5174 Information Security Jobs - Page 40

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : CyberArk Privileged Access Management Good to have skills : NAMinimum 3 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to document the implementation of cloud security controls and facilitate the transition to cloud security-managed operations, ensuring that all security measures align with organizational objectives and compliance standards. You will also engage in discussions to refine security strategies and address any emerging challenges in the cloud environment, contributing to a secure and efficient operational landscape. Roles & Responsibilities:- Expected to perform independently and become an SME.- Required active participation/contribution in team discussions.- Contribute in providing solutions to work related problems.- Develop and maintain comprehensive documentation of cloud security architecture and controls.- Evaluate and recommend security technologies and practices to enhance the cloud security posture. Professional & Technical Skills: - Must To Have Skills: Proficiency in CyberArk Privileged Access Management.- Strong understanding of cloud security principles and best practices.- Experience with identity and access management solutions.- Familiarity with compliance frameworks such as ISO 27001, NIST, or GDPR.- Ability to analyze security incidents and implement corrective actions. Additional Information:- The candidate should have minimum 3 years of experience in CyberArk Privileged Access Management.- This position is based at our Pune office.- A 15 years full time education is required. Qualification 15 years full time education

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : SailPoint IdentityIQ Good to have skills : Security Architecture DesignMinimum 18 year(s) of experience is required Educational Qualification : Minimum 15 years of full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to assess security needs, documenting the implementation of cloud security controls, and overseeing the transition to cloud security-managed operations. You will engage in strategic discussions to align security measures with organizational objectives, while continuously evaluating and enhancing security protocols to adapt to evolving threats and technologies. Roles & Responsibilities:- Expected to be a Subject Matter Expert with deep knowledge and experience.- Should have influencing and advisory skills.- Engage with multiple teams and responsible for team decisions.- Expected to provide solutions to problems that apply across multiple teams, and provide solutions to business area problems.- Facilitate workshops and training sessions to enhance team understanding of security protocols and best practices.- Conduct regular assessments of security frameworks to ensure compliance with industry standards and regulations. Professional & Technical Skills: - Must To Have Skills: Proficiency in SailPoint IdentityIQ.- Good To Have Skills: Experience with Security Architecture Design.- Strong understanding of cloud security principles and practices.- Experience in risk assessment and management related to cloud environments.- Ability to design and implement security controls tailored to specific business needs. Additional Information:- The candidate should have minimum 18 years of experience in SailPoint IdentityIQ.- This position is based at our Chennai office.- A Minimum 15 years of full time education is required. Qualification Minimum 15 years of full time education

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Security Architecture Design Good to have skills : NAMinimum 5 year(s) of experience is required Educational Qualification : BE or MCA or MSc with Good Computer Science Background with good academic record of 65 and above Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to document the implementation of cloud security controls and facilitating the transition to cloud security-managed operations, ensuring that all security measures align with organizational objectives and compliance standards. You will engage in discussions to refine security strategies and provide guidance on best practices, contributing to a secure and efficient cloud environment. Roles & Responsibilities:- Expected to be an SME.- Collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Provide solutions to problems for their immediate team and across multiple teams.- Develop and maintain comprehensive documentation of security architecture and controls.- Conduct regular assessments of security measures to identify areas for improvement. Professional & Technical Skills: - Must To Have Skills: Proficiency in Security Architecture Design.- Strong understanding of cloud security principles and frameworks.- Experience with risk assessment and management methodologies.- Knowledge of compliance standards such as ISO 27001, NIST, or GDPR.- Familiarity with security tools and technologies for threat detection and response. Additional Information:- The candidate should have minimum 5 years of experience in Security Architecture Design.- This position is based in Coimbatore.- A BE or MCA or MSc with Good Computer Science Background with good academic record of 65 and above is required. Qualification BE or MCA or MSc with Good Computer Science Background with good academic record of 65 and above

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : SailPoint IdentityIQ Good to have skills : NAMinimum 7.5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various teams to assess security needs, documenting security controls, and overseeing the transition to cloud security-managed operations. You will engage in strategic discussions to align security measures with organizational objectives, ensuring a robust security posture in the cloud environment. Roles & Responsibilities:- Expected to be an SME.- Collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Provide solutions to problems for their immediate team and across multiple teams.- Facilitate training sessions to enhance team knowledge and skills in cloud security.- Evaluate and recommend new security technologies and practices to improve the overall security framework. Professional & Technical Skills: - Must To Have Skills: Proficiency in SailPoint IdentityIQ.- Good To Have Skills: Experience with cloud security frameworks and compliance standards.- Strong understanding of identity governance and administration.- Experience in implementing security controls in cloud environments.- Familiarity with risk assessment methodologies and security best practices. Additional Information:- The candidate should have minimum 7.5 years of experience in SailPoint IdentityIQ.- This position is based at our Hyderabad office.- A 15 years full time education is required. Qualification 15 years full time education

EC-Council is the worlds largest cyber security technical certification body. We operate in 145 countries globally and we are the owner and developer of various world-famous cyber security programs. We are proud to have trained and certified over 220,000 information security professionals globally that have influenced the cyber security mindset of countless organizations worldwide. www.eccouncil.org We are seeking a seasoned and strategic Information Security Lead to spearhead our cybersecurity initiatives and lead a team of talented security engineers. In this critical role, you will be responsible for defining security strategy, optimising security architecture, and driving execution across multiple security domains including cloud, network, application, and endpoint security. You will serve as both a technical expert and a team leader, ensuring the organization's digital assets are well protected while fostering a high-performing security team. If you bring a passion for security, strong leadership skills, and a track record of building secure enterprise environment then we want to hear from you. Infosec Lead Responsibilities: As an Infosec Lead, your responsibilities will include: Lead a team of security engineers, overseeing their work, mentoring them, and ensuring alignment with organizational objectives. Manage end-to-end execution of IT security projects, including design, planning, implementation, and ongoing optimization ofsecurity architecture, infrastructure and solutions. Define and implement next-generation security strategies, architectures, and governance processes. Partner with key stakeholders across business units to understand requirements and deliver for-purpose security solutions. Validate and manage Business Continuity (BCP) and Disaster Recovery (DR) plans, coordinating with relevant teams. Prepare, review, and maintain documentation including incident reports, policies, procedures, and technical recommendations. Continuously assess and enhance the organizations security posture across antivirus, application control, rewall, SIEM, VPN, SSL, IDS/IPS, and more. INFORMATION SECURITY LEAD JD Develop and enforce infrastructure and application hardening strategies aligned with best practices. Lead threat modeling, risk assessments, and vulnerability remediation efforts. Identify new tools, opportunities, and innovations to improve Security Operations and efficiency. Drive implementation of audit recommendations, and continuously in-tune security appliances and controls. Maintain expertise in threat landscape analysis and risk profiling, and apply it to organizational defense mechanisms. Manage relationships with external vendors, security product providers, and managed services partners. Oversee vulnerability management and penetration testing programs; ensure timely mitigation and closure of findings. Collaborate with application, DevOps, and infrastructure teams to integrate security into DevSecOps pipelines. Present detailed security posture reports, KPIs, and dashboards to senior leadership and the board. Infosec Lead Requirements: To be successful in this role, you should have: 10+ years of experience in Information Security, with 3+ years in a team leadership role managing security teams. Proven experience in leading cross-functional team, mentoring security engineers, and building strong team dynamics. Expertise in developing and managing security architectures, policies, and controls across cloud and on-prem environments. Hands-on experience with cloud security in Azure and AWS environments. Proficient with security tools including rewalls (SonicWALL, Fortinet), SIEM, endpoint protection, network monitoring, and IAM solutions. Deep knowledge of routing, switching, and network segmentation practices for secure infrastructure design. Familiarity with ISO 27001, NIST, CIS, PCI-DSS, and other global security standards. Proficient in DevSecOps methodologies, tools, and CI/CD integration. Experience presenting security metrics, dashboards, and strategic updates to executive stakeholders. Bachelor'ss degree in Computer Science, Information Systems, or related field; certiifications such as CISSP, CISM, CCSP, or CEH are preferred. Strong understanding of threat intelligence, incident response, and forensics. Excellent communication skills with the ability to simplify complex technical topics for business audiences. Personal Attributes and Soft Skills Team Leadership: Builds, mentors, and inspires a high-performing security team; leads with integrity, empathy, and technical credibility. Strategic Thinking: Aligns security initiatives with business goals, ensuring a proactive and forward-thinking security posture. Customer Focus: Balances security needs with user experience and business priorities. Problem-Solving Skills: Approaches challenges analytically and methodically to design effective, ong-term security solutions. Project & Task Ownership: Takes full accountability for delivering results across people, process, and technology. Mentorship: Guides junior engineers with structured feedback, hands-on coaching, and growth opportunities. Requirement Understanding: Converts business and technical requirements into well-dened security policies and actions. Proactive Approach: Anticipates security risks, stays updated with industry trends, and responds with agility. Effective Time Management: Prioritizes competing demands effectively while managing incidents and projects simultaneously. Additional Information We are an equal opportunity workplace and are an affirmative action employer. We are always committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity, or Veteran status and we do not discriminate on the basis of such characteristics or any other status protected by the laws or regulations in the locations where we work. This job description has been designed to indicate the general nature and level of work performed by employees within this classification. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities, and qualifications required of employees assigned to this job. EC-Council is committed to working with and providing reasonable accommodation to individuals with disabilities. If you have a medical condition or disability which inhibits your ability to complete any part of the application process and are in need of a reasonable accommodation to complete the process, please contact us ecchr@eccouncil.org and let us know how we may assist you. This notice together with our Privacy Policy and Terms of Use of this website and any other documents we mention here are meant to inform you on what personal data about you we collect, use, disclose, share or otherwise process when you are applying for a job at EC-Council or when EC-Council contacts you for recruitment purposes. Please read carefully to understand our views and practices on how we protect your personal data - Privacy Policy | EC-Council (eccouncil.org).

RoRR Roles & Responsibilities: Discuss with Business & IT on new process / system / activity before Onboarding / Go-Live Conduct risk assessments to identify information security risks Propose controls to business and / or work with business to plan risk mitigation Prepare Risk Assessment & Recommended Control Report Follow-ups for mitigation of identified risks & maintain Risk Assessment Tracker Release Monthly dashboards Ensure all recommendations made in RA are implemented Maintain and update Risk Assessment Procedure & Process documents Manage and address any escalations related to risk assessments Assess risk and provide timely approvals / rejections for requests such as firewall port opening, external data sharing, data movement, new software installations Provide status reports to CISO and Sr. Management on periodic basis Dashboards & Presentations for Information Security Review / Board Notes Handle periodic audits from regulator / government agencies / internal audits independently for respective work areas Job Requirement: Experience required for the Job8-10 years in information technology & security; MSc IT / BSc IT / Engineer / Post Graduate / MBA Good understanding of IT/Cyber Security Risk Certification like ISO27001 / ITIL / CISA / CISSP / CRISC (Preferable) Knowledge on Layered Security - Firewalls, Intrusion Detection, OS Hardening, Malicious Code Security, Security Policies and Procedures, IT controls implementation, DLP, Security Training. Knowledge of cloud technologies and security practices for cloud Experience in Third-party Risk Management; Experience in Banking (Preferable) Good interaction and communication ability Capability for aggressive follow-ups and work with deadlines Excellent verbal, written communication & presentation skills

Technology Risk and Governance Professional Lead and act as SPOC for the Internal and External audits as part of Information Technology function. Provide clarity to IT stakeholders pertaining to requirements/queries raised by auditor wherever required. Ensure timely submission of data to auditors Ensure appropriate management responses provided along with reasonable and achievable timelines for the observations Publish progress tracker and ensure timely completion of audit as per plan Lead or conduct regular assessments of IT processes and systems to identify areas for improvement (In terms of security and compliance) which are identified as part of Assurance program. Ensure closure of open findings with technology leaders and auditors Create awareness among IT teams for Audits, compliance and legal requirements Prepare IT audit Assurance program in collaboration with Risk, Security and Compliance Team considering Design and implementation of IT Controls Skills Required: Min 4-12 years of Work Experience as Internal Auditor/GRC team Knowledge of Internal controls, auditing standards and statutory compliance (RBI, UIDAI, NCIIPC regulations) Sound understanding of Banking/Fintech industry and frameworks such as COSO, COBIT Ability to add value and improve operations by bringing a systematic approach to the effectiveness of Risk management, control and governance processes Certification ISO 27001/CISA or equivalent Certification

The Team: The SPGI Market Intelligence (MI) InfoSec team works to increase value in our products through strong security posture. When we can show our customers their information is protected with us, they are more apt to bring new opportunities. Additionally, our work to reduce risk contributes to the value returned to our customers and shareholders. We engage closely with product teams to deliver security practices, capabilities, and advisory services to continually improve and ensure security is incorporated throughout the product lifecycle. Responsibilities and Impact: The security resource will be aligned to an MI Tech business segment to collaborate in-depth with developers, SREs, DBAs, and other personnel to both instill a security mindset and support security improvement efforts. The individual will use their experience strategically and tactically in supporting products teams to find the most efficient and effective methods to close vulnerabilities, implement security capabilities and respond to issues or alerts. Product engagement Identify and prioritize critical business functions in collaboration with organizational stakeholders. Engage with business units to understand their security requirements and align security capabilities accordingly. Determine the protection needs (i.e., security controls) for the information systems, environments, and networks and document appropriately. Document and/or review security standards, architectures and blueprints for adoption by product teams to improve protection, visibility and transparency. Collaborate with stakeholders to implement security standards and procedures. Security Assessments Perform security reviews, identify gaps in security architecture and controls to develop security risk management plans. Support and expand ACF process to mature security oversight. Conduct security assessments of third-party applications and vendors as provided by the division or centralized teams. Support the M&A processes with security assessments, third-party engagements and integration or divestiture oversight. Education and enablement Provide technical guidance and support to the security and product teams in incident response, control adoption, and threat mitigation. Facilitate educational opportunities within the division to increase security awareness, secure coding practices and secure architecture and design. Application Security Design and implement secure coding practices and guidelines for application development teams. Collaborate with development teams to integrate security controls into the software development lifecycle. What Were Looking For: Requirements: Minimum of 8 years of experience in information security. Strong knowledge of security frameworks, such as ISO 27001 and NIST Cybersecurity Framework. Expertise in designing and implementing security controls, including cloud architectures, networks, monitoring, technical security policies. Stays up-to-date with the latest security technologies, approaches, and best practices. Experience with cloud security, network security, and secure coding practices. Excellent communication and interpersonal skills to collaborate with cross-functional teams. Relevant certifications such as CISSP, CISM, or CEH are preferred.

As a Senior Principal at Infosys Consulting dedicated to serving Life Sciences firms globally, you will play a crucial role in managing transformations from strategy setting to execution, ensuring the delivery of realized business value. We are looking for individuals with exceptional communication skills, intellectual curiosity, and a strong passion for ethics and compliance management, particularly in the field of Risk & Compliance within Life Sciences. Your responsibilities will include conducting comprehensive risk assessments of AI applications, ensuring compliance with relevant regulations and standards, developing risk assurance frameworks specific to AI technologies in life sciences, collaborating with cross-functional teams to identify and mitigate AI-related risks, and establishing metrics to track AI risk factors. Additionally, you will lead the design and implementation of control integration systems, ensure SoX compliance for life sciences clients, and provide guidance on regulatory requirements and best practices. To excel in this role, you should have a minimum of 15 years of overall experience, with at least 2 years of top-tier consulting experience post MBA, specifically in programs/projects with Life Sciences/Healthcare clients. You should possess a strong regulatory background in areas such as 21 CFR part 11, Data Privacy, Data Integrity, Information Security, GxP, and SOX IT knowledge. Your ability to handle multiple large projects, engage with senior business and technology leaders, and stay abreast of market and regulatory trends will be crucial. At Infosys Consulting, you will be responsible for delivering business results to global pharmaceutical, medical devices, and pharmaceutical distributors. You will serve as a team member or lead on consulting engagements, execute projects in a global delivery model, contribute to sales pursuits and internal initiatives, analyze complex business problems, and drive business process improvement using various consulting tools and methodologies. Your role will also involve collaborating with client teams, creating detailed action plans for organizational change management, and participating in thought leadership events to build deep industry expertise. If you are a self-driven individual with a passion for driving business transformation and ensuring compliance in the Life Sciences sector, we invite you to join our team at Infosys Consulting and make a meaningful impact in the field of Risk & Compliance within Life Sciences.,

As an Associate Director of Data Privacy, you will be responsible for leading and managing data privacy and protection engagements in India and the Middle East. Your role will involve overseeing large-scale privacy transformation projects, conducting assessments, and ensuring organizations comply with various regulatory frameworks such as GDPR, DPDPA, PDPL, and others. Your key responsibilities will include leading data privacy and protection engagements, interpreting and implementing privacy regulations, developing privacy transformation programs, advising on data transfers and third-party risks, collaborating with cross-functional teams, and mentoring junior consultants. You will also be involved in business development activities and engaging with clients in the Middle East for privacy compliance initiatives. To excel in this role, you should have at least 10 years of experience in Data Privacy, Information Security, or Risk Advisory, with a strong understanding of global privacy laws and governance frameworks. Possessing certifications such as CIPM, CIPP-E, CIPP-M, CIPT, ISO 27701, or CDPSE will be advantageous. Your ability to communicate effectively, manage stakeholders, and travel as needed across the Middle East will be crucial for success. Ideal candidates will have a background in consulting firms, particularly Big 4 or mid-sized firms, with exposure to the IT/ITES or BFSI sectors. Knowledge of the Middle East regulatory landscape will be considered a valuable asset for this role. If you are looking to take on a challenging yet rewarding position in the field of Data Privacy, this opportunity may be the right fit for you.,

As a Senior Principal Information Security Analyst at NTT DATA, you will be a highly skilled and advanced subject matter expert responsible for influencing and leading the implementation of the information security strategy. You will align it with business goals and industry best practices. Your role will involve acting as a consultant in the design and implementation of security systems to protect the organization's computer networks from cyber-attacks. Additionally, you will set and maintain security standards, contributing to maintaining a secure and compliant environment. You will also be responsible for coaching and mentoring junior resources within the team and providing high-level insights of industry best practices. Your key responsibilities will include monitoring security alerts and events from various sources, investigating potential threats, and escalating incidents as necessary. You will assist in the implementation and monitoring of security controls, including firewalls, intrusion detection systems, and access controls. Conducting regular vulnerability assessments, analyzing scan results, and prioritizing and remediating identified vulnerabilities will also be part of your role. You will support the incident response team in investigating security incidents, documenting findings, and participating in remediation efforts. Furthermore, you will ensure compliance with industry standards such as GDPR and ISO 27001 by conducting assessments and implementing necessary controls. Installing security measures, operating software to protect systems and information infrastructure, documenting security breaches, and assessing the damage they cause are also essential aspects of your role. You will collaborate with cross-functional teams, IT, and other teams to ensure security measures are integrated into the organization's processes and projects. To thrive in this role, you will need to have excellent communication skills to convey technical information effectively to non-technical stakeholders. Strong analytical thinking and problem-solving skills are crucial to prevent hacking on the network. Leadership skills to identify and evaluate potential risks, as well as the ability to work both independently and collaboratively in a fast-paced environment, are also required. Proficiency in understanding firewalls, proxies, SIEM, antivirus, and IDPS concepts, as well as familiarity with security frameworks, standards, and regulations, is essential. Academic qualifications and certifications required for this role include a Bachelor's degree or equivalent in information security, cybersecurity, computer science, or related field. A Master's degree or equivalent is advantageous. Security certifications such as CompTIA Security+, CISSP, or CISM are also beneficial. Significant demonstrated experience in information security or cybersecurity, working in a global IT organization, computer network penetration testing, security assessment, and vulnerability scanning tools, as well as coaching and mentoring junior team members, are necessary for this position.,

The Java API & Micro Services Developer position is responsible for collaborating with the department to implement new or updated application systems and programs in coordination with regional business and technology Bank teams. The main goal is to identify and act on opportunities to enhance application software, data, and systems, improve micro services and APIs for Citi digital channels, ensure compliance with Citigroup's system development lifecycle and information security requirements, and implement and maintain security controls. In this role, you will be involved in various initiatives and projects across Citigroup Global Wealth (GCB) Digital initiatives. You will need to have experience in Agile methodology, managing multiple scrum teams, developing best practices, and driving technical design and architecture management. Additionally, you will be responsible for ensuring that systems align with the organization's strategy and goals, adhering to compliance standards, and actively participating in the training process to enhance your skills and knowledge. You will also be tasked with identifying, assessing, tracking, and mitigating security issues and risks, ensuring code quality governance, and managing partnerships with various teams to deliver applications within defined quality and timelines. Qualifications for this role include a strong understanding of object-oriented analysis and design, software development skills, experience in Java 8, Micro service Architecture, Spring boot, REST APIs, and cloud platforms. The ideal candidate should possess strong technical and functional knowledge in the banking domain, expertise in API & Micro services design, and experience in developing large-scale applications. Additionally, proficiency in using tools like Jira, Bitbucket, Swagger Editors, Confluence, and experience with protocols like TCP/IP, MQ, HTTPS, WSS connectors are required. The ability to handle multiple demands, excellent communication and analytical skills, and a collaborative mindset are essential for success in this role. Education requirements include a Bachelor's degree or equivalent experience. This job description provides an overview of the responsibilities and qualifications. Other duties may be assigned as needed.,

As a Risk Manager for Line of Business Technologies (LOBTs) within the Technology and Operations (T&O) division, your primary responsibility will be to manage technology and operational risks. You will collaborate with various stakeholders to ensure regulatory compliance, coordinate audit activities, and drive issue & action management for LOBTs. Key Accountabilities: - Assist Line of Business Technology in managing technology and operational risks. - Ensure regulatory compliance for the LOBT and coordinate audit activities. - Manage issue & action planning for LOBT across external and internal audits. - Engage with various departments to prioritize, plan, and close all open findings within timelines. - Stay updated on regulatory requirements and execute compliance plans. - Conduct control testing for Risk Control Self Assessments (RCSAs) and monitor risk issues and incidents for LOBT. Job Duties & Responsibilities: - Collaborate with stakeholders within and outside DBS to gain a comprehensive view of all Technology Risks. - Work with Technology verticals and Compliance to progress on closure of open points and regulatory requirements. - Identify execution challenges in risk mitigation actions and facilitate resolutions. - Conduct risk assessments for LOBT covering partners, external environment, and potential risks. - Provide regular updates and front dialogues with stakeholders on Risk Management and Mitigation. - Ensure awareness of Technology Risk within the DBS India Technology Team and liaise with Line of Business Risk. Requirements: - Minimum 10+ years of experience in Technology Risk Management, Information Security, and Technology Audit. - Preferred qualifications include risk-accreditations like CISA, CRISC, CISM, CISSP, and experience in Information System audits. - A degree in Computer Science or Technology Management, preferably with a specialization in Information Security. Core Competencies: - Understanding of Information Systems complexity and risk points. - Strong communication skills and ability to engage with seniors effectively. - Willingness to escalate risks for the bank's benefit.,

You will be responsible for establishing the right Key Performance Indicators (KPIs) and tracking performance against them. In this role, you will maintain documentation of Service Level Agreements, ensuring accuracy, and coordinate information sharing with vendors following established procedures and reporting requirements. Additionally, you will be resolving technical and general employee inquiries. To succeed in this position, you should have a proven track record in handling employee inquiries effectively. As part of your role, you will be expected to adhere to Mastercard's security policies and practices, ensuring the confidentiality and integrity of the information you access. You must promptly report any suspected information security violation or breach. Furthermore, you are required to complete all periodic mandatory security training as per Mastercard's guidelines.,

About Deutsche Brse Group: Deutsche Brse Group, headquartered in Frankfurt, Germany, is a renowned international exchange organization and a leading market infrastructure provider globally. The organization empowers investors, financial institutions, and companies by granting them access to the global capital markets. With a comprehensive range of financial market services, including trading, clearing, settlement, custody, digital assets, crypto, market analytics, data, software, and SaaS, Deutsche Brse Group is at the forefront of the financial industry. As a technology-driven company, Deutsche Brse Group is dedicated to developing state-of-the-art IT solutions and offering IT systems worldwide. About Deutsche Brse Group in India: Deutsche Brse Group's Global Capability Centre in Hyderabad serves as a crucial strategic hub that brings together India's top-tier tech talent. The focus is on creating advanced IT solutions that enhance market infrastructure and services. As capital market engineers, the team in India serves as the backbone of financial markets globally. Leveraging the power of innovation and leading-edge IT solutions, the team aims to build trust in both present and future markets. Security Analyst Division: The Security Analyst position is part of the Deutsche Brse AG, specifically under the Chief Information Officer/Chief Operating Officer (CIO/COO), Chief Technology Officer (CTO), Plan & Control division. The CTO division is responsible for developing and maintaining the groupwide Information Technology (IT) infrastructure, innovative IT products, and supporting services. It plays a crucial role in achieving the strategic goals of the Group by leading transformation efforts and ensuring a stable operating environment. Tasks / Responsibilities: - Create IS committee slides on a monthly basis - Assist in developing slides for IS reporting, including audit and Group projects - Document meeting minutes in a structured and comprehensive manner and share with key stakeholders - Consolidate agreed-upon action plans and track progress during Unit team meetings - Aid central teams and CTO teams in organizing penetration tests following Group guidelines - Support in maintaining the knowledge database in Confluence - Execute controls over assigned tasks - Communicate clearly with CTO teams regarding actions needed to address IS risk management issues - Assist in identifying and resolving issues related to the completion and accuracy of CTO assets inventory Qualifications / Required Skills: - University degree in Business Administration or a related field in information technology - 2-3 years of professional experience in an IT team or CISO team - Strong analytical skills and keen attention to detail are essential - Effective communication and interpersonal skills to engage and build relationships with stakeholders across different locations - Collaborative, flexible, and well-organized with the ability to manage multiple tasks and prioritize effectively - Proficient in MS Office applications, especially MS Excel and PowerPoint. Data analytics skills are highly valued - Excellent written and verbal communication skills with proficiency in English. Knowledge of German and French is advantageous.,

We are seeking an experienced Application Security Specialist to join our team. As an Application Security Specialist, you will be responsible for conducting SSDLC security assessments, integrating security throughout the software development lifecycle, and ensuring that applications meet the highest security standards before deployment. Your key responsibilities will include conducting internal and third-party SSDLC risk assessments on critical assets and processes, coordinating with project teams to enforce security frameworks in all phases of the SSDLC, and preparing security effectiveness reports for management. You will also be tasked with performing SSDLC assessments aligning with security practices, ensuring that new applications undergo SSDLC assessments before induction into data centers, and defining and enhancing application security requirements for agile development and traditional architectures. Additionally, you will assist DevSecOps teams in creating secure CI/CD pipeline processes, follow up on and escalate closure of identified security gaps, and contribute to standardizing application security tools and methodologies. The ideal candidate should have at least 6 years of experience in Information Security with a focus on application and software security, along with 4 years of experience in software development lifecycle security reviews. You should also possess expertise in architecture reviews, software design reviews, threat modelling, and design flaw assessments, as well as hands-on experience with SAST, DAST, SCA, IAST, RASP, and other application analysis tools. Familiarity with OWASP, SANS, ISACA, NIST, IETF best practices is required, and the ability to develop detailed security frameworks for developers to integrate into the SDLC is essential. Preferred certifications include CISSP, CSSLP, Cloud Security Certifications, and DevSecOps Automation Certifications. If you meet these qualifications and are passionate about enhancing application security, we encourage you to apply for this position.,

As a member of the Support Risk Management and Supervision team [RMS], your primary responsibility will be to assess the risk profile and the effectiveness of the information security risk systems of the Groups Business and Service Units. You will review IT risk self-assessments and ensure the implementation of agreed risk remediation plans. It is essential to proactively understand existing and upcoming regulations and facilitate local compliance with information security policies and relevant regulations and laws. Additionally, you will assist in the development and changes to the ICT risk frameworks to establish a strong risk management culture and provide expert operational risk advice. Collaborating with senior stakeholders, you will identify ICT risks and evaluate the adequacy of controls to manage such risks, including recommending enhanced or additional controls. You will be proactive in identifying and following up on ICT anomalies and areas of concern. Independently reviewing, challenging, and supporting information security activities will be a key part of your role, including examining analyses conducted by various stakeholders on their information security risk profile and related remediation actions. In response to material information security incidents, whether internal or external, you will conduct independent deep dive reviews of investigation reports and act as a challenge function to such reports. Supporting information security reporting and monitoring metrics and Key Risk Indicators (KRI) at different levels, as well as consulting with internal groups on matters related to information risk controls, self-assessments, security incidents, and infrastructure projects, will also be part of your responsibilities. Additionally, you will participate in validating information security standards and exceptions applied by the Business Units/Service Units. Joining us at Socit Gnrale means being part of a team that values people as drivers of change. Together, we can make a positive impact on the future by creating, daring, innovating, and taking action. Our stimulating and caring environment provides opportunities for personal and professional growth, allowing you to feel useful on a daily basis and develop or strengthen your expertise. You will have the chance to dedicate time to solidarity actions during working hours, supporting various initiatives that contribute to positive change. We are committed to accelerating our Group's ESG strategy by implementing ESG principles in all our activities and policies. Emphasizing diversity and inclusion, we strive to create an inclusive work environment that values and respects differences among individuals.,

The Security Officer position at our company in Bengaluru is a full-time on-site role dedicated to maintaining the safety and security of our premises. Your primary responsibilities will include monitoring surveillance equipment, inspecting buildings, equipment, and access points. It is essential to ensure that all security protocols and procedures are strictly adhered to. Additionally, you will be required to conduct regular security checks and respond promptly to any security threats or breaches that may arise. To excel in this role, you should possess skills in Cybersecurity, Network Security, and Information Security. A good understanding of Physical Security practices and protocols is also necessary. Strong communication skills are crucial for effective coordination with the team and stakeholders. Attention to detail and the ability to respond swiftly to security issues are key attributes we are looking for in potential candidates. The role requires both the capability to work independently and collaboratively as part of a team. Any previous experience in a security role or relevant certification would be considered a plus. If you are passionate about ensuring a safe and secure environment and meet the qualifications mentioned above, we encourage you to apply for this challenging yet rewarding opportunity.,

As a Software Developer, you will be responsible for designing, developing, and deploying high-quality software applications using Angular, Dot Net Core, C#, and SQL Server. You will collaborate with cross-functional teams to identify requirements and develop solutions. Additionally, you will participate in code reviews to provide feedback for improving code quality. Furthermore, you will take on the role of a Technical Leader by leading the development of software applications, providing technical guidance to junior developers, and mentoring them to enhance their skills and knowledge. You will also collaborate with other teams to ensure alignment with company goals and objectives. Your responsibilities will also include developing and maintaining CI/CD pipelines to automate development releases, working with the QA team to ensure software applications meet quality standards, and participating in release management to ensure smooth deployment of software applications. In terms of Performance Optimizations, you will be tasked with identifying performance bottlenecks in software applications, optimizing database queries, and collaborating with the QA team to ensure that performance optimizations do not introduce new bugs. Information Security will also be a key aspect of your role, where you will need to ensure that software applications comply with information security guidelines and regulations, collaborate with the security team to mitigate security risks, and participate in security audits to improve security posture. Your proficiency in using GIT and other version control systems will be essential for managing code changes and collaborating with team members. Additionally, knowledge of caching frameworks like Redis is a plus, as you will collaborate with the team to implement caching solutions to enhance application performance. Collaborating with the L2 Support Team will be important for educating them on new patches, troubleshooting production issues, and providing technical guidance when needed. As a Team Manager, you will be responsible for managing a team of junior developers, providing technical guidance and mentorship, and ensuring alignment with company goals and objectives. Overall, your role will require a strong skill set in C, SQL Server, and .NET, along with the ability to work collaboratively with various teams to deliver high-quality software applications.,

You will be joining a professional services firm affiliated with KPMG International Limited, established in India in August 1993. As part of the KPMG entities in India, you will have the opportunity to leverage a global network of firms and stay updated with local laws, regulations, markets, and competition. With offices located across various cities in India including Ahmedabad, Bengaluru, Chandigarh, Chennai, Gurugram, Jaipur, Hyderabad, Jaipur, Kochi, Kolkata, Mumbai, Noida, Pune, Vadodara, and Vijayawada, you will be exposed to a diverse range of clients both nationally and internationally. In this role, you will be providing services to clients across different sectors, focusing on delivering rapid, performance-based, industry-specific, and technology-enabled solutions. Your work will be driven by a deep understanding of global and local industries, as well as extensive experience in the Indian business environment.,

Job Description: You will be responsible for establishing the right Key Performance Indicators (KPIs) and tracking performance against them. Your role will involve maintaining documentation of Service Level Agreements (SLAs) and reviewing them for accuracy. You will coordinate information sharing with vendors as per established procedures and reporting requirements. Additionally, you will handle technical and general employee inquiries to ensure efficient resolution. All About You: To excel in this role, you should have a proven track record of successfully managing employee inquiries with tact and efficiency. Corporate Security Responsibility: As part of your role, you will be expected to adhere to Mastercard's security policies and practices. It is crucial to maintain the confidentiality and integrity of the information you access. Any suspected information security violations or breaches should be reported promptly. Completing all mandatory security trainings as per Mastercard's guidelines is also essential to ensure a secure working environment. R-253579,

About Gameskraft: Established in 2017, Gameskraft is recognized as one of India's fastest-growing companies, dedicated to building the world's most-loved online gaming ecosystem. Founded by a team of enthusiastic gamers, we have expanded from a small group of 5-6 members to a large family of 600+ Krafters based in our office at Prestige Tech Park, Bangalore. Our primary focus is on creating a safe, secure, and responsible gaming environment for all users. With a vision to deliver unparalleled experiences consistently, we are committed to setting industry-leading standards in design, technology, and user experience. Gameskraft is proud to be the only ISO 27001 and ISO 9001 certified company in the industry. About the Role: Gameskraft is currently seeking a highly skilled Lead Information Security Engineer to spearhead the design, implementation, and management of the organization's security architecture. As a Lead Information Security Engineer, you will collaborate with cross-functional teams, playing a crucial role in safeguarding our critical information assets. Your expertise will be instrumental in enhancing our security posture, ensuring compliance with industry standards, and staying vigilant against emerging threats. Key Responsibilities: 1. **Security Architecture and Strategy:** Design, implement, and uphold the enterprise security architecture. Enforce security policies, standards, and best practices. Evaluate and deploy security tools and technologies to mitigate risks. 2. **Incident Response and Threat Management:** Lead the investigation and resolution of security incidents and breaches. Develop and maintain incident response plans. Conduct threat modeling, vulnerability assessments, and penetration testing. 3. **Risk Management and Compliance:** Perform risk assessments and recommend mitigations to minimize exposure. Ensure compliance with regulatory frameworks and standards (e.g., ISO 27001, NIST, GDPR, PCI DSS). Collaborate with legal, compliance, and audit teams to address security-related requirements. 4. **Leadership and Team Development:** Guide and mentor a team of security engineers and analysts. Cultivate a culture of security awareness throughout the organization. Collaborate with IT and development teams to integrate security into the DevSecOps lifecycle. 5. **Stakeholder Collaboration:** Serve as the primary security liaison for stakeholders, including executives, customers, and external auditors. Communicate security risks and recommendations to non-technical audiences. Partner with product and engineering teams to incorporate security into all development stages. Qualifications and Skills: - **Education and Experience:** Bachelor's degree in Computer Science, Information Security, or a related field. Minimum of 5-7 years of information security experience, with at least 2 years in a senior role. - **Certifications:** Preferred certifications include CISSP, CISM, CISA, CEH, or equivalent. - **Technical Expertise:** Profound knowledge of security frameworks (e.g., NIST, ISO 27001, CIS Controls). Proficiency in security tools like SIEM, IDS/IPS, firewalls, DLP, and endpoint protection. Expertise in cloud security (AWS, Azure, GCP) and container security. Understanding of cryptography, secure coding practices, and network security protocols. - **Soft Skills:** Strong problem-solving and analytical skills. Exceptional communication and stakeholder management abilities. Work Culture: Gameskraft offers a true startup culture characterized by youth, a fast-paced environment, and a focus on personal ownership of challenges that promote rapid growth. Innovation, data orientation, result-driven mindset, pursuit of ambitious goals, and adaptability are central to our work culture. We foster a high-performance, meritocratic setting where idea sharing, debates, and collective growth are encouraged with each new product. Employees can expect to make a significant impact through solving dynamic challenges, leveraging technology, and analytics, and collaborating with cross-functional teams to deliver exceptional products to the market. Compensation & Benefits: Gameskraft provides an attractive compensation package alongside ESOP benefits. Employees receive a medical insurance cover of INR 5 lakh for themselves and their family, fair and transparent performance appraisals, a car lease policy, relocation benefits, and access to a vibrant office space with fully stocked pantries. Additionally, lunch is provided. If you are passionate about creating exceptional user experiences, possess strong leadership skills, and have a proven track record of successful data science, we invite you to apply for this exciting opportunity. Gameskraft is committed to fostering equal employment opportunities and building an inclusive work environment where every individual can thrive. Together, we can achieve more!,

As a Senior Security Architect focusing on Information Security at Mobileum in Gurgaon/Gurugram, you will be responsible for owning the design, implementation, and continuous improvement of the enterprise security architecture covering on-premises and cloud environments. Your role will be pivotal in driving the secure IT infrastructure and technology adoption, including emerging AI/ML technologies, while ensuring best practices are integrated across vulnerability management, secure software development, incident management, and security operations. Your key responsibilities will include defining, reviewing, and enhancing the enterprise security architecture strategy to support business agility and address evolving threat landscapes and compliance requirements. You will provide expert guidance on the secure design and architecture of IT systems, cloud platforms, and network environments. Additionally, you will evaluate emerging AI/ML technologies for security risks and suitability, recommend and oversee the deployment of security technologies, collaborate on vulnerability and patch management processes, integrate security principles throughout the software development lifecycle, enhance incident management processes, and collaborate with cross-functional teams to ensure alignment with operational requirements. To excel in this role, you should have 7-12 years of progressive experience in information security architecture, including expertise in secure architecture design for complex IT environments, multi-cloud platforms, and hybrid infrastructure. Strong hands-on knowledge of security technologies, familiarity with security frameworks, experience with threat modeling and risk assessment, and proven skills in communication, collaboration, and stakeholder management are essential. Preferred certifications include ISSAP, CISSP, CCSP, CISM, CISA, AWS Certified Security, Microsoft Certified: Azure Security Engineer Associate, Google Cloud Professional Cloud Security Engineer, Certified AI Security Professional, Google Cloud Professional Machine Learning Engineer, and Microsoft Certified: Azure AI Engineer Associate. A Bachelor's or Master's degree in Computer Science, Cybersecurity, Information Technology, or a related discipline is preferred. This position is based in Gurgaon.,

As a Regional Information Security Officer (RISO) at SAP in Germany, your role will be crucial in maintaining our system security posture and safeguarding our customer's data from unauthorized use. You will play a vital part in risk management by protecting our systems, identifying threats and vulnerabilities, and ensuring security compliance through mitigation and remediation efforts. Collaboration with the Business Information Security Officer for the Soveregin Services organization will be essential to customize the central security framework, address India's regulatory requirements, and implement an information security framework accordingly. Your responsibilities will include: - Demonstrating a commitment to maintaining office presence to facilitate efficient team collaboration. Joining the SAP Sovereign Cloud Delivery India unit will involve contributing to the provision of SAP's Sovereign Cloud Services in India. Your focus will be on cloud landscape architecture design, construction, maintenance, and operation to deliver stable, secure, and resilient cloud services that align with local laws, regulations, and India's unique security and digital sovereignty needs. You will collaborate closely with the central Architecture team, Security Office, Engineering teams, and Regulatory and Governance teams in India. At SAP, we are dedicated to helping our over four hundred thousand global customers work together more efficiently and leverage business insights more effectively. With a rich history in enterprise resource planning (ERP) software, we have evolved into a market leader in end-to-end business application software, database services, analytics, intelligent technologies, and experience management. Our cloud-based company, with over two hundred million users and a hundred thousand employees worldwide, is driven by purpose and future-oriented, emphasizing teamwork and personal growth. We believe in connecting industries, people, and platforms to provide tailored solutions for every challenge. Our culture at SAP is rooted in inclusion, well-being, and flexible working models to ensure that everyone, regardless of background, feels valued and empowered to perform at their best. We celebrate the unique capabilities and qualities each individual brings to our company, investing in our employees to foster confidence and unleash their full potential. As advocates of diversity and equality, we strive to create a fairer and more inclusive world by unleashing all talents and promoting equity. SAP is a proud advocate of equal opportunity and affirmative action, committed to Equal Employment Opportunity values. We offer accessibility accommodations to applicants with physical or mental disabilities and encourage individuals to request assistance or accommodation by contacting our Recruiting Operations Team at Careers@sap.com. For existing SAP employees, please note that only permanent roles are eligible for the SAP Employee Referral Program, subject to the eligibility rules outlined in the SAP Referral Policy. Specific conditions may apply to roles in Vocational Training. We believe that a diverse and inclusive workforce is essential for our success, and we are dedicated to providing a workplace where everyone can thrive and contribute their best. As a potential candidate, you may be required to undergo a background verification process conducted by an external vendor to ensure a safe and secure work environment. Requisition ID: 431367 | Work Area: Software-Development Operations | Expected Travel: 0 - 10% | Career Status: Professional | Employment Type: Regular Full Time | Additional Locations: #LI-Hybrid. Job Segment: Information Security, Cloud, ERP, Compliance, Computer Science, Technology, Legal,

Morningstar is a global provider of independent investment insights with a focus on data, research, and design to empower investor success. As a Senior IT Internal Auditor reporting to the Audit Committee of the Board of Directors, you will be a part of the Global Audit and Assurance (GAA) function aimed at strengthening Morningstar's ability to create, protect, and sustain value through independent and objective assurance and consulting services. Your role will involve evaluating the company's information technology and information security processes, as well as assessing the effectiveness of internal controls. You will participate in information technology integrated reviews and evaluate IT general controls for external financial reporting compliance. Based in Mumbai, you may travel to various domestic and international locations to support the IT internal audit plan. Collaboration with management at all levels will be crucial as you recommend control enhancements for increased efficiencies and risk reduction. Additionally, you will have access to world-class audit tools and methodologies to support your responsibilities. Key responsibilities include planning and executing information technology and integrated audit reviews, performing walkthroughs of complex IT processes, documenting work, supervising audit staff, applying internal control frameworks, assisting with risk assessment and audit plan development, and serving as a consultant to management. To excel in this role, you should be action-oriented, possess strong communication skills, work well independently or in teams, diagnose problems effectively, and have a solid understanding of IT general controls, system development life cycle, and IT auditing techniques. Knowledge of IT audit and governance frameworks, GDPR, CCPA, and professional accreditations such as CIA, CISA, or CPA are preferred qualifications. A minimum of 7 years of internal or external audit experience in assessing IT/security controls and/or internal controls over financial reporting is required. Morningstar values diversity and is an equal opportunity employer.,