contractually required, attend client and Sopra Steria meetings to provide security expertise and advice Authorisation management - should have managed the accounts & controls in the Infra scope Security Patch management - end-to-end coordination and implementation Security product management - Antivirus Management, like TrendMicro, Defender, etc. . . Certification: CISM & ISO 27001 certification is a must

VAPT, OCSP / CISSP Certified

Job Posting Title: Internal Audit IT Location: Thane What does a successful Internal Audit IT do at FISERV? Efficiently manage and conduct the audit projects as per The Institute of Internal Auditors standards and in accordance with Fiserv global Internal Audit framework and methodologies. What will you do: Project Management Working as a team leader & resource management. Audit Co-ordination & Facilitation - Meetings with key personnel of various work areas Conduct comprehensive Cyber and Technology controls audits, IT General controls (ITGC) audits. Planning, conducting technology domain/controls related walkthroughs, drafting, and reviewing process understanding and its controls. Preparing planning memos, risk assessment matrix, risk assessment control matrix (RACM) and Internal controls Reviewing Test of Designs and Test of Effectiveness controls Perform analytical procedures/analysis to test the effectiveness of controls. Document audit procedures and cross reference working papers. Create management representation letter comments and recommendations and draft audit reports for management review. Validations of audit issues. Conducting special reviews / investigations. Carrying out audit planning including scheduling and resource allocation Conducting discussions with Management representatives on the audit observations/ findings and preparation of Audit Committee Submissions. Conducting internal staff trainings Expected to assign variety of audits including operational, compliance or IT focused under a variety of financial or info-security/cyber security regulations in the US and other international locations in APAC, EMEA, LATAM, etc., What will you need to know: Experience: At least 5 years of managerial experience (overall 10 years of IT Audit experience) in the areas of IT Internal Audit, ITGC, Cyber security, Infrastructure/Network, Compliance & Risk Advisory services preferably in Banking and Financial services domain. Should possess strong understanding, capability and skillsets in auditing IT controls, IT risk mitigation and technology related processes reviews. Should be proficient and have good knowledge in testing IT General controls (ITGC) reviews, Cyber security controls, Infrastructure audits, application security audits, Network security control risk reviews. Good client interfacing skills, team management and drafting skills. Computer proficiency, specifically Microsoft Office products (Word, Excel, PowerPoint, etc.) What would be great to have: Desired certifications: CISA / CISSP / CISM / CCNA certified professionals Qualification: Computer Services engineering/ BSc/MSc-IT / BCA/MCA degree [with an emphasis in information technology or equivalent degree]

Key Skills: Security Response, Cissp, Information Security, Cism, Security Manager, Cloud, Incident Response. Roles and Responsibilities: Oversee daily operations of the security operations team to ensure organizational information assets are protected. Manage and coordinate response to security incidents and events, safeguarding corporate assets including intellectual property, regulated data, and company reputation. Monitor, analyze, and respond to security alerts using security detection systems and Security Information and Event Management (SIEM) tools. Develop, implement, and maintain effective incident response plans and protocols. Supervise event collection, log management, event correlation, compliance automation, and identity monitoring activities. Establish, implement, and monitor security policies, standards, and procedures across the organization. Provide regular reporting, metrics, and updates on security operations and incidents. Communicate risk and security posture effectively to stakeholders and escalate critical issues when required. Experience Requirement: 8-13 years of experience as a Security Operations Manager or in a similar cybersecurity leadership role. Hands-on experience in managing and coordinating incident detection and response operations. Strong understanding of web technologies, network protocols, and cloud-based security principles. Demonstrated expertise in security systems, sub-systems, and industry best practices. Experience working with SIEM tools and cybersecurity frameworks. Relevant certifications such as CISSP, CISM, or equivalent are required. Excellent written, verbal, and interpersonal communication skills. Education: B.Tech M.Tech (Dual), B.E., B.Tech, M. Tech.

As a Principal - Tech Content Strategist, you will lead the end-to-end development of engaging, instructionally sound learning experiences in the Security domain. Acting as a subject matter expert (SME), you'll translate complex frameworks into clear, outcome-focused content across digital formats. This role demands strong instructional design expertise, a deep understanding of learner needs, and the ability to creatively script and plan high-impact learning assets from video courses to assessments. Job Responsibilities Own the content development lifecycle plan, research, script, storyboard review, strategic video review and iterate for Security Design creative and effective learning experiences grounded in instructional design principles, addressing diverse learner personas and real-world scenarios. Author and script engaging digital content, including on-demand videos, interactive walkthroughs/lessons, assessments, and job aids. Collaborate with visual designers, editors, and technical experts to bring content to life in a compelling and accessible format. Align content with industry certification frameworks (eg, CEH, CISM, CISSP, CompTIA) and learner performance outcomes. Apply learner-centered design by identifying learning gaps and tailoring content that improves retention, engagement, and job readiness. Utilize Generative AI tools to accelerate and enhance content ideation, scripting, and personalization while maintaining content quality. Ensure instructional consistency, voice, and quality across all course deliverables and formats. Optionally support bootcamps (virtual training delivery) and mentor junior content developers. Skills Required Minimum 5+ years of hands-on experience in Security, including practical exposure to content planning and development. Demonstrated experience in instructional design, especially in developing digital learning products from concept to delivery. Excellent scripting, writing, and communication skills; able to distill complex concepts into concise, engaging narratives. Strong creativity and storytelling ability with an understanding of how to structure content for different learning styles. Fluency with and experience in Python, Java, C++, C#, Javascript, SQL, Bash, Powershell, or other relevant technologies Experience working with Security tools such as Splunk, Wireshark, Kali Linux, or Metasploit. Relevant certifications in Security (eg, CISA, CCSP, CEH, CompTIA Security+, Pentest+, CYSA+, CASP+). Preferred/Additional Skills: Familiarity with Generative AI tools like ChatGPT, Claude, or similar for content creation and enhancement. Training delivery experience (live/ virtual/ hybrid formats) is an added advantage. Understanding of instructional design models such as ADDIE, SAM, or Bloom s Taxonomy. Experience in analyzing learner feedback and improving content based on performance and engagement data

About Us Our purpose at Avient Corporation is to be an innovator of materials solutions that help our customers succeed, while enabling a sustainable world. Innovation goes far beyond materials science; it s powered by the passion, creativity, and diverse expertise of 9,000 professionals worldwide. Whether you re a finance wizard, a tech enthusiast, an operational powerhouse, an HR changemaker, or a trailblazer in materials development, you ll find your place at Avient. Join our global team and help shape the future with sustainable solutions that transform possibilities into realities. Your unique perspective could be the key to our next breakthrough! Job Summary The Senior Manager of Security Operations and Identity Management is responsible for 24x7 security monitoring and the administration of identity management processes. This role includes overseeing the architectural design, deployment, execution, and optimization of solutions in alignment with risk requirements and compliance obligations. Essential Functions Ensure that SIEM and SOAR environments are fit for purpose and continually enhanced to cover known and emerging MITRE ATT&CK techniques Manage the global SOC team responsible for 24x7 alerting, triage, investigation and Incident Response. Monitor and improve Key Performance Indicators (KPIs) Track SOC Maturity and partner with CISO to establish road map for growing SOC capabilities and automation Manage the Cyber Threat Intelligence program Oversee forensics, litigation support, and e-discovery capabilities in support of requests from Legal Lead the team responsible for identity lifecycle functions, identifying and implementing best practices to automate repetitive processes Oversee IAM architecture design, deployment and delivery of capabilities to achieve target levels of cyber maturity and efficiency, working with vendors, partners and other 3rd parties Ensure compliance with required regulations and frameworks across all divisions and markets, driving timely remediation of any IAM deficiencies Other duties as assigned Additional Qualifications Security certifications (CISSP, CISM, GCIH, GSEC, etc) Experience with modern cloud detection and response tools and processes Operational Technology (OT) experience

About Us Our purpose at Avient Corporation is to be an innovator of materials solutions that help our customers succeed, while enabling a sustainable world. Innovation goes far beyond materials science; it s powered by the passion, creativity, and diverse expertise of 9,000 professionals worldwide. Whether you re a finance wizard, a tech enthusiast, an operational powerhouse, an HR changemaker, or a trailblazer in materials development, you ll find your place at Avient. Join our global team and help shape the future with sustainable solutions that transform possibilities into realities. Your unique perspective could be the key to our next breakthrough! Job Summary The Governance, Risk, Compliance (GRC) and Programs Manager at Avient is responsible for leading a global team monitoring cyber regulations and ensuring compliance. This role involves creating and implementing a comprehensive training and awareness program to educate all users on IT best practices, information classification, and handling requirements. Additionally, the manager will oversee the execution of the cyber transformation portfolio, ensuring timely and high-quality delivery. Essential Functions Establish, implement and lead a comprehensive risk management program aligned with applicable regulations and industry best practices Author policies and standards defining the requirements for procedures that meet cyber and business requirements Drive and demonstrate cyber maturity as measured by the NIST Cybersecurity Framework Engage with internal and external stakeholders to address cybersecurity risk management needs and expectations Assess and recommend solutions to third party and supply chain risks Lead the cyber resilience program Lead the security awareness and training program. Design engaging content for general users, specialized use cases and specific training needs for technical staff and developers Identify and leverage internal communications channels to cultivate a risk-aware, ethical, and continually improving culture Provide program oversight to ensure risks are managed across the cyber transformation portfolio Other leadership duties as assigned Education and Experience Qualifications Bachelor s degree in computer science, information systems or related field or experience 10+ years progressive experience in compliance and technology leadership roles Substantial experience leading large, complex projects Additional Qualifications CISA, CISM, CISSP and GRC certifications preferred Project Management certification Manufacturing and Operational Technology (OT) experience

Workday Solution architect1 Design and implement scalable, secure, and efficient enterprise-level solutions within the Workday environment. Optimize financial systems and lead strategic enhancements across Workday Financials and Adaptive Planning. Ensure seamless integration with other enterprise technologies while aligning solutions to business objectives. Collaborate with cross-functional teams including Business Product Owners, IT Product Managers, Technical Architects, Compliance, and development/support teams. Align product strategy and roadmap with organizational priorities by working closely with business and IT stakeholders. Monitor industry trends, Workday updates, and emerging technologies for potential application within the organization. Maintain deep expertise in Workday HCM and other Workday module also the related business applications. Gather and analyze business requirements in partnership with stakeholders. Design end-to-end solution architectures that prioritize scalability, performance, and security. Oversee and support Workday integrations with external systems to ensure data consistency and security. Provide expert-level support in Workday configuration, optimization, and customization. Define technical requirements and assist in creating epics, user stories, and acceptance criteria. Guide development teams, enforcing adherence to architectural standards and best practices. Explore and recommend use cases for innovative or emerging technologies relevant to Workday and enterprise architecture. Stay up to date on Workday product enhancements and industry best practices. Design Workday-based solutions adhering to coding standards, governance, and architectural best practices. Qualifications Bachelors degree in Information Systems, Computer Science, or a related field. Minimum of 9 years of IT experience, with at least 4 years in a Workday architecture role. Proven expertise in Workday HCM and related modules In-depth knowledge of Workdays security framework and business process configuration. Solid understanding of enterprise architecture principles and design methodologies. Workday certifications are required

Director Product Management | Careers | Netenrich Were hiring! Director Product Management Hyderabad/Bangalore/Bhimavaram About Netenrich, Inc. Netenrich boosts the effectiveness of organizations security and digital operations so they can avoid disruption and manage risk. Resolution Intelligence Cloud is our native-cloud data analytics platform for enterprises and services providers that need highly scalable, multitenant security operations and/or digital operations management. Resolution Intelligence Cloud transforms security and operations data into intelligence that organizations can act on before critical issues occur. More than 3,000 customers and managed service providers rely on Netenrich to deliver secure operations at scale. Job Summary As a Technical Cybersecurity Product Director at Netenrich, you will play a pivotal role in planning, executing, and finalizing roadmap related to MDR and cybersecurity technology solutions. You will collaborate closely with cross-functional teams, clients, and stakeholders to deliver high-quality Product features for MDR on time. The ideal candidate will have a strong technical background in cybersecurity, exceptional Product management skills, and the ability to lead teams effectively. Key Responsibilities: Defining product vision and strategy by setting the overall vision for the product, considering market trends, customer needs, and business goals. Developing and maintaining a product roadmap that outlines the timeline, milestones, and features of the product, ensuring alignment with the overall product strategy Technical Expertise: Demonstrate a deep understanding of cybersecurity technologies, including but not limited to firewalls, intrusion detection systems, encryption, vulnerability assessment tools, and security information and event management (SIEM) & SOAR platforms. Collaborating with cross-functional teams, including stakeholders, engineering teams, product designers, marketing, and sales, to ensure effective coordination throughout the product development lifecycle and product launch Conducting market and competitive analysis by monitoring market trends, competitors, and customer feedback to identify new opportunities, anticipate market changes, and make informed product decisions Providing leadership and guidance, acting as a subject matter expert, and advocating for the products vision while making critical decisions to resolve conflicts that may arise Risk Management: Identify roadmap risks and develop mitigation strategies to minimize potential issues and ensure project success. Quality Assurance: Implement rigorous quality assurance processes to validate that product deliverables meet the highest standards of security and reliability. Documentation: Maintain comprehensive product documentation, including feature plans, technical specifications, and reports, ensuring all product details are accurately recorded. Continuous Improvement: Stay abreast of the latest cybersecurity trends, technologies, and best practices, incorporating them into project methodologies to enhance project outcomes. Requirements: Experience in product management, with a focus on cybersecurity Products and MDR. Exposure to SIEM, SOAR, GC and other security products. Professional certifications such as Certified Product Manager (CPM) or Agile Certified Project Manager (ACPM), Certified Information Systems Security Professional (CISSP), or Certified Information Security Manager (CISM) are highly desirable. Proven experience managing complex technical products, including hands-on experience with cybersecurity technologies and tools. Strong leadership, communication, and interpersonal skills, with the ability to collaborate effectively with diverse teams and stakeholders. Exceptional problem-solving abilities and attention to detail, ensuring the successful resolution of technical challenges. Proficiency in product management software tools and techniques. Demonstrated ability to work in a fast-paced environment and manage multiple products simultaneously.

We are seeking a highly skilled and experienced Technical Account Manager in (MDR) Services / Security Operations Centre (SOC) Manager to lead our team in safeguarding our customers information assets. The ideal candidate will possess a strong background in cybersecurity Data Engineering, Detection Engineering, Response Engineering , incident response, and team management, with a proven track record of effectively managing MDR services or SOC operations. Experience with cutting-edge technologies such as SIEM , SOAR , EDR and other advanced security tools is highly desirable. Experience in managing the team , mentoring / guiding members to advance in their career Job Responsibilities Incident Detection and Response: Oversee the monitoring, detection, analysis, and response to security incidents and threats in real-time. Utilize advanced security technologies such as SIEM , SOAR , TIP & MDR solutions to enhance visibility and response capabilities Coordinate with internal stakeholders and external partners to investigate and resolve security incidents promptly and effectively. Develop and maintain incident response plans and playbooks to streamline response processes. Leadership and Management: Lead and manage a team of security analysts and incident responders, providing guidance, mentoring, and support to ensure high performance and morale. Develop and implement strategies, policies, and procedures to enhance the efficiency and effectiveness of MDR services or SOC operations. Foster a culture of collaboration, continuous learning, and innovation within the team. Threat Intelligence and Analysis: Stay abreast of the latest cybersecurity threats, vulnerabilities, and trends, and incorporate threat intelligence into security operations. Leverage threat intelligence platforms and feeds to proactively identify emerging threats and develop mitigation strategies. Conduct in-depth analysis of security events and incidents using advanced analytics and machine learning techniques. Tooling and Technology: Deploy cutting-edge security technologies and tools to support MDR services or SOC operations, including Google Chronicle, EDR solutions, SIEM, SOAR, and threat intelligence platforms. Ensure the proper configuration, tuning, and optimization of security tools to maximize their effectiveness in detecting and mitigating threats. Stay updated on the latest advancements in cybersecurity technology and assess their applicability to the organizations security posture. Compliance and Reporting: Ensure compliance with relevant regulatory requirements, industry standards, and internal policies related to cybersecurity and incident response. Prepare and deliver regular reports and presentations to senior management, providing insights into the organizations security posture, incidents, and remediation efforts. Conduct Monthly Service Reviews, Quarterly business reviews on the performance. Based on the analysis of the metrics , provide insights on customer environment with Sales teams to upsell additional services Requirements: Bachelors degree in Computer Science, Information Security, or a related field; advanced degree or professional certifications (e.g., CISSP, CISM, GIAC) preferred. Proven experience (10 years) in managing MDR services or SOC operations in a complex and dynamic environment and experience in supporting shared services operations supporting multiple enterprise customers Deep understanding of cybersecurity principles, threat landscape, attack vectors, and defence mechanisms. Strong leadership, communication, and interpersonal skills, with the ability to effectively engage and collaborate with stakeholders at all levels. Hands-on experience with advanced security technologies and tools, such as Google Chronicle, EDR solutions, SIEM, IDS/IPS, and threat intelligence platforms. Experience developing and implementing incident response plans, playbooks, and procedures. Ability to work well under pressure, prioritize tasks, and make sound decisions in high-stress situations. Knowledge of relevant regulatory requirements (e.g., GDPR, HIPAA, PCI DSS) and industry standards (e.g., NIST, ISO 27001). Continuous learning mindset, with a commitment to staying updated on the latest cybersecurity trends.

1.Conduct information security management reviews and information security management system (ISMS) assessments 2.Must have knowledge of various compliances like ISO 27001, SOC 2, PCI DSS, GDPR etc. 3.Ensure technical implementation and business processes are aligned 4.Lead the design, implementation, operation and maintenance security management systems 5.Participate in the creation, review and update of information security policies 6.Provide complex technical advice, recommendations and consultancy on networks, infrastructure, products and services supplied 7.Provide or assist with implementation documentation Ongoing project management 8. Must be ISO 27001 LA certified

Roles & Responsibilities: Be part of Bank’s GRC program and handle regulatory characteristics focused in cybersecurity Identify and Drive improvement initiatives to Enhance Risk posture of the Bank Face off to Various regulators and drive programs for compliance to the Regulatory requirements Be a champion of ITGC initiatives Provide guidance to group companies to ensure consistency in risk governance, cyber risk management and compliance. Be the focal of Group companies for all IRM requirements Collaborate with group companies on IT governance, cybersecurity and control measures across Group’s IT landscape. Present cyber risk posture in quarterly IT Strategy meetings for group companies. Promote a strong risk culture within the bank and group companies fostering awareness of risk management principles. Validate Security Policies and Procedures in conjunction with IT controls Manage internal and external stakeholders Ability to endorse cyber risks through publication of dashboards and drive initiatives to Improve Risk posture Job Requirement: Experience required for the Job15+ years in information technology & security; Engineer / Post Graduate / MBA Strong understanding of IT governance frameworks, risk management practices and regulatory requirements. Industry acknowledged certifications like CISA / CISSP / CRISC Experience in Team handling / management is must Knowledge on Layered Security - Firewalls, Intrusion Detection, OS Hardening, Project Management, Security Training. Experience in handling regulatory matters will be an added advantage Strategic thinking and strong analytical skills Excellent communication and inter personal skills with focus on verbal, written communication & presentation skills

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : SailPoint IdentityNow Good to have skills : NAMinimum 5 year(s) of experience is required Educational Qualification : BE or MCA or MSc with Good Computer Science Background with good academic record. Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. You will document the implementation of the cloud security controls and transition to cloud security-managed operations. Be a key player in shaping the security landscape of the organization. SailPoint IdentityIQ Roles & Responsibilities:- Expected to be an SME, collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Provide solutions to problems for their immediate team and across multiple teams.- Lead the design and implementation of security solutions.- Conduct security assessments and provide recommendations for improvements.- Develop security policies and procedures.- Stay updated on the latest security trends and technologies. Professional & Technical Skills: - Must have Skills: Proficiency in SailPoint IdentityNow.- Strong understanding of cloud security principles.- Experience with security architecture design and implementation.- Knowledge of industry standards and best practices in cloud security.- Hands-on experience with security tools and technologies.- Good To Have Skills: CISSP certification.- Experience with cloud platforms such as AWS or Azure. Additional Information:- The candidate should have a minimum of 5 years of experience in SailPoint IdentityNow.- This position is based at our Bengaluru office.- A BE or MCA or MSc with Good Computer Science Background with good academic record is required. Qualification BE or MCA or MSc with Good Computer Science Background with good academic record.

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : SailPoint IdentityIQ Good to have skills : SailPoint IdentityNowMinimum 7.5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. You will document the implementation of the cloud security controls and transition to cloud security-managed operations. Showcasing creativity and expertise in cloud security solutions. Roles & Responsibilities:- Expected to be an SME, collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Provide solutions to problems for their immediate team and across multiple teams.- Develop and implement security architecture solutions.- Conduct security assessments and provide recommendations.- Lead security projects and initiatives.- Stay updated on the latest security trends and technologies. Professional & Technical Skills: - Must To Have Skills: Proficiency in SailPoint IdentityIQ.- Strong understanding of identity and access management concepts.- Experience in designing and implementing security solutions.- Knowledge of cloud security best practices.- Hands-on experience with SailPoint IdentityNow.- Experience in conducting security assessments and audits. Additional Information:- The candidate should have a minimum of 7.5 years of experience in SailPoint IdentityIQ.- This position is based at our Hyderabad office.- A 15 years full time education is required. Qualification 15 years full time education

Skill required: Tech for Operations - Security Governance Designation: Security Delivery Associate Manager Qualifications: BE/Master of Engineering Years of Experience: 10 to 14 years About Accenture Combining unmatched experience and specialized skills across more than 40 industries, we offer Strategy and Consulting, Technology and Operations services, and Accenture Song all powered by the worlds largest network of Advanced Technology and Intelligent Operations centers. Our 699,000 people deliver on the promise of technology and human ingenuity every day, serving clients in more than 120 countries. Visit us at www.accenture.com What would you do You will be part of the Technology for Operations team that acts as a trusted advisor and partner to Accenture Operations. The team provides innovative and secure technologies to help clients build an intelligent operating model, driving exceptional results. We work closely with the sales, offering and delivery teams to identify and build innovative solutions.The Tech For Operations (TFO) team provides innovative and secure technologies to help clients build an intelligent operating model, driving exceptional results. Works closely with the sales, offering and delivery teams to identify and build innovative solutions. Major sub deals include AHO(Application Hosting Operations), ISMT (Infrastructure Management), Intelligent AutomationA process of establishing and maintaining a security governance framework. Support management structure and processes to provide assurance that information security strategies are aligned with and support business objectives are consistent with applicable laws and regulations through adherence to policies and internal controls, and provide assignment of responsibility, metrics, reporting all in an effort to manage the risk and compliance requirements. What are we looking for Commitment to qualityExperience in research and developmentNegotiation skillsProblem-solving skillsRisk managementThe role demands Indepth knowledge in application security area. Candidate should have hands on experience in SAST, DAST, Penetration testing. DevSecOps and Software composition analysis are other areas where the candidate should have experience in.The role also demands capability of scripting using Python and other related required knowledge of database and networking.Certifications like CISSP, CCSP, CISM, CEH, ECSA etc. will be added advantage. Roles and Responsibilities: In this role you are required to do analysis and solving of moderately complex problems Typically creates new solutions, leveraging and, where needed, adapting existing methods and procedures The person requires understanding of the strategic direction set by senior management as it relates to team goals Primary upward interaction is with direct supervisor or team leads Generally interacts with peers and/or management levels at a client and/or within Accenture The person should require minimal guidance when determining methods and procedures on new assignments Decisions often impact the team in which they reside and occasionally impact other teams Individual would manage medium-small sized teams and/or work efforts (if in an individual contributor role) at a client or within Accenture Please note that this role may require you to work in rotational shifts Qualification BE,Master of Engineering

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : SailPoint IdentityIQ Good to have skills : SailPoint IdentityNowMinimum 7.5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. You will also document the implementation of the cloud security controls and transition to cloud security-managed operations. Roles & Responsibilities:- Expected to be an SME- Collaborate and manage the team to perform- Responsible for team decisions- Engage with multiple teams and contribute on key decisions- Provide solutions to problems for their immediate team and across multiple teams- Lead the design and implementation of security solutions- Conduct security assessments and audits- Develop security policies and procedures Professional & Technical Skills: - Must To Have Skills: Proficiency in SailPoint IdentityIQ- Strong understanding of identity and access management- Experience with cloud security technologies- Knowledge of security frameworks and standards- Hands-on experience with security architecture design Additional Information:- The candidate should have a minimum of 7.5 years of experience in SailPoint IdentityIQ- This position is based at our Hyderabad office- A 15 years full time education is required Qualification 15 years full time education