512 Grc Jobs - Page 9

Hi , As per response to your profile which is uploaded in Job portals. We have an excellent job openings for Application Security-Techno Manager -Mumbai Location in IT MNC If your already received email or not looking for job change/ irrelevant - please ignore it. Note: Apply for only Relevant & interested candidates.(Apply for only Immediate to 30 days joiners) Job Description: Please find the Key skills for AppSec Lead - 10-18 years of experience in Application Security, Network Security, and IT Risk & Compliance, with hands-on expertise in security assessments, process audits, and application reviews. Experience in BFSI is preferred. skill: Vulnerability Assessment,Manual Penetration Testing using OWASP checklists,Penetration Testing,OWASP Top 10,OWASP ZAP,Ethical Hacking,Static/dynamic testing of mobile applications,Vulnerability Mitigation, any Certificates like CISSP, CISA, CISM, CRISC. Educational criteria: B.Sc (IT/CS/Security) / B.Tech/BE in Computer Science,BCA/MCA/MS/MSC/M TECH,ME Those who have relevant experience and Skills, as mentioned above please revert back soon. It"s a kind request, Please provide the below mentioned details in Ur CV/mail before u send it to us. Total Exp: Relevant Exp:- Current Company: Current CTC: Expected CTC: Current Location: Preferred location: Mumbai Only Notice Period: Apply only for Immediate to 30 days NP. DOB: Degree: Many Thanks Regards Sreenivas Sreenivasa.k@happiestminds.com

Role & responsibilities Detailed JD: Seeking a highly motivated and detail-oriented IT Risk & Cybersecurity Specialist to join our team. The ideal candidate will be responsible for designing IT controls, conducting control testing and validation, assessing risks, managing issues, validating cybersecurity policies and standards, draft cybersecurity policies, procedures and standards. Key Responsibilities: IT Control Design: Develop IT controls inventory aligned with industry standards, regulatory requirements and clients security standards. Control Testing & Validation: Perform control testing and validation of IT and cybersecurity controls to ensure effectiveness and compliance. Risk Management, Risk Assessment & Issue Management: Develop strategies, frameworks for risk and issue management. Conduct risk assessments, identify control gaps, and manage remediation efforts. Cybersecurity standards validation: Review and validate cybersecurity policies, procedures, and standards against applications to ensure compliance. Stakeholder Engagement: Collaborate independently with client stakeholders to drive the initiatives. Audits and Assessments: Conduct audits against client’s security standards and report the findings to the management Experience: 8 to 10 years min experience in Governance, Risk and Compliance. • Skills: 1.Knowledge of relevant regulations (SOX, GDPR, DORA, PCI) and industry standards. 2.Ability to work independently and as part of a team. 3.Knowledge of risk management frameworks and methodologies (e.g., ISO 27001, ISO 31000). 5.Knowledge of NIST-CSF, NIST 800-53 6.Strong analytical and problem-solving skills. 7.Excellent communication, interpersonal skills and presentation skills 8.Proficiency in Microsoft Office Suite (Excel, Word, PowerPoint). Preferred candidate profile

Role Title : Information Security and Data Privacy GRC Professional Team : Information Security Location : Gurgaon/Bangalore Reports To : CISO About the Role : We are looking for experienced professionals in Information Security and Data Privacy Governance, Risk, and Compliance (GRC) to join our team. The ideal candidate will possess a deep understanding of information security frameworks, risk management practices, and data privacy regulations. This role requires a hands-on, proactive approach in ensuring our organizations security and privacy standards align with both internal policies and external regulations. As a part of this role, you will be responsible for designing and implementing GRC strategies, managing security audits, and ensuring compliance with data protection regulations, while working closely with cross-functional teams. What You’ll Do : Governance, Risk, and Compliance (GRC): Develop, implement, and maintain GRC strategies, policies, and frameworks across the organization. Conduct risk assessments, including vendor, third-party, and internal assessments, to identify and mitigate information security and privacy risks. Ensure compliance with industry standards and regulations, such as GDPR, HIPAA, ISO 27001, SOC 2, PCI DSS, etc. Monitor and manage the organization's compliance with internal and external security and privacy policies. Facilitate internal and external audits and assessments, providing necessary documentation and support. Data Privacy: Oversee data privacy initiatives, including data classification, data governance, and privacy impact assessments (PIAs). Implement and maintain privacy policies, ensuring adherence to global regulations such as GDPR, CCPA, and other regional data protection laws. Serve as the subject matter expert for data privacy issues and collaborate with legal teams to address regulatory inquiries. Risk Management: Identify, assess, and prioritize risks related to information security and privacy across various business units. Develop and implement risk mitigation plans and controls to minimize the impact of potential threats. Monitor and report on the effectiveness of controls and risk treatment plans. Security Awareness & Training: Develop and deliver security awareness training programs to employees, emphasizing data privacy, information security best practices, and regulatory compliance. Promote a culture of security awareness across the organization through workshops, seminars, and regular communication. Collaboration & Leadership: Work closely with cross-functional teams including IT, Legal, Engineering and Product to drive security and privacy initiatives. Provide leadership and guidance to junior team members and stakeholders, ensuring alignment with the organization's security objectives. What You’ll Need : Certifications (Preferred): Certified Information Systems Security Professional ( CISSP ) Certified Information Security Manager ( CISM ) Certified Information Systems Auditor ( CISA ) Certified Data Privacy Solutions Engineer ( CDPSE ) ISO 27001 Lead Implementer / Auditor GDPR Certification Soft Skills: Strong leadership and decision-making skills. Excellent verbal and written communication skills. Ability to work in a fast-paced, dynamic environment.

Design, develop, and implement solutions within specific ServiceNow modules (ITSM, ITOM, HRSD, CSM, GRC, SecOps, SPM). Configure workflows, develop integrations, create custom apps. Collaborate with stakeholders to optimize module performance. Required Candidate profile Experienced ServiceNow Developer/Consultant with deep functional and technical expertise in specific ServiceNow modules. Proven track record in module implementation, configuration, scripting etc

Design and architect ServiceNow solutions across ITSM, HRSD, ITOM, GRC, and CSM modules. Define platform architecture, data model, and integration strategies. Lead technical governance, best practices, and platform scalability. Guide developers Required Candidate profile Experienced ServiceNow Architect with deep understanding of ServiceNow platform, enterprise architecture, and module implementations. Strong leadership, stakeholder management.

About Company: Smart IMS is a global IT services company delivering innovative and scalable solutions across cloud , infrastructure , cybersecurity , and communications . The company empowers enterprises through digital transformation, operational efficiency, and secure IT environments. Core Domains: Cloud Services | Infrastructure Management | Cybersecurity | Unified Communications Global Presence: USA (HQ), with operations across North America , Europe , India , and APAC ConnX is a global communications platform company offering cutting-edge solutions in unified communications , secure network connectivity , and digital contact centers . ConnX enables enterprise agility with AI-driven, cloud-native platforms built for the modern workforce. Core Domains: Unified Communications | Secure Networking (SD-WAN, SASE) | Digital Contact Centers | AI & Analytics Global Presence: USA (HQ), with operations across North America , EMEA , India , and APAC Hiring: Senior Risk & Control Analyst (Core Banking Domain) Location: Delhi, Mumbai, India or Singapore Experience: 8+ years Female candidates only Industry: Banking / Financial Services Were looking for a seasoned Risk & Control professional to join a leading global banks risk team. The ideal candidate will bring deep expertise in operational risk, internal controls, and Control Self-Assessments (CSA/RCSA). Key Responsibilities: Lead risk assessments and control testing across business functions Identify, evaluate, and remediate control gaps Ensure compliance with internal policies and regulatory requirements Prepare risk reports and dashboards for senior stakeholders Support audits and regulatory reviews Requirements: 8+ years in risk management, internal audit, or compliance (banking domain only) Strong knowledge of CSA, RCSA, and risk frameworks (e.g., COSO, Basel) Experience with GRC tools (e.g., Archer) and risk reporting Excellent communication and stakeholder engagement skills

Role & responsib Job Title: Sr. Manager GRC (Governance, Risk, and Compliance) Experience: 5+ Years Industry: SEBI Broking Industry Location: Pune Job Summary: We are seeking a highly skilled and experienced GRC Professional with a strong background in the Broking industry regulated by SEBI. The ideal candidate will be responsible for ensuring regulatory compliance, managing risks, and establishing governance frameworks to safeguard the organization. Key Responsibilities: Governance: Develop and implement governance policies and frameworks in line with SEBI regulations and other regulatory requirements. Conduct internal audits and reviews to ensure adherence to compliance standards. Monitor changes in SEBI regulations and provide strategic guidance to stakeholders. Maintain and enhance the corporate governance framework, policies, and procedures. Risk Management: Develop risk management frameworks and conduct periodic risk assessments. Implement controls to mitigate Cyber Security risks. Ensure robust Business Continuity Planning (BCP) and Incident Management strategies. Compliance: Ensure adherence to SEBI, NSE, BSE, and other regulatory bodies' compliance requirements. Handle regulatory inspections, audits, and compliance reporting. Liaise with regulatory authorities and respond to compliance-related queries. Internal Controls & Reporting: Design and implement internal controls to strengthen compliance frameworks. Conduct periodic training and awareness programs on regulatory changes. Prepare risk and compliance reports for senior management and regulatory bodies. Ensure timely submission of regulatory filings and disclosures. Qualifications & Skills: Bachelors/Master’s degree in Technology, Risk Management, or a related field. Any professional certifications such as CRISC, CIPP, CGRC, CISA, ISO ISMS will be an advantage. Minimum 5 years of experience in GRC roles within a SEBI-regulated broking firm. In-depth knowledge of SEBI, NSE, BSE, and other regulatory frameworks.

KEY RESPONSIBILITIES Governance: Develop and maintain cybersecurity policies, standards, and procedures. Collaborate with leadership to align cybersecurity initiatives with business objectives. Lead or support security awareness and training initiatives. Risk Management: Identify, assess, and monitor cybersecurity risks across the organization. Conduct risk assessments and gap analyses on systems, applications, and vendors. Work with stakeholders to implement risk mitigation strategies and track remediation activities. Compliance: Ensure compliance with regulatory and industry standards such as ISO 27001, NIST, SOC 2, GDPR, HIPAA, PCI-DSS, etc. Prepare and support internal and external audits and security assessments. Maintain documentation of compliance controls and audit evidence. Reporting & Documentation: Produce risk reports and metrics for senior management and stakeholders. Maintain accurate records of compliance activities and risk treatment plans. Track and report on the status of cybersecurity initiatives and issues. Required Skills and Qualifications: Bachelors degree in Cybersecurity, Information technology, or a related field. 2-3+ years of experience in information security governance, risk, or compliance. Strong knowledge of GRC frameworks and regulatory requirements. Familiarity with risk assessment methodologies and tools. Excellent analytical, organizational, and communication skills. Preferred Qualifications: Certifications such as ISO 27001 Lead Implementer, or similar. Experience with GRC tools such as RSA Archer, ServiceNow GRC..etc Understanding of third-party risk management and vendor assessments. CANDIDATES WHO CAN JOIN IMMEDIATELY ARE HIGHLY PREFERRED.

Lead SAP team for implementing SAP modules FICO, MM, SD, PM, PP, QM, PS .Understand business & technology ,digital platforms & drive new initiatives such as GRC, SAP Rise ,Minimize SAP run cost ,ROI analyses for SAP spending and initiatives, Required Candidate profile implementing SAP modules FICO, MM, SD, PM, PP, QM, PS .Understand modern business & technology framework, drive new initiatives such as GRC, ROI analyses for SAP spending and initiatives,

What you will do In this vital role you will be responsible for developing innovative self-service solutions for our global workforce and further enhancing our self-service automation built on the ServiceNow platform. As part of a scaled Agile product delivery team, the Developer works closely with product feature owners, project stakeholders, operational support teams, peer developers and testers to develop solutions to enhance self-service capabilities and solve business problems by identifying requirements, conducting feasibility analysis, proof of concepts and design sessions. The Developer serves as a subject matter expert on the design, integration and operability of solutions to support innovation initiatives with business partners and shared services technology teams. This role sits within the Digital, Technology and Innovation Infrastructure Automation product team and is tasked with delivering solutions that will integrate and facilitate the automation of various processes and enterprise systems. Please note, this is an onsite role based in Hyderabad. Key Responsibilities: Deliver outstanding self-service and automation experiences for our global workforce Create ServiceNow catalog items, workflows, and cross-platform API integrations Create and configure Business Rules, UI Policies, UI Actions, Client Scripts, REST APIs and ACLs including advanced scripting logic. Create and configure Notifications, UI pages, UI Macros, Script Includes, Formatters, etc. Create and maintain data integrations between ServiceNow and other systems Develop system integrations and process automation Participate in design review, client requirements sessions and development teams to deliver features and capabilities supporting automation initiatives Collaborate with product owners, stakeholders, testers and other developers to understand, estimate, prioritize and implement solutions Design, code, debug, document, deploy and maintain solutions in a highly efficient and effective manner Participate in problem analysis, code review, and system design Remain current on new technology and apply innovation to improve functionality Collaborate closely with stakeholders and team members to configure, improve and maintain current applications Work directly with users to resolve support issues within product team responsibilities Monitor health, performance and usage of developed solutions What we expect of you We are all different, yet we all use our unique contributions to serve patients. Basic Qualifications: Masters degree and 0 to 2 years of experience in computer science, IT, or related field OR Bachelors degree and 2 to 5 years of experience in computer science, IT, or related field OR Diploma and 4 to 7 years of experience in computer science, IT, or related field Required Skills & Qualifications: 3+ years of deep hands-on experience with ServiceNow administration and development in two or more products: ITSM, ITBM, ITOM, GRC, HRSD, or Security Operations ServiceNow development using JavaScript, AngularJS, AJAX, HTML, CSS, and Bootstrap; Strong understanding of user-centered design and building scalable, high-performing web and mobile interfaces on the ServiceNow platform Experience creating and managing Scoped Applications Workflow automation and integration development using REST, SOAP, or MID servers Scripting skills in Python, Bash, or other programming languages Working in an Agile (SAFe, Scrum, and Kanban) environment Preferred Qualifications: Good-to-Have Skills: Experience with other configuration management tools (e.g., Puppet, Chef). Experience with Linux administration, scripting (Python, Bash), and CI/CD tools (GitHub Actions, CodePipeline, etc.) Experience with Terraform & CloudFormation for AWS infrastructure automation Knowledge of AWS Lambda and event-driven architectures. Exposure to multi-cloud environments (Azure, GCP) Experience operating within a validated systems environment (FDA, European Agency for the Evaluation of Medicinal Products, Ministry of Health, etc.) Professional Certifications (preferred): Service Now Certified System Administrator Service Now Certified Application Developer Service Now Certified Technical Architect Soft Skills: Strong analytical and problem-solving skills. Ability to work effectively with global, virtual teams Effective communication and collaboration with cross-functional teams. Ability to work in a fast-paced environment. Shift Information: This position is required to be onsite and participate in 24/5 and weekend on call in rotation fashion and may require you to work a later shift. Candidates must be willing and able to work off hours, as required based on business requirements.

Exciting Opportunity with EY GDS EY GDS is hiring for SAP GRC App security Role with 2+ years of experience. To qualify for the role, you must have CA/MBA/M.Sc./B.Tech with a minimum of 3 - 7 years of consulting / auditing experience Experience in 2-4 end-to-end implementation projects with at least one full cycle S4 HANA transformation project Rich experience in SAP security design and configuration for multiple applications like ECC, BW, SRM, Portal, S4HANA, Fiori, BPC and Success Factors Understanding of business processes, controls frameworks, compliances and regulations, and segregation of duty concepts in an SAP ERP environment Understanding of SAP security processes, security architecture and administration End to end implementation experience of SAP GRC access controls (access request management, business role management, emergency access management, access risk analysis, user access review and SOD review) and deployments Good understanding of functional processes to drive ruleset and controls framework design within GRC access control Good exposure to benchmarking and remediation activities for GRC rulesets Stronghold on the basic SAP landscape, transports system and version compatibility concepts Please apply on the below link for further interview process https://careers.ey.com/job-invite/1609511/

ANZEN Technologies Private Limited. stands as an unparalleled powerhouse, empowering organizations across industries with our visionary services, cutting-edge solutions, and ground-breaking services in the realm of Cyber Security, IT Governance, Risk Management, and Compliance. As your trusted partner, we offer a comprehensive suite of End-to-End security services and consultancy, tailored to safeguard critical infrastructure installations, elevate the standards of BFSI, eCommerce, IT/ITES, Pharmaceuticals, and an array of other sectors. Position : Analyst - GRC Key Responsibilities: * Track and ensure adequate and timely resolution to all audit and risk assessment findings or issues relating to information security, and never miss a deadline. * Effectively and appropriately communicate audit engagement reports and recommendations to client management and resolve any client concerns or questions. * Ensure 100% certification success rate on ISMS projects. * Grow into a role with increasing responsibility. * Significant experience leading information security audits with a preference for IS0 27001 and SOC 2 audits or assessments. * Experience in leading or knowledge with implementations. * Experience authoring policies and procedures. * Significant experience working as a consultant working in a consulting firm * Significant knowledge of ISO 27001/2 and its derivatives (e.g., HITRUST, Shared Assessment) as much of our consulting and collaboration is around an ISO 27001 Information Security Management System. * Solid knowledge of the NIST 800-171/FISMA framework and is derivatives (e.g., Fed RAMP, CMS Information Security Program) as many of our clients serve government customers. * Enough Information Technology and Information Security experience to contextualize and make their recommendations relevant and valuable. * Experience and knowledge with Governance, Risk Management and Compliance. * Experience with the myriad of regulatory compliance frameworks our client base is subject to (e.g., HIPAA, PII, PCI-DSS, SOX, STARS, NERC-CIP). * Certifications that demonstrate to our clients our commitment to excellence in our craft (e.g., ISO 27001 Lead Implementer, CISA, CISSP, ISO 27001 Lead Auditor, MCSE, CEH, OSCP). * Familiarity with related standards (e.g., SSAE-16 SOC1, SOC2, ISO-22301, ISO-9001). Qualifications & Certifications : Graduated from IT Stream Experience: Candidate with 1 to 2 Years of experience. Excellent communication and interpersonal skills. Technical proficency is must Ability to work in a fast-paced environment Preferred Skills & Location Experience in Cybersecurity, IT Industry from Navi Mumbai Office Address : ANZEN Technologies Private Limited Akshar Business Park, H - 3025, 3rd Floor, Plot No. 3, Sector-25, Vashi, Navi Mumbai 400703 https://anzentech.com Immediate Joiner may apply for this position

Responsibilities A day in the life of an Infoscion • As part of the Infosys delivery team, your primary role would be to ensure effective Design, Development, Validation and Support activities, to assure that our clients are satisfied with the high levels of service in the technology domain. • You will gather the requirements and specifications to understand the client requirements in a detailed manner and translate the same into system requirements. • You will play a key role in the overall estimation of work requirements to provide the right information on project estimations to Technology Leads and Project Managers. • You would be a key contributor to building efficient programs/ systems and if you think you fit right in to help our clients navigate their next in their digital transformation journey, this is the place for you! If you think you fit right in to help our clients navigate their next in their digital transformation journey, this is the place for you! Technical and Professional Requirements: • Primary skills:Technology->SAP Technical->SAP Security Preferred Skills: Technology->SAP Technical->SAP Security Additional Responsibilities: • Knowledge of design principles and fundamentals of architecture • Understanding of performance engineering • Knowledge of quality processes and estimation techniques • Basic understanding of project domain • Ability to translate functional / nonfunctional requirements to systems requirements • Ability to design and code complex programs • Ability to write test cases and scenarios based on the specifications • Good understanding of SDLC and agile methodologies • Awareness of latest technologies and trends • Logical thinking and problem solving skills along with an ability to collaborate Educational Requirements Master Of Comp. Applications,Master Of Engineering,Master Of Science,Master Of Technology,Bachelor Of Comp. Applications,Bachelor Of Science,Bachelor of Engineering,Bachelor Of Technology

Role & responsibilities Key Responsibilities: Support the sales team in maintaining and updating CRM data Assist in the execution and tracking of outbound email campaigns Help prepare sales materials, presentations, and prospect research Participate in lead qualification efforts and pipeline reporting Assist in proper record keeping and report generation Support other business development activities as needed Preferred candidate profile Pursuing or recently completed MBA in Sales, Marketing or related field Strong communication and analytical skills Familiarity with CRM tools is a plus Ability to work independently and in a fast-paced environment Passionate about learning and contributing to a growing team Benefits of working with OptimEyes 1. Remote work opportunity ( work from home) 2. Work opportunity with a top-notch team, cutting-edge technology, and leadership of extremely successful experts. 3. Monthly Bonus along with Salary 4. Yearly Bonus 5. Candidate should have their own laptop to apply for this job

Role Purpose The purpose of this role is to provide solutions and bridge the gap between technology and business know-how to deliver any client solution Do 1. Bridging the gap between project and support teams through techno-functional expertise For a new business implementation project, drive the end to end process from business requirement management to integration & configuration and production deployment Check the feasibility of the new change requirements and provide optimal solution to the client with clear timelines Provide techno-functional solution support for all the new business implementations while building the entire system from the scratch Support the solutioning team from architectural design, coding, testing and implementation Understand the functional design as well as technical design and architecture to be implemented on the ERP system Customize, extend, modify, localize or integrate to the existing product by virtue of coding, testing & production Implement the business processes, requirements and the underlying ERP technology to translate them into ERP solutions Write code as per the developmental standards to decide upon the implementation methodology Provide product support and maintenance to the clients for a specific ERP solution and resolve the day to day queries/ technical problems which may arise Create and deploy automation tools/ solutions to ensure process optimization and increase in efficiency Sink between technical and functional requirements of the project and provide solutioning/ advise to the client or internal teams accordingly Support on-site manager with the necessary details wrt any change and off-site support 2. Skill upgradation and competency building Clear wipro exams and internal certifications from time to time to upgrade the skills Attend trainings, seminars to sharpen the knowledge in functional/ technical domain Write papers, articles, case studies and publish them on the intranet Deliver No. Performance Parameter Measure 1. Contribution to customer projects Quality, SLA, ETA, no. of tickets resolved, problem solved, # of change requests implemented, zero customer escalation, CSAT 2. Automation Process optimization, reduction in process/ steps, reduction in no. of tickets raised 3. Skill upgradation # of trainings & certifications completed, # of papers, articles written in a quarter Mandatory Skills: GRC Consulting.

Req ID: 327248 We are currently seeking a Archer IRM Developer to join our team in Noida, Uttar Pradesh (IN-UP), India (IN). Configure and develop solutions for customers on the Archer IRM platform Configure and develop integrated solutions for customers using the Archer IRM platform utilizing additional industry standard applications including SSO, web services integrations, import sets and table polling Design and configure complex configurations including advanced workflow, questionnaires, layouts, reports, data feeds and data imports, campaigns, dashboards, notifications, package installation and workflows, etc. Support and escalate issues and defects related to specific customer environments as required, provide incident support as required Perform system and unit testing, document results Develop documentation as required, per operational processes Follow the engagement model as determined by the engagement manager for projects, as needed Follow the standardized project implementation methodology

ANZEN Technologies Private Limited. stands as an unparalleled powerhouse, empowering organizations across industries with our visionary services, cutting-edge solutions, and ground-breaking services in the realm of Cyber Security, IT Governance, Risk Management, and Compliance. As your trusted partner, we offer a comprehensive suite of End-to-End security services and consultancy, tailored to safeguard critical infrastructure installations, elevate the standards of BFSI, eCommerce, IT/ITES, Pharmaceuticals, and an array of other sectors. Qualifications: 1. B.E / MSc in Information Technology, Computer Science or related field. 2. Basics understanding of fundamental concepts in GRC, Cybersecurity, Networking and Information Security. 3. Good communication & documentation skills. Candidate should possess basic knowledge of following standards: 1. ISO 27001:2022 (ISMS) 2. DPDP Act. 2023 Certification: (Optional): 1. ISO 27001 LA or LI 2. Any course/training related to cybersecurity Internship Experience of 3-6 months is must. Office Address : ANZEN Technologies Private Limited Akshar Business Park, H - 3025, 3rd Floor, Plot No. 3, Sector-25, Vashi, Navi Mumbai 400703 https://anzentech.com Immediate Joiner may apply and come for Interview

Looking for TPRM (Third Part Risk Management) Analyst with 4-5 years of experience in Third Party Risk Management at mid level Role & responsibilities Perform due diligence risk reviews of current and prospective third-party providers to assess their control structure and alignment to regulatory, federal/state guidelines and bank requirements and partner with internal stakeholders to make an assessment of the residual risk the third party presents to the bank. Manage timely completion of requests and follow-ups to third parties for appropriate documentation, and review and evaluate materials submitted. Partner with internal business units and third parties to inventory all services, status, performance and risk assessments. Coordinate and manage the due diligence risk assessment of third-party services by internal subject matter experts within the bank. Failure of proper assessments could result in immediate and significant financial, regulatory, legal or reputational loss to the bank. Complete a written assessment detailing third partys service inherent risk(s), strengths of risk scores, along with any risk gaps presenting elevated risk to the bank in order to document completion of the risk assessment activities. This requires frequent interaction with all levels of internal leadership, as well as external third parties. Oversee and confirm the resolution of any risk gaps identified during the risk assessment process. Will have to maintain a very strong knowledge of the many regulatory, investor, and bank subject matter expert requirements to ensure that each third party meets those requirements as applicable. Must be able to competently interpret and apply the requirements independently to mitigate risk to the bank. Contribute to various departmental projects related to third party management activities. This could be as a project lead or supportive role to an existing project. Work with internal business teams/units/sponsors to ensure their proper oversight of third parties and the services they perform through scorecard monitoring. Perform other duties as assigned Good to Have Stakeholder Management, Contract/SOW Review experience, Scorecard Monitoring and Risk Certifications (CRVPM, CTPRP, CISA)

Your day at NTT DATA The Senior Associate Security Consultant is responsible for developing expertise in their area of specialization. This role is responsible for translating clients cybersecurity requirements and customizing and implementing security solutions into specific systems, applications and product designs. This role identifies and develops the security solutions for clients using company products, outsourced technology solutions and technical tools. This role consults with clients regarding secure product configuration, deployment, and security patches to minimize security vulnerabilities. In addition, this role provides comprehensive scanning, penetration testing, vulnerability assessments, monitoring services and source code analysis and delivers detailed results to clients, as well as guides and supports clients in the development and implementation of product security controls. What you'll be doing Key Responsibilities: Assists in conducting security assessments, vulnerability scans, and penetration tests to identify weaknesses in client systems. Analyzes security data, logs, and reports to detect and investigate security incidents or anomalies. Prepares and maintains documentation, including security assessment reports, findings, and recommendations. Collaborates with senior consultants to provide advice and support to clients on security best practices and risk mitigation strategies. Learns and uses various security tools and technologies for assessments and monitoring. Stays updated on the latest cybersecurity threats, vulnerabilities, and industry best practices. Assists in evaluating client systems for compliance with industry standards (e.g., ISO 27001, NIST) and regulatory requirements. Communicates effectively with clients to understand their security needs and concerns. Participates in training programs and certifications to develop expertise in cybersecurity. Knowledge and Attributes: Strong interest in cybersecurity and a desire to learn and grow in the field. Knowledge of basic cybersecurity concepts, principles, and best practices. Familiarity with common security tools and technologies is a plus. Excellent analytical and problem-solving skills. Effective communication skills, both written and verbal. Ability to work collaboratively in a team environment. Eagerness to stay up to date with the evolving cybersecurity landscape. Academic Qualifications and Certifications: Bachelor's degree or equivalent in Information Technology or Computer Science or Engineering or related field. Industry relevant certifications such as CISSP, CISM, CEH, GSEC or CompTIA Security+ essential. Required Experience: Moderate level of demonstrable experience in the Information Technology Security Industry or relevant experience in similar role within a related environment. Moderate level of experience with security architecture design principles. Moderate level of experience with industry compliance and standards such as ISO 27000, PCI:DSS, NIST, HIPAA or others. Moderate level of experience with security tools and techniques to cover SANS Top 25, OWASP or others.

Roles and Responsibilities Design, develop, and implement ITSM solutions using ServiceNow platform. Collaborate with cross-functional teams to identify business requirements and design technical solutions. Develop custom workflows, business rules, and integrations to meet client needs. Troubleshoot issues related to CMDB management, HRSd implementation, GRC compliance, and Flow Designer configuration. Provide training and support to clients on servicenow tools such as ITIL v3/4 processes. Desired Candidate Profile 5-10 years of experience in IT Services & Consulting industry with expertise in ITSM/ITOM/HRSD/CMDB/GRC/ServiceNow development. Bachelor's degree in Engineering (B.Tech/B.E.) from a recognized university. Strong understanding of JavaScript programming language for developing custom scripts within ServiceNow platform.

Responsibilities A day in the life of an Infoscion • As part of the Infosys delivery team, your primary role would be to ensure effective Design, Development, Validation and Support activities, to assure that our clients are satisfied with the high levels of service in the technology domain. • You will gather the requirements and specifications to understand the client requirements in a detailed manner and translate the same into system requirements. • You will play a key role in the overall estimation of work requirements to provide the right information on project estimations to Technology Leads and Project Managers. • You would be a key contributor to building efficient programs/ systems and if you think you fit right in to help our clients navigate their next in their digital transformation journey, this is the place for you! If you think you fit right in to help our clients navigate their next in their digital transformation journey, this is the place for you! Technical and Professional Requirements: • Primary skills:Technology->SAP Technical->SAP Security Preferred Skills: Technology->SAP Technical->SAP Security Additional Responsibilities: • Knowledge of design principles and fundamentals of architecture • Understanding of performance engineering • Knowledge of quality processes and estimation techniques • Basic understanding of project domain • Ability to translate functional / nonfunctional requirements to systems requirements • Ability to design and code complex programs • Ability to write test cases and scenarios based on the specifications • Good understanding of SDLC and agile methodologies • Awareness of latest technologies and trends • Logical thinking and problem solving skills along with an ability to collaborate Educational Requirements Master Of Comp. Applications,Master Of Engineering,Master Of Science,Master Of Technology,Bachelor Of Comp. Applications,Bachelor Of Science,Bachelor of Engineering,Bachelor Of Technology

Job Title: SAP Basis Consultant with BTP & Solution Manager (SolMan) Location: Hybrid Experience: 510 Years Employment Type: Full-Time Shift: US Based Customer Customer: US Based Job Description: We are looking for an experienced SAP Basis Consultant with strong expertise in SAP BTP and SAP Solution Manager (SolMan) to manage and support complex SAP landscapes. The ideal candidate will be responsible for performing Basis administration, managing cloud platform services, and implementing Solution Manager functionalities for monitoring, system health, and change management. Key Responsibilities: Perform end-to-end SAP Basis administration, including installation, upgrade, patching, performance tuning, and troubleshooting. Manage SAP BTP services (Cloud Foundry, Neo), including subaccounts, entitlements, roles, and integrations. Administer and support SAP Solution Manager (SolMan) functionalities including CHARM, System Monitoring, Technical Monitoring, and EarlyWatch Alerts. Configure and manage SAP Cloud Connector, Identity Authentication Service (IAS), and Identity Provisioning. Manage transport landscapes, perform client copies/system refreshes, and handle backup/restore activities. Monitor and optimize SAP HANA database and application performance. Collaborate with cross-functional teams to ensure seamless operations and integrations. Provide support for hybrid cloud environments and ensure high system availability and compliance. Required Skills: 5+ years of hands-on experience in SAP Basis administration. Minimum 12 years of experience in SAP Business Technology Platform (BTP) . Experience with SAP Solution Manager (SolMan) —particularly in CHARM and Technical Monitoring. Strong understanding of SAP NetWeaver architecture, S/4HANA, and HANA DB administration. Proficiency in SAP system installations, migrations, upgrades (SUM, SWPM), and patching. Knowledge of SAP Fiori, Gateway, Web Dispatcher, and cloud connectivity. Strong analytical and troubleshooting skills. Good communication and documentation skills. Preferred Qualifications: SAP Certified in Basis or SAP BTP. Experience in managing hybrid environments (on-premise + cloud). Exposure to DevOps tools and CI/CD processes within SAP landscape. Scripting skills (Shell, Python, etc.) for automation and monitoring. Education: Bachelor’s degree in Computer Science, Information Technology, or a related field.

Role & responsibilities: 1. Knowledge on the Risk, Compliance Audit and Third-Party Risk Management OOTB Workflow 2. Any custom solution being implemented for any of the applications in GRC Module 3. Good Hands-on Risk, Compliance and Vendor management Workspace, workspace customization and creating variants of workspace pages. 4. Custom solutions being build using Scripts and Flow Designers 5. Worked on Portal design - Risk Portal, Employee Center, Service Portal 6. Good Scripting knowledge and examples of complex solutions using Business Rule, Script Includes and Client Scripts 7. Best practices of scripting on ServiceNow Platform 8. Industry Standard best practices for Risk, Compliance and TPRM module in respect with ServiceNow 9. Worked on most used integrations for GRC Module like Bit Sight, Security Score Card etc. 10. Reporting and Dashboarding using Performance Analytics - capability to build complex dashboards such as OOTB CRO dashboard. 11. Good to have knowledge on ServiceNow Mobile Portal for approvals and Virtual Agent

Role & responsibilities Mandatory Skills: S4 HANA, GRC, ChaRM, VIM, Power App & BTP Skill to Evaluate: S4HANA,GRC,VIM,Power-Apps-&-BTP Experience: 6 to 8 Years Location: Bengaluru Job Description: [Primary Skills]: Role design, configuration, testing, and deployment methodology within SAP application architecture SAP S/4 HANA Profile Generator (single roles, master / derived roles, composite roles) SAP GRC 12.0 configuration and administration [Good to have Skills]: Experience in CHARM Process and role build. Technical expertise in core skills of BTP, Power Apps, SAP BI 7.0 security & analysis authorization Concept. [Responsibilities and Duties]: SAP Security administrator with 6 to 8+ years of experience with the below: SAP Security administrator with 6 to 8+ years of experience with the below skillset. Work directly with clients at all different levels to guide complex projects and develop innovative solutions Successful completion of at least full life cycle implementations of SAP GRC, S4 Hana. Role design, configuration, testing, and deployment methodology within SAP application architecture Detailed knowledge of ABAP and Java based authorizations within SAP applications SAP S/4 HANA Profile Generator (single roles, master / derived roles, composite roles) Technical expertise in core skills of BTP, Power Apps, VIM, SAP BI 7.0 security & analysis authorization concept SAP GRC 12.0 configuration and administration SAP Cloud security Authorization [BTP] SAP Enterprise Portal UME administration Experience in CHARM Process and role build Strong communication skills to facilitate working in a dynamic project environment Provide leadership to junior systems analysts and client personnel assigned to projects Participate in 24x7 Operations and Maintenance call rotation support [Keywords] Work directly with clients at all different levels to guide complex projects and develop innovative solutions. Strong communication skills to facilitate working in a dynamic project environment. Successful completion of at least full life cycle implementations of S4HANA, SAP GRC, ERP etc. [Primary Skills]: Role design, configuration, testing, and deployment methodology within SAP application architecture SAP S/4 HANA Profile Generator (single roles, master / derived roles, composite roles) SAP GRC 12.0 configuration and administration [Good to have Skills]: Experience in CHARM Process and role build. Technical expertise in core skills of BTP, Power Apps, SAP BI 7.0 security & analysis authorization Concept. [Responsibilities and Duties]: SAP Security administrator with 6 to 8+ years of experience with the below: SAP Security administrator with 6 to 8+ years of experience with the below skillset. Work directly with clients at all different levels to guide complex projects and develop innovative solutions Successful completion of at least full life cycle implementations of SAP GRC, S4 Hana. Role design, configuration, testing, and deployment methodology within SAP application architecture Detailed knowledge of ABAP and Java based authorizations within SAP applications SAP S/4 HANA Profile Generator (single roles, master / derived roles, composite roles) Technical expertise in core skills of BTP, Power Apps, VIM, SAP BI 7.0 security & analysis authorization concept SAP GRC 12.0 configuration and administration SAP Cloud security Authorization [BTP] SAP Enterprise Portal UME administration Experience in CHARM Process and role build Strong communication skills to facilitate working in a dynamic project environment Provide leadership to junior systems analysts and client personnel assigned to projects Participate in 24x7 Operations and Maintenance call rotation support [Keywords] Work directly with clients at all different levels to guide complex projects and develop innovative solutions. Strong communication skills to facilitate working in a dynamic project environment. Successful completion of at least full life cycle implementations of S4HANA, SAP GRC, ERP etc. Education Qualificaiton: Btech Department Name: SCS-RBA-G1 Open Positions: 1 Job Title: SAP Security and GRC Consultant Roles & Responsibilities: [Responsibilities and Duties]: SAP Security administrator with 6 to 8+ years of experience with the below: SAP Security administrator with 6 to 8+ years of experience with the below skillset. Work directly with clients at all different levels to guide complex projects and develop innovative solutions Successful completion of at least full life cycle implementations of SAP GRC, S4 Hana. Role design, configuration, testing, and deployment methodology within SAP application architecture Detailed knowledge of ABAP and Java based authorizations within SAP applications SAP S/4 HANA Profile Generator (single roles, master / derived roles, composite roles) Technical expertise in core skills of BTP, Power Apps, VIM, SAP BI 7.0 security & analysis authorization concept SAP GRC 12.0 configuration and administration SAP Cloud security Authorization [BTP] SAP Enterprise Portal UME administration Experience in CHARM Process and role build Strong communication skills to facilitate working in a dynamic project environment Provide leadership to junior systems analysts and client personnel assigned to projects Participate in 24x7 Operations and Maintenance call rotation support Project Details: Mozart GP6A/B Rollouts. Preferred candidate profile

Assist the team in planning engagements, conducting fieldwork, discussing findings and observations with the clients, preparing work papers to support conclusions and preparing written reports. Conduct IT, Data Privacy & Information Security audits. Develop policies and procedures inline with Information Security & Privacy international and local standards. Attend preliminary meetings with clients; offer advice and develop a client understanding for the overall service process; communicate access and information requirements. Support Engagement partners and Directors to lead business development initiatives including, but not limited to, review pre-engagement activities, contracting and setting up meetings with prospective clients. Keeping up to date with developments in Technology, UAE markets, relevant professional standards (eg: ISO 27001, Data Privacy Law etc.) and specific industry sectors. Pursuit of highest professional standards, specialist skills in technology and credibility in the market through continuous professional education, certification, contributions to professional groups and appropriate networking. Contribute towards managing the overall client service delivery in accordance with BDO quality guidelines & methodologies. Contribute towards managing accounts on a day-to-day basis & explore new business opportunities for the firm. Maintain professional relations with clients, answer queries, offer expert advice. Ensure thorough project documentation and maintain electronic filing in accordance to BDO guidelines. Complete project assignments with minimum supervision and within the timelines provided by the management. Required Skills: Bachelors degree in Computer science, Engineering, or related field Post-qualification work experience of 6 to 8 years, with at-least 6-year experience in implementing the regulatory & compliance framework requirements (e.g. ISO 27001, ISO 27701, GDPR, ADHICS) Experience in international and local regulatory requirements related to Data Privacy & Protection Two (2) or more industry certifications strongly preferred. Example certifications include: CISA, CISSP, CIPM/CIPP, CISM, CCSP