Get alerts for new jobs matching your selected skills, preferred locations, and experience range. Manage Job Alerts
4.0 - 8.0 years
6 - 10 Lacs
Noida
Work from Office
About Us: Tsaaro Consulting is dedicated to Data Privacy and Information Security as its core focus Our team comprises specialized data privacy consultants, information security experts, and penetration testers, all working to empower our clients with seamless and highly efficient security solutions Our approach is centered around customization, understanding the unique needs of each organization, and finding solutions that align with their budget and resource constraints This is an intern-to-hire program with a 3-6 month training period During this time, you will be hired as a Senior Intern with the potential to convert to a Senior Consultant upon successful completion of the training The program offers comprehensive training, client exposure, mentorship, and hands-on experience to equip you with the knowledge and skills necessary to excel in a data privacy consulting career Key Responsibilities Participate in an intensive training program covering data privacy laws, regulations, frameworks, and best practices Engage in continuous learning opportunities through workshops, seminars, and online courses Assist in the development and implementation of data privacy policies and procedures for clients Conduct data privacy impact assessments and data protection audits Provide guidance on compliance with data privacy regulations such as GDPR, CCPA, and other relevant laws Work closely with clients to understand their data privacy needs and provide tailored solutions Support clients in managing data breaches and responding to privacy-related inquiries Prepare detailed reports, documentation, and presentations for clients Maintain accurate records of consulting activities and client interactions Collaborate with cross-functional teams to deliver comprehensive data privacy solutions Share knowledge and insights with team members to foster a collaborative learning environment Requirements Must Have Bachelors degree in any field Advanced degrees in Business, Information Technology, or related fields are a plus Minimum of 2-5 years of experience in a technical field or any other professional field Demonstrated interest in data privacy, data protection, or compliance is preferred but not required Strong analytical and problem-solving skills Knowledge of GDPR , CCPA or other privacy laws Proficiency in Microsoft Office Suite (Word, Excel, PowerPoint) Good to Have Certified OneTrust Privacy Professional, Certified PrivacyOps , familiar with tools such as BigID, Vanta, and Scrut Relevant privacy certifications (such as CIPP, CIPM, or CIPT) are a plus but not required Benefits Competitive salary and performance-based bonuses Professional development opportunities, including training and certifications Flexible working hours and remote work options Collaborative and inclusive work environment Opportunity to work with a passionate team dedicated to making a difference in data privacy and security check(event) ; career-website-detail-template-2 => apply(record id,meta)" mousedown="lyte-button => check(event)" final-style="background-color:#6875E2;border-color:#6875E2;color:white;" final-class="lyte-button lyteBackgroundColorBtn lyteSuccess" lyte-rendered="">
Posted 4 weeks ago
0.0 - 1.0 years
2 - 3 Lacs
Bengaluru
Work from Office
About Us: Tsaaro Consulting's prime focus is on Data Privacy and Security Our team of specialist Data Privacy Consultants, Information Security Consultants, and penetration testers help and advise our Clients to make running a secure business easier with high efficiency Everything We do is tailored to the individual, and organizational requirements, aligned with their budget and resource challenges We take a pragmatic, risk-based approach to provide our clients with real-world, workable advice, guidance, and support That helps them to deal with a wide range of security and privacy-related challenges Looking to take your career in a new, high-impact directionTsaaro Consultings Privacy internship program offers a path for those eager to transition into data privacy and information security, with hands-on experience and mentorship from industry experts Requirements Responsibilities Contribute by writing blogs on data protection, cybersecurity and data privacy Participate in research activities at Tsaaro Create content to assist marketing campaigns Work closely with marketing team members Optimize content using SEO best practices Participate in creating content for social media channels and campaigns Qualifications Pursuing a BA LLB/LLB/LLM, preferably specializing in Data Protection/Cyber Laws Students of 2nd/3rd year (5 years course) and 1st year (3 years course) will be preferred An ideal candidate should have experience in writing content in the area of Data Protection Laws The candidate should have a deep global knowledge of GDPR, DPDPA and other global data protection laws Ability to use Microsoft Suite (MS Excel, MS Power point, MS Word) Ability to understand complex business and data systems Ability to communicate complex results to technical and non-technical audiences Minimum Duration3 Months Benefits Why You Should Apply: Career TransformationThis is a gateway to shift into data privacy- one of the fastest-growing industries Professional GrowthWe provide opportunities for trainings, along with hands-on learning experiences Collaborative EnvironmentJoin a supportive team of experts passionate about privacy Ready to make a real difference in the world of data privacyIf youre looking for a rewarding career change, apply now and start your journey with Tsaaro Consulting! check(event) ; career-website-detail-template-2 => apply(record id,meta)" mousedown="lyte-button => check(event)" final-style="background-color:#6875E2;border-color:#6875E2;color:white;" final-class="lyte-button lyteBackgroundColorBtn lyteSuccess" lyte-rendered="">
Posted 4 weeks ago
4.0 - 8.0 years
6 - 10 Lacs
Mumbai
Work from Office
About Us: Tsaaro is dedicated to Data Privacy and Security as its core focus Our team comprises specialized data privacy consultants, information security experts, and penetration testers, all working to empower our clients with seamless and highly efficient security solutions Our approach is centered around customization, understanding the unique needs of each organization, and finding solutions that align with their budget and resource constraints At Tsaaro, we adopt a pragmatic, risk-based strategy to deliver practical and effective advice By providing real-world guidance, support, and actionable recommendations, we confidently equip our clients to address a broad spectrum of security and privacy challenges Responsibilities As a Senior Data Privacy Consultant, you will be entrusted with the following key responsibilities: Design and implement data protection and privacy programs that cater to our clients' specific business needs, ensuring their sensitive information is well safeguarded Evaluate and assess our clients' data protection and privacy practices, offering valuable insights and actionable recommendations for continual improvement Demonstrate expertise in various standards, such as ISO 27001/2, ISO 22301, ISO 27018, NIST standards on Cyber Security, HITRUST, ISO 27701, etc , to assist clients in compliance and governance Provide guidance and support to clients in adhering to a complex web of national and international laws and regulations, including the EU General Data Protection Regulation (GDPR) and other privacy laws Assist in preparing policies, reports, and schedules for clients and relevant stakeholders, ensuring clear communication and alignment with industry best practices Conduct thorough audits of Privacy controls to monitor program effectiveness and compliance, ensuring data protection is at its optimal level Utilize online tools to facilitate Incident Management and Data Subject Rights processes, ensuring efficient and timely responses to potential data incidents Foster and maintain productive working relationships with client personnel, promoting effective collaboration and understanding of their specific needs Demonstrate a strong commitment to adhering to workplace policies and procedures, maintaining the highest standards of professionalism and confidentiality Contribute to cybersecurity engagements, developing cybersecurity strategies, governance, risk, and compliance activities, and cybersecurity policies in line with ISO 27001 and ISO 27701 Perform Gap Assessments, Risk Assessments, ISMS Documentation, Internal Audits, and support during Certification Audits to strengthen overall security frameworks Requirements To be considered for this role, the candidate must meet the following requirements: Possess a sound knowledge of fundamentals of information security systems Have 2-3 years of relevant experience in the field Demonstrate proficiency in standards such as ISO 27001/2, ISO 22301, ISO 27018, NIST standards on Cyber Security, HITRUST, ISO 27701, etc Exhibit a good understanding of GDPR, CCPA, or other privacy laws Display competence in governance and reporting, as well as a strong grasp of cyber and privacy risks Hold relevant qualifications such as CIPM, CIPT, CIPP/E Showcase excellent communication skills, both written and verbal Benefits Competitive salary and performance-based bonuses Professional development opportunities, including training and certifications Flexible working hours Collaborative and inclusive work environment Opportunity to work with a passionate team dedicated to making a difference in data privacy and security check(event) ; career-website-detail-template-2 => apply(record id,meta)" mousedown="lyte-button => check(event)" final-style="background-color:#6875E2;border-color:#6875E2;color:white;" final-class="lyte-button lyteBackgroundColorBtn lyteSuccess" lyte-rendered="">
Posted 4 weeks ago
4.0 - 8.0 years
6 - 10 Lacs
Noida
Work from Office
About Us Tsaaros prime focus is on Data Privacy and Security Our team of specialist data privacy consultants, information security consultants, and penetration testers help and advise our clients to make running a secure business easier, with high efficiency Everything we do is tailored to the individual organizational requirements, aligned with their budget and resource challenges We take a pragmatic, risk-based approach to provide our clients with real-world, workable advice, guidance, and support that helps them to deal with a wide range of security and privacy-related challenges Responsibilities: As a Data Protection Consultant, you will be entrusted with the following key responsibilities: Design and implement data protection and privacy programs that cater to our clients' specific business needs, ensuring their sensitive information is well safeguarded Evaluate and assess our clients' data protection and privacy practices, offering valuable insights and actionable recommendations for continual improvement Demonstrate expertise in various standards, such as ISO 27001/2, ISO 22301, ISO 27018, NIST standards on Cyber Security, HITRUST, ISO 27701, etc , to assist clients in compliance and governance Provide guidance and support to clients in adhering to a complex web of national and international laws and regulations, including the EU General Data Protection Regulation (GDPR) and other privacy laws Assist in preparing policies, reports, and schedules for clients and relevant stakeholders, ensuring clear communication and alignment with industry best practices Conduct thorough audits of Privacy controls to monitor program effectiveness and compliance, ensuring data protection is at its optimal level Utilize online tools to facilitate Incident Management and Data Subject Rights processes, ensuring efficient and timely responses to potential data incidents Foster and maintain productive working relationships with client personnel, promoting effective collaboration and understanding of their specific needs Demonstrate a strong commitment to adhering to workplace policies and procedures, maintaining the highest standards of professionalism and confidentiality Contribute to cybersecurity engagements, developing cybersecurity strategies, governance, risk, and compliance activities, and cybersecurity policies in line with ISO 27001 and ISO 27701 Perform Gap Assessments, Risk Assessments, ISMS Documentation, Internal Audits, and support during Certification Audits to strengthen overall security frameworks Requirements To be considered for this role, the candidate must meet the following requirements: Possess a sound knowledge of fundamentals of information security systems Have 1-2 years of relevant experience in the field Demonstrate proficiency in standards such as ISO 27001/2, ISO 22301, ISO 27018, NIST standards on Cyber Security, HITRUST, ISO 27701, etc Exhibit a good understanding of GDPR, CCPA, or other privacy laws Display competence in governance and reporting, as well as a strong grasp of cyber and privacy risks Hold relevant qualifications such as CIPM, CIPT, CIPP/E Showcase excellent communication skills, both written and verbal Benefits Competitive salary and performance-based bonuses Professional development opportunities, including training and certifications Flexible working hours Collaborative and inclusive work environment Opportunity to work with a passionate team dedicated to making a difference in data privacy and security Join and hustle with the India's fastest privacy and information security consulting company
Posted 4 weeks ago
4.0 - 8.0 years
6 - 10 Lacs
Mumbai
Work from Office
About Us: Tsaaro is dedicated to Data Privacy and Security as its core focus Our team comprises specialized data privacy consultants, information security experts, and penetration testers, all working to empower our clients with seamless and highly efficient security solutions Our approach is centered around customization, understanding the unique needs of each organization, and finding solutions that align with their budget and resource constraints At Tsaaro, we adopt a pragmatic, risk-based strategy to deliver practical and effective advice By providing real-world guidance, support, and actionable recommendations, we confidently equip our clients to address a broad spectrum of security and privacy challenges Looking to take your career in a new, high-impact directionTsaaro Consultings Privacy Apprenticeship Program offers an intern-to-hire path for those eager to transition into data privacy and information security, with hands-on experience and mentorship from industry experts Program Overview This apprenticeship is a 3-6 month intensive training program where you will start as a Data Privacy Apprentice Upon successful completion of the program, youll have the opportunity to transition into a Data Privacy Consultant role During the apprenticeship, you will gain hands-on experience, work with clients, receive mentorship from industry leaders, and emerge fully equipped for a career in data privacy consulting What Youll Be Doing Dive deep into data privacy laws, regulations, and frameworks like GDPR, CCPA, and more Assist in developing and implementing customized data privacy policies for clients Conduct data privacy impact assessments and audits, guiding organizations through compliance and regulatory challenges Work with clients to provide tailored data privacy solutions that meet their unique needs Support clients in managing data breaches and other privacy incidents Collaborate with cross-functional teams to deliver end-to-end privacy and security solutions Prepare and present detailed reports, documentation, and insights for client engagements Requirements What Were Looking For: Must Haves Bachelors degree in any field (advanced degrees in Business, Information Technology, or related fields are a plus) 2-5 years of professional experience in any field with a desire to pivot into data privacy Strong analytical and problem-solving skills Basic understanding or strong interest in GDPR, CCPA, and other privacy regulations Proficiency in Microsoft Office Suite (Word, Excel, PowerPoint) Good To Have Certifications such as OneTrust Privacy Professional, PrivacyOps or familiarity with tools like BigID, Vanta, and Scrut Relevant privacy certifications (CIPP, CIPM, CIPT) are an added advantage, but not required Benefits Why You Should Apply: Career TransformationThis is a gateway to shift into data privacy- one of the fastest-growing industries Professional GrowthWe provide opportunities for trainings, along with hands-on learning experiences Collaborative EnvironmentJoin a supportive team of experts passionate about privacy Ready to make a real difference in the world of data privacyIf youre looking for a rewarding career change, apply now and start your journey with Tsaaro Consulting! check(event) ; career-website-detail-template-2 => apply(record id,meta)" mousedown="lyte-button => check(event)" final-style="background-color:#6875E2;border-color:#6875E2;color:white;" final-class="lyte-button lyteBackgroundColorBtn lyteSuccess" lyte-rendered="">
Posted 4 weeks ago
4.0 - 8.0 years
6 - 10 Lacs
Noida
Work from Office
About Us Tsaaros prime focus is on Data Privacy and Security Our team of specialist data privacy consultants, information security consultants, and penetration testers help and advise our clients to make running a secure business easier, with high efficiency Everything we do is tailored to the individual organizational requirements, aligned with their budget and resource challenges We take a pragmatic, risk-based approach to provide our clients with real-world, workable advice, guidance, and support that helps them to deal with a wide range of security and privacy-related challenges Responsibilities As a Senior Data Privacy Consultant, you will be entrusted with the following key responsibilities: Design and implement data protection and privacy programs that cater to our clients' specific business needs, ensuring their sensitive information is well safeguarded Evaluate and assess our clients' data protection and privacy practices, offering valuable insights and actionable recommendations for continual improvement Demonstrate expertise in various standards, such as ISO 27001/2, ISO 22301, ISO 27018, NIST standards on Cyber Security, HITRUST, ISO 27701, etc , to assist clients in compliance and governance Provide guidance and support to clients in adhering to a complex web of national and international laws and regulations, including the EU General Data Protection Regulation (GDPR) and other privacy laws Assist in preparing policies, reports, and schedules for clients and relevant stakeholders, ensuring clear communication and alignment with industry best practices Conduct thorough audits of Privacy controls to monitor program effectiveness and compliance, ensuring data protection is at its optimal level Utilize online tools to facilitate Incident Management and Data Subject Rights processes, ensuring efficient and timely responses to potential data incidents Foster and maintain productive working relationships with client personnel, promoting effective collaboration and understanding of their specific needs Demonstrate a strong commitment to adhering to workplace policies and procedures, maintaining the highest standards of professionalism and confidentiality Contribute to cybersecurity engagements, developing cybersecurity strategies, governance, risk, and compliance activities, and cybersecurity policies in line with ISO 27001 and ISO 27701 Perform Gap Assessments, Risk Assessments, ISMS Documentation, Internal Audits, and support during Certification Audits to strengthen overall security frameworks Requirements Possess a sound knowledge of fundamentals of information security systems Have 2-3 years of relevant experience in the field Demonstrate proficiency in standards such as ISO 27001/2, ISO 22301, ISO 27018, NIST standards on Cyber Security, HITRUST, ISO 27701, etc Exhibit a good understanding of GDPR, CCPA, or other privacy laws Display competence in governance and reporting, as well as a strong grasp of cyber and privacy risks Hold relevant qualifications such as CIPM, CIPT, CIPP/E Showcase excellent communication skills, both written and verbal Benefits Opportunity to work with a dynamic and innovative team Career growth and development opportunities Competitive salary and benefits package A supportive work environment that values creativity and initiative check(event) ; career-website-detail-template-2 => apply(record id,meta)" mousedown="lyte-button => check(event)" final-style="background-color:#6875E2;border-color:#6875E2;color:white;" final-class="lyte-button lyteBackgroundColorBtn lyteSuccess" lyte-rendered="">
Posted 4 weeks ago
4.0 - 8.0 years
6 - 10 Lacs
Bengaluru
Work from Office
About Us: Tsaaro is dedicated to Data Privacy and Security as its core focus Our team comprises specialized data privacy consultants, information security experts, and penetration testers, all working to empower our clients with seamless and highly efficient security solutions Our approach is centered around customization, understanding the unique needs of each organization, and finding solutions that align with their budget and resource constraints At Tsaaro, we adopt a pragmatic, risk-based strategy to deliver practical and effective advice By providing real-world guidance, support, and actionable recommendations, we confidently equip our clients to address a broad spectrum of security and privacy challenges Responsibilities As a Senior Data Privacy Consultant, you will be entrusted with the following key responsibilities: Design and implement data protection and privacy programs that cater to our clients' specific business needs, ensuring their sensitive information is well safeguarded Evaluate and assess our clients' data protection and privacy practices, offering valuable insights and actionable recommendations for continual improvement Demonstrate expertise in various standards, such as ISO 27001/2, ISO 22301, ISO 27018, NIST standards on Cyber Security, HITRUST, ISO 27701, etc , to assist clients in compliance and governance Provide guidance and support to clients in adhering to a complex web of national and international laws and regulations, including the EU General Data Protection Regulation (GDPR) and other privacy laws Assist in preparing policies, reports, and schedules for clients and relevant stakeholders, ensuring clear communication and alignment with industry best practices Conduct thorough audits of Privacy controls to monitor program effectiveness and compliance, ensuring data protection is at its optimal level Utilize online tools to facilitate Incident Management and Data Subject Rights processes, ensuring efficient and timely responses to potential data incidents Foster and maintain productive working relationships with client personnel, promoting effective collaboration and understanding of their specific needs Demonstrate a strong commitment to adhering to workplace policies and procedures, maintaining the highest standards of professionalism and confidentiality Contribute to cybersecurity engagements, developing cybersecurity strategies, governance, risk, and compliance activities, and cybersecurity policies in line with ISO 27001 and ISO 27701 Perform Gap Assessments, Risk Assessments, ISMS Documentation, Internal Audits, and support during Certification Audits to strengthen overall security frameworks Requirements To be considered for this role, the candidate must meet the following requirements: Possess a sound knowledge of fundamentals of information security systems Have 2-3 years of relevant experience in the field Demonstrate proficiency in standards such as ISO 27001/2, ISO 22301, ISO 27018, NIST standards on Cyber Security, HITRUST, ISO 27701, etc Exhibit a good understanding of GDPR, CCPA, or other privacy laws Display competence in governance and reporting, as well as a strong grasp of cyber and privacy risks Hold relevant qualifications such as CIPM, CIPT, CIPP/E Showcase excellent communication skills, both written and verbal Benefits Competitive salary and performance-based bonuses Professional development opportunities, including training and certifications Flexible working hours Collaborative and inclusive work environment Opportunity to work with a passionate team dedicated to making a difference in data privacy and security check(event) ; career-website-detail-template-2 => apply(record id,meta)" mousedown="lyte-button => check(event)" final-style="background-color:#6875E2;border-color:#6875E2;color:white;" final-class="lyte-button lyteBackgroundColorBtn lyteSuccess" lyte-rendered="">
Posted 4 weeks ago
4.0 - 8.0 years
6 - 10 Lacs
Noida
Work from Office
About Us Tsaaros prime focus is on Data Privacy and Security Our team of specialist data privacy consultants, information security consultants, and penetration testers help and advise our clients to make running a secure business easier, with high efficiency Everything we do is tailored to the individual organizational requirements, aligned with their budget and resource challenges We take a pragmatic, risk-based approach to provide our clients with real-world, workable advice, guidance, and support that helps them to deal with a wide range of security and privacy-related challenges We are seeking a talented and dynamic Senior Infosec Consultant to join our team who has a good exposure towards managing the projects relating to Information security domain and privacy protection from scratch Experience2+ years LocationNoida Key Objective And Responsibilities As an Assistant Manager, you will be entrusted with the following key responsibilities: Experience in leveraging industry standards and frameworks such as ISO 27001/2, ISO 22301, ISO 27018, NIST standards on Cyber Security, HITRUST, ISO 27701, etc , to assist clients in compliance and governance Design and implement data protection and privacy programs that cater to our clients' specific business needs, ensuring their sensitive information is well safeguarded Evaluate and assess our clients' data protection and privacy practices, offering valuable insights and actionable recommendations for continual improvement Provide guidance and support to clients in adhering to a complex web of national and international laws and regulations, including the EU General Data Protection Regulation (GDPR) and other privacy laws Data Audits and AssessmentsConducting regular data protection impact assessments (DPIAs) and audits to identify and mitigate privacy risks associated with data processing activities Conduct thorough audits of Privacy controls to monitor program effectiveness and compliance, ensuring data protection is at its optimal level Foster and maintain productive working relationships with client personnel, promoting effective collaboration and understanding of their specific needs Assist in preparing policies, reports, and schedules for clients and relevant stakeholders, ensuring clear communication and alignment with industry best practices Contribute to cybersecurity engagements, developing cybersecurity strategies, governance, risk, and compliance activities, and cybersecurity policies in line with ISO 27001 and ISO 27701 Perform Gap Assessments, Risk Assessments, ISMS Documentation, Internal Audits, and support during Certification Audits to strengthen overall security frameworks Utilize online tools to facilitate Incident Management and Data Subject Rights processes, ensuring efficient and timely responses to potential data incidents Demonstrate a strong commitment to adhering to workplace policies and procedures, maintaining the highest standards of professionalism and confidentiality Requirements To be considered for this role, the candidate must meet the following requirements: Hold relevant qualifications such as CIPP/E, CIPM, FIP, DCPLA, CDPO/IN, CDPO/P, ISO 27001 LA/LI, ISO 27701 LApreferred Minimum 2 years of related work experience; or a masters or MBA degree in business, computer science, information systems, engineering and/or data protection Possess a sound knowledge of fundamentals of information security systems Exhibit a good understanding of GDPR, CCPA, or other privacy laws Display competence in governance and reporting, as well as a strong grasp of cyber and privacy risks Showcase excellent communication skills, both written and verbal Proficiency in Microsoft Office Suite (Word, Excel, Power point) Benefits Opportunity to work with a dynamic and innovative team Career growth and development opportunities Competitive salary and benefits package A supportive work environment that values creativity and initiative Join and hustle with the India's fastest privacy and information security consulting company check(event) ; career-website-detail-template-2 => apply(record id,meta)" mousedown="lyte-button => check(event)" final-style="background-color:#6875E2;border-color:#6875E2;color:white;" final-class="lyte-button lyteBackgroundColorBtn lyteSuccess" lyte-rendered="">
Posted 4 weeks ago
4.0 - 9.0 years
6 - 9 Lacs
Chennai
Work from Office
SOX Auditor Chennai - Guindy, India Information Technology 17132 Overview The SOX ITGC Auditor is responsible for ensuring that the SOX processes support compliance of the internal controls for financial reporting. The SOX ITGC Auditor will perform assurance procedures to assess the design and effectiveness of ITGC, perform quality assurance over existing control, and help prepare reporting for business leadership. Responsibilities Duties and Responsibilities Preform detail-oriented, quality assurance over existing quarterly controls. Execute testing of end of year ITGC and application controls in accordance with defined test attributes and guidance (Tests of Effectiveness) Monitor, follow up on the status of corrective action plans, and test the remediation of identified deficiencies before end of year. Work with external auditors to ensure inquires and requests are addressed. Work with Enterprise Risk Management (ERM), SOX control performers, SOX control evaluators, and control owners to perform end of year tasks. Problem solve and step in to complete work to meet critical deadlines. Education and Experience Bachelors degree or higher in Computer Science, Information Technology, finance or accounting, similar field, or equivalent experience. 4+ years large public company internal and external auditing, with emphasis on IT auditing in large public companies with complex IT hybrid environments and/or large accounting firms with experience auditing a complex IT client base. Strong IT audit program and practices experience. Big 4 IT Audit experience required. Strong understanding of the general computer control areas and IT governance frameworks (e.g., COBIT), Sarbanes Oxley, and COSO framework. Strong ability to understand, assess and prioritize risks across the components of the IT environment (application, operating system, and database). Ability to work independently Strong analytical, interpersonal, and leadership skills with orientation toward process improvement Requirements Duties and Responsibilities Preform detail-oriented, quality assurance over existing quarterly controls. Execute testing of end of year ITGC and application controls in accordance with defined test attributes and guidance (Tests of Effectiveness) Monitor, follow up on the status of corrective action plans, and test the remediation of identified deficiencies before end of year. Work with external auditors to ensure inquires and requests are addressed. Work with Enterprise Risk Management (ERM), SOX control performers, SOX control evaluators, and control owners to perform end of year tasks. Problem solve and step in to complete work to meet critical deadlines. Education and Experience Bachelors degree or higher in Computer Science, Information Technology, finance or accounting, similar field, or equivalent experience. 4+ years large public company internal and external auditing, with emphasis on IT auditing in large public companies with complex IT hybrid environments and/or large accounting firms with experience auditing a complex IT client base. Strong IT audit program and practices experience. Big 4 IT Audit experience required. Strong understanding of the general computer control areas and IT governance frameworks (e.g., COBIT), Sarbanes Oxley, and COSO framework. Strong ability to understand, assess and prioritize risks across the components of the IT environment (application, operating system, and database). Ability to work independently Strong analytical, interpersonal, and leadership skills with orientation toward process improvement
Posted 4 weeks ago
6.0 - 8.0 years
27 - 32 Lacs
Mumbai
Work from Office
: In Scope of Position based Promotions (INTERNAL only) Job Title Control Testing & Assurance Testing Specialist Corporate TitleAssistant Vice President LocationMumbai, India Role Description Deutsche Bank AG (the Bank) has established the Controls Testing & Assurance department (CT&A) as an independent function, reporting to the Chief Administrative Officer (CAO). The Compliance Testing (CT) team within CT&A is responsible for providing assurance testing on the design and operating effectiveness of the businesses control environment and adherence to applicable regulations and the Banks policies. CT develops and executes an annual, risk-based testing plan that covers the risk categories owned by Compliance, across all businesses in the region. The role involves Compliance Testing Reviewer for DB AG Mumba Branch reporting to Compliance Testing team lead in Mumbai. The key relevant businesses are International Private Bank (IPB) Retail banking and Wealth Management business Investment Bank (IB) Fixed Income and Currencies, Origination and Advisory, Research Corporate Bank (CB) Cash Management, Trade Finance & Lending and Security Services What we offer you As part of our flexible scheme, here are just some of the benefits that you will enjoy. Best in class leave policy Gender neutral parental leaves 100% reimbursement under childcare assistance benefit (gender neutral) Flexible working arrangements Sponsorship for Industry relevant certifications and education Employee Assistance Program for you and your family members Comprehensive Hospitalization Insurance for you and your dependents Accident and Term life Insurance Complementary Health screening for 35 yrs. and above Your Key Responsibilities Support development of a plan for the location of coverage based on the Controls Testing & Assurance planning methodology. This will also involve collaboration with various Compliance stakeholders to ensure the implementation of adequate and effective testing program that meet local regulatory requirements. Execute testing program for controls including branch visits across India. Perform control testing based on requirements prescribed by RBI including annual review of Risk Based Supervision (RBS) Tranche III Ensure that all issues raised in CT have adequate remediation plans that are tracked and escalated promptly and appropriately. Develop relationships with the relevant Business Management offices, Divisional Control teams and Infrastructure functions. Sharing best practice and learnings with CT colleagues locally/regionally/globally. Assisting in the development and maintenance of appropriate Management Information to inform Senior Management of pertinent matters, in line with global Deutsche Bank/Compliance/CT standards and Assisting in any ad-hoc projects and tasks as necessary. Your Skills and Experience CA/MBA or other professional qualifications. CFA or FRM or partial qualification would be an advantage. Minimum of 8 to 10 years experience in compliance/ internal audit / control testing within a Financial Institution. Good experience of interpretation of RBI guidelines and applying them for control testing Good combination of performing risk-based reviews along with mandatory RBI regulatory reviews Prior experience of working with banking franchise in India along with Big 4 firms Good understanding of banking business in India, regulatory framework and various product offerings Proven investigative and analytical mindset & skills enquiry, analysis, interviewing, testing; well versed with technology and applications that can be utilized for assurance testing. Good drafting skills, including the ability to record and describe complex issues clearly and succinctly, in a way that are easily understandable by any recipient of the relevant reports. Strong attention to detail and ability to identify changes and impact of any changes to documents, systems, and processes in the context of compliance risks, remediation required, etc. The drive, discipline and enthusiasm to work independently under pressure. Ability to quickly understand complex issues and set a course of action (that others are prepared to follow) to meet specific goals. Strong verbal, written and presentation skills. Proactive seek to find the right solution and options to issues within and outside their specific remit, without being prompted and within an appropriate matrix management framework. Assertive and engaging and able to quickly build and maintain effective working relationships. Strong collaborative team player receptive to exchange of ideas and constructive criticism. Multi-cultural awareness and sensitivity. Proficient in the use of Microsoft Outlook, Excel (i.e., organizing data sets), Word, and PowerPoint. How we'll support you Training and development to help you excel in your career Coaching and support from experts in your team A culture of continuous learning to aid progression. A range of flexible benefits that you can tailor to suit your needs. About us and our teams Please visit our company website for further information https://www.db.com/company/company.htm We strive for a culture in which we are empowered to excel together every day. This includes acting responsibly, thinking commercially, taking initiative and working collaboratively. Together we share and celebrate the successes of our people. Together we are Deutsche Bank Group. We welcome applications from all people and promote a positive, fair and inclusive work environment.
Posted 4 weeks ago
6.0 - 8.0 years
30 - 35 Lacs
Pune, Bengaluru
Work from Office
: Job TitleApplication Security Specialist Corporate TitleAssistant Vice President LocationPune/Bangalore India Role Description DWS is evolving and expanding its internal information security team. In the CSO Information Security Assurance division, your role will involve assessing the implementation of controls to ensure adherence to Information Security Policies and Procedures. This verification process utilizes the most advanced compliance data sources (i.e., compliance evaluation based on operational data, self-assessment, and independent reviews) to determine whether the necessary information security controls have been established in DWSs applications, infrastructure, and IT processes, including EUDA/EUMA. In this context, it evaluates associated risks and identifies vulnerabilities related to unimplemented controls. The service also offers guidance on training and the application of security controls. What we'll offer you As part of our flexible scheme, here are just some of the benefits that youll enjoy Best in class leave policy Gender neutral parental leaves 100% reimbursement under childcare assistance benefit (gender neutral) Sponsorship for Industry relevant certifications and education Employee Assistance Program for you and your family members Comprehensive Hospitalization Insurance for you and your dependents Accident and Term life Insurance Complementary Health screening for 35 yrs. and above Your key responsibilities Your main responsibility will be to adhere to the Information Security roadmap for the applications (ensuring information security compliance) based on IS principles (confidentiality, integrity, and availability), and to verify their alignment with DWS/DB policies. Assist application team with the applications that are scheduled for migration/re-migration projects ensuring that its IS Criticality ratings are updated according to the DWS/DB IS criticality methodology. Take part in CSO assurance meetings associated with secure architecture design, new product approvals or other risk review discussions to prevent any delays or escalations arising from non-compliance. Assist the DWS CSO in executing the hybrid model as outlined for decisions related to the Aurora Operating Model, ensuring proper alignment with DB CSO ORR controls. Perform security assurance tasks on DWS CSO solutions, business applications, and IT infrastructure located within the Proteus environment. Conduct a security assessment when retiring business applications or IT applications in the Proteus environment. Aid in resolving regulatory findings and guarantee that there are no outstanding audit issues. Act as a liaison among key role holders such as ITAOs and TISOs to create a secure environment by assessing the Information Security needs. Provide support for the governance of EUDA within a DWS Unit. Contribute to the creation, testing, and management of IS Security Compliance campaigns in accordance with business needs (including documentation and training). Oversee Assurance processes and evidence evaluations throughout DWSs application portfolio to aid in reducing risks linked to non-compliant controls for all DWS entities. Assist in ensuring consistency with all other Control Functions for Operational Readiness. Security compliance reporting is a crucial aspect of the security assurance team. Therefore, you are required to work on the promptness of reporting, the precision of the content, and the comprehensiveness of risk and controls. Ensure automation in reporting and delivering value. Your skills and experience Clear understanding of information security risk and compliance framework. Experience in application security assessment activities. Minimum 8-14 years experience in Information security management area. Understanding on how application security policies, standards, requirements and controlsare defined. Strong Microsoft office (excel macro), automation and analytics experience. Experience in working with information security governance solutions. Experience in CISO Application Security Governance process design Proven experience with Information Security Standards implementation (e.g. ISO27001, ) Proven experience in implementing Risk management standards Any globally recognized information security certification (highly preferred) Graduation and above (preferably IT, Computer science) Understanding of current industry and agency standards, best practices, and/or frameworks i.e.MITRE ATT&CK, NIST, DORA, ENISA, ISO27001, SOC2, SoX, PCI, etc. Dedicated to undertaking any assigned tasks or projects related to CSO. Ability to explain, document and present Information Security risks in a clear, concise and understandable manner, ability to present a big picture and connect the dots Detailed oriented, collaborative and team oriented, ability to manage conflicts with Senior stakeholders Must work independently and can collaborate comfortably in a matrix organization with international teams. Excellent verbal and written communication skills, including the ability to effectively participate in and sometimes lead discussions and meetings with internal and/or executive management and other groups involved in Physical Security/technology control assessments. Structured and reliable work style How we'll support you Training and development to help you excel in your career Coaching and support from experts in your team A culture of continuous learning to aid progression A range of flexible benefits that you can tailor to suit your needs About us and our teams Please visit our company website for further information: https://www.db.com/company/company.htm
Posted 4 weeks ago
5.0 - 10.0 years
5 - 13 Lacs
Gurugram
Hybrid
• 8+years of experience in governance, risk & compliance • Experience in managing and leading a team of GRC professionals • Basic/advanced understanding of Information Security and standards such as ISO 27001, ISO27701, HIPAA, GDPR etc.
Posted 4 weeks ago
2.0 - 5.0 years
8 - 14 Lacs
Mumbai
Work from Office
Permanent opportunity with an RBI-licensed FinTech company for professionals with 2-5 years of experience in GRC, InfoSec, or Compliance.Requires expertise in PCI DSS, ISO 27001, SOC 2, GDPR, RBI guidelines, & experience in audits & risk assessments.
Posted 4 weeks ago
2.0 - 5.0 years
13 - 18 Lacs
Bengaluru
Work from Office
We are looking for a Privacy Analyst to join our growing team of privacy experts, who will be a key component in ensuring our global privacy program is improved and implemented in the Asian region. In this role, you will play a critical part in ensuring that our data privacy practices meet regulatory requirements and reflect best practices. You will be a part of the global privacy team, but work with local business to support privacy initiatives, conduct risk assessments, assess local legislation and implement privacy compliance programs. To succeed, we think you have a good balance between being a team player who can support and improve the roadmap and program set by the global team, while still be able to work autonomously to implement and maintain the privacy program locally. About the Role In this opportunity as Analyst, Privacy & Cybersecurity Law , you will Monitor and inform about the latest developments in privacy laws and technologies. Help develop and strengthen the global privacy program by providing input and feedback related to local privacy laws. Implement and maintain global privacy policies and procedures locally. Collaborate with legal, IT, and business teams to integrate privacy controls into systems and processes. Monitor and respond to privacy-related inquiries and requests. Provide training and guidance to employees on data privacy best practices. About You Youre a fit for the role of Analyst, Privacy & Cybersecurity Law if your background includes Bachelor’s degree in Information Technology, Law, Business, or a related field. 2-5 years of experience in data privacy, data protection, or a related role. Strong understanding of asian privacy laws and regulations, such as for example PIPL, DPDPA, PDPA and others. Excellent analytical and problem-solving skills. Effective communication and interpersonal skills. Relevant certifications are a plus. #LI-HS1 What’s in it For You Hybrid Work Model We’ve adopted a flexible hybrid working environment (2-3 days a week in the office depending on the role) for our office-based roles while delivering a seamless experience that is digitally and physically connected. Flexibility & Work-Life Balance: Flex My Way is a set of supportive workplace policies designed to help manage personal and professional responsibilities, whether caring for family, giving back to the community, or finding time to refresh and reset. This builds upon our flexible work arrangements, including work from anywhere for up to 8 weeks per year, empowering employees to achieve a better work-life balance. Career Development and Growth: By fostering a culture of continuous learning and skill development, we prepare our talent to tackle tomorrow’s challenges and deliver real-world solutions. Our Grow My Way programming and skills-first approach ensures you have the tools and knowledge to grow, lead, and thrive in an AI-enabled future. Industry Competitive Benefits We offer comprehensive benefit plans to include flexible vacation, two company-wide Mental Health Days off, access to the Headspace app, retirement savings, tuition reimbursement, employee incentive programs, and resources for mental, physical, and financial wellbeing. Culture: Globally recognized, award-winning reputation for inclusion and belonging, flexibility, work-life balance, and more. We live by our valuesObsess over our Customers, Compete to Win, Challenge (Y)our Thinking, Act Fast / Learn Fast, and Stronger Together. Social Impact Make an impact in your community with our Social Impact Institute. We offer employees two paid volunteer days off annually and opportunities to get involved with pro-bono consulting projects and Environmental, Social, and Governance (ESG) initiatives. Making a Real-World Impact: We are one of the few companies globally that helps its customers pursue justice, truth, and transparency. Together, with the professionals and institutions we serve, we help uphold the rule of law, turn the wheels of commerce, catch bad actors, report the facts, and provide trusted, unbiased information to people all over the world. About Us Thomson Reuters informs the way forward by bringing together the trusted content and technology that people and organizations need to make the right decisions. We serve professionals across legal, tax, accounting, compliance, government, and media. Our products combine highly specialized software and insights to empower professionals with the data, intelligence, and solutions needed to make informed decisions, and to help institutions in their pursuit of justice, truth, and transparency. Reuters, part of Thomson Reuters, is a world leading provider of trusted journalism and news. We are powered by the talents of 26,000 employees across more than 70 countries, where everyone has a chance to contribute and grow professionally in flexible work environments. At a time when objectivity, accuracy, fairness, and transparency are under attack, we consider it our duty to pursue them. Sound excitingJoin us and help shape the industries that move society forward. As a global business, we rely on the unique backgrounds, perspectives, and experiences of all employees to deliver on our business goals. To ensure we can do that, we seek talented, qualified employees in all our operations around the world regardless of race, color, sex/gender, including pregnancy, gender identity and expression, national origin, religion, sexual orientation, disability, age, marital status, citizen status, veteran status, or any other protected classification under applicable law. Thomson Reuters is proud to be an Equal Employment Opportunity Employer providing a drug-free workplace. We also make reasonable accommodations for qualified individuals with disabilities and for sincerely held religious beliefs in accordance with applicable law. More information on requesting an accommodation here. Learn more on how to protect yourself from fraudulent job postings here. More information about Thomson Reuters can be found on thomsonreuters.com.
Posted 4 weeks ago
6.0 - 11.0 years
22 - 30 Lacs
Pune
Work from Office
Key Responsibilities: IT Audit Execution and Oversight: Lead and execute IT audit engagements, ensuring thorough assessment of IT systems, processes, and controls. Provide detailed audit findings and actionable recommendations to enhance operational effectiveness and compliance. License and IT Resource Management: Conduct comprehensive reviews of IT software licenses, ensuring optimal utilization and compliance with contractual agreements. Evaluate IT contract resources and align findings with organizational requirements and cost optimization strategies. KPI Review and Performance Monitoring: Assess IT performance metrics, ensuring alignment with organizational objectives and identification of improvement areas. Collaborate with stakeholders to define, track, and optimize IT-related KPIs for improved accountability. Ad-Hoc Requests from MD/CM Office: Address and execute high-priority audit-related tasks and reviews as directed by the MD/CM office, ensuring timely delivery and high-quality outputs. Governance, Risk, and Compliance: Ensure IT audit processes align with governance, regulatory, and compliance requirements. Support the identification and mitigation of IT-related risks, collaborating with cross-functional teams to strengthen risk management. Process Improvement and Best Practices: Continuously evaluate and enhance IT audit processes, incorporating industry best practices and innovative approaches. Develop frameworks to ensure consistent and repeatable audit methodologies across engagements. Stakeholder Collaboration and Reporting: Work closely with IT, finance, and other key departments to streamline audit processes and ensure transparency in reporting. Provide comprehensive reports and dashboards to stakeholders, highlighting key findings, risks, and recommendations. Minimum Qualifications: Bachelor s or master s degree in finance, IT, Data Science, or a related field. Minimum of 6 years of experience in audit, with a strong focus on automation and machine learning. Deep experience in implementing risk and audit solutions using continuous audit methods. Solid understanding of governance, risk, and compliance, especially in the domains of risk and governance. Strong communication skills, both written and verbal. Ability to manage and lead cross-functional teams.
Posted 4 weeks ago
1.0 - 6.0 years
9 - 18 Lacs
Noida, Gurugram, Delhi / NCR
Hybrid
Key Responsibilities: Conduct comprehensive audits of IT systems, networks, and applications to assess their security, integrity, and compliance with regulatory requirements. Candidate should have experience in IT audits of ERP applications, interfaces, Access controls, Segregation of Duties analysis, ITGC, ITAC and audit trail review of various applications as part of IT audit support for statutory audits / external clients. Candidate should have good understanding of audit methodology and legal / regulatory requirements from statutory perspective. Evaluate IT policies, procedures, and controls to identify weaknesses, gaps, and areas for improvement. Perform risk assessments and vulnerability scans to identify potential security threats and vulnerabilities. Analyze audit findings and data to develop recommendations for mitigating risks and improving IT processes and controls. Prepare detailed audit reports documenting findings, recommendations, and corrective actions. Communicate audit results and recommendations to management and stakeholders, including technical and non-technical audiences. Collaborate with IT and business stakeholders to implement corrective actions and remediation plans. Stay current with industry best practices, emerging technologies, and regulatory requirements related to IT security and compliance Qualifications: Required: CA/ Btech 1-8 years of experience in the same domain Preferred: CISA/ DISA certified Experience with using data techniques such as IDEA or ACL, Tableau, Qlik, Power BI, SAS or similar SAP certification, reviews of OS (Linux,etc) and database (Oracle,SQL, etc) Good communication skills (Verbal & Written) Skills and Competencies: Need to have extensive experience in Statutory IT Audit / External IT Audit, as an IT auditor support for Financial Statement Audit. Have deep knowledge and experience of testing ITGCs, ITACs (IT Automated) include control testing of domains such as change management, program development, logical access and computer operations Should have relevant experience of working with ERP accounting systems such as SAP, Oracle and other home grown systems Experience in SOC 1 & 2 testing and reporting as well as worked on SoX 404 engagements Should have experience in handling large engagements (private/listed) in India or other geographies with overseeing work of 2 or more people. Monitor time and manage timelines as you would be expected to work on multiple projects at a point of time Good communication skills (Verbal & Written) Flexibility to adapt to a variety of engagement types, working hours and work environments
Posted 4 weeks ago
6.0 - 11.0 years
2 - 7 Lacs
Gurugram
Work from Office
SUMMARY SOX Audit ITGC Testing Team Lead We are in search of a highly skilled and experienced individual to fill the position of SOX Audit ITGC Testing Team Lead for our client's dynamic team in Gurgaon. The ideal candidate should possess a robust technical background and a minimum of 6-8 years of experience in ITGC testing. This role will involve leading and executing ITGC testing activities to ensure compliance with Sarbanes-Oxley (SOX) standards. Key Responsibilities ITGC Testing: Develop and implement comprehensive ITGC test plans and procedures. Identify and evaluate key risks and controls associated with financial reporting. Create and execute test cases to assess control effectiveness. Document test results and deliver detailed reports to management. SOX Compliance: Ensure adherence to SOX requirements and best practices. Contribute to the development and upkeep of SOX documentation. Stay informed about industry trends and regulatory changes. Stakeholder Management: Collaborate with internal and external stakeholders, including auditors and management, to address testing requirements and provide timely updates. Risk Assessment: Identify and evaluate potential risks and vulnerabilities that could impact financial reporting. Recommend mitigation strategies to address identified risks. Continuous Improvement: Identify opportunities for process enhancement and implement best practices to improve testing efficiency and effectiveness. Qualifications and Experience Bachelor's degree in Computer Science, Information Systems, or a related field. Minimum of 6-8 years of experience in ITGC testing. Strong technical background, including knowledge of IT general controls, application controls, and data integrity. Experience with SOX compliance and auditing standards. Excellent analytical and problem-solving skills. Strong communication and interpersonal skills. Ability to work independently and as part of a team. Requirements Qualifications and Experience: Bachelor's degree in Computer Science, Information Systems, or a related field. Minimum of 6-8 years of experience in ITGC testing. Strong technical background, including knowledge of IT general controls, application controls, and data integrity. Experience with SOX compliance and auditing standards. Excellent analytical and problem-solving skills. Strong communication and interpersonal skills. Ability to work independently and as part of a team.
Posted 4 weeks ago
5.0 - 8.0 years
7 - 10 Lacs
Bengaluru
Work from Office
Skill required: Risk & Compliance - Risk Management Designation: Risk and Compliance Senior Analyst Qualifications: Bachelors of Information Technology Years of Experience: 5 to 8 years What would you do? Job Profile:Business Continuity and Information Security Senior AnalystManage information security governance for Accenture.The primary role of security managers is to develop and implement effective security strategies and protocols to protect the company against threats, theft, vandalism and other security risks. This involves conducting risk assessments, identifying vulnerabilities and devising appropriate security measures. To mitigate risks, they develop emergency response plans, conduct drills and training sessions and monitor surveillance systems to respond to security incidents promptly. In case of security breaches, they investigate incidents and implement corrective actions to prevent recurrence. What are we looking for? Qualifications: Degree in Computer Science, Information Security, Information Technology or equivalent experience Professional Certifications (Desirable) ISO 27001 LEAD AUDITOR / Implementer **Mandatory** Previous Experience on information security **Mandatory** Strong understanding of security risk management frameworks such as ISO 27001/27002, GDPR, Data privacy, Business continuitySkills & Experience: Desirable 2+ years of relevant Information Security experience along with managerial experience in any organization Security Consultancy background covering design, risk, compliance, governance, data protection, Identity and assess management, Network security, application security Excellent communication, organization time management and problem-solving skills Exceptional track record of building relationships with stakeholders Strong multi-tasking skills with the ability to manage multiple projects Proven team management skills and proactive mindset Ability to function as a Team Player and maintain a good working relationship, yet think and act independently with professionalism, discretion and confidentiality Attention to detail and willingness to flex based on business priorities Roles and Responsibilities: 3+ years of managerial experience with Solid organizational skills, including multitasking and time-management Act as an advisory /consultant role, a focal point for security compliance related activities and responsibilities that includes implement & propagate ISO 27001 standards within the organization Have relevant knowledge on info security & IT risk assessment Responsible & accountable for ensuring appropriate information security controls are in place for organizational assets. Review and analyze reports and results of the audit, gap analysis and security testing conducted and assist stakeholders with identify practical solutions for any gaps, issue and vulnerability identified. Create and suggest measure to improve Information security processes and procedures. Co-ordinate with external vendor to ensure audits/assessments are completed on time and meet high quality standard. Liaise with relevant teams and external vendors to manage security and regulatory requirements Provide expert guidance on Cyber security related matters Be able to apply Cyber security experience and knowledge with creative and innovative thinking in a broad range of complex and no-routine contexts The role will perform various coordinating tasks, like schedule and follow-up, along with administrative duties, like maintaining project documentation and handling project management office coordination and updates. Collaborate with IT, Business areas and the internal Information Security teams to deliver within deadlines. Act as a single point of contact for all information security programs and projects Provide Daily, weekly, months status updates Prepare Status Plans and dashboards for key initiatives, plans and audit tracking as per management requirements Negotiate and act as an intermediary with Internal Audit and internal teams to close current and future audit items Project management experience will be added advantage Qualifications Bachelors of Information Technology
Posted 1 month ago
2.0 - 6.0 years
4 - 8 Lacs
Hyderabad
Work from Office
The Control Testing with Banking Domain Knowledge role involves working with relevant technologies, ensuring smooth operations, and contributing to business objectives. Responsibilities include analysis, development, implementation, and troubleshooting within the Control Testing with Banking Domain Knowledge domain.
Posted 1 month ago
2.0 - 5.0 years
10 - 12 Lacs
Bengaluru
Work from Office
Looking for a Compliance Consultant with 3–5 years' experience in compliance consulting, strong knowledge of ISO 27001, SOC 1 & SOC 2, and experience in implementation, Risk assessment, Risk register, audits, gap analysis, and readiness assessments.
Posted 1 month ago
4.0 - 9.0 years
0 - 3 Lacs
Thane, Navi Mumbai, Mumbai (All Areas)
Work from Office
Role detail 4 to 8 years of experience in assurance, information security, vendor/ supplier/ third party risk assessment Expertise in cyber security including standards such as ISO27001, PCI-DSS, ISO22301, privacy etc. Knowledge of technical domains such as network security, cloud security, application security, control testing Knowledge of concepts such as vendor risk profiling, country risk assessment, outsourcing/ technology regulations Experience in assessing emerging technologies such as robotics, IOT, DLT, Social, Mobile etc., Exposure to TPRM specific regulations (FED, MAS, OCC, etc.), Exposure in assessing different third parties e.g. Brokers, Exchanges, etc., Worked with TPRM tools, platforms & utilities such as KY3P, TruSight, ServiceNow, OneTrust, CyberGRX, Coupa etc, Strong Auditing skills is desired, experience in IT Compliance, ITGC testing, and Assurance is a plus Strong problem solving and logical approach skills Excellent written and verbal communication skills Consistent display of technical proficiency Ability to work well in teams Willingness to travel within India or abroad for project/assignments. Demonstrate integrity, values, principles, and work ethic and lead by example CISA/ CISSP/ CISM/ISO27001 LA / LI / Cloud security certificates Prior exp in IT Audit, SOC 1, SOC 2 Qualifications: Bachelors degree in computer science or related field Excellent communication and team collaboration skills
Posted 1 month ago
8.0 - 12.0 years
20 - 25 Lacs
Bengaluru
Work from Office
Information Security Manager shall be primarily responsible to : - Run and manage the BAU security infosec operations - Create and maintain ISMS Policy and Process documents - Ensure Infosec compliance with RBI and other regulatory agencies - Participate in IT Infosec Audits and ensure closure of observations within given timeliness - Conduct regular VAPT (Vulnerability Assessments) and track closure of open observations - Identifying and evaluating new IT security technologies and services and implementing it - Ensure cyber security related polices and technologies are in place - Conducting regular Inforsec Awareness within users in the organization The person needs to work closely with the CISO and other stakeholders Risk, IT and Audit teams. The position will based at CreditAccess Grameen HQ in Bangalore, and may require short term travel on need basis to other CAGL offices. Key Accountability: Ensuring adequate security controls are in place & working effectively within the organization for information & cyber security Ensuring effectiveness of all IT controls to prevent any unauthorized access or activities at a system administration level Identify potential security weaknesses through vulnerability assessments and track them to closure within the timeliness Tracking and reporting key risk indicators defined for IT processes Create and maintain the documentation for information system audits in accordance with regulatory and compliance requirements Create Review ISMS policy and process Implement Strategic IT Infosec projects to strengthen the overall IT Security posture at CAGL Mandatory Key Skills BAU,ISMS Policy,IT Infosec Audits,VAPT,cyber security,CISO,Risk,IT Audit,key risk indicators,Information Security*
Posted 1 month ago
4.0 - 6.0 years
11 - 16 Lacs
Bengaluru
Work from Office
Volvo India is looking for Senior IT Security Officer to join our dynamic team and embark on a rewarding career journey. Ensure the security, safety and well-being of all personnel, visitors and the premises Provide excellent customer service Adhere to all company service and operating standards Remain in compliance with local, state and federal regulations Immediately respond to emergencies to provide necessary assistance to employees and customers Protect the companys assets relative to theft, assault, fire and other safety issues Follow procedures for various initiatives, including fire prevention, property patrol, traffic control and accident investigations
Posted 1 month ago
3.0 - 7.0 years
7 - 11 Lacs
Kochi
Work from Office
Job Title Security Analyst Role and Responsibilities The security Analyst is a member of the CISO Regulatory & Compliance Team and will assist in ensuring the associated business units / accounts comply with applicable Conduent and NIS 2 security standards, regulations, and policies.The Security analyst will be professional, independent, impartial, and fair in all interactions. The security resource is accountable for procedures and processes that ensure the integrity, confidentiality, and availability of assigned Business units\u2019 information, applications, and infrastructure. Resource will perform routine risk assessments, security audits, and vulnerability scans to identify, evaluate, document, and remediate organization risk, control gaps and vulnerabilities. This position will be responsible for developing security reports, security recommendations, and security policies and procedures that are meaningful, defensible, and actionable for a variety of audiences as pertained to assigned business units. Perform log collection, correlation, reviews, archival, retention, and monitoring of automated alerts for items such as, and not limited to IPS/IDS alerts; change detection (FIM) alerts application firewall alerts; malware alerts rogue wireless network alerts security system health alerts; exploit attempt alerts Participate and be an integral component of audit, compliance, and regulatory functions, including and not limited to audits of system security to ensure compliance with Corporate security framework NIS 2, NIST 800-53, ISO 27001/2, PCI-DSS emerging country, state, and Federal privacy laws Primary POC in a vulnerability management program of the account that includes external and internal vulnerability scans of applications and systems external and internal penetration tests of applications and systems documentation and remediation of identified vulnerabilities and exploits routinely monitoring various communication avenues for security vulnerabilities and security patches taking a risk-based approach comparing those security vulnerabilities and security patches across the operating environments making recommendations to various IT teams on the mitigation process for those identified security vulnerabilities Coordinate with business units, operations, and technology teams for incident response, remediation, and improvement Acts as the initial point of contact to facilitate the handling of security audits and client requests Supports the creation of business continuity/disaster recovery plans, to include conducting disaster recovery tests, publishing test results, and making changes necessary to address deficiencies Maintain documentation that supports the annual Security compliance attestation as it is relevant to the assigned Business units Qualifications and Education Requirements CIPP, CRISC, CISA, CISSP, CISM, ISO or any security/IT audit certification is a plus. Minimum of Five (3 to 5) Years of experience in IT Security compliance, or Security Auditing is required. Knowledge and understanding of security controls across all security domains, such as access management, encryption, vulnerability management, authentication, authorization, network security, physical security, etc. Ability to identify security risks in application, system, and network architecture, data flow, and processes or procedures Ability to assess the organizational impact of identified security risks and recommend solutions or mitigating controls. Knowledge of security technologies, devices, and countermeasures, as well as the threats they are designed to counter. Experience with developing security reports, recommendations, policies, and procedures that are meaningful, defensible, and actionable for a variety of audiences. Familiarity with more than one framework (NIST 800-series, ISO 27000-series, PCI DSS and ISO, HIPAA, HITRUST, FISMA, FedRAMP other common security control frameworks). Experience in PowerPoint, Word, Excel; experience with Visio and MS Project. Communication skills (interpersonal, verbal, presentation written, email). Experience to write report segments and to participate in presentations. Familiarity with security, workflow, and collaboration tools such Nessus Tenable, Splunk, SharePoint and ServiceNow (Snow) is a plus Positive attitude, team player, self-starter; takes initiative, ability to work independently and effectively with all levels of staff and management both internally and externally Preferred Skills Creating and Maintaining NIST 800-53-rev5 based SSP and POAM Familiarity with more than one framework (NIST 800-series, ISO 27000-series, PCI DSS and ISO, HIPAA, HITRUST, FISMA, FedRAMP other common security control frameworks). Conduent is an Equal Opportunity Employer and considers applicants for all positions without regard to race, color, creed, religion, ancestry, national origin, age, gender identity, gender expression, sex/gender, marital status, sexual orientation, physical or mental disability, medical condition, use of a guide dog or service animal, military/veteran status, citizenship status, basis of genetic information, or any other group protected by law. People with disabilities who need a reasonable accommodation to apply for or compete for employment with Conduent may request such accommodation(s) by submitting their request through this form that must be downloaded:click here to access or download the form. Complete the form and then email it as an attachment toFTADAAA@conduent.com.You may alsoclick here to access Conduent's ADAAA Accommodation Policy. At Conduent we value the health and safety of our associates, their families and our community. For US applicants while we DO NOT require vaccination for most of our jobs, we DO require that you provide us with your vaccination status, where legally permissible. Providing this information is a requirement of your employment at Conduent.
Posted 1 month ago
2.0 - 5.0 years
7 - 11 Lacs
Bengaluru
Work from Office
Project Role : Tech Delivery&Op Excellence Practitioner Project Role Description : Understand how to deliver value to clients, and use that commercial competency to apply methods or certifications appropriately. Attention to detail and deep expertise allow them to see inherent risks or improvement opportunities that others may not. Work directly with client teams to ensure a high standard of delivery and operational excellence are met. Must have skills : Governance Risk Compliance (GRC) Good to have skills : NAMinimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Delivery Lead, you will manage the delivery of large, complex projects using appropriate frameworks, collaborate with sponsors to manage scope and risk, drive profitability and continued success, measure and communicate progress to leadership, and support sales through innovative solutions and delivery excellence. Key Responsibilities:Delivery Assurance specialists work with the service delivery organization and other compliance related functions to help1:Perform and supervise audits/reviews to assess risks in IO service environment2:Manage risk in service delivery to an acceptable level2:Increase the level of awareness of and compliance with policy/process related matters3:Support successful completion of various external compliance certification programs/internal compliance assessments4:Introduce continual improvement including lessons learned from matters requiring intervention.5:This successful candidate for this role will be a member of a dedicated team operating a Controls and Compliance function, which will perform audit style reviews of IO Services outsourcing engagements covering compliance matters and operational service management and service delivery good practice. Technical Experience:1:Minimum four to five years experience in Auditing principles and practices2:Minimum four to five years experience in Infrastructure Services3:Contract Management / Service Reporting4:Risk management or assessment5:Stakeholder management6:Good to have Certifications-CISA/ISO-27001 Lead Auditor/ITIL certification/PPSM and awareness of ISO 20000/CRISC/CISSP/CISM/CIPM/CIPT/CIPP/SOC1/SOC2 awareness, BCM ISO 223001 Professional Attributes:1:Good communication2:Teamwork3:Problem Solving Capabilities4:Work Planning and Management 5:Quick Learner6:Eager to take on responsible task7:Dedicated and Focused Educational Qualification:1:MBA-Information Security/ IT2:BE/B-Tech with CS/IT/related domain3:BSc- IT Additional Information:(i.e., travel, overtime %):1:Occasional within country travel 2:Flexibility in working hours Qualification 15 years full time education
Posted 1 month ago
Upload Resume
Drag or click to upload
Your data is secure with us, protected by advanced encryption.
Browse through a variety of job opportunities tailored to your skills and preferences. Filter by location, experience, salary, and more to find your perfect fit.
We have sent an OTP to your contact. Please enter it below to verify.
Accenture
20312 Jobs | Dublin
Wipro
11977 Jobs | Bengaluru
EY
8165 Jobs | London
Accenture in India
6667 Jobs | Dublin 2
Uplers
6464 Jobs | Ahmedabad
Amazon
6352 Jobs | Seattle,WA
Oracle
5993 Jobs | Redwood City
IBM
5803 Jobs | Armonk
Capgemini
3897 Jobs | Paris,France
Tata Consultancy Services
3776 Jobs | Thane