59 Bcms Jobs

Role Purpose The purpose of this role is to analyse, identify, rectify & recommend specific improvement measures that help in the security posture of the organization by protecting the sensitive information Do Ensuring customer centricity by providing apt cybersecurity Monitoring and safeguarding the log sources and security access Planning for disaster recovery in the event of any security breaches Monitor for attacks, intrusions and unusual, unauthorized or illegal activity Performs moderately complex log reviews and forensic analysis to identify unauthorized or unacceptable access to data or systems Conduct security assessments, risk analysis and root cause analysis of security incidents ...

About the role ISMS /QMS/BCMS ISO 27001:2022 / ISO 9001:2015 /ISO 22301:2019 Lead Auditor - IRCA-approved certification or Equivalent 8–10 years of experience, including relevant IT background 85–90% travel requirementPerform 3rd-party audits and trainings according to ISO/IEC 27001, ISO 9001, ISO 20000-1, ISO 22301 & other IT specific standards/ frameworks Provide timely and accurate reviews of client’s corrective action and closure Provide customers with timely, complete, and accurate reports of their current level of conformity / implementation of their management system Maintain schedule of audit activity with Management System clients Maintain appropriate auditor credentials and pursues...

The role focuses on managing information security certifications and compliance within the organization. The position is based in Chennai under the Corporate Risk CorpCert function. It requires 3-5 years of experience , in ISO 27001, SSAE 18 assessments, and risk management . Role & responsibilities Oversee certification lifecycle for standards like ISO 27001, ISO 22301, SOC 1, SOC 2 . Conduct internal assessments, identify gaps, and ensure timely remediation. Drive compliance with security policies and promote a risk-aware culture . Perform risk assessments and collaborate on mitigation plans. Coordinate external audits and maintain stakeholder communication. Develop monitoring schedules an...

Job Description Information Security Top 5 Skill Set Hands-on experience with security technologies Hands-on experience with GRC platforms (RSA Archer, MetricStream, ServiceNow GRC). Experience in Information security and business continuity internal audits Strong Knowledge in risk management, ISO 27001, ISO 22301 PCI DSS, HIPAA, GDPR, SOC 2 Knowledgeable in security concepts, techniques, tools, methods, and practices Good technical in cyber security products Individually to perform the technical audits. Necessary to be proactive/Assertive and manage the portfolio independently. General description of the role: Minimum 8 years of experience in managing security audits, such as, ISO 27001, HI...

Position: BCP Resilience Manager Location: KPMG India- Mumbai/Gurgaon Department: Technology Consulting Overview: KPMG India is seeking an experienced BCP Resilience Manager to lead a team of consultants in developing and implementing business continuity and disaster recovery solutions across various industries. The successful candidate will play a critical role in advising clients on their resilience strategies, ensuring timely recovery from disruptions, and enhancing their operational and technical infrastructures. The ideal candidate will possess technical expertise, strong communication skills, and a proven track record in business continuity management (BCM) and disaster recovery (DR). ...

Opening with a leading Construction company for their office in Mumbai Role: Sr. Manager (Cyber security & Assurance) Experience: 10 to 20 Years Certifications preferred :CEH,ISO,BCMS,CISM,CISSP,CCSP Role & responsibilities : Responsible for overall Cyber security practice for -IT system and infrastructure ( On Premises Infrastructure, Cloud & Applications) 1. Availability of IT services and developing a resilient infrastructure to reduce failures. 2. Cyber security assurance & compliance on Data center & Cloud Operations ( Availability ,Capacity planning , Security compliance, IM/SR/PM/IR 3. Ensure to implement the best practices & NIST,ISO,MITRE ATT&CK framework and methodologies are maint...

As an Assistant Facility Manager HSE, your role involves capturing HSE / GRI data, analyzing and submitting reports. You will be responsible for coordinating with physiotherapists to address requests and conduct trainings related to ergonomics. Additionally, you will perform Pre / Post Employment medical checks for contractual staff and schedule HSE trainings for employees. Your key responsibilities will include: - Collating and analyzing HSE / GRI data - Ensuring timely submission / updation of EIA / PCB documents to concerned authorities - Coordinating with consultants and stakeholders for project-related data - Following up with Regulatory authorities for necessary approvals - Tracking le...

Purpose of the position To conduct on-site assessments against the requirements of relevant standards or specifications To provide expertise, produce surveillance and initial assessment reports and make recommendations for certification decisions. To promote the BSI product offering and solutions to our clients with the view of improving their business performance, managing risk and Making excellence a habit Key responsibilities & accountabilities Undertake management system assessments in accordance with BSI requirements. Prepare assessment reports and deliver findings to clients to ensure client understanding of the assessment decision and clear direction to particular items of corrective ...

Key Responsibilities: Team Leadership: Lead a team of consultants and senior consultants on engaging client projects, providing guidance, mentorship, and support to foster team development. Client Advisory: Serve as a trusted advisor to clients, assisting in the transformation of their business continuity and disaster recovery frameworks to align with current threats and best practices. Solution Development: Develop tailored resilience solutions across industries, focusing on operational, technical, and cyber resilience technologies that enable timely business recovery. Business Impact Analysis (BIA) & Risk Assessment (RA): Conduct BIA and RA activities for client processes to identify vulne...

We support peace and prosperity by building connections, understanding and trust between people in the UK and countries worldwide. For 90 years we have shaped brighter futures through education, arts, culture, language, and creativity. Working with people in over 200 countries and territories, we are on the ground in more than 100 countries. We connect. We inspire. Pay Band: 5 Country/Location: (Advant IT Park) Noida, India Department: GSS English & Exams (IELTS Online) Contract Type: Fixed term contract Closing Date: Thursday 20 November 2025 - 21:29 India Time (GMT +05:30) Role Purpose To deliver optimum floor support by mentoring/ coaching & guiding team members & take ownership in delive...

ISO 27701 & ISO 22301 Implementer/Auditor (5–10 yrs, Bangalore). Lead implementation, internal/external audits, and compliance readiness. Must have Lead Auditor/Implementer certs, strong PIMS & BCMS knowledge, and excellent communication skills. Required Candidate profile Exp in ISO 27701 & 22301 implementation/audit with valid Lead Auditor/Implementer certs. Strong in PIMS, BCMS, communication & stakeholder mgmt. Indep work; doc & ISO integration exp a plus.

Role Purpose The purpose of this role is to analyse, identify, rectify & recommend specific improvement measures that help in the security posture of the organization by protecting the sensitive information Do Ensuring customer centricity by providing apt cybersecurity Monitoring and safeguarding the log sources and security access Planning for disaster recovery in the event of any security breaches Monitor for attacks, intrusions and unusual, unauthorized or illegal activity Performs moderately complex log reviews and forensic analysis to identify unauthorized or unacceptable access to data or systems Conduct security assessments, risk analysis and root cause analysis of security incidents ...

Job Title: Senior Manager GRC & BCMS Location: Juinagar, Mindspace Role Summary We are seeking a seasoned and strategic professional with 12–16 years of progressive experience in Governance, Risk & Compliance (GRC), with demonstrable expertise in Business Continuity Management Systems (BCMS), cybersecurity risk posture assessments and regulatory frameworks. This role is pivotal in driving enterprise-wide risk mitigation, regulatory compliance, operational resilience and security awareness through robust governance structures and proactive risk management. Key Responsibilities Governance, Risk & Compliance (GRC) Design, implement and maintain the organization’s GRC framework in alignment with...

Conduct internal audits for ISO 27001 & BCMS. Identify NCs, recommend corrective actions, and track closure. Support prep for audits. Maintain ISMS/BCMS documentation and evidence. Assist in risk assessments, incident reviews, and BC drills. Required Candidate profile ISO 27001 & BCMS Certification (mandatory ) 4–5 years work experience in internal audits or similar compliance roles. Good understanding of ISO 27001, risk management, and audit practices.

Purpose of the position To conduct on-site assessments against the requirements of relevant standards or specifications To provide expertise, produce surveillance and initial assessment reports and make recommendations for certification decisions. To promote the BSI product offering and solutions to our clients with the view of improving their business performance, managing risk and Making excellence a habit Key responsibilities & accountabilities Undertake management system assessments in accordance with BSI requirements. Prepare assessment reports and deliver findings to clients to ensure client understanding of the assessment decision and clear direction to particular items of corrective ...

About the Role The Technology Risk Management (TRM) Manager will lead the organization's efforts in identifying, assessing, mitigating, and managing technology-related risks. This role involves developing and implementing risk management strategies, policies, and controls to protect the organization's IT infrastructure and data from threats. The TRM Manager will be responsible for continuous monitoring of the risk environment, reporting to TRM leadership, and ensuring compliance with relevant regulations and standards. The role requires close collaboration with other departments to align technology risk strategies with the overall business objectives and to support internal audits and incide...

Position Purpose This position is part of the IT-Risk & Cyber Security team, which is serving all entities of the BNPP Group in Germany and Austria. The mission of the IT-OPC Professional, in accordance with the defined policy defined, is to assure that there are no gaps left uncovered in terms of IT-Risk assessment, corresponding permanent controls, and that operational governance is in place in all IT teams. The role covers from an IT-OPC perspective, all activities which are in the scope of the served entities (local, central and outsourced activities). Risk assessments, 1st level controls and testing of the effectiveness of IT and Information Security solutions are a major part of the da...

Team Member- Information Security Role & responsibilities 1. ISMS Governance Maintain and regularly update the tracker for all Information Security Policies and Business Continuity Management (BCM) Policies . 2. Audit & Compliance Maintain comprehensive records of internal, statutory, and regulatory audits related to Information Security. Track progress of open audit observations and ensure closure within defined Turnaround Time (TAT). 3. Business Continuity & Risk Assessment Evaluate Disaster Recovery (DR) readiness for various applications and infrastructure components; schedule BCP and DR testing as per the defined test cycle. Coordinate with Business SPOCs for Business Impact Analysis (B...

Information Security Analytics are responsible for delivering a comprehensive near-time data warehouse covering all CSO controls. The resultant reporting and analytics will provide an extensive view covering the security posture of all banking applications and portfolios enabling improved risk management practices and awareness. Your key responsibilities Capture requirements for complex and meaningful analytics and system interfacesto ensure full use of data sources Drive creation of meaningful metrics that accurately reflect risk across CSO (Cyber, I&A and Physical Security) Undertake detailed and complex data analysis Develop stories for delivery in an agile delivery process Communicate co...

This role requires expertise in conducting internal audits across business processes, people, facilities, and supporting systems to ensure adherence to regulatory standards, internal policies, and client requirements.

Job Purpose Information security team member (with skip level reporting to CISO) who is proficient in maintaining & managing Endpoint Security. Information Security tool management & governance. Understanding of regulatory requirements, maintaining the tool compliance, configuring the tool policy, logs review & alert/incident handling. Driving information Security projects & Monitoring Key Risk Indicators (KRIs) for Information Security. Duties and Responsibilities A -Minimum required Accountabilities for this roleWe are looking for a ed and dedicated Modern Device Management Specialist to join our IT team. In this role, you will be responsible for the management and security of all company-...

The Director - corporate Quality will be responsible for designing, implementing, and overseeing the organization's Quality, Security, and Compliance programs. This role demands expertise in managing ISMS, QMS, HITRUST, SOC, PCI-DSS, and BCMS frameworks. The incumbent will lead internal audits, interface with external auditing bodies, ensure regulatory compliance, and maintain client trust through proactive governance and communication. KEY RESPONSIBILITIES Develop, maintain, and improve QMS and ISMS frameworks in alignment with industry standards (ISO 9001, ISO 27001, PCI-DSS, SOC, and BCMS) Expertise in managing the HITRUST certification Ensure compliance with security and quality requirem...

Role Purpose The purpose of this role is to analyse, identify, rectify & recommend specific improvement measures that help in the security posture of the organization by protecting the sensitive information Do Ensuring customer centricity by providing apt cybersecurity Monitoring and safeguarding the log sources and security access Planning for disaster recovery in the event of any security breaches Monitor for attacks, intrusions and unusual, unauthorized or illegal activity Performs moderately complex log reviews and forensic analysis to identify unauthorized or unacceptable access to data or systems Conduct security assessments, risk analysis and root cause analysis of security incidents ...

Risk Committee coordination pack production, scheduling and diary management for the meetings & pre-meetings, timely meeting minute issuance MI pack coordination prepare/review/interpret MI across risk typologies for CMB business line. Presenting MI and status on risk and control related topics to CIB teams and relevant stakeholders. Continuous monitoring review of MI, commentary, qualitive documentation of control descriptions and monitoring results, trending, analysis, and timely escalations. Following up on conduct breaches and coordinating remediation as required. Helios administration - Risk Owner/Control Owner/Risk Steward name changes. Issues and Actions status updates. Provide proact...

Role Description: The Awareness & Training Manager, Information Security position will be an integral member of the Information Security and Risk Management team. This role will be responsible for organizing and managing internal and external audits. Work in Chief Information Security Officer (CISO) office under Director, Information Security Governance, Risk and Compliance. Successful candidate will have a good mix of security knowledge, understanding of industry best practice, and a demonstrated background in information security risk management. The Awareness & Training Manager for Information Security will be responsible for developing, implementing, and managing comprehensive security a...