46 Cis Controls Jobs

We are looking for a Senior Security Architect to drive security architecture, governance, cloud security design, and risk management across enterprise-level ICT environments. The role requires deep technical expertise and strong stakeholder alignment skills. Required Qualifications Honours Degree or Postgraduate Diploma (NFQ Level 8 or equivalent) OR Undergraduate/master's degree in information security, Business Management, Information Systems, Computer Science, Engineering, or related fields; OR No degree with 5+ years relevant experience Required Certifications (or equivalent) Minimum One CISSP CISA, CRISC, or CGEIT CCSP (at least one onsite team member) CCNA, CCNP, CCIE, CompTIA Securit...

Job Description: About the Job: The Cybersecurity Risk Management team is part of Chief Security Office (CSO) and responsible for managing multiple teams that facilitate external audits, internal audits, analyze policy exceptions, conduct risk assessments, and run enforceable governance across processes. They work closely with the AT&T Technology Services (ATS) teams and Technology Risk Management (TRM) teams and other CSO teams to ensure the effective and efficient GRC processes. Below are the key responsibilities of the Specialist Audit Management (ISO 27001) position: Develop and maintain audit plans to ensure all activities supporting the annual internal and external ISO 27001 audits are...

As a Team Lead Vulnerability Management Analyst with 6 to 7 years of experience, you will be responsible for leading a team that identifies, assesses, and manages security vulnerabilities across the organization's IT environment. Your role will ensure the timely remediation of risks and maintain the overall health and security posture of the enterprise systems. **Key Responsibilities:** - **Leadership & Team Management** - Lead and mentor a team of vulnerability management analysts. - Assign and prioritize tasks for vulnerability assessments and remediation tracking. - Provide technical guidance and career development support to team members. - Foster collaboration with cross-functional team...

This role has been designed as 'Onsite with an expectation that you will primarily work from an HPE office. Who We Are Hewlett Packard Enterprise is the global edge-to-cloud company advancing the way people live and work. We help companies connect, protect, analyze, and act on their data and applications wherever they live, from edge to cloud, so they can turn insights into outcomes at the speed required to thrive in today's complex world. Our culture thrives on finding new and better ways to accelerate what's next. We know varied backgrounds are valued and succeed here. We have the flexibility to manage our work and personal needs. We make bold moves, together, and are a force for good. If ...

Requisition ID: 9911 Job Location(s): Gurugram, HR, IN, 122022 Time in Office: Hybrid Overview Reporting into Information Security, the Governance, Risk, and Compliance (GRC) Engineer plays an instrumental role in guiding GRC strategies and processes. As the primary GRC authority in India and supporting the global GRC team, this engineer works directly with other partners such as Legal, Risk, Internal Audit, etc. to ensure the alignment of the company's IT and Enterprise risk management framework with its business objectives and regulatory requirements. The GRC Engineer possesses a combination of technical expertise, background in GRC, and applicable frameworks. They will identify, track, an...

Role Overview The Cybersecurity Lead for Media & OTT (Over-the-Top) platforms is responsible for safeguarding digital assets, applications, intellectual property, and customer data against cyber threats unique to the media and streaming industry. This role oversees security strategy, manages a team, and ensures regulatory and industry compliance while also responding proactively to fast-evolving threat landscapes, including piracy, credential theft, and large-scale data breaches. ________________________________________ Key Responsibilities Develop and implement media- and OTT-specific cybersecurity strategy to protect content delivery, user data, and operational integrity. Lead, mentor, and...

Position Overview We are seeking an experienced Security GRC (Governance, Risk & Compliance) Lead to own and drive our Risk Management Program. This role will be responsible for defining, implementing, and maturing enterprise-wide information security risk management practices, aligning them with business strategy, regulatory requirements, and industry frameworks. Key Responsibilities Risk Management Leadership Lead the design, implementation, and continuous improvement of the Information Security Risk Management framework. Conduct regular risk assessments, control evaluations, and threat modeling across systems, vendors, and business processes. Maintain and continuously enhance the Risk Reg...

Job Description: About the Company: Join AT&T and reimagine the communications and technologies that connect the world. Our Chief Security Office ensures that our assets are safeguarded through truthful transparency, enforce accountability and master cybersecurity to stay ahead of threats. Bring your bold ideas and fearless risk-taking to redefine connectivity and transform how the world shares stories and experiences that matter. When you step into a career with AT&T, you won't just imagine the future-you'll create it. We are seeking a SOX Manage Access-Risk & Technology Senior Specailist, you will be a trusted partner to our cross-functional stakeholders, bringing deep process, technology ...

Application Deadline: 31 December 2025 Department: Risk and Compliance Location: Pune Description We are seeking a proactive and knowledgeable Information Security Officer to support the business across all aspects of information security. This role is essential in maintaining and strengthening our security posture, ensuring compliance with our regulatory and legal requirements, including maintaining our ISO/IEC 27001 certification. Reporting to the Head of Information Security, you will play a key role in advising teams on security best practices, assisting with the implementation and continuous improvement of our Information Security Management System (ISMS), and supporting, audits, risk a...

Role Overview: At EG, we develop industry-specific software with a people-first culture fostering innovation, collaboration, and continuous learning. Join our global workforce of 3000+ employees to create software that works for people, not the other way around. Key Responsibilities: - Monitor and respond to vulnerabilities, threats, and security events relevant to the organization - Define and optimize playbooks for different security events - Automate response procedures to security vulnerabilities, threats, and events - Increase maturity of vulnerability management, detection, and response in the organization - Secure cloud, IT, and network infrastructure by defining hardening standards -...

This role has been designed as 'Onsite with an expectation that you will primarily work from an HPE office. Who We Are Hewlett Packard Enterprise is the global edge-to-cloud company advancing the way people live and work. We help companies connect, protect, analyze, and act on their data and applications wherever they live, from edge to cloud, so they can turn insights into outcomes at the speed required to thrive in today's complex world. Our culture thrives on finding new and better ways to accelerate what's next. We know varied backgrounds are valued and succeed here. We have the flexibility to manage our work and personal needs. We make bold moves, together, and are a force for good. If ...

Overview Reporting into Information Security, the Governance, Risk, and Compliance (GRC) Engineer plays an instrumental role in guiding GRC strategies and processes. As the primary GRC authority in India and supporting the global GRC team, this engineer works directly with other partners such as Legal, Risk, Internal Audit, etc. to ensure the alignment of the company's IT and Enterprise risk management framework with its business objectives and regulatory requirements. The GRC Engineer possesses a combination of technical expertise, background in GRC, and applicable frameworks. They will identify, track, and address potential risks, while proactively improving the company's overall GRC postu...

Join us as a Third Party Security Consultant at Barclays, where you'll spearhead the evolution of our digital landscape, driving innovation and excellence. You'll harness cutting-edge technology to revolutionize our digital offerings, ensuring unapparelled customer experiences. To be a successful Third Party Security Consultant , you should have experience with (Mandatory) Experience in third-party risk management, cybersecurity, or information security. Experience in conducting risk assessments, control testing or assurance activities, preferably within ISO27001 or comparable frameworks. Exceptional communication and stakeholder management abilities. Strong analytical skills, with the capac...

Join us as a Senior Third Part Security Consultant. At Barclays, we don't just adapt to the future, we create it. As a Senior Third Part Security Consultant you will support the organisation, achieve its strategic objectives by the identification of business requirements and solutions that address business problems and opportunities. To be a successful Senior Third Part Security Consultant, you should have experience with: Experience in third-party risk management, cybersecurity, or information security. Experience in conducting risk assessments, control testing or assurance activities, preferably within ISO27001 or comparable frameworks. Exceptional communication and stakeholder management ...

Join us as a Senior Third Part Security Consultant. At Barclays, we don't just adapt to the future, we create it. As a Senior Third Part Security Consultant you will support the organisation, achieve its strategic objectives by the identification of business requirements and solutions that address business problems and opportunities. To be a successful Senior Third Part Security Consultant, you should have experience with: Experience in third-party risk management, cybersecurity, or information security. Experience in conducting risk assessments, control testing or assurance activities, preferably within ISO27001 or comparable frameworks. Exceptional communication and stakeholder management ...

We are seeking a strategic, forward-thinking Head of Cyber & Information Security to lead the design, implementation, and governance of enterprise-wide information security frameworks across Webskitters. This senior leadership role will be responsible for defining and executing the organisation's cybersecurity, data protection, and compliance strategyensuring that every platform, process, and client engagement adheres to the highest global security standards. The successful candidate will combine deep technical expertise with business acumen, leading a team of security professionals to safeguard information assets, protect client data, and maintain resilience against evolving cyber threats. ...

About Gruve Gruve is an innovative software services startup dedicated to transforming enterprises to AI powerhouses. We specialize in cybersecurity, customer experience, cloud infrastructure, and advanced technologies such as Large Language Models (LLMs). Our mission is to assist our customers in their business strategies utilizing their data to make more intelligent decisions. As a well-funded early-stage startup, Gruve offers a dynamic environment with strong customer and partner networks. Position Summary The SOC Consultant is responsible for providing expert guidance, implementation support, and optimization strategies for Security Operations Center (SOC) operations. The consultant work...

As a part of the security team at Cohesity, your mission is to assist organizations worldwide in safeguarding their data and staying ahead of evolving cyber threats. Your responsibilities will include identifying vulnerabilities through code analysis and reverse engineering, documenting findings with detailed reports, and providing actionable recommendations to strengthen the security posture of target systems. Staying updated with cybersecurity trends, emerging threats, and technologies is crucial as you contribute implementation plans to enhance product security. **Role Overview:** In this role, you will be responsible for: - Penetrating applications, networks, and systems to identify vuln...

Role Overview We are seeking accomplished Cybersecurity Professionals with 3-6 years of corporate software industry experience to join our mission as an Industry Mentor. This unique role requires a mentor to guide student cohorts through live, industry-standard security operations, risk management, and secure development projects . You will be essential in applying security best practices within the Agile development workflow, ensuring students understand that security is not an afterthought, but an integral part of the workplace way of working. Key Responsibilities You will operate within TrooperCruit's Agile framework system in the Campus as a Workplace model, focusing on the practical imp...

We're looking for a skilled and curious Detection and Response Security Engineer-2 to help strengthen our real-time threat detection and incident response capabilities. You'll be on the front line of our security operations monitoring real-time threats, fine-tuning detection systems, and leading incident investigations across cloud and on-prem environments. If you thrive in a high-stakes environment, love connecting the dots across logs and alerts, and are passionate about staying one step ahead of adversaries, this role is for you. What You'll Do Monitor and analyze security events across infrastructure, applications, and cloud environments using SIEM tools (especially Wazuh ) and endpoint ...

At ABB, we help industries outrun - leaner and cleaner. Here, progress is an expectation - for you, your team, and the world. As a global market leader, we'll give you what you need to make it happen. It won't always be easy, growing takes grit. But at ABB, you'll never run alone. Run what runs the world. This Position reports to: IS Manager Are you ready to shape the future of cybersecurity in a global robotics organization We are looking for a strategic and hands-on Cyber Security Lead to drive our enterprise-wide security strategy, safeguard digital assets, and ensure compliance across all regions and business areas. This is a high-impact role with global reach, reporting directly to the ...

Job Summary: The candidate will be responsible for deploying, managing, monitoring, and optimizing antivirus systems across the enterprise while ensuring compliance with security policies and standards. This role requires in-depth technical knowledge of antivirus technologies, threat detection, and remediation strategies. Key Responsibilities: Serve as the primary point of contact and subject matter expert for antivirus solutions, endpoint security, and malware protection. Design, implement, and maintain antivirus solutions across enterprise endpoints, servers, and cloud environments. Monitor antivirus systems, analyse alerts, and ensure timely response to threats. Conduct malware analysis, ...

Job Description: About the Job: The Cybersecurity Risk Management team is part of Chief Security Office (CSO) and responsible for managing multiple teams that facilitate external audits, internal audits, analyze policy exceptions, conduct risk assessments, and run enforceable governance across processes. They work closely with the AT&T Technology Services (ATS) teams and Technology Risk Management (TRM) teams and other CSO teams to ensure the effective and efficient GRC processes. Below are the key responsibilities of the Senior Specialist Audit Management (ISO 27001) position: Develop and maintain audit plans to ensure all activities supporting the annual internal and external ISO 27001 aud...

Job Title: GRC Analyst Position Summary As a GRC Analyst, you will play a pivotal role in supporting and enabling Governance, Risk, and Compliance (GRC) operations across our cybersecurity services. Your primary focus will be to enhance risk management processes, strengthen compliance frameworks, and support strategic initiatives that drive the organization's security posture and business resilience. You will act as a key collaborator between technical teams, business units, and executive leadership, translating compliance requirements into actionable plans. Key Responsibilities Governance Enablement & Strategy Support the design, implementation, and continuous improvement of the organizatio...

At ABB, we help industries outrun - leaner and cleaner. Here, progress is an expectation - for you, your team, and the world. As a global market leader, we'll give you what you need to make it happen. It won't always be easy, growing takes grit. But at ABB, you'll never run alone. Run what runs the world. This Position reports to: IS Manager IS Global Cyber Security Lead ABB Robotics Are you ready to shape the future of cybersecurity in a global robotics organization We are looking for a strategic and hands-on Cyber Security Lead to drive our enterprise-wide security strategy, safeguard digital assets, and ensure compliance across all regions and business areas. This is a high-impact role wi...