453 Grc Jobs

Mandate skills; SAP GRC SOD, BI/BW Security/S4 Hana Overview: Sap GRC/Sap Security with Sox/SOD with implementations SOD Risk Recognition (Risk Life cycle), Rule Building (Business Risk, Rule Set), Risk Analysis, Remediating Access Control, Mitigation (Defining Mitigation Control/Compensating controls/Life cycle), Continuous Compliance (Approve/Reject/Terminate) SOXAccess Control (To avoid access risks like SoD security violations) -Establish effective governance and oversight/Establish an effective SAP security administration process/perform an independent audit

8+ years of experience in SAP Security/GRC Should have experience in security of SAP ECC , SRM, FI, CRM, HR, GRC, BW ) SAP Security support for all SAP environments Experience in GRC access control, RAR (Risk Analysis and Remediation) and SOD (segregation of duty),mitigation and remediation Design and implement new authorization concepts along with business departments and IT stake holders SAP role design, administration and analysis SAP user administration on approved procedures Responsible for integration of SoD conform processes and authorization validation Meets or exceeds all task deadlines assigned Obtains clear and concise requirements from senior management user community Perform the role of GRC subject matter specialist including the ability to provide in-depth application support to internal/external project team members Create and maintain matrix for business processes, users & roles Strong experience in SAP security analysis, design, blueprint, development, testing Strong understanding of SAP Security processed Strong experience in Security roles & users with object, package, schema & Sys privileges. Hands-on experience in security design/redesign etc. changing business needs Support audit and compliance activities Should have experience in SAP Support projects Location - Chandigarh,Dadra & Nagar Haveli,Daman,Diu,Goa,Haveli,Hyderabad,Jammu,Lakshadweep,Nagar,New Delhi,Puducherry,Sikkim

Skill - ServiceNow with GRC experience : GRC or IRM module Exp- 6 - 9 yrs Work model - Hybrid Mode ( 2 Days work from Office) Work location: Hyderabad/ Bengaluru/Pune/Mumbai/Chennai/Kolkata/Gurgaon Experience: Minimum of 7-10 years of experience in implementing GRC solutions and/or in ServiceNow/Archer/Aravo/OneTrust or cyber strategy. Well versed with at least 1 GRC tool such as ServiceNow/Archer/Aravo/OneTrust. Gathering and documenting business requirements and identifying gaps within existing systems and processes. Hands-on experience on at least 2 GRC modules (ERM, ITRM, TPRM, SecOps, Issues Management, Policy & Compliance Management, etc.). Hands-on experience in on-demand and out-of-the-box solution developments, access control, rules & events, notifications, data integrations, UI, reports and dashboards, workflows and other administrative activities in tools like ServiceNow/Archer/Aravo/OneTrust. Experience on Privacy Enhancement and Automation tools such as OneTrust. Proficient in risk management processes and compliance regulations. Proven experience in GRC, particularly within a consulting environment. Proficiency with scripting language in implementing API integrations with external system Must have development experience in more than 2- 3 projects from scratch to till go-live Strong understanding of GRC frameworks such as COBIT, ISO 27001, NIST, etc. Strong analytical and problem-solving skills. Excellent interpersonal and communication skills, capable of working effectively with clients and team members. Flexibility in work hours may be necessary to meet project deadlines and client needs If interested, share your profile on alisha.k@anlage.co.in Thanks & Regards Alisha

Role & responsibilities Servicenow Developer with GRC or IRM module. Job Locations-Bangalore/Hyderabad/Chennai/Mumbai/Pune/Gurgaon/Kolkata Preferred candidate profile

6 to 9 years of experience in SAP Security HANA. Strong knowledge on SAP security on S/4 HANA with good experience working for support project. Ability to create catalogue tiles with the help of Fiori Library and troubleshoot Fiori Authorization issues. Ability to design and maintain a set of authorizations on SAP systems Understanding of Fiori authorization concept of backend and front-end role design. Working knowledge of how to use GRC BRMARM for daily support work and perform analysis Good understanding of critical business risk process. Good understanding (and experience) of business needs and translation to SAP rules and constraints Managing troubleshooting end to end SAP Security issues across SAP landscape. Client interaction experience. Excellent analysis. Problem solving and interpersonal relationship skill. A good team player.

#Skill:SAP GTS#Exp:6 Years#Location:Pan India #Job description 1. Good knowledge in GTS Compliance Legal regulations under Embargo, SPL and Legal control 2. Should be familiar with Document type mapping/Item category mapping/Master data transfer/ change pointers. 3.Should have knowledge of BADI enhancements in ECC for document transfer. 4. Should be familiar with ECC-GTS integration- Enhancements, Configuration and reports related to document blocks and follow on document process. 5. Extensive knowledge required in Legal control exclusively on Europe , US and China related licenses both local and international. 6. Should be familiar with integration of GTS Compliance module with GTS Customs management. 7. Should be having experience in creation of Solution designs, functional specification and understanding of GTS tables. 8. Should have knowledge on the integration of GTS compliance with non-sap systems. 9. Should have experience in problem solving and advisory to Business on requirement forecasts. 10. Should have experience in the production release cycle, requirement forecast and hyper care support.

Minimum of 5+ years of experience in SAP GRC consulting. Proficient in SAP GRC Access Control, Process Control, and Risk Management modules. Strong understanding of business processes and risk management principles. Excellent analytical, problem-solving, and communication skills. Minimum of 5 years practical SAP GRC Implementation and support. Atleast 1 implementation experience is needed .

Below is the JD for ServiceNow Developer . Keywords : ITOM, ITAM, HRSD, GRC, CMDB JD: Role Responsibilities: The ServiceNow Consultant is responsible for developing technical solutions on the ServiceNow platform to satisfy the business needs of the IT department and beyond. Development of ITSM & other modules (GRC, SECOPS, HRSD, CSM, ITBM) in ServiceNow Platform. Always follow best development practices during support and development. Support other developers in their work to integrate existing systems with Service Now. Strong hands-on ServiceNow experience (either support or development). Creating technical design document and writing Unit test cases. Knowledge in Web Technologies (XML, HTML,JAVA Script, etc.) Will be essential. ServiceNow upgrade hands-on. Very good knowledge of the ITSM/GRC/SECOPS/HRSD/CSM/ITBM process. Exceptional Interpersonal Skills & Ability to work Independently and with a team. Ability to work in second shift in India when required Requirement: Candidate should have the ability to perform in a dynamically changing environment Should have prior working experience in ServiceNow tool Service Now Integration to various solutions (SaaS, External Apps) using REST API / webservice / JSON / ServiceNow Scripting. Ability to work under pressure and handle crunched timelines Excellent verbal/written communication, collaboration, analytical and presentation skills to lead an environment driven by customer service and teamwork Must-Have Certifications Certified System Administrator (Desired) ITIL Certifications (desired) Other Service-Now Certifications (Preferred) Experience & Background B-Tech/BCA/MCA 4.5+ years of IT industry experience. Minimum 3 year of support/implementation experience on ServiceNow Experience on Service portal will be an advantage. ITIL/ServiceNow certifications will be an added advantage. Set up standards for quality control, measure and report performance against those standards Exposure on Service Now integration protocols with other application/systems Excellent attention to details, ability to multitask, and effective time management skills Knowledge of web-based development languages; specifically JavaScript, Ajax Exposure of ITSM Framework and ITIL, ITOM, HRSD, ITAM, GRC Excellent Communication Skills

Role Responsibilities: The ServiceNow GDN Associate Consultant is responsible for developing technical solutions on the ServiceNow platform to satisfy the business needs of the IT department and beyond Ideal candidate should have good design knowledge and be willing to research new solutions based on the requirements Development of ITSM & other modules GRC, SECOPS, HRSD, CSM, ITBM in ServiceNow Platform. Always follow best development practices during implementation. Support other developers in their work to integrate existing systems with Service Now Support business process owners in configuring the platform Administer the system Creating technical design document and writing Unit test cases Requirement: Candidate should have the ability to perform in a dynamically changing environment Minimum 2 years of implementation/customization experience on ServiceNow Exposure on ServiceNow integration protocols with other application/systems Excellent attention to details, ability to multitask, and effective time management skills Knowledge of web based development languages; specifically JavaScript, Ajax Exposure of ITSM Framework and ITIL ITIL/ServiceNow certifications will be an added advantage. NOTE : ONLY IMMEDIATE TO 25DAYS ARE ELIGIBLE If you are interested, share your below details & updated resume to akshay.jk@twsol.com Total Experience: Relevant Experience: CTC: ECTC: Notice Period: Current Location: Preferred Location: Thanks & Regard AKSHAY KUMAR JAKKULA Executive-Talent Acquisition akshay.jk@twsol.com Teamware Solutions

Role Responsibilities: • The ServiceNow GDN Consultant is responsible for developing technical solutions on the ServiceNow platform to satisfy the business needs of the IT department and beyond. • Development of ITSM & other modules (GRC, SECOPS, HRSD, CSM, ITBM) in ServiceNow Platform. • Always follow best development practices during implementation. • Support other developers in their work to integrate existing systems with Service Now. • Strong hands-on ServiceNow implementation or development experience with minimum 3 full cycle implementation of any ServiceNow module. • Creating technical design document and writing Unit test cases. • Knowledge in Web Technologies (XML, HTML, JAVA Script, etc.) Will be essential. • ServiceNow upgrade hands-on. • Very good knowledge of the ITSM/GRC/SECOPS/HRSD/CSM/ITBM process. • Work with global ServiceNow team to implement the ServiceNow ( all the modules ) across all global locations of client. • Exceptional Interpersonal Skills & Ability to work Independently and with a team. Requirement: • Candidate should have the ability to perform in a dynamically changing environment • Should have prior working experience in ServiceNow tool • Service Now Integration to various solutions (SaaS, External Apps) using REST API / webservice / JSON / ServiceNow Scripting. • Ability to work under pressure and handle crunched timelines • Excellent verbal/written communication, collaboration, analytical and presentation skills to lead an environment driven by customer service and team work Must-Have Certifications • Certified System Administrator (Desired) • ITIL Certifications (desired) • Other Service-Now Certifications (Preferred) Experience & Background • B-Tech/BCA/MCA • 4.5+ years of IT industry experience. • Minimum 3 year of implementation/customization experience on ServiceNow • Experience on Service portal will be an advantage.

Job Summary - As a Security Analyst, you will work on an SAP Security team along with other Security Analysts to analyze, build and maintain the Enterprise SAP Security Roles in a quality manner to support multiple divisions of the business within John Deere. This level operates with moderate autonomy on a team, with access to senior team members or Scrum Master when guidance is needed. In addition, you will; • Administer (Create/Maintain) SAP Security Roles • Participate and follow documented Change Management Processes • Engage in peer reviews of SAP Security role Changes • Use Information Security tools for analysis of Information Security events and data with some understanding of the interactions between access patterns and expected outcomes • Deliver the basic tasks and activities related to cyber security and get exposure to information security patterns with some complexity • Understand and apply current Information Technology (IT) security policies to ensure adherence to standards established by GSEC SAP security • Understand and apply knowledge of security system parameters and tables utilized within existing security tools and various applications • Follow routine techniques and processes to resolve administrative issues. Use analytical skills to resolve low to moderate level security issues • Take part in projects directly related to existing processes and tools • Follow processes and actively look for ways to improve the process • Perform some decision making when requests fall outside of the normal processes • Work on tasks and projects that are low to moderate risk and of low to moderate complexity in nature • Supports SoD/SOX reviews and initiatives Mail to - singh.garima@orcapod.work

Role Purpose The purpose of this role is to provide solutions and bridge the gap between technology and business know-how to deliver any client solution Do 1. Bridging the gap between project and support teams through techno-functional expertise For a new business implementation project, drive the end to end process from business requirement management to integration & configuration and production deployment Check the feasibility of the new change requirements and provide optimal solution to the client with clear timelines Provide techno-functional solution support for all the new business implementations while building the entire system from the scratch Support the solutioning team from architectural design, coding, testing and implementation Understand the functional design as well as technical design and architecture to be implemented on the ERP system Customize, extend, modify, localize or integrate to the existing product by virtue of coding, testing & production Implement the business processes, requirements and the underlying ERP technology to translate them into ERP solutions Write code as per the developmental standards to decide upon the implementation methodology Provide product support and maintenance to the clients for a specific ERP solution and resolve the day to day queries/ technical problems which may arise Create and deploy automation tools/ solutions to ensure process optimization and increase in efficiency Sink between technical and functional requirements of the project and provide solutioning/ advise to the client or internal teams accordingly Support on-site manager with the necessary details wrt any change and off-site support 2. Skill upgradation and competency building Clear wipro exams and internal certifications from time to time to upgrade the skills Attend trainings, seminars to sharpen the knowledge in functional/ technical domain Write papers, articles, case studies and publish them on the intranet Deliver No. Performance Parameter Measure 1. Contribution to customer projects Quality, SLA, ETA, no. of tickets resolved, problem solved, # of change requests implemented, zero customer escalation, CSAT 2. Automation Process optimization, reduction in process/ steps, reduction in no. of tickets raised 3. Skill upgradation # of trainings & certifications completed, # of papers, articles written in a quarter Mandatory Skills: IBM OpenPages Security. Experience8-10 Years.

Role Purpose The purpose of this role is to design the organisations computer and network security infrastructure and protect its systems and sensitive information from cyber threats Do 1. Design and develop enterprise cyber security strategy and architecture a. Understand security requirements by evaluating business strategies and conducting system security vulnerability and risk analyses b. Identify risks associated with business processes, operations, information security programs and technology projects c. Identify and communicate current and emerging security threats and design security architecture elements to mitigate threats as they emerge d. Identify security design gaps in existing and proposed architectures and recommend changes or enhancements e. Provide product best fit analysis to ensure end to end security covering different faucets of architecture e.g. Layered security, Zoning, Integration aspects, API, Endpoint security, Data security, Compliance and regulations f. Demonstrate experience in doing security assessment against NIST Frameworks, SANS, CIS, etc. g. Provide support during technical deployment, configuration, integration and administration of security technologies h. Demonstrate experience around ITIL or Key process-oriented domains like incident management, configuration management, change management, problem management etc. i. Provide assistance for disaster recovery in the event of any security breaches, attacks, intrusions and unusual, unauthorized or illegal activity j. Provide solution of RFPs received from clients and ensure overall design assurance i. Develop a direction to manage the portfolio of to-be-solutions including systems, shared infrastructure services, applications, hardware related to cyber risk security in order to better match business outcome objectives ii. Analyse technology environment, enterprise specifics, client requirements to set a collaboration design framework/ architecture iii. Depending on the clients need with particular standards and technology stacks create complete RFPs iv. Provide technical leadership to the design, development and implementation of custom solutions through thoughtful use of modern technology v. Define and understand current state solutions and identify improvements, options & tradeoffs to define target state solutions vi. Clearly articulate and sell architectural targets, recommendations and reusable patterns and accordingly propose investment roadmaps vii. Evaluate and recommend solutions to integrate with overall technology ecosystem viii. Tracks industry and application trends and relates these to planning current and future IT needs 2. Stakeholder coordination & audit assistance a. Liaise with stakeholders in relation to cyber security issues and provide timely support and future recommendations b. Provide assistance in maintaining an information security risk register and help with internal and external audits relating to information security c. Support audit of security best practices and implementation of security principles across the organization, to meet business goals along with customer and regulatory requirements d. Assist with the creation, maintenance and delivery of cyber security awareness training to team members and customers e. Provide training to employees on issues such as spam and unwanted or malicious emails Deliver No PerformanceParameter Measure 1 Customer centricity Timely security breach solutioning to end users, Internal stakeholders & external customers experience, CSAT, educating and suggesting right control to the customers. 2 Support sales team to create wins % of proposals with Quality Index >7, timely support of the proposals, identifying opportunities/ leads to sell services within/ outside account (lead generation), no. of proposals led Mandatory Skills: GRC Consulting. Experience8-10 Years.

Role Purpose The purpose of this role is to provide solutions and bridge the gap between technology and business know-how to deliver any client solution Do 1. Bridging the gap between project and support teams through techno-functional expertise For a new business implementation project, drive the end to end process from business requirement management to integration & configuration and production deployment Check the feasibility of the new change requirements and provide optimal solution to the client with clear timelines Provide techno-functional solution support for all the new business implementations while building the entire system from the scratch Support the solutioning team from architectural design, coding, testing and implementation Understand the functional design as well as technical design and architecture to be implemented on the ERP system Customize, extend, modify, localize or integrate to the existing product by virtue of coding, testing & production Implement the business processes, requirements and the underlying ERP technology to translate them into ERP solutions Write code as per the developmental standards to decide upon the implementation methodology Provide product support and maintenance to the clients for a specific ERP solution and resolve the day to day queries/ technical problems which may arise Create and deploy automation tools/ solutions to ensure process optimization and increase in efficiency Sink between technical and functional requirements of the project and provide solutioning/ advise to the client or internal teams accordingly Support on-site manager with the necessary details wrt any change and off-site support 2. Skill upgradation and competency building Clear wipro exams and internal certifications from time to time to upgrade the skills Attend trainings, seminars to sharpen the knowledge in functional/ technical domain Write papers, articles, case studies and publish them on the intranet Deliver No. Performance Parameter Measure 1. Contribution to customer projects Quality, SLA, ETA, no. of tickets resolved, problem solved, # of change requests implemented, zero customer escalation, CSAT 2. Automation Process optimization, reduction in process/ steps, reduction in no. of tickets raised 3. Skill upgradation # of trainings & certifications completed, # of papers, articles written in a quarter Mandatory Skills: GRC Consulting. Experience8-10 Years.

Role Purpose The purpose of this role is to provide solutions and bridge the gap between technology and business know-how to deliver any client solution Do 1. Bridging the gap between project and support teams through techno-functional expertise For a new business implementation project, drive the end to end process from business requirement management to integration & configuration and production deployment Check the feasibility of the new change requirements and provide optimal solution to the client with clear timelines Provide techno-functional solution support for all the new business implementations while building the entire system from the scratch Support the solutioning team from architectural design, coding, testing and implementation Understand the functional design as well as technical design and architecture to be implemented on the ERP system Customize, extend, modify, localize or integrate to the existing product by virtue of coding, testing & production Implement the business processes, requirements and the underlying ERP technology to translate them into ERP solutions Write code as per the developmental standards to decide upon the implementation methodology Provide product support and maintenance to the clients for a specific ERP solution and resolve the day to day queries/ technical problems which may arise Create and deploy automation tools/ solutions to ensure process optimization and increase in efficiency Sink between technical and functional requirements of the project and provide solutioning/ advise to the client or internal teams accordingly Support on-site manager with the necessary details wrt any change and off-site support 2. Skill upgradation and competency building Clear wipro exams and internal certifications from time to time to upgrade the skills Attend trainings, seminars to sharpen the knowledge in functional/ technical domain Write papers, articles, case studies and publish them on the intranet Deliver No. Performance Parameter Measure 1. Contribution to customer projects Quality, SLA, ETA, no. of tickets resolved, problem solved, # of change requests implemented, zero customer escalation, CSAT 2. Automation Process optimization, reduction in process/ steps, reduction in no. of tickets raised 3. Skill upgradation # of trainings & certifications completed, # of papers, articles written in a quarter Mandatory Skills: GRC Consulting. Experience8-10 Years.

Role Purpose The purpose of this role is to analyse, identify, rectify & recommend specific improvement measures that help in the security posture of the organization by protecting the sensitive information Do Ensuring customer centricity by providing apt cybersecurity Monitoring and safeguarding the log sources and security access Planning for disaster recovery in the event of any security breaches Monitor for attacks, intrusions and unusual, unauthorized or illegal activity Performs moderately complex log reviews and forensic analysis to identify unauthorized or unacceptable access to data or systems Conduct security assessments, risk analysis and root cause analysis of security incidents Handling incidents escalated by the L1 team in 24x7 rotational shifts Use advanced analytics tools to determine emerging threat patterns and vulnerabilities Completing all tactical security operations tasks associated with this engagement. Analyses all the attacks and come up with remedial attack analysis Conduct detailed analysis of incidents and create reports and dashboards Stakeholder coordination & audit assistance Liaise with stakeholders in relation to cyber security issues and provide future recommendations Maintain an information security risk register and assist with internal and external audits relating to information security Assist with the creation, maintenance and delivery of cyber security awareness training for colleagues Advice and guidance to employees on issues such as spam and unwanted or malicious emails Deliver No. Performance Parameter Measure 1. Customer centricity Timely security breach solutioning to end users, Internal stakeholders & external customers experience 2. Process Adherence Adherence to SLAs (90-95%), response time and resolution time TAT Mandatory Skills: ServiceNow - GRC. Experience3-5 Years.

Role Purpose The purpose of this role is to analyse, identify, rectify & recommend specific improvement measures that help in the security posture of the organization by protecting the sensitive information Do Ensuring customer centricity by providing apt cybersecurity Monitoring and safeguarding the log sources and security access Planning for disaster recovery in the event of any security breaches Monitor for attacks, intrusions and unusual, unauthorized or illegal activity Performs moderately complex log reviews and forensic analysis to identify unauthorized or unacceptable access to data or systems Conduct security assessments, risk analysis and root cause analysis of security incidents Handling incidents escalated by the L1 team in 24x7 rotational shifts Use advanced analytics tools to determine emerging threat patterns and vulnerabilities Completing all tactical security operations tasks associated with this engagement. Analyses all the attacks and come up with remedial attack analysis Conduct detailed analysis of incidents and create reports and dashboards Stakeholder coordination & audit assistance Liaise with stakeholders in relation to cyber security issues and provide future recommendations Maintain an information security risk register and assist with internal and external audits relating to information security Assist with the creation, maintenance and delivery of cyber security awareness training for colleagues Advice and guidance to employees on issues such as spam and unwanted or malicious emails Deliver No. Performance Parameter Measure 1. Customer centricity Timely security breach solutioning to end users, Internal stakeholders & external customers experience 2. Process Adherence Adherence to SLAs (90-95%), response time and resolution time TAT Mandatory Skills: ServiceNow - GRC. Experience5-8 Years.

Role Purpose The purpose of this role is to provide solutions and bridge the gap between technology and business know-how to deliver any client solution Do 1. Bridging the gap between project and support teams through techno-functional expertise For a new business implementation project, drive the end to end process from business requirement management to integration & configuration and production deployment Check the feasibility of the new change requirements and provide optimal solution to the client with clear timelines Provide techno-functional solution support for all the new business implementations while building the entire system from the scratch Support the solutioning team from architectural design, coding, testing and implementation Understand the functional design as well as technical design and architecture to be implemented on the ERP system Customize, extend, modify, localize or integrate to the existing product by virtue of coding, testing & production Implement the business processes, requirements and the underlying ERP technology to translate them into ERP solutions Write code as per the developmental standards to decide upon the implementation methodology Provide product support and maintenance to the clients for a specific ERP solution and resolve the day to day queries/ technical problems which may arise Create and deploy automation tools/ solutions to ensure process optimization and increase in efficiency Sink between technical and functional requirements of the project and provide solutioning/ advise to the client or internal teams accordingly Support on-site manager with the necessary details wrt any change and off-site support 2. Skill upgradation and competency building Clear wipro exams and internal certifications from time to time to upgrade the skills Attend trainings, seminars to sharpen the knowledge in functional/ technical domain Write papers, articles, case studies and publish them on the intranet Deliver No. Performance Parameter Measure 1. Contribution to customer projects Quality, SLA, ETA, no. of tickets resolved, problem solved, # of change requests implemented, zero customer escalation, CSAT 2. Automation Process optimization, reduction in process/ steps, reduction in no. of tickets raised 3. Skill upgradation # of trainings & certifications completed, # of papers, articles written in a quarter Mandatory Skills: GRC Consulting. Experience8-10 Years.

Role Purpose The purpose of this role is to provide solutions and bridge the gap between technology and business know-how to deliver any client solution Do 1. Bridging the gap between project and support teams through techno-functional expertise For a new business implementation project, drive the end to end process from business requirement management to integration & configuration and production deployment Check the feasibility of the new change requirements and provide optimal solution to the client with clear timelines Provide techno-functional solution support for all the new business implementations while building the entire system from the scratch Support the solutioning team from architectural design, coding, testing and implementation Understand the functional design as well as technical design and architecture to be implemented on the ERP system Customize, extend, modify, localize or integrate to the existing product by virtue of coding, testing & production Implement the business processes, requirements and the underlying ERP technology to translate them into ERP solutions Write code as per the developmental standards to decide upon the implementation methodology Provide product support and maintenance to the clients for a specific ERP solution and resolve the day to day queries/ technical problems which may arise Create and deploy automation tools/ solutions to ensure process optimization and increase in efficiency Sink between technical and functional requirements of the project and provide solutioning/ advise to the client or internal teams accordingly Support on-site manager with the necessary details wrt any change and off-site support 2. Skill upgradation and competency building Clear wipro exams and internal certifications from time to time to upgrade the skills Attend trainings, seminars to sharpen the knowledge in functional/ technical domain Write papers, articles, case studies and publish them on the intranet Deliver No. Performance Parameter Measure 1. Contribution to customer projects Quality, SLA, ETA, no. of tickets resolved, problem solved, # of change requests implemented, zero customer escalation, CSAT 2. Automation Process optimization, reduction in process/ steps, reduction in no. of tickets raised 3. Skill upgradation # of trainings & certifications completed, # of papers, articles written in a quarter Mandatory Skills: GRC Consulting. Experience8-10 Years.

Role Purpose The purpose of this role is to analyse, identify, rectify & recommend specific improvement measures that help in the security posture of the organization by protecting the sensitive information Do Ensuring customer centricity by providing apt cybersecurity Monitoring and safeguarding the log sources and security access Planning for disaster recovery in the event of any security breaches Monitor for attacks, intrusions and unusual, unauthorized or illegal activity Performs moderately complex log reviews and forensic analysis to identify unauthorized or unacceptable access to data or systems Conduct security assessments, risk analysis and root cause analysis of security incidents Handling incidents escalated by the L1 team in 24x7 rotational shifts Use advanced analytics tools to determine emerging threat patterns and vulnerabilities Completing all tactical security operations tasks associated with this engagement. Analyses all the attacks and come up with remedial attack analysis Conduct detailed analysis of incidents and create reports and dashboards Stakeholder coordination & audit assistance Liaise with stakeholders in relation to cyber security issues and provide future recommendations Maintain an information security risk register and assist with internal and external audits relating to information security Assist with the creation, maintenance and delivery of cyber security awareness training for colleagues Advice and guidance to employees on issues such as spam and unwanted or malicious emails Deliver No. Performance Parameter Measure 1. Customer centricity Timely security breach solutioning to end users, Internal stakeholders & external customers experience 2. Process Adherence Adherence to SLAs (90-95%), response time and resolution time TAT Mandatory Skills: SAP GRC - Governance-Risk-Compliance. Experience3-5 Years.

The Role is to work as a Senior Analyst on the GRC Third Party Risk Assessment, Cybersecurity team and is a Tier / L2 support role for Vendor Risk Management (Cyber). The Cyber vendor team conducts the cyber diligence on all firm vendors and works closely with the Vendor Risk Team (Non-Cyber The individual will be responsible for managing portions of the operational work for VRM (Cyber) Kickoff of reviews, touchpoints with vendors to follow up on review status, collecting evidence, and following up on any action items. Updating tracking tools and drafting reports for stakeholders The ideal individual also has cybersecurity and risk management proficiency and can review questionnaires that vendors provide, identify control deficiencies, ask to follow up questions and know when to escalate control gaps to Tier / L3 Training on our proprietary system will be given, however knowledge of frameworks such as the SIG, CAIQ, NIST, ISO and SOC1/2 will be ideal. Having specific vendor risk experience is not a requirement, but knowledge of cybersecurity is If they understand risk management and vendor risk thats a plus, but I can teach them more about our risk management approach, but reviewing and understanding technical controls is important. Understanding of cybersecurity domain like Application security, threat management, incident response, network security, infrastructure security, cloud security, end point security, vulnerability managemen Knowledge of industry regulations and standards such as NIST, ISO, GDPR, SOC is also useful. Good to have working experience onMandatory SkillUse of Tools Microsoft Office, Word, PowerPoint, Excel Familiarity with Jira, Confluence, Kanban Board, ServiceNo Familiarity with ISO 27001, ISO 27002, ISAE 3402, SOC 1 and 2, SOX, CMMC, HITRUST, HIPAA, CRBF, Solvency, etc Familiarity with cybersecurity domains such as domains Compliance of the companys user access rights and respond with reports to auditors. Good to have Handson experience in assessing GRC tools (e.g. ProcessUnity, Hyperproof etc.) Good Communication and audit report writing Skill Deliver No. Performance Parameter Measure 1. Customer centricity Timely security breach solutioning to end users, Internal stakeholders & external customers experience 2. Process Adherence Adherence to SLAs (90-95%), response time and resolution time TAT Mandatory Skills: GRC Consulting. Experience3-5 Years.

Role & responsibilities Conduct internal audits and control assessments across frameworks including but not limited to: SOC 2 Type 2 ISO/IEC 27001:2022 PCI DSS HiTrust CSF PIMS (ISO/IEC 27701), AIMS (ISO/IEC 22301) EcoVadis Prepare and maintain audit documentation, evidence collection, and control narratives. Liaise with stakeholders from IT, Security, HR, Legal, and Operations to gather and verify compliance evidence. Support external auditors during SOC, ISO, and PCI assessments by coordinating walkthroughs, follow-ups, and remediation tracking. Perform risk-based control testing and gap analysis against regulatory and contractual obligations. Maintain and update the audit calendar, issue logs, and compliance dashboards. Monitor and track audit findings and assist in developing corrective action plans (CAPAs). Contribute to the development and continuous improvement of the GRC framework and control library. Stay current on updates to standards (e.g., ISO 27001:2022 updates), regulatory developments (e.g., DPDPA, GDPR), and industry best practices. Looking for early Joiners. Interested Candidate can share resume on bhawana.sharma@rsystems.com or can call at 8595575733. Regards, Bhawana

Key Responsibilities Lead and perform IT General Controls (ITGC) audits covering areas like access management, change management, IT operations, and security. Design and execute audit procedures to evaluate the design and operating effectiveness of controls. Assess the risk and control environment for information systems and identify control deficiencies. Develop detailed reports of audit findings and recommendations, and work with stakeholders for remediation. Collaborate with external auditors to facilitate audit processes and provide necessary documentation and evidence. Monitor compliance with IT policies, standards, and procedures.. Provide mentoring and guidance to junior audit staff. Education: Bachelors or Masters degree in Information Technology, Computer Science, Information Systems, or a related field. Professional certifications such as CISA, CISM, CISSP, or CA (with IT audit experience) are highly desirable. Experience: Minimum 7 years of relevant experience in ITGC audits, preferably in a Big 4 or large consulting/IT firm. Strong understanding of SOX compliance, risk-based auditing techniques, and control frameworks (e.g., COBIT, NIST). Required Skills Strong knowledge of ITGC frameworks and regulatory requirements. Experience in auditing ERP systems like SAP, Oracle etc Hands-on expertise in tools like ACL, IDEA, or any GRC software. Excellent analytical, problem-solving, and communication skills. Ability to manage multiple audits/projects simultaneously. Strong stakeholder management skills and ability to work cross-functionally. Comfortable working under pressure with tight deadlines.

Information security, Cyber Security, Data Privacy Security Analysis, Network Security , Information Security Projects, Audit assessment, GRC Security Project Audit Perform Risk Assessment .share resume info@Servingskill.com/whats app 9819832570 Required Candidate profile Information Security Project Audits, assessments appsec Perform Technology Risk Assessments for processes, technology (Information security, Cyber Security, Data Privacy) Security Analysis ISO/CEH

SAP GRC Implementation: Lead or participate in the implementation of SAP GRC solutions, including Access Control, Process Control, and Risk Management modules. Compliance Management: Ensure that all SAP systems are compliant with internal and external regulations by effectively using the GRC modules. Risk Management: Identify, assess, and monitor risks within the SAP environment. Implement controls to mitigate these risks. Access Control: Manage and maintain user access and authorization, ensuring that access rights are aligned with the organization's policies. Process Control: Develop, document, and test internal controls within the SAP system to meet audit and compliance requirements. Training and Support: Provide training and support to users and other stakeholders on SAP GRC modules and related processes.