4633 Information Security Jobs - Page 18

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : DevOps Good to have skills : KubernetesMinimum 12 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. You will also document the implementation of the cloud security controls and transition to cloud security-managed operations. Roles & Responsibilities:- Expected to be an SME- Collaborate and manage the team to perform- Responsible for team decisions- Engage with multiple teams and contribute on key decisions- Expected to provide solutions to problems that apply across multiple teams- Develop and implement security policies and procedures- Conduct security assessments and audits- Stay updated on the latest security trends and technologies Professional & Technical Skills: - Must To Have Skills: Proficiency in DevOps- Good To Have Skills: Experience with Kubernetes- Strong understanding of cloud security principles- Knowledge of security frameworks and standards- Experience in designing and implementing security solutions- Ability to conduct risk assessments and threat modeling Additional Information:- The candidate should have a minimum of 12 years of experience in DevOps- This position is based at our Bengaluru office- A 15 years full time education is required Qualification 15 years full time education

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : SailPoint IdentityNow Good to have skills : NAMinimum 3 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to assess security needs, documenting security controls, and transitioning to cloud security-managed operations, all while ensuring compliance with industry standards and best practices. You will engage in discussions to refine security strategies and provide insights that enhance the overall security posture of the organization. Roles & Responsibilities:- Expected to perform independently and become an SME.- Required active participation/contribution in team discussions.- Contribute in providing solutions to work related problems.- Conduct regular assessments of cloud security measures to identify areas for improvement.- Collaborate with cross-functional teams to ensure alignment of security practices with business objectives. Professional & Technical Skills: - Must To Have Skills: Proficiency in SailPoint IdentityNow.- Good To Have Skills: Experience with cloud security frameworks and compliance standards.- Strong understanding of identity governance and administration.- Experience in implementing security controls in cloud environments.- Familiarity with risk assessment methodologies and security best practices. Additional Information:- The candidate should have minimum 3 years of experience in SailPoint IdentityNow.- This position is based at our Kolkata office.- A 15 years full time education is required. Qualification 15 years full time education

Skill required: Risk & Compliance - Operational Audit & Compliance Designation: Risk and Compliance Senior Analyst Qualifications: BCom/Master of Business Administration/CA Inter Years of Experience: 5 to 8 years About Accenture Combining unmatched experience and specialized skills across more than 40 industries, we offer Strategy and Consulting, Technology and Operations services, and Accenture Song all powered by the worlds largest network of Advanced Technology and Intelligent Operations centers. Our 699,000 people deliver on the promise of technology and human ingenuity every day, serving clients in more than 120 countries. Visit us at www.accenture.com What would you do You will be aligned with our Risk and Compliance vertical and help us perform compliance reviews, publish reports with actions and provide closure guidance as needed. We design & recommend effective controls to mitigate risks and help service delivery team prepare for upcoming client / external audits.You will be working as a part of the Risk & compliance team which is responsible for helping clients and organizations identify risks and create mitigation plans.The Operational Audit & Compliance team focuses on auditing and managing effective implementation and delivery of functional processes within operations to mitigate risks. The role may require for you to have a good understanding of anti-corruption, BCM and infosec policies, records management and contractor controls. The team is responsible for establishing processes to validate the effectiveness and drive improvements wherever required. What are we looking for Risk and Compliance Experience Knowledge of Finance & Accounting processAuditing experience Roles and Responsibilities: In this role you are required to do analysis and solving of increasingly complex problems Your day to day interactions are with peers within Accenture You are likely to have some interaction with clients and/or Accenture management You will be given minimal instruction on daily work/tasks and a moderate level of instruction on new assignments Decisions that are made by you impact your own work and may impact the work of others In this role you would be an individual contributor and/or oversee a small work effort and/or team Please note that this role may require you to work in rotational shifts Qualification BCom,Master of Business Administration,CA Inter

Project Role : Technology Support Engineer Project Role Description : Resolve incidents and problems across multiple business system components and ensure operational stability. Create and implement Requests for Change (RFC) and update knowledge base articles to support effective troubleshooting. Collaborate with vendors and help service management teams with issue analysis and resolution. Must have skills : Splunk Good to have skills : Splunk AdministrationMinimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Technology Support Engineer, you will be responsible for resolving incidents and problems across multiple business system components, ensuring operational stability, creating and implementing Requests for Change (RFC), and collaborating with vendors and service management teams for issue analysis and resolution. Roles & Responsibilities:- Expected to be an SME.- Collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Provide solutions to problems for their immediate team and across multiple teams.- Implement effective troubleshooting strategies.- Update knowledge base articles for operational support.- Collaborate with vendors for issue resolution. Professional & Technical Skills: - Must To Have Skills: Proficiency in Splunk.- Strong understanding of Splunk Administration.- Experience with data analysis and problem-solving.- Knowledge of IT service management processes.- Familiarity with incident and problem resolution techniques. Additional Information:- The candidate should have a minimum of 5 years of experience in Splunk.- This position is based at our Kolkata office.- A 15 years full-time education is required. Qualification 15 years full time education

Skill required: Risk & Compliance - Operational Audit & Compliance Designation: Risk and Compliance Senior Analyst Qualifications: Chartered Accountant/Master of Business Administration/CA Inter Years of Experience: 5 to 8 years Language - Ability: English(Domestic) - Proficient About Accenture Combining unmatched experience and specialized skills across more than 40 industries, we offer Strategy and Consulting, Technology and Operations services, and Accenture Song all powered by the worlds largest network of Advanced Technology and Intelligent Operations centers. Our 699,000 people deliver on the promise of technology and human ingenuity every day, serving clients in more than 120 countries. Visit us at www.accenture.com What would you do You will be aligned with our Risk and Compliance vertical and help us perform compliance reviews, publish reports with actions and provide closure guidance as needed. We design & recommend effective controls to mitigate risks and help service delivery team prepare for upcoming client / external audits.You will be working as a part of the Risk & compliance team which is responsible for helping clients and organizations identify risks and create mitigation plans.Audit and manage effective implementation and delivery of functional processes within operations to mitigate risk. e.g. Policies; Anticorruption, BCM, InfoSec, P104, Records Management and Contractor controls. Establish processes to audit/validate current control effectiveness and drive improvements wherever required. What are we looking for Ability to perform under pressureAbility to manage multiple stakeholdersCommitment to qualityProblem-solving skillsRisk managementReport writing.OTC, PTP and RTR.Communication skills. Roles and Responsibilities: In this role you are required to do analysis and solving of increasingly complex problems Your day to day interactions are with peers within Accenture You are likely to have some interaction with clients and/or Accenture management You will be given minimal instruction on daily work/tasks and a moderate level of instruction on new assignments Decisions that are made by you impact your own work and may impact the work of others In this role you would be an individual contributor and/or oversee a small work effort and/or team Please note that this role may require you to work in rotational shifts Qualification Chartered Accountant,Master of Business Administration,CA Inter

Skill required: Control Testing - Agile testing Designation: Regulatory Compliance Associate Qualifications: Any Graduation Years of Experience: 1 to 3 years About Accenture Combining unmatched experience and specialized skills across more than 40 industries, we offer Strategy and Consulting, Technology and Operations services, and Accenture Song all powered by the worlds largest network of Advanced Technology and Intelligent Operations centers. Our 699,000 people deliver on the promise of technology and human ingenuity every day, serving clients in more than 120 countries. Visit us at www.accenture.com What would you do Help clients transform their compliance function from reactive to proactive through an intelligent compliance operating model powered by data, intelligent technologies and talentLooking for someone with SOX testing experience.Conduct testing tasks within Agile models and integration processes and manage development sprints. Automated/IT control testing skill is required What are we looking for Commitment to qualityWritten and verbal communicationRisk managementAbility to work well in a teamAbility to meet deadlinesAutomated / IT control testing experience is must Roles and Responsibilities: In this role you are required to solve routine problems, largely through precedent and referral to general guidelines Your expected interactions are within your own team and direct supervisor You will be provided detailed to moderate level of instruction on daily work tasks and detailed instruction on new assignments The decisions that you make would impact your own work You will be an individual contributor as a part of a team, with a predetermined, focused scope of work Please note that this role may require you to work in rotational shifts Qualification Any Graduation

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Okta Identity Management Good to have skills : NAMinimum 7.5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. You will also document the implementation of the cloud security controls and transition to cloud security-managed operations. Roles & Responsibilities:- Expected to be an SME- Collaborate and manage the team to perform- Responsible for team decisions- Engage with multiple teams and contribute on key decisions- Provide solutions to problems for their immediate team and across multiple teams- Develop and implement security policies and procedures- Conduct security assessments and audits- Stay updated on the latest security trends and technologies Professional & Technical Skills: - Must To Have Skills: Proficiency in Okta Identity Management- Strong understanding of cloud security principles- Experience in designing and implementing security solutions for cloud environments- Knowledge of security compliance standards and regulations- Hands-on experience with security tools and technologies Additional Information:- The candidate should have a minimum of 7.5 years of experience in Okta Identity Management- This position is based at our Noida office- A 15 years full time education is required Qualification 15 years full time education

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Email Security Good to have skills : NAMinimum 3 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to assess security needs, documenting the implementation of cloud security controls, and facilitating the transition to cloud security-managed operations. You will engage in discussions to refine security strategies and ensure that the architecture aligns with organizational objectives, while also addressing any emerging security challenges that may arise throughout the process. Roles & Responsibilities:- Expected to perform independently and become an SME.- Required active participation/contribution in team discussions.- Contribute in providing solutions to work related problems.- Conduct regular assessments of the cloud security architecture to identify areas for improvement.- Collaborate with cross-functional teams to ensure security measures are integrated into all aspects of cloud operations. Professional & Technical Skills: - Must To Have Skills: Proficiency in Email Security.- Strong understanding of cloud security principles and best practices.- Experience with security frameworks such as NIST, ISO 27001, or CIS.- Familiarity with identity and access management solutions.- Knowledge of threat modeling and risk assessment methodologies. Additional Information:- The candidate should have minimum 3 years of experience in Email Security.- This position is based at our Bengaluru office.- A 15 years full time education is required. Qualification 15 years full time education

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : ServiceNow Governance, Risk, and Compliance (GRC) Good to have skills : Security Architecture DesignMinimum 7.5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. You will document the implementation of the cloud security controls and transition to cloud security-managed operations. Showcasing creativity and expertise in cloud security solutions. Roles & Responsibilities:- Expected to be an SME, collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Provide solutions to problems for their immediate team and across multiple teams.- Develop and implement security architecture solutions.- Conduct risk assessments and provide recommendations for security enhancements.- Lead security governance initiatives and ensure compliance with industry standards.- Stay updated on the latest security trends and technologies. Professional & Technical Skills: - Must To Have Skills: Proficiency in ServiceNow Governance, Risk, and Compliance (GRC).- Strong understanding of security architecture design.- Experience in defining and implementing cloud security frameworks.- Knowledge of security controls and compliance requirements.- Hands-on experience in transitioning to cloud security-managed operations. Additional Information:- The candidate should have a minimum of 7.5 years of experience in ServiceNow Governance, Risk, and Compliance (GRC).- This position is based at our Gurugram office.- A 15 years full-time education is required. Qualification 15 years full time education

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : ServiceNow Governance, Risk, and Compliance (GRC) Good to have skills : Security Architecture DesignMinimum 12 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. You will document the implementation of the cloud security controls and transition to cloud security-managed operations. Your typical day will involve designing and implementing security solutions, collaborating with cross-functional teams, and ensuring compliance with governance and risk management standards. Roles & Responsibilities:- Expected to be an SME in ServiceNow Governance, Risk, and Compliance (GRC)- Collaborate and manage the team to perform effectively- Responsible for team decisions and ensuring adherence to security standards- Engage with multiple teams and contribute to key decisions- Expected to provide solutions to problems that apply across multiple teams- Design and implement security solutions to protect cloud infrastructure- Collaborate with cross-functional teams to ensure security requirements are met- Ensure compliance with governance and risk management standards Professional & Technical Skills: - Must To Have Skills: Proficiency in ServiceNow Governance, Risk, and Compliance (GRC)- Strong understanding of cloud security architecture and design principles- Experience with implementing security controls in cloud environments- Knowledge of industry best practices for cloud security- Experience with security assessment and risk management- Good To Have Skills: Experience with Security Architecture Design- Recommendation:Familiarity with other security frameworks and standards Additional Information:- The candidate should have a minimum of 12 years of experience in ServiceNow Governance, Risk, and Compliance (GRC)- This position is based at our Pune office- A 15 years full time education is required Qualification 15 years full time education

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : ServiceNow Governance, Risk, and Compliance (GRC) Good to have skills : NAMinimum 5 year(s) of experience is required Educational Qualification : BTECH Summary :As a Security Architect, you will be responsible for defining the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve documenting the implementation of the cloud security controls and transitioning to cloud security-managed operations using ServiceNow Governance Risk and Compliance (GRC) as the primary skill. Roles & Responsibilities:- Lead the development and implementation of the cloud security framework and architecture using ServiceNow Governance Risk and Compliance (GRC) as the primary skill.- Ensure that the cloud security framework and architecture meet the business requirements and performance goals.- Document the implementation of the cloud security controls and transition to cloud security-managed operations.- Collaborate with cross-functional teams to ensure that the cloud security framework and architecture are aligned with the overall security strategy.- Stay updated with the latest advancements in security architecture design and integrate innovative approaches for sustained competitive advantage. Professional & Technical Skills: - Must To Have Skills: Experience in ServiceNow Governance Risk and Compliance (GRC).- Good To Have Skills: Security Architecture Design.- Strong understanding of cloud security framework and architecture.- Experience in documenting the implementation of cloud security controls and transitioning to cloud security-managed operations.- Solid grasp of security strategy and cross-functional collaboration. Additional Information:- The candidate should have a minimum of 5 years of experience in ServiceNow Governance Risk and Compliance (GRC).- The ideal candidate will possess a strong educational background in computer science, information technology, or a related field, along with a proven track record of delivering impactful security solutions.- This position is based at our Gurugram office. Qualification BTECH

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Product Security Good to have skills : NAMinimum 7.5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :Product Security Testing Specialist - IoT, Embedded Devices, Hardware, Medical Instruments and automotive connected cars securityWe are seeking a highly skilled and motivated Product Security Testing Engineer with 7-11 years of proven expertise in IoT, embedded devices, hardware medical instruments and automotive/connected car security. The ideal candidate will have a strong background in security testing methodologies, risk assessment, and a deep understanding of the unique challenges posed by IoT, medical devices and software defined vehicle. This role requires a practical approach to identifying, assessing, and mitigate security flaws in our products as well as expertise in leading and mentoring a group of product security experts. Roles & Responsibilities:Conduct and lead thorough security assessments of IoT devices, embedded systems, hardware components, and medical instruments.Conduct security assessments of connected car systems, including in-vehicle networks, infotainment systems, telematics, and communication interfaces.Identify vulnerabilities and weaknesses in the design, implementation, and configurations of automotive software and hardware components.Assess the security of in-vehicle communication networks, including CAN bus, Ethernet, and wireless protocols.Perform penetration testing, vulnerability assessments, and code reviews to identify security weaknesses.Evaluate the security of IoT ecosystems, including communication protocols, cloud interfaces, and firmware.Assess the security of embedded systems and identify potential vulnerabilities in both software and hardware.Perform hardware penetration testing to identify vulnerabilities in electronic systems.Assess the security of medical devices, ensuring compliance with industry regulations and standards.Identify and address security risks associated with healthcare information systems and connected medical instruments.Evaluate and prioritize security risks based on potential impact and likelihood.Provide recommendations and collaborate with cross-functional teams to implement effective security controls.Stay current with emerging security threats, vulnerabilities, and testing methodologies.Implement best practices for security testing and collaborate with development teams to integrate security into the development lifecycle.Document security testing processes, findings, and remediation recommendations.Generate comprehensive reports for stakeholders, including technical details and actionable insights. Professional & Technical Skills: Excellent communication skills, including the ability to convey complex security concepts to technical and non-technical stakeholders.Demonstrated proficiency in autonomously managing client relationships with a high level of independence and accountability.Experience of effectively leading teams of various sizes, ranging from small to large, and actively contributing to their skill development and upskilling.Ability to manage multiple tasks and deadlines.Hands on experience with penetration testing tools and methodologies.Proven experience in security testing with a focus on IoT, embedded systems, hardware, and medical instruments.Knowledge of secure coding practices and the ability to review code for security vulnerabilities.Familiarity with industry standards and regulations related to product security, such as ISO 27001, ISO/SAE 21434, UNECE WP.29, IEC 62443, UNR-155 and FDA cybersecurity guidelines.Experience with threat modeling and risk assessment frameworks.Familiarity with secure development practices for embedded systems.Understanding of regulatory requirements for medical device security.Strong understanding of networking protocols, encryption, and authentication mechanisms.- Additional Information:Bachelors or masters degree in engineering or computer science, Information Security, or a related field.Certifications such as Certified Ethical Hacker (CEH), Offensive Security Certified Professional (OSCP), or Certified Information Systems Security Professional (CISSP).- 5 or more years experience require in cyber security field including penetration testing, thread modeling, hardware security.- This position is based at our Bengaluru office- A 15 years full time education is required. Qualification 15 years full time education

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Identity Access Management (IAM) Good to have skills : NAMinimum 3 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to assess security needs, documenting the implementation of cloud security controls, and transitioning to cloud security-managed operations. You will engage in discussions to refine security strategies and ensure compliance with industry standards, all while adapting to the evolving landscape of cloud technologies and security threats. Roles & Responsibilities:- Expected to perform independently and become an SME.- Required active participation/contribution in team discussions.- Contribute in providing solutions to work related problems.- Conduct regular assessments of cloud security measures to identify areas for improvement.- Collaborate with cross-functional teams to ensure alignment of security practices with business objectives. Professional & Technical Skills: - Must To Have Skills: Proficiency in Identity Access Management (IAM).- Strong understanding of cloud security principles and best practices.- Experience with identity governance and administration tools.- Knowledge of regulatory compliance frameworks related to cloud security.- Familiarity with risk assessment methodologies and security incident response. Additional Information:- The candidate should have minimum 3 years of experience in Identity Access Management (IAM).- This position is based at our Bengaluru office.- A 15 years full time education is required. Qualification 15 years full time education

RoRR Roles & Responsibilities: Discuss with Business & IT on new process / system / activity before Onboarding / Go-Live Conduct risk assessments to identify information security risks Propose controls to business and / or work with business to plan risk mitigation Prepare Risk Assessment & Recommended Control Report Follow-ups for mitigation of identified risks & maintain Risk Assessment Tracker Release Monthly dashboards Ensure all recommendations made in RA are implemented Maintain and update Risk Assessment Procedure & Process documents Manage and address any escalations related to risk assessments Assess risk and provide timely approvals / rejections for requests such as firewall port opening, external data sharing, data movement, new software installations Provide status reports to CISO and Sr. Management on periodic basis Dashboards & Presentations for Information Security Review / Board Notes Handle periodic audits from regulator / government agencies / internal audits independently for respective work areas Job Requirement: Experience required for the Job8-10 years in information technology & security; MSc IT / BSc IT / Engineer / Post Graduate / MBA Good understanding of IT/Cyber Security Risk Certification like ISO27001 / ITIL / CISA / CISSP / CRISC (Preferable) Knowledge on Layered Security - Firewalls, Intrusion Detection, OS Hardening, Malicious Code Security, Security Policies and Procedures, IT controls implementation, DLP, Security Training. Knowledge of cloud technologies and security practices for cloud Experience in Third-party Risk Management; Experience in Banking (Preferable) Good interaction and communication ability Capability for aggressive follow-ups and work with deadlines Excellent verbal, written communication & presentation skills

Technology Risk and Governance Professional Lead and act as SPOC for the Internal and External audits as part of Information Technology function. Provide clarity to IT stakeholders pertaining to requirements/queries raised by auditor wherever required. Ensure timely submission of data to auditors Ensure appropriate management responses provided along with reasonable and achievable timelines for the observations Publish progress tracker and ensure timely completion of audit as per plan Lead or conduct regular assessments of IT processes and systems to identify areas for improvement (In terms of security and compliance) which are identified as part of Assurance program. Ensure closure of open findings with technology leaders and auditors Create awareness among IT teams for Audits, compliance and legal requirements Prepare IT audit Assurance program in collaboration with Risk, Security and Compliance Team considering Design and implementation of IT Controls Skills Required: Min 4-12 years of Work Experience as Internal Auditor/GRC team Knowledge of Internal controls, auditing standards and statutory compliance (RBI, UIDAI, NCIIPC regulations) Sound understanding of Banking/Fintech industry and frameworks such as COSO, COBIT Ability to add value and improve operations by bringing a systematic approach to the effectiveness of Risk management, control and governance processes Certification ISO 27001/CISA or equivalent Certification

The Team: The SPGI Market Intelligence (MI) InfoSec team works to increase value in our products through strong security posture. When we can show our customers their information is protected with us, they are more apt to bring new opportunities. Additionally, our work to reduce risk contributes to the value returned to our customers and shareholders. We engage closely with product teams to deliver security practices, capabilities, and advisory services to continually improve and ensure security is incorporated throughout the product lifecycle. Responsibilities and Impact: The security resource will be aligned to an MI Tech business segment to collaborate in-depth with developers, SREs, DBAs, and other personnel to both instill a security mindset and support security improvement efforts. The individual will use their experience strategically and tactically in supporting products teams to find the most efficient and effective methods to close vulnerabilities, implement security capabilities and respond to issues or alerts. Product engagement Identify and prioritize critical business functions in collaboration with organizational stakeholders. Engage with business units to understand their security requirements and align security capabilities accordingly. Determine the protection needs (i.e., security controls) for the information systems, environments, and networks and document appropriately. Document and/or review security standards, architectures and blueprints for adoption by product teams to improve protection, visibility and transparency. Collaborate with stakeholders to implement security standards and procedures. Security Assessments Perform security reviews, identify gaps in security architecture and controls to develop security risk management plans. Support and expand ACF process to mature security oversight. Conduct security assessments of third-party applications and vendors as provided by the division or centralized teams. Support the M&A processes with security assessments, third-party engagements and integration or divestiture oversight. Education and enablement Provide technical guidance and support to the security and product teams in incident response, control adoption, and threat mitigation. Facilitate educational opportunities within the division to increase security awareness, secure coding practices and secure architecture and design. Application Security Design and implement secure coding practices and guidelines for application development teams. Collaborate with development teams to integrate security controls into the software development lifecycle. What Were Looking For: Requirements: Minimum of 8 years of experience in information security. Strong knowledge of security frameworks, such as ISO 27001 and NIST Cybersecurity Framework. Expertise in designing and implementing security controls, including cloud architectures, networks, monitoring, technical security policies. Stays up-to-date with the latest security technologies, approaches, and best practices. Experience with cloud security, network security, and secure coding practices. Excellent communication and interpersonal skills to collaborate with cross-functional teams. Relevant certifications such as CISSP, CISM, or CEH are preferred.

As a Senior Principal at Infosys Consulting dedicated to serving Life Sciences firms globally, you will play a crucial role in managing transformations from strategy setting to execution, ensuring the delivery of realized business value. We are looking for individuals with exceptional communication skills, intellectual curiosity, and a strong passion for ethics and compliance management, particularly in the field of Risk & Compliance within Life Sciences. Your responsibilities will include conducting comprehensive risk assessments of AI applications, ensuring compliance with relevant regulations and standards, developing risk assurance frameworks specific to AI technologies in life sciences, collaborating with cross-functional teams to identify and mitigate AI-related risks, and establishing metrics to track AI risk factors. Additionally, you will lead the design and implementation of control integration systems, ensure SoX compliance for life sciences clients, and provide guidance on regulatory requirements and best practices. To excel in this role, you should have a minimum of 15 years of overall experience, with at least 2 years of top-tier consulting experience post MBA, specifically in programs/projects with Life Sciences/Healthcare clients. You should possess a strong regulatory background in areas such as 21 CFR part 11, Data Privacy, Data Integrity, Information Security, GxP, and SOX IT knowledge. Your ability to handle multiple large projects, engage with senior business and technology leaders, and stay abreast of market and regulatory trends will be crucial. At Infosys Consulting, you will be responsible for delivering business results to global pharmaceutical, medical devices, and pharmaceutical distributors. You will serve as a team member or lead on consulting engagements, execute projects in a global delivery model, contribute to sales pursuits and internal initiatives, analyze complex business problems, and drive business process improvement using various consulting tools and methodologies. Your role will also involve collaborating with client teams, creating detailed action plans for organizational change management, and participating in thought leadership events to build deep industry expertise. If you are a self-driven individual with a passion for driving business transformation and ensuring compliance in the Life Sciences sector, we invite you to join our team at Infosys Consulting and make a meaningful impact in the field of Risk & Compliance within Life Sciences.,

As an Associate Director of Data Privacy, you will be responsible for leading and managing data privacy and protection engagements in India and the Middle East. Your role will involve overseeing large-scale privacy transformation projects, conducting assessments, and ensuring organizations comply with various regulatory frameworks such as GDPR, DPDPA, PDPL, and others. Your key responsibilities will include leading data privacy and protection engagements, interpreting and implementing privacy regulations, developing privacy transformation programs, advising on data transfers and third-party risks, collaborating with cross-functional teams, and mentoring junior consultants. You will also be involved in business development activities and engaging with clients in the Middle East for privacy compliance initiatives. To excel in this role, you should have at least 10 years of experience in Data Privacy, Information Security, or Risk Advisory, with a strong understanding of global privacy laws and governance frameworks. Possessing certifications such as CIPM, CIPP-E, CIPP-M, CIPT, ISO 27701, or CDPSE will be advantageous. Your ability to communicate effectively, manage stakeholders, and travel as needed across the Middle East will be crucial for success. Ideal candidates will have a background in consulting firms, particularly Big 4 or mid-sized firms, with exposure to the IT/ITES or BFSI sectors. Knowledge of the Middle East regulatory landscape will be considered a valuable asset for this role. If you are looking to take on a challenging yet rewarding position in the field of Data Privacy, this opportunity may be the right fit for you.,

As a Senior Principal Information Security Analyst at NTT DATA, you will be a highly skilled and advanced subject matter expert responsible for influencing and leading the implementation of the information security strategy. You will align it with business goals and industry best practices. Your role will involve acting as a consultant in the design and implementation of security systems to protect the organization's computer networks from cyber-attacks. Additionally, you will set and maintain security standards, contributing to maintaining a secure and compliant environment. You will also be responsible for coaching and mentoring junior resources within the team and providing high-level insights of industry best practices. Your key responsibilities will include monitoring security alerts and events from various sources, investigating potential threats, and escalating incidents as necessary. You will assist in the implementation and monitoring of security controls, including firewalls, intrusion detection systems, and access controls. Conducting regular vulnerability assessments, analyzing scan results, and prioritizing and remediating identified vulnerabilities will also be part of your role. You will support the incident response team in investigating security incidents, documenting findings, and participating in remediation efforts. Furthermore, you will ensure compliance with industry standards such as GDPR and ISO 27001 by conducting assessments and implementing necessary controls. Installing security measures, operating software to protect systems and information infrastructure, documenting security breaches, and assessing the damage they cause are also essential aspects of your role. You will collaborate with cross-functional teams, IT, and other teams to ensure security measures are integrated into the organization's processes and projects. To thrive in this role, you will need to have excellent communication skills to convey technical information effectively to non-technical stakeholders. Strong analytical thinking and problem-solving skills are crucial to prevent hacking on the network. Leadership skills to identify and evaluate potential risks, as well as the ability to work both independently and collaboratively in a fast-paced environment, are also required. Proficiency in understanding firewalls, proxies, SIEM, antivirus, and IDPS concepts, as well as familiarity with security frameworks, standards, and regulations, is essential. Academic qualifications and certifications required for this role include a Bachelor's degree or equivalent in information security, cybersecurity, computer science, or related field. A Master's degree or equivalent is advantageous. Security certifications such as CompTIA Security+, CISSP, or CISM are also beneficial. Significant demonstrated experience in information security or cybersecurity, working in a global IT organization, computer network penetration testing, security assessment, and vulnerability scanning tools, as well as coaching and mentoring junior team members, are necessary for this position.,

The Java API & Micro Services Developer position is responsible for collaborating with the department to implement new or updated application systems and programs in coordination with regional business and technology Bank teams. The main goal is to identify and act on opportunities to enhance application software, data, and systems, improve micro services and APIs for Citi digital channels, ensure compliance with Citigroup's system development lifecycle and information security requirements, and implement and maintain security controls. In this role, you will be involved in various initiatives and projects across Citigroup Global Wealth (GCB) Digital initiatives. You will need to have experience in Agile methodology, managing multiple scrum teams, developing best practices, and driving technical design and architecture management. Additionally, you will be responsible for ensuring that systems align with the organization's strategy and goals, adhering to compliance standards, and actively participating in the training process to enhance your skills and knowledge. You will also be tasked with identifying, assessing, tracking, and mitigating security issues and risks, ensuring code quality governance, and managing partnerships with various teams to deliver applications within defined quality and timelines. Qualifications for this role include a strong understanding of object-oriented analysis and design, software development skills, experience in Java 8, Micro service Architecture, Spring boot, REST APIs, and cloud platforms. The ideal candidate should possess strong technical and functional knowledge in the banking domain, expertise in API & Micro services design, and experience in developing large-scale applications. Additionally, proficiency in using tools like Jira, Bitbucket, Swagger Editors, Confluence, and experience with protocols like TCP/IP, MQ, HTTPS, WSS connectors are required. The ability to handle multiple demands, excellent communication and analytical skills, and a collaborative mindset are essential for success in this role. Education requirements include a Bachelor's degree or equivalent experience. This job description provides an overview of the responsibilities and qualifications. Other duties may be assigned as needed.,

As a Risk Manager for Line of Business Technologies (LOBTs) within the Technology and Operations (T&O) division, your primary responsibility will be to manage technology and operational risks. You will collaborate with various stakeholders to ensure regulatory compliance, coordinate audit activities, and drive issue & action management for LOBTs. Key Accountabilities: - Assist Line of Business Technology in managing technology and operational risks. - Ensure regulatory compliance for the LOBT and coordinate audit activities. - Manage issue & action planning for LOBT across external and internal audits. - Engage with various departments to prioritize, plan, and close all open findings within timelines. - Stay updated on regulatory requirements and execute compliance plans. - Conduct control testing for Risk Control Self Assessments (RCSAs) and monitor risk issues and incidents for LOBT. Job Duties & Responsibilities: - Collaborate with stakeholders within and outside DBS to gain a comprehensive view of all Technology Risks. - Work with Technology verticals and Compliance to progress on closure of open points and regulatory requirements. - Identify execution challenges in risk mitigation actions and facilitate resolutions. - Conduct risk assessments for LOBT covering partners, external environment, and potential risks. - Provide regular updates and front dialogues with stakeholders on Risk Management and Mitigation. - Ensure awareness of Technology Risk within the DBS India Technology Team and liaise with Line of Business Risk. Requirements: - Minimum 10+ years of experience in Technology Risk Management, Information Security, and Technology Audit. - Preferred qualifications include risk-accreditations like CISA, CRISC, CISM, CISSP, and experience in Information System audits. - A degree in Computer Science or Technology Management, preferably with a specialization in Information Security. Core Competencies: - Understanding of Information Systems complexity and risk points. - Strong communication skills and ability to engage with seniors effectively. - Willingness to escalate risks for the bank's benefit.,

You will be responsible for establishing the right Key Performance Indicators (KPIs) and tracking performance against them. In this role, you will maintain documentation of Service Level Agreements, ensuring accuracy, and coordinate information sharing with vendors following established procedures and reporting requirements. Additionally, you will be resolving technical and general employee inquiries. To succeed in this position, you should have a proven track record in handling employee inquiries effectively. As part of your role, you will be expected to adhere to Mastercard's security policies and practices, ensuring the confidentiality and integrity of the information you access. You must promptly report any suspected information security violation or breach. Furthermore, you are required to complete all periodic mandatory security training as per Mastercard's guidelines.,

About Deutsche Brse Group: Deutsche Brse Group, headquartered in Frankfurt, Germany, is a renowned international exchange organization and a leading market infrastructure provider globally. The organization empowers investors, financial institutions, and companies by granting them access to the global capital markets. With a comprehensive range of financial market services, including trading, clearing, settlement, custody, digital assets, crypto, market analytics, data, software, and SaaS, Deutsche Brse Group is at the forefront of the financial industry. As a technology-driven company, Deutsche Brse Group is dedicated to developing state-of-the-art IT solutions and offering IT systems worldwide. About Deutsche Brse Group in India: Deutsche Brse Group's Global Capability Centre in Hyderabad serves as a crucial strategic hub that brings together India's top-tier tech talent. The focus is on creating advanced IT solutions that enhance market infrastructure and services. As capital market engineers, the team in India serves as the backbone of financial markets globally. Leveraging the power of innovation and leading-edge IT solutions, the team aims to build trust in both present and future markets. Security Analyst Division: The Security Analyst position is part of the Deutsche Brse AG, specifically under the Chief Information Officer/Chief Operating Officer (CIO/COO), Chief Technology Officer (CTO), Plan & Control division. The CTO division is responsible for developing and maintaining the groupwide Information Technology (IT) infrastructure, innovative IT products, and supporting services. It plays a crucial role in achieving the strategic goals of the Group by leading transformation efforts and ensuring a stable operating environment. Tasks / Responsibilities: - Create IS committee slides on a monthly basis - Assist in developing slides for IS reporting, including audit and Group projects - Document meeting minutes in a structured and comprehensive manner and share with key stakeholders - Consolidate agreed-upon action plans and track progress during Unit team meetings - Aid central teams and CTO teams in organizing penetration tests following Group guidelines - Support in maintaining the knowledge database in Confluence - Execute controls over assigned tasks - Communicate clearly with CTO teams regarding actions needed to address IS risk management issues - Assist in identifying and resolving issues related to the completion and accuracy of CTO assets inventory Qualifications / Required Skills: - University degree in Business Administration or a related field in information technology - 2-3 years of professional experience in an IT team or CISO team - Strong analytical skills and keen attention to detail are essential - Effective communication and interpersonal skills to engage and build relationships with stakeholders across different locations - Collaborative, flexible, and well-organized with the ability to manage multiple tasks and prioritize effectively - Proficient in MS Office applications, especially MS Excel and PowerPoint. Data analytics skills are highly valued - Excellent written and verbal communication skills with proficiency in English. Knowledge of German and French is advantageous.,

We are seeking an experienced Application Security Specialist to join our team. As an Application Security Specialist, you will be responsible for conducting SSDLC security assessments, integrating security throughout the software development lifecycle, and ensuring that applications meet the highest security standards before deployment. Your key responsibilities will include conducting internal and third-party SSDLC risk assessments on critical assets and processes, coordinating with project teams to enforce security frameworks in all phases of the SSDLC, and preparing security effectiveness reports for management. You will also be tasked with performing SSDLC assessments aligning with security practices, ensuring that new applications undergo SSDLC assessments before induction into data centers, and defining and enhancing application security requirements for agile development and traditional architectures. Additionally, you will assist DevSecOps teams in creating secure CI/CD pipeline processes, follow up on and escalate closure of identified security gaps, and contribute to standardizing application security tools and methodologies. The ideal candidate should have at least 6 years of experience in Information Security with a focus on application and software security, along with 4 years of experience in software development lifecycle security reviews. You should also possess expertise in architecture reviews, software design reviews, threat modelling, and design flaw assessments, as well as hands-on experience with SAST, DAST, SCA, IAST, RASP, and other application analysis tools. Familiarity with OWASP, SANS, ISACA, NIST, IETF best practices is required, and the ability to develop detailed security frameworks for developers to integrate into the SDLC is essential. Preferred certifications include CISSP, CSSLP, Cloud Security Certifications, and DevSecOps Automation Certifications. If you meet these qualifications and are passionate about enhancing application security, we encourage you to apply for this position.,

As a member of the Support Risk Management and Supervision team [RMS], your primary responsibility will be to assess the risk profile and the effectiveness of the information security risk systems of the Groups Business and Service Units. You will review IT risk self-assessments and ensure the implementation of agreed risk remediation plans. It is essential to proactively understand existing and upcoming regulations and facilitate local compliance with information security policies and relevant regulations and laws. Additionally, you will assist in the development and changes to the ICT risk frameworks to establish a strong risk management culture and provide expert operational risk advice. Collaborating with senior stakeholders, you will identify ICT risks and evaluate the adequacy of controls to manage such risks, including recommending enhanced or additional controls. You will be proactive in identifying and following up on ICT anomalies and areas of concern. Independently reviewing, challenging, and supporting information security activities will be a key part of your role, including examining analyses conducted by various stakeholders on their information security risk profile and related remediation actions. In response to material information security incidents, whether internal or external, you will conduct independent deep dive reviews of investigation reports and act as a challenge function to such reports. Supporting information security reporting and monitoring metrics and Key Risk Indicators (KRI) at different levels, as well as consulting with internal groups on matters related to information risk controls, self-assessments, security incidents, and infrastructure projects, will also be part of your responsibilities. Additionally, you will participate in validating information security standards and exceptions applied by the Business Units/Service Units. Joining us at Socit Gnrale means being part of a team that values people as drivers of change. Together, we can make a positive impact on the future by creating, daring, innovating, and taking action. Our stimulating and caring environment provides opportunities for personal and professional growth, allowing you to feel useful on a daily basis and develop or strengthen your expertise. You will have the chance to dedicate time to solidarity actions during working hours, supporting various initiatives that contribute to positive change. We are committed to accelerating our Group's ESG strategy by implementing ESG principles in all our activities and policies. Emphasizing diversity and inclusion, we strive to create an inclusive work environment that values and respects differences among individuals.,