IS Audits - Application, IT Infrastructure, Information Security including Cyber Security, IT Vendor Audits IT Auditor CISA, CISM any certification will do Required Candidate profile BTech, BE, MCA, CA ,Mcom or Certified Ethical Hackers,

Key deliverables: Review PhonePe products, processes, and environments for security and regulatory compliance Conduct due diligence on new and existing technology implementations Support internal departments on compliance with regulators (RBI, NPCI, SEBI, IRDAI, UIDAI) and security requirements Develop control frameworks, conduct gap assessments, and collaborate with teams to mitigate risks early in product development Role responsibilities: Manage audits and implement cybersecurity controls such as NIST, PCI DSS, and ISMS Lead compliance risk assessments and monitor adherence to regulatory standards Provide leadership and manage people within the Technology Risk Compliance team Plan and execute projects independently with high ethical standards and analytical rigor

Notice Period: Immediate/0-15 Days Joiners Only Job Description: We are seeking a highly experienced VP to lead and enhance our cybersecurity audit and assurance programs. The ideal candidate will have extensive experience in conducting and managing penetration testing, red teaming, social engineering assessments, secure code reviews, and full-scale IT and cybersecurity assessments. This leadership role involves overseeing security audits, and strengthening our clients overall security posture. Key Responsibilities: Lead cybersecurity audits and assurance programs across IT systems, applications, and infrastructure for our clients. Oversee penetration testing, red teaming, and social engineering assessments, ensuring effective security testing strategies. Manage secure code reviews and application security assessments to identify and remediate vulnerabilities. Collaborate with SOC teams, vulnerability management teams, and security engineers to enhance threat detection and mitigation. Evaluate third-party security risks and conduct supplier security assessments. Provide executive-level reports on security assurance findings, risks, and mitigation strategies. Ensure compliance with global security standards and frameworks. Mentor and develop a team of cybersecurity auditors, penetration testers, and security analysts. Qualifications and Skills: 15-20 years of experience in cybersecurity audits, security assessments, and assurance programs. Deep expertise in penetration testing, red teaming, social engineering tactics, and secure coding. Strong knowledge of security frameworks such as OWASP, SANS, CIS, NIST 800-53, ISO 27001, SOC 2, and PCI DSS. Experience with security testing tools (Burp Suite, Metasploit, Kali Linux, etc.). Ability to engage with executive leadership and present security risks effectively. Certifications preferred: CISSP, CISA, OSCP, CEH, CRTP, or equivalent.

We Offer Join us as an application audit manager within our cutting-edge controllership function, whereyou will have opportunities to contribute in building world class products that are audit ready. Thisrole also involves direct interaction with the PhonePes business teams, product teams,developers, where you will be encouraged to act as a trusted partner and use your independenceand influencing skills to support the improvement of the entitys risk and control environment. Your future colleagues Join a team where success is driven by our ability to identify emerging risks and presentcompelling arguments with breadth and depth. We collaborate across multiple skillsets (i.e.business, technology, change and data analysts) to build well-informed influencers with deepindustry knowledge and commercial expertise. A forward-thinking attitude has enabled us toadopt new technologies and ideas, helping minimize inefficiencies and maximize thinking time.The department values Diversity and Inclusion (D&I) and is committed to realizing the firms D&Iambition which is an integral part of our global cultural values. We Are Looking For - Must have 6+ Years of Relevant Experience of working on IT Internal / External Auditengagements - Control testing of IT Application Controls (ITAC) and Business processcontrols. - Good understanding of Business Process Reviews, Functional testing and Control gapanalysis. -Testing experience of Oracle Fusion controls and post implementation configurationreviews in different functional modules. - Ideally, you hold an undergraduate degree (BE/BTech/MTech) or CA/ACCA and one ormore IT audit certifications (e.g. CISA, CISSP, CIA) and have an interest in FinancialServices. - Solid understanding of risk and how controls can minimize those risks while beingcommercial. - Proven analytical skills and keen to collaborate with data specialists to shape audit testsand acquire relevant insights from data. - Good time management skills and precision in delivery. - Ability to present information in a succinct and concise way. - Strong social skills, a willingness to help others as well as addressing challengesencountered within audits in a proactive way. - Understands the value of diversity in the workplace and is dedicated to fostering aninclusive culture in all aspects of working life so that people from all backgrounds receiveequal treatment, realize their full potential, and can bring their full, authentic selves towork PhonePe Full Time Employee Benefits (Not applicable for Intern or Contract Roles) Insurance Benefits - Medical Insurance, Critical Illness Insurance, Accidental Insurance, Life Insurance Wellness Program - Employee Assistance Program, Onsite Medical Center, Emergency Support System Parental Support - Maternity Benefit, Paternity Benefit Program, Adoption Assistance Program, Day-care Support Program Mobility Benefits - Relocation benefits, Transfer Support Policy, Travel Policy Retirement Benefits - Employee PF Contribution, Flexible PF Contribution, Gratuity, NPS, Leave Encashment Other Benefits - Higher Education Assistance, Car Lease, Salary Advance Policy

This is regarding opening For IT Audit with leading Financial Industry!! Experience: 3+Years Location: Mumbai Job description: Role is to perform an audit of information systems. Responsibility: Creating succinct and understandable risk/control matrices and reporting Perform the audit in accordance with the audit strategy. When interacting with IT stakeholders, show professionalism, expertise, and clear communication. Exhibit a reasonable understanding of the sector or industry and be cognizant of any technical difficulties or audit concerns. Qualifications: Graduates with pertinent certifications, including CISA. Work Experience: Strong understanding of rules and circulars issued by regulatory bodies (RBI) 47 years of work experience with prior experience in Internal Audit, Risk Management, Regulatory, and Compliance roles in the banking and financial services (NBFC) industries Experience conducting information systems and security audits, application control reviews, and application functionality reviews Experience with audit approach in practice Strong logical and reasoning abilities; the capacity to collaborate well with others; and the technical skill set required of an information systems auditor include: A strong foundation in computer hardware and software expertise; familiarity with a range of operating system. Proficiency in databases Practical knowledge of network architecture; familiarity with other IT infrastructure; and familiarity with application controls and interfaces. Understanding of information security governance; familiarity with computer-assisted auditing techniques (CAATs); and familiarity with the framework for business continuity and disaster recovery. If you are interested kindly share your updated resume on aayushi@thepremierconsultants.com

We define it as a blend of curiosity, ability to unlearn and yet continuously learn, able to connect with meaning and finally the drive to execute ideas till the last mile is achieved. This passion helps us focus on continuous improvement, creative problem solving and collaboration which ensures delivery excellence. Roles & Responsibilities Assists in the development of the annual audit plan and preparation and execution of Internal Audit & Concurrent Audit Strategy and Framework of the corporation for the purpose of evaluating the design and operating effectiveness over established policies and procedures. Oversee the activities of the Finance, Operations, Compliance, Concurrent Audit and Data Analytics function and monitor the activities on a day-to-day basis. To assist in developing scope, risk assessment, audit checklist, audit program for internal/concurrent audit of core processes. Identify new areas/process risks to be covered under Internal / Concurrent Audit from time to time. Identify critical areas for continuous monitoring, both from a Internal / Concurrent Audit perspective, and develop the necessary reports for monitoring. Drive technology adoption within the team through automation of audit processes and planning for Data Analytics across audit areas. To supervise and review execution and coverage of audit plan, drafting audit reports, discussion, and closure of audit reports with the auditees / HODs Preparing presentations held during each quarter etc. for management review and Audit Committee submissions. Ensuring that all critical issues are included therein. Assist in developing and implementing new initiatives amongst the Internal / Concurrent Audit team. Prior to and during each audit, becomes familiar with the business processes and corresponding laws and regulations. Based on established audit scope and objectives, identify and document the objectives, risks, and key internal controls asserted to by management and develop the necessary audit test plan and procedures Lead SOX and ICoFR audit planning, fieldwork (testing and documentation), and reporting Interact with the Company s external auditors and provide assistance as needed during the SOX control testing processes, including attending walkthrough meetings and performing testing on their behalf Aware about IT General Controls and related compliances applicable to TransUnion CIBIL Lead audit planning, fieldwork (testing and documentation), and reporting for domestic and international locations as needed Under the supervision of IAA management, communicate preliminary results to management and obtains validation Monitors open audit issues and conducts post-audit follow-up to evaluate the adequacy of remediation efforts Prepares other ad-hoc reports and assists in special projects as required or requested by supervisor Establish strong working relationships with various teams across the organization and work cohesively with IAA teammates Build collaborative working relationships with internal stakeholders (appropriate levels of management) Execute special projects and process improvements on ad-hoc basis Prior to and during each audit, become familiar with the business processes and be able to articulate the audit objectives and purpose of work performed. Based on established audit scope and objectives, identify and document the key control objectives and develop the necessary audit test procedures at the direction of IAA management. Lead opening meetings with process owners over routine audits. Possess excellent time management skills; plan workload appropriately and demonstrate the ability to manage multiple assessments simultaneously Confidently lead meetings to discuss audit issues with finance management, ensuring their understanding of associated risks, root causes, and the actions needed to remediate Review written draft audit reports for routine audits on the adequacy and effectiveness of controls evaluated; clearly articulate and provide context on any issues identified during closing meetings with management Establish strong working relationships with various teams across the organization and work cohesively with IAA teammates Operate autonomously and manage tasks at hand without manager intervention Take ownership of the assigned tasks and interact with other IAA members in working towards Departmental goals Impact Youll Make: Experience and Skills A Master s degree in Accounting Finance, Business, Data Analytics, or related fields 10-15 years of relevant work experience in public accounting, internal audit or Compliance Certification of CA, CISA, CPA or CIA (or actively working towards) or other similar certifications is an added advantage Working knowledge of the CICRA Act, Companies Act, General Data Protection Regulation (GDPR), Local, State and Central Regulations is preferred Strong written and verbal communication skills, positive attitude and an eagerness to learn Proficiency with technology including MS Office applications; experience with analytics tools such as Power BI, Alteryx, or Tableau is a plus Confidently lead meetings to discuss audit issues with process owners, ensuring their understanding of associated risks, root causes, and the actions needed to remediate Close attention to detail, strong sense of organization and critical thinking skills Ability to work in a team environment, as well as individually Ability to deal with ambiguity and imperfect information Ability to handle multiple projects keeping due dates in mind, demonstrating project management skills Excellent time management skills and ability to manage multiple assessments simultaneously Demonstrated abilities in analysis and problem solving; contribute ideas for process improvements and solutions to moderately complex problems Take ownership of the assigned tasks and interact with other IAA members in working towards Departmental goals Ability to adapt to changing landscapes and processes Intermediate Excel knowledge (intermediate level formulas, pivot tables, etc.) This job is assigned as On-Site Essential and requires in- person work at an assigned TU office location as a condition of employment. TransUnion Job Title Manager II, Audit and Advisory

As an Audit Manager, you will bring to life Internal Audit s value proposition by supporting the bank to move at pace, safely through our enterprise-wide lens and independence to deliver what matters for our customers, the board, and regulators. Your primary responsibility is to provide independent assurance on the risk and control environment. You will support the execution of the Internal Audit Plan for division. You will be accountable for ensuring appropriate and timely assessment of the key risks and controls, and for the design and delivery of assurance activities and insights. You will conduct audit fieldwork for assigned audit areas, contributing to the assessment of the risk profile and controls of the business area under audit. You will critically analyse the appropriateness and effectiveness of internal controls within the business being audited. As part of India branch Internal Audit team, you will assist in regulatory data submissions, periodic and ad hoc reports, and responding to regulatory queries during onsite regulatory inspections or as and when required by the regulators. Banking is changing and we re changing with it, giving our people great opportunities to try new things, learn and grow. Whatever your role at ANZ, you ll be building your future, while helping to build ours. Role Location: ANZ Branch, Mumbai, India Role Type: Permanent, Full-time What will your day look like? As an Audit Manager, you will be responsible with the following: Ensure delivery of timely and quality audit tasks assigned, reporting of findings, messaging to the business, and managing audit teams, providing real-time feedback. Ensure delivery of regulatory required submissions, agreed upon procedures, data validations, attestations - to meet regulatory expectations. Developing and sustaining positive and constructive relationships with key first and second line stakeholders. Audit messages and recommendations are value adding, material, show foresight, are timely, commercial and pragmatic. Support the IA team to raise the standard of customer experience and actively contribute to IA being seen as a value-add business partner. Deliver appropriate assurance through quality audit reports supported by appropriate audit evidence. Manage or execute Audits in alignment with IA methodology and IIA standards and ensure methodology efficiencies are identified. Compile and keep up to date own performance and development plans. Solicit and act on development and performance feedback. What will you bring? To grow and be successful in this role, you will ideally bring the following: Proven experience and understanding of the Institutional banking business. Knowledge of IT General Controls and understanding of payments technology and related controls. Good understanding of the Indian Regulatory environment; experience of and familiarity with RBI s data submission, attestation and validation expectations for Information Systems Audit (for instance RBI s Cyber Security Returns, SWIFT Related Operational Controls) Strong understanding and experience of key Operational Risk and Compliance frameworks and concepts. Knowledge and experience using data analytics tools and techniques to support audit work. Significant experience in internal audit, preferably with foreign banks operating in India, coupled with institutional banking & finance industry knowledge. Focus on technology and / or integrated audits. Able to undertake risk and control analysis of business areas and processes, using this to design and deliver effective assurance activities. Understanding of technology and / or data governance-related regulatory requirements. Able to use and apply Data Analytics techniques in the delivery of audits. Strong track record of delivering high quality work in complex technical areas (e.g. audit, assurance). Excellent verbal and written communication skills. Tertiary qualified, ideally with professional (CPA/CA) and/or post graduate qualifications with strong technically relevant skills. Post Graduate IT qualifications with technically relevant skills (e.g. CISA, CISSP, CISM, ITIL)

Lead the development of strategy, objectives, and action plans for assurance obligations. Conduct multi-stakeholder meetings and participate in senior-level discussions. Engage with internal and external stakeholders, and customers Plan and manage multiple initiatives and projects. Maintain a deep understanding of the business domain and assurance obligations to shape successful execution plans. Recognize complexity within the program and propose simplified solutions. Assist stakeholders in making trade-off decisions by considering all data, including business goals, technical platform strategy, customer experience, and maintainability, with a relentless focus on the customer. Ensure ongoing compliance with statutory and regulatory requirements, anticipate future legislation, enforce adherence to requirements, and advise management on needed actions. Identify, collect, synthesize, and communicate risks and blockers concisely, accurately, and professionally for senior leadership to ensure alignment. Regularly define and review key success metrics for data-focused tracking and proactively seek out new and improved mechanisms for visibility, ensuring the program stays aligned with organizational objectives. Conduct risk assessments to identify potential security and availability risks and advise on the design and governance of controls to mitigate these risks. About You: Bachelors degree or equivalent combination of education and experience; a degree in computer science, information technology, or a related field is preferred. Professional certification like CISSP, CISA, CRISC, CIPP, or similar is a plus. Strong knowledge of IT general computer controls and related operations. Experience with control frameworks (e.g., SOC1, SOC2, ISAE3402/3000, ISO27001, GDPR). Strong interpersonal, communication, and presentation skills necessary for interaction with business leaders and teams across all levels of the organization. Strong negotiation and consensus-building skills. Previous experience in significant process improvements, with the ability to meet project deliverables. Contribute to a work environment that encourages knowledge of, respect for, and the development of skills to engage with those of other cultures and backgrounds.

Are you ready to accelerate your potential and make a real difference within life sciences, diagnostics and biotechnology At Pall Corporation, one of Danaher s 15+ operating companies, our work saves lives and we re all united by a shared commitment to innovate for tangible impact. You ll thrive in a culture of belonging where you and your unique viewpoint matter. And by harnessing Danaher s system of continuous improvement, you help turn ideas into impact - innovating at the speed of life. As a global leader in high-tech filtration, separation, and purification, Pall Corporation thrives on helping our customers solve their toughest challenges. Our products serve diverse, global customer needs across a wide range of applications to advance health, safety and environmentally responsible technologies. From airplane engines to hydraulic systems, scotch to smartphones, OLED screens to paper everyday Pall is there, helping protect critical operating assets, improve product quality, minimize emissions and waste, and safeguard health. For the exponentially curious, Pall is a place where you can thrive and amplify your impact on the world. Find what drives you on a team with a more than 75-year history of discovery, determination, and innovation. Learn about the Danaher Business System which makes everything possible. The Analyst, IT Compliance is responsible for hands-on SOX control testing activities and responsible to ensure assigned processes are compliant with SOX program requirements and deadlines This position reports to the Sr. Manager - IT Compliance and is part of the IT Compliance team located in Pune and will be an on-site role. Perform SOX control testing, process walkthroughs, and documentation reviews, including SOPs and policies. Identify, document, and communicate control issues and audit findings to control owners in a timely manner. Escalate control deficiencies to the IT Compliance Manager and participate in remediation planning with process owners. Support control owners in timely remediation of deficiencies and perform retesting for design and operational effectiveness. Maintain accurate records of controls and testing results to support reporting to senior management and Audit Committee. Contribute to continuous improvement of IT compliance and audit processes. Assist in preparing reports and updates for leadership on compliance testing progress and status The essential requirements of the job include: 5+ years of experience in SOX IT Controls testing and review enterprise applications across the IT ecosystem. Strong independent problem solving, project management and analytical skills in finance, accounting, or auditing related areas SAP application experience desirable Excellent written and verbal communication skills, interpersonal and collaborative skills, and the ability to communicate Sox-related concepts to technical and nontechnical audiences in all levels of the organization, up to and including Executive Management. Bachelor s Degree or equivalent It would be a plus if you also possess previous experience in: Strong hands-on experience with SAP IT General Controls (ITGCs) - including user access management, change management, and IT operations within SAP landscapes (e.g., ECC, S/4HANA). Proven ability to implement, test, and remediate SOX controls in SAP environments. Certified Internal Auditor (CIA), Certified Information Systems Auditor (CISA), or other relevant certifications preferred - with a strong understanding of control frameworks (e.g., COBIT, NIST) and how they apply to SAP systems. Exhibit excellent analytic skills, the ability to manage multiple projects under strict timelines, and to work well in a demanding, dynamic environment and meet overall objectives. Pall Corporation, a Danaher operating company, offers a broad array of comprehensive, competitive benefit programs that add value to our lives. Whether it s a health care program or paid time off, our programs contribute to life beyond the job. Check out our benefits at Danaher Benefits Info . At Pall we believe in designing a better, more sustainable workforce. We recognize the benefits of flexible, remote working arrangements for eligible roles and are committed to providing enriching careers, no matter the work arrangement. This position is eligible for a remote work arrangement in which you can work remotely from your home. Additional information about this remote work arrangement will be provided by your interview team. Explore the flexibility and challenge that working for Pall can provide. Join our winning team today. Together, we ll accelerate the real-life impact of tomorrow s science and technology. We partner with customers across the globe to help them solve their most complex challenges, architecting solutions that bring the power of science to life. For more information, visit www.danaher.com . At Danaher, we value diversity and the existence of similarities and differences, both visible and not, found in our workforce, workplace and throughout the markets we serve. Our associates, customers and shareholders contribute unique and different perspectives as a result of these diverse attributes.

Way of Working - Office/Field - Employees will work full-time from their base location Role – Sales Manager I Job Responsibilities: Serve as the primary point of contact for assigned client accounts, understanding their goals, needs, and challenges Develop account strategies to overcome the challenges and action plans to meet client objectives and maximize account growth as per the target Conduct regular F2F business reviews with clients, discussing performance, identifying areas for improvement, and presenting new opportunities Track and analyze account performance, sales data, account funnel, and market trends to identify opportunities and challenges Drive business growth for newly onboarded partners by working on their basic hygiene and health metrics Deliver Incremental Revenue from the assigned clients through monetization and commercial improvements Deliver incremental counter share for all assigned clients by strategic planning to dominate market share Maintaining a strong relationship with restaurant owners and delivering best-in-class restaurant NPS Collaborate with internal teams to coordinate and deliver exceptional service to clients, addressing any issues or concerns promptly Generate leads and proactively approach potential clients, presenting our value proposition and securing new partnerships Desired Candidate: Graduate with excellent communication skills. Good working knowledge and experience of e-commerce activities and all online marketing channels Confident, Pleasing and a go-getter personality Effective communication skills Attitude & Aptitude for Sales Should be a team player, working alongside people from all walks of life Analytical, good Excel skills Leadership and Influencing skills: Identify, builds, and use a wide network of contacts with people at all levels, internally and externally. Achieves a good result through a well-planned approach Initiative & Flexibility: Recognizes the need to adapt to change & implement appropriate solutions. Be able to identify opportunities and recommend/influence change to increase the effectiveness and success of campaigns Creativity & Initiative: Demonstrate creativity & originality in their work and have the personal drive and initiative to bring about change and help drive the business forward. Being the face of Swiggy in the market and standing up for the values we believe in Key Skills Required: Customer Lifetime Value Business Development Data Logic Data Interpretation Data Visualization MS Excel Data Analysis Result Orientation Managing Relationships Conflict Management Problem-Solving "We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regards to race, colour, religion, sex, disability status, or any other characteristic protected by the law"

Client questionnaires Security auditing ISO 27001:2022 Audit coordination NIST CSF Audit program development Security Analyst / Client Analyst experience Good to Have: CISSP certification ISO certification OneTrust GRC tool experience Role Overview: We are seeking an experienced and motivated Infosec Audit Manager to join our Information Security and Risk Management team. This role reports to the Director of Information Security Governance, Risk, and Compliance and supports the CISOoffice. You will be responsible for managing and coordinating internal and external audits while ensuring regulatory compliance and enhancing the organizationsecurity posture. The ideal candidate is a self-starter with deep technical knowledge, strong audit and compliance experience, and excellent communication and relationship-building skills. Key Responsibilities: Audit Management: Develop audit programs and plans for ISO, SOC 2, and other audits. Manage internal and external audit engagements and coordinate evidence collection through the OneTrust GRC tool. Oversee the entire audit process, ensuring compliance with relevant standards and frameworks. Review audit reports, management responses, and supporting documentation to ensure accuracy and quality. Identify gaps and provide actionable, practical recommendations for improvement. Validate the sufficiency of evidence in line with control requirements. Design both automated and manual control testing methodologies. Governance, Risk & Compliance (GRC): Support the implementation of compliance-by-design and security-by-design principles across the organization. Assess compliance with evolving regulatory requirements such as ISO 27001, NIST 800-53, SOC 2, and HIPAA. Coordinate with stakeholders to perform internal control testing and risk assessments. Conduct internal compliance assessments and prepare stakeholders for external audits. Develop and maintain scalable models and tools for compliance management and reporting. Draft and review internal policies, provide feedback, and support operationalization of policies. Generate audit dashboards and reports for leadership to drive informed decision-making. Stakeholder Engagement & Collaboration: Collaborate effectively across teams and establish strong relationships with control owners and operators. Promote a culture of compliance and awareness aligned with the firmrisk tolerance. Provide guidance and training on security and compliance practices. Experience & Qualifications: Bachelordegree in Computer Science, Engineering, or related field (or equivalent work experience). 812 years of relevant experience in information security audits and compliance. Hands-on experience with security frameworks and standards: ISO 27001:2022, SOC 2, NIST 800-53, NIST CSF, COSO, HITRUST. Experience with regulatory compliance (e.g., HIPAA).

Careers at A-LIGN | Compliance & Cybersecurity Careers Senior IT Auditor ISO 27001 About the Role A-LIGN employs a business model that builds on the best of what the largest corporate security firms have to offer, such as the ability to offer high quality professionals a variety of project experience with high profile clients. What sets us apart is that we have eliminated time reporting, chargeability goals, and sales pressure. As a Sr. IT Auditor specializing in ISO 27001, your primary responsibilities will include standard project execution and client service activities. Client engagements typically last two weeks, which allows our employees the opportunity to work on varied projects over the course of the year and gain varied, valuable experience. Responsibilities Gather evidence on site and review Provide draft reports to management, within defined timelines Provide detailed project status reports weekly to management Organize client information on A-LIGN s drive Plan and execute ISO 27001 engagements under the direction of a member of the management team Communicate effectively to the client, prior to, during, and post on-site visit Review manager s planning meeting minutes, and prepare as appropriate for meetings Prepare lead sheets throughout the project Minimum Qualifications Master s or bachelor s cybersecurity, management information systems, computer science, or relevant discipline At least 3 years of experience in the IT auditing field performing: ISO 27001 Internal Information system audits or information security reviews ISO 27001 Implementation within an organisation Implementation and management of the information security management system (ISMS) Supervision and support of information security audits ISO 27001 PREFERRED BUT NOT REQUIRED External audit experience performing information system audits or information security reviews at a QSAC, accredited ISO 27001 certification body, or accredited FedRAMP 3PAO Currently holds at least one of the following: ISO 27001 LA or LI, CCSK, CISA, QSA, CISSP, or other relevant certification SKILLS Ability to meet deadlines with a high degree of motivation Excellent communication skills Thrives in a fast-paced environment Ability to work individually as well as collaboratively A high degree of motivation About A-LIGN A-LIGN is the leading provider of high-quality, efficient cybersecurity compliance programs. Combining experienced auditors and audit management technology, A-LIGN provides the widest breadth and depth of services including SOC 2, ISO 27001, HITRUST, FedRAMP, and PCI. A-LIGN is the number one issuer of SOC 2 and HITRUST and a top three FedRAMP assessor. To learn more, visit a-lign.com.

Role: Senior Associate Third Party Risk Management (TPRM) About the Company: Join AT&T and reimagine the communications and technologies that connect the world. Our Chief Security Office ensures that our assets are safeguarded through truthful transparency, enforce accountability and master cybersecurity to stay ahead of threats. Bring your bold ideas and fearless risk-taking to redefine connectivity and transform how the world shares stories and experiences that matter. When you step into a career with AT&T, you won t just imagine the future-you ll create it. About the Job: The Third-Party Risk Management (TPRM) team is part of Chief Security Office (CSO) and is responsible for working closely with internal teams including IT Security, Legal, Compliance, and Procurement, to ensure a unified approach to third-party risk management. Below are the key responsibilities: Conduct Cybersecurity Assessments: Perform comprehensive security assessments of third-party vendors, including evaluating their security policies, controls, and practices. Identify potential risks and vulnerabilities in vendor environments and provide recommendations for remediation. Risk Analysis and Reporting : Analyze assessment results to determine the level of risk associated with each third-party relationship. Prepare detailed assessment reports and risk summaries for internal stakeholders, including senior management and the TPRM team. Vendor Onboarding and Monitoring: Assist in the onboarding process for new vendors by conducting initial security assessments and ensuring compliance with Supplier Information Security Requirements (SISR). Monitor and re-assess existing vendors periodically to ensure ongoing compliance and address any emerging risks. Collaboration and Communication : Work closely with internal teams, including IT Security, Legal, Compliance, and Procurement, to ensure a unified approach to third-party risk management. Communicate assessment findings and risk mitigation strategies to third-party vendors in a clear and constructive manner. Policy and Procedure Development : Contribute to the development and enhancement of TPRM policies, procedures, and guidelines. Stay up to date with industry best practices, regulatory requirements, and emerging threats to continuously improve the TPRM program. Training and Awareness : Provide training and awareness sessions to internal teams and third-party vendors on cybersecurity best practices and TPRM requirements. Experience Level: 3+ years. Location: Hyderabad / Bengaluru Required skills: 3 years minimum experience in third-party risk management / risk consulting / cyber security assessments. Demonstrated experience in third-party risk management and vendor security assessments. Strong understanding of cybersecurity frameworks and standards (e.g., NIST, ISO 27001, CIS Controls). Good understanding of various third-party risk management frameworks and standards. Proficiency in using security assessment tools and methodologies. Excellent analytical and problem-solving skills. Strong communication and interpersonal skills, with the ability to convey complex security concepts to both technical and non-technical audiences. Detail-oriented with strong organizational and project management skills. Desirable skills: Knowledge of data protection regulations (e.g., GDPR, CCPA) and their impact on third-party risk management. Prior experience with Telecom sector. Relevant certifications such as CISSP, CISM, CRISC, or CISA Additional information (if any): Need to be flexible to provide coverage in US morning hours. Location: IND:KA:Bengaluru / Innovator Building, Itpb, Whitefield Rd - Adm: Intl Tech Park, Innovator Bldg Job ID R-64589 Date posted 04/24/2025

Role: Specialist Third Party Risk Management (TPRM) About the Company: Join AT&T and reimagine the communications and technologies that connect the world. Our Chief Security Office ensures that our assets are safeguarded through truthful transparency, enforce accountability and master cybersecurity to stay ahead of threats. Bring your bold ideas and fearless risk-taking to redefine connectivity and transform how the world shares stories and experiences that matter. When you step into a career with AT&T, you won t just imagine the future-you ll create it. About the Job: The Third-Party Risk Management (TPRM) team is part of Chief Security Office (CSO) and is responsible for working closely with internal teams including IT Security, Legal, Compliance, and Procurement, to ensure a unified approach to third-party risk management. Below are the key responsibilities: Conduct Cybersecurity Assessments: Perform comprehensive security assessments of third-party vendors, including evaluating their security policies, controls, and practices. Identify potential risks and vulnerabilities in vendor environments and provide recommendations for remediation. Risk Analysis and Reporting: Analyze assessment results to determine the level of risk associated with each third-party relationship. Prepare detailed assessment reports and risk summaries for internal stakeholders, including senior management and the TPRM team. Vendor Onboarding and Monitoring: Assist in the onboarding process for new vendors by conducting initial security assessments and ensuring compliance with Supplier Information Security Requirements (SISR). Monitor and re-assess existing vendors periodically to ensure ongoing compliance and address any emerging risks. Collaboration and Communication: Work closely with internal teams, including IT Security, Legal, Compliance, and Procurement, to ensure a unified approach to third-party risk management. Communicate assessment findings and risk mitigation strategies to third-party vendors in a clear and constructive manner. Policy and Procedure Development: Contribute to the development and enhancement of TPRM policies, procedures, and guidelines. Stay up to date with industry best practices, regulatory requirements, and emerging threats to continuously improve the TPRM program. Training and Awareness: Provide training and awareness sessions to internal teams and third-party vendors on cybersecurity best practices and TPRM requirements. Experience Level: 5+ years. Location: Hyderabad / Bengaluru Required skills: 4 years minimum experience in third-party risk management / risk consulting / cyber security assessments. Demonstrated experience in third-party risk management and vendor security assessments. Strong understanding of cybersecurity frameworks and standards (e.g., NIST, ISO 27001, CIS Controls). Good understanding of various third-party risk management frameworks and standards. Proficiency in using security assessment tools and methodologies. Excellent analytical and problem-solving skills. Strong communication and interpersonal skills, with the ability to convey complex security concepts to both technical and non-technical audiences. Detail-oriented with strong organizational and project management skills. Desirable skills: Knowledge of data protection regulations (e.g., GDPR, CCPA) and their impact on third-party risk management. Prior experience with Telecom sector. Relevant certifications such as CISSP, CISM, CRISC, or CISA Additional information (if any): Need to be flexible to provide coverage in US morning hours. Location: IND:KA:Bengaluru / Innovator Building, Itpb, Whitefield Rd - Adm: Intl Tech Park, Innovator Bldg Job ID R-64590 Date posted 04/24/2025

Our Purpose Title and Summary Director, Technology Risk Management Overview: The Payment Gateway Team is seeking a Principal, Technology Risk Management to lead and build our strategy for designing and implementing assurance requirements to meet customer and regulatory expectations regarding security and availability risk and controls via assurance products such as SOC 2. The individual will coordinate and advise management to ensure customer and regulatory obligations are considered for the Payment Gateway Service. The individual will be responsible for reviewing and analyzing strategic plans and identifying risk and controls required to meet Mastercard policies and standards and apply the design of relevant risk and control assessments that meet our assessment obligations. Key Responsibilities: Lead the development of strategy, objectives, and action plans for assurance obligations. Conduct multi-stakeholder meetings and participate in senior-level discussions. Engage with internal and external stakeholders, and customers Plan and manage multiple initiatives and projects. Maintain a deep understanding of the business domain and assurance obligations to shape successful execution plans. Recognize complexity within the program and propose simplified solutions. Assist stakeholders in making trade-off decisions by considering all data, including business goals, technical platform strategy, customer experience, and maintainability, with a relentless focus on the customer. Ensure ongoing compliance with statutory and regulatory requirements, anticipate future legislation, enforce adherence to requirements, and advise management on needed actions. Identify, collect, synthesize, and communicate risks and blockers concisely, accurately, and professionally for senior leadership to ensure alignment. Regularly define and review key success metrics for data-focused tracking and proactively seek out new and improved mechanisms for visibility, ensuring the program stays aligned with organizational objectives. Conduct risk assessments to identify potential security and availability risks and advise on the design and governance of controls to mitigate these risks. About You: Bachelors degree or equivalent combination of education and experience; a degree in computer science, information technology, or a related field is preferred. Professional certification like CISSP, CISA, CRISC, CIPP, or similar is a plus. Strong knowledge of IT general computer controls and related operations. Experience with control frameworks (e.g., SOC1, SOC2, ISAE3402/3000, ISO27001, GDPR). Strong interpersonal, communication, and presentation skills necessary for interaction with business leaders and teams across all levels of the organization. Strong negotiation and consensus-building skills. Previous experience in significant process improvements, with the ability to meet project deliverables. Contribute to a work environment that encourages knowledge of, respect for, and the development of skills to engage with those of other cultures and backgrounds.

Role: Senior Specialist Third Party Risk Management (TPRM) About the Company: Join AT&T and reimagine the communications and technologies that connect the world. Our Chief Security Office ensures that our assets are safeguarded through truthful transparency, enforce accountability and master cybersecurity to stay ahead of threats. Bring your bold ideas and fearless risk-taking to redefine connectivity and transform how the world shares stories and experiences that matter. When you step into a career with AT&T, you won t just imagine the future-you ll create it. About the Job: The Third-Party Risk Management (TPRM) team is part of Chief Security Office (CSO) and is responsible for working closely with internal teams including IT Security, Legal, Compliance, and Procurement, to ensure a unified approach to third-party risk management. Below are the key responsibilities: Conduct Cybersecurity Assessments : Perform comprehensive security assessments of third-party vendors, including evaluating their security policies, controls, and practices. Identify potential risks and vulnerabilities in vendor environments and provide recommendations for remediation. Risk Analysis and Reportin g: Analyze assessment results to determine the level of risk associated with each third-party relationship. Prepare detailed assessment reports and risk summaries for internal stakeholders, including senior management and the TPRM team. Vendor Onboarding and Monitoring : Assist in the onboarding process for new vendors by conducting initial security assessments and ensuring compliance with Supplier Information Security Requirements (SISR). Monitor and re-assess existing vendors periodically to ensure ongoing compliance and address any emerging risks. Collaboration and Communication : Work closely with internal teams, including IT Security, Legal, Compliance, and Procurement, to ensure a unified approach to third-party risk management. Communicate assessment findings and risk mitigation strategies to third-party vendors in a clear and constructive manner. Policy and Procedure Development : Contribute to the development and enhancement of TPRM policies, procedures, and guidelines. Stay up to date with industry best practices, regulatory requirements, and emerging threats to continuously improve the TPRM program. Training and Awareness : Provide training and awareness sessions to internal teams and third-party vendors on cybersecurity best practices and TPRM requirements. Experience Level: 8+ years. Location: Hyderabad / Bengaluru Required skills: 6 years minimum experience in third-party risk management / risk consulting / cyber security assessments. Demonstrated experience in third-party risk management and vendor security assessments. Strong understanding of cybersecurity frameworks and standards (e.g., NIST, ISO 27001, CIS Controls). Good understanding of various third-party risk management frameworks and standards. Proficiency in using security assessment tools and methodologies. Excellent analytical and problem-solving skills. Strong communication and interpersonal skills, with the ability to convey complex security concepts to both technical and non-technical audiences. Detail-oriented with strong organizational and project management skills. Desirable skills: Knowledge of data protection regulations (e.g., GDPR, CCPA) and their impact on third-party risk management. Prior experience with Telecom sector. Relevant certifications such as CISSP, CISM, CRISC, or CISA Additional information (if any): Need to be flexible to provide coverage in US morning hours. Location: IND:KA:Bengaluru / Innovator Building, Itpb, Whitefield Rd - Adm: Intl Tech Park, Innovator Bldg Job ID R-64591 Date posted 04/24/2025

We are looking for Cyber security expert for Ahmedabad location but for 1 year you have to work in aurangabad Location. Candidate must have Certification in CISSP, CISM, CISO, CISA. If you are interested you can DROP your cv on 7009326576.

locationsBangalore RMZ-ECO WORLDposted onPosted 3 Days Ago time left to applyEnd DateJune 13, 2025 (27 days left to apply) job requisition idR171411 , India Job Family Group: Information Technology (IT) Worker Type: Regular Posting Start Date: May 13, 2025 Business unit: Experience Level Early Careers About The Role What is the Role? As an ITGC Testing Analyst, you will support management in assessing the IT control environment. You will identify and report control weaknesses, track remediation action plans, and monitor the quality of remediation efforts.. More specifically, your role will include: ITGC Testing Conduct testing of IT General Controls (ITGCs) to ensure compliance and effectiveness. ITC Testing Perform testing of IT Components (ITCs) to validate data integrity and accuracy. Test Scripts Developing and executing test scripts, documenting test procedures, and evaluating results to identify control gaps. Documentation Maintain detailed documentation of testing procedures, findings, and recommendations. Reporting Ensure adherence to the approved assurance plan and provide regular updates on progress. Issue Management Advise IT operations on risk management and contribute to remediation plans for deficient controls. Collaboration Work with the offshore testing team to assess the design and effectiveness of IT controls. Stakeholder Communication Communicate effectively with stakeholders to ensure understanding and alignment with assurance processes and risk management strategies. Tool Management Oversee tools and reports used by the team and stakeholders, ensuring accuracy and updates based on business needs. What We Need from You? Experience: IT Audit Expertise 3+ years of experience in ITGC testing Education: Academic Background Bachelors Degree in Technology is highly desirable. Certifications Preferred certifications include those in IT security and Risk Management. Technical Skills: Certifications Relevant certifications like ISO 27001, CISA, CISM, and CRISC or having a strong desire to work towards obtaining such certifications. Information Risk Management Good understanding of information risk management and associated processes. Application Proficiency Experience with widely used applications such as SAP, Power Platform, and Cloud technologies is desirable. Continuous Improvement A mindset geared towards continuous improvement and project management experience. Soft Skills: Team Player Should be a strong team player and display the same by volunteering where one can extend support. Proactive Problem-Solving Skilled in identifying potential challenges and proposing effective solutions. Learner Mindset Demonstrates professional curiosity and a strong desire to learn. Team Collaboration Highly motivated team player who volunteers support and collaborates effectively. Work Schedule: Mid-Shift Working hrs will be IST 12 noon to 9 pm. Shift allowance will be eligible per organization policy. - COMPANY DESCRIPTION Shell is a global group of energy and petrochemicals companies with over 90,000 employees in more than 70 countries and territories. We deliver energy responsibly; operate safely with respect to our neighbours and work to minimize our environmental impact. We are in search of remarkable people who will thrive in a diverse and inclusive work environment to deliver exciting projects locally and globally. People who are passionate about exploring new frontiers. Innovators and pioneers. People with the drive to help shape our future. Because remarkable people achieve remarkable things. An innovative place to work Theres never been a more exciting time to work at Shell. Everyone here is helping solve one of the biggest challenges facing the world todaybringing the benefits of energy to everyone on the planet, whilst managing the risks of climate change. Join us and youll add your talent and imagination to a business with the power to shape the future whether by investing in renewables, exploring new ways to store energy or developing technology that helps the world to use energy more efficiently. An inclusive place to work To power progress together, we need to attract and develop the brightest minds and make sure every voice is heard. Here are just some of the ways were nurturing an inclusive environment one where you can express your ideas, extend your skills and reach your potential Were creating a space where people with disabilities can excel through transparent recruitment process, workplace adjustments and ongoing support in their roles. Feel free to let us know about your circumstances when you apply and well take it from there. Were closing the gender gap whether thats through action on equal pay or by enabling more women to reach senior roles in engineering and technology. Were striving to be a pioneer of an inclusive and diverse workplace, promoting equality for employees regardless of sexual orientation or gender identity. We consider ourselves a flexible employer and want to support you finding the right balance. We encourage you to discuss this with us in your application. A rewarding place to work Combine our creative, collaborative environment and global operations with an impressive range of benefits and joining Shell becomes an inspired career choice. Were huge advocates for career development. Well encourage you to try new roles and experience new settings. By pushing people to reach their potential, we frequently help them find skills they never knew they had, or make career moves they never thought possible. DISCLAIMER: Please noteWe occasionally amend or withdraw Shell jobs and reserve the right to do so at any time, including prior to the advertised closing date. Before applying, you are advised to read our data protection policy. This policy describes the processing that may be associated with your personal data and informs you that your personal data may be transferred to Shell/Shell Group companies around the world. The Shell Group and its approved recruitment consultants will never ask you for a fee to process or consider your application for a career with Shell. Anyone who demands such a fee is not an authorised Shell representative and you are strongly advised to refuse any such demand. Shell is an Equal Opportunity Employer.

locationsBangalore RMZ-ECO WORLDposted onPosted 11 Days Ago time left to applyEnd DateJune 8, 2025 (22 days left to apply) job requisition idR171409 , India Job Family Group: Information Technology (IT) Worker Type: Regular Posting Start Date: May 5, 2025 Business unit: Experience Level Experienced Professionals About The Role What is the Role? As an ITGC Testing Advisor, you will support management in assessing the IT control environment. You will identify and report control weaknesses, track remediation action plans, and monitor the quality of remediation efforts. More specifically, your role will include: Quality Review Review ITGC and ITC testing for quality, completeness and correctness of outcome. ITGC Testing Conduct testing of IT General Controls (ITGCs) to ensure compliance and effectiveness. ITC Testing Perform testing of IT Components (ITCs) to validate data integrity and accuracy. Not Effective Discussions Support testers in conversation with Line 1 to align on the decision. Test Scripts Developing and executing test scripts, documenting test procedures, and evaluating results to identify control gaps. Documentation Maintain detailed documentation of testing procedures, findings, and recommendations. Reporting Ensure adherence to the approved assurance plan and provide regular updates on progress. Issue Management Review quality of remediation and documentation of the same before issue closure. Collaboration Work with the offshore testing team to assess the design and effectiveness of IT controls. Stakeholder Communication Communicate effectively with stakeholders to ensure understanding and alignment with assurance processes and risk management strategies. Tool Management Oversee tools and reports used by the team and stakeholders, ensuring accuracy and updates based on business needs. What We Need from You? Experience: IT Audit Expertise 5+ years of experience in IT audits or ITGC testing. Education: Academic Background Bachelors Degree in Technology is highly desirable. Certifications Preferred certifications include those in IT security and Risk Management. Technical Skills: IT Audit and Risk Management Good knowledge of IT audit processes, risk management, and control testing. Security Standards Familiarity with internal and external IT security standards such as ISO 27001 and COBIT. Certifications Relevant certifications like ISO 27001, CISA, CISM, CRISC is desired. Information Risk Management Strong understanding of information risk management and associated processes. Application Proficiency Experience with widely used applications such as SAP, Power Platform, and Cloud technologies is desirable. Continuous Improvement A mindset geared towards continuous improvement and project management experience. Soft Skills: Leadership Demonstrated ability to deliver through others, is essential. Team Collaboration Highly motivated team player who volunteers support and collaborates effectively. Proactive Problem-Solving Skilled in identifying potential challenges and proposing effective solutions. Learner Mindset Demonstrates professional curiosity and a strong desire to learn. Prioritization Capable of managing multiple tasks simultaneously with strong prioritization skills. Interpersonal Communication Strong communication skills, with the ability to build strong relationships with stakeholders. Work Schedule: Mid-Shift Working hrs will be IST 12 noon to 9 pm. Shift allowance will be eligible per organization policy. - COMPANY DESCRIPTION Shell is a global group of energy and petrochemicals companies with over 90,000 employees in more than 70 countries and territories. We deliver energy responsibly; operate safely with respect to our neighbours and work to minimize our environmental impact. We are in search of remarkable people who will thrive in a diverse and inclusive work environment to deliver exciting projects locally and globally. People who are passionate about exploring new frontiers. Innovators and pioneers. People with the drive to help shape our future. Because remarkable people achieve remarkable things. An innovative place to work Theres never been a more exciting time to work at Shell. Everyone here is helping solve one of the biggest challenges facing the world todaybringing the benefits of energy to everyone on the planet, whilst managing the risks of climate change. Join us and youll add your talent and imagination to a business with the power to shape the future whether by investing in renewables, exploring new ways to store energy or developing technology that helps the world to use energy more efficiently. An inclusive place to work To power progress together, we need to attract and develop the brightest minds and make sure every voice is heard. Here are just some of the ways were nurturing an inclusive environment one where you can express your ideas, extend your skills and reach your potential Were creating a space where people with disabilities can excel through transparent recruitment process, workplace adjustments and ongoing support in their roles. Feel free to let us know about your circumstances when you apply and well take it from there. Were closing the gender gap whether thats through action on equal pay or by enabling more women to reach senior roles in engineering and technology. Were striving to be a pioneer of an inclusive and diverse workplace, promoting equality for employees regardless of sexual orientation or gender identity. We consider ourselves a flexible employer and want to support you finding the right balance. We encourage you to discuss this with us in your application. A rewarding place to work Combine our creative, collaborative environment and global operations with an impressive range of benefits and joining Shell becomes an inspired career choice. Were huge advocates for career development. Well encourage you to try new roles and experience new settings. By pushing people to reach their potential, we frequently help them find skills they never knew they had, or make career moves they never thought possible. DISCLAIMER: Please noteWe occasionally amend or withdraw Shell jobs and reserve the right to do so at any time, including prior to the advertised closing date. Before applying, you are advised to read our data protection policy. This policy describes the processing that may be associated with your personal data and informs you that your personal data may be transferred to Shell/Shell Group companies around the world. The Shell Group and its approved recruitment consultants will never ask you for a fee to process or consider your application for a career with Shell. Anyone who demands such a fee is not an authorised Shell representative and you are strongly advised to refuse any such demand. Shell is an Equal Opportunity Employer.

The Team The OSTTRA Technology teamis composed of Capital Markets Technology professionals, who build,supportand protect the applications that operate our network. The technology landscapeincludeshigh-performance, high-volume applications as well as compute intensive applications,leveragingcontemporary microservices, cloud-based architectures. The Impact: Together, we build, support, protect and manage high-performance, resilient platforms that process more than 100 million messages a day. Our services are vital to automated trade processing around the globe, managing peak volumes and working with our customers and regulators to ensure the efficient settlement of trades and effective operation of global capital markets. Whats in it for you: We are seeking a highly motivated and experienced Information Security person to join our growing security team. In this role, you will be responsible for managing and optimizing our Data Loss Prevention (DLP) solutions, ensuring compliance with relevant security standards i.e. ISO 27001, NIST and implementing and maintaining robust Identity and Access Management (IAM) and Privileged Access Management (PAM). You will play a crucial role in protecting our sensitive data and ensuring the security posture of our organization. This is an excellent opportunity to be part of a team based out of Gurgaon and to work with colleagues across multiple regions globally. Responsibilities Data Loss Prevention (DLP) Management: Implement, Manage, and optimize DLP tools policies to prevent data leaks and ensure data protection. Develop and maintain DLP policies and procedures. Regularly update and fine-tune DLP rules to adapt to evolving data protection needs. Monitor and analyse DLP alerts and incidents and perform incident response. Provide training and guidance to users on DLP best practices. Implement real-time monitoring and logging for data movement and access patterns. Generate detailed reports on data loss attempts, policy breaches, and user behavior anomalies. Evaluate and recommend improvements to existing DLP solutions. Develop playbooks for quick response to DLP-related threats and incidents. Perform regular data flow assessments to identify unprotected data paths Identity and Access Management (IAM) and Privileged Access Management (PAM): Manage requirements around IAM and PAM security, including user provisioning, access control, and privileged access management. Develop and enforce IAM and PAM policies and procedures. Conduct regular access reviews and audits. Generate compliance reports for internal and external audits (e.g., SOX, GDPR, PCI-DSS). Troubleshoot IAM and PAM issues together with the respective Infrastructure teams. Integrate IAM/PAM systems with other security and business applications. Regularly evaluate IAM/PAM solutions to keep pace with emerging threats and technologies. Information Security Compliance: Ensure compliance with relevant security standards and regulations, including ISO 27001, NIST Standard Conduct internal security audits and assessments. Develop and maintain security documentation and procedures. Assist with external security audits and assessments. Stay up to date on the latest security threats and vulnerabilities. Other Duties: Provide security consulting and support to other teams. Knowledge on Application Pen testing would be an added advantage Evaluate and recommend new security technologies and solutions. Participate in security awareness training and initiatives. Understanding on Technology & Security Risk Management and Vendor Risk Management Framework What Were Looking For Qualifications 7 to 8 years experience working in IT Security & GRC in multiple capacities. Bachelors in IT, Computer Science, Cyber Security, or equivalent experience required. Proven experience with DLP tools and technologies (e.g., Symantec DLP, Forcepoint DLP, Microsoft Information Protection, Zscaler etc.) and certification on these tools would be added advantage Strong understanding of IAM and PAM concepts, tools and technologies and certification on these tools would be added advantage In-depth knowledge of ISO 27001 and other relevant security standards and regulations. Certification like ISO 27001, CISA, CRISC, CISM etc. would be an added advantage. Competencies: The ability to multitask, act under pressure and quickly identify and deal with priority matters under tight deadlines. Attention to detail is essential. The ability to handle multiple inquiries at any one time, often under considerable deadline pressure. The ability to work both independently and as part of a team. Desired Skills: Excellent written and spoken English. Detail oriented with excellent research, analytical and critical thinking skills. Strong documentation, oral and written communications, and interpersonal skills.

Location: Noida Domain & Role : Risk & Compliance- Senior Manager Role Description Task and Responsibilities Minimum of 10-13 years of experience in Information Risk Management/Information Security or auditing. Required to have excellent understanding of the IT Control framework, in particular risk assessment and control selection Working experience in any two of the compliance programs (PCI DSS,HIPPA,ISO 27001,SOC2, SOX,NIST,FISMA,COBIT) Lead teams and efforts to ensure effective execution of periodic risk assessments and drive integration of remediation efforts with the risk management process Partner with service delivery leadership to both communicate and manage risk in delivery to an acceptable level Partner with awareness and training elements to develop and ensure rollout of programs to increase the level of awareness of compliance with policy and process Lead and perform activities to help measure and monitor compliance with contractual security requirements, company policies and procedures to ensure the account is compliant and audit ready Lead different compliance & audit testing programs and support successful completion of various external compliance certification programs and internal compliance assessments Proven ability to lead small teams dedicated to the performance of risk management and assessment responsibilities. Ability to provide effective management of junior employees. Develops and provides appropriate guidance on solutions to mitigate risks and enhance system security Coordinates with other DCO and Delivery Compliance representatives to build out world class compliance program components to include processes, procedures, and technologies. Deep understanding of privacy and business continuity requirements and support R&C Privacy and BCM teams in execution of their respective program Demonstrates ability to work in virtual team with help of tools and technologies Demonstrates ability to handle conflicting situation & should have strong verbal, written communication & analytical skills Must have systematic and pragmatic approach to problem solving Demonstrates good inter-personal skills, high standards of professional behaviour in dealings with business customers, colleagues and staff Have a good technical awareness and the aptitude to remain up to date with information security and IT developments Ability to communicate Risk to non IT business owners and support function such as delivery, HR, Admin, Legal, Contracting and others Ability to communicate risk at all levels of management up to and including C-Level executives. Translate business, industry, and regulatory requirements into information security objectives and associated tactical/strategic information security initiatives Certification such as CISA/CISSP/CISM /CRISC/ CGEIT/ISO27001 or any other security related certifications are preferred. Primary Skill : The position is a member of Risk & Compliance org within HCL Technologies. The DCO will be aligned to critical service delivery engagements and will be responsible for ensuring compliance in accordance to client, organizational & regulatory security requirements. The DCO will act as the engagement level risk advisor and manager and will be the primary liaison for risk related items between the engagement and the larger R&C organization. The DCO will interface with client, business delivery team and support function such as IT, HR, Admin, Legal, etc. in execution of job responsibilities. The position typically reports into a Delivery Compliance Partner or Delivery Compliance Manager Secondary Skill : Required Experience and Educational Qualification : 6-10 years of Recruitment experience Working experience in any two of the compliance programs (PCI DSS,HIPPA,ISO 27001,SOC2, SOX,NIST,FISMA,COBIT) Other relevant skills: Strong communication skills Ability to provide effective management of junior employees Demonstrates good inter-personal skills, high standards of professional behavior in dealings with business customers, colleagues and staff

Hello Talented Techie! We provide support in Project Services and Transformation, Digital Solutions and Delivery Management. We offer joint operations and digitalization services for Global Business Services and work closely alongside the entire Shared Services organization. We make efficient use of the possibilities of new technologies such as Business Process Management (BPM) and Robotics as enablers for efficient and effective implementations. We are looking for Asst. Manager- Governance & Enablement Job Summary: We are seeking a dedicated Information Security Professional to join our team. The ideal candidate will focus on maintaining and managing our ISO27001 certification. This role involves handling the overall Information Security Management System (ISMS), managing internal stakeholders, conducting internal audits, facilitating external audits, and overseeing the information security program management. Key Responsibilities: Implements IT governance strategy and guidelines, and develops/defines functional specific policies, processes and/or methods for general services for organizational units and the business in responsibility from a technical and governance perspective. SPOC, respectively Bridge Head to central IT, CYS and LC for all general Service-related topics. SPOC for GBS ASP community reg. all IT and CYS related governance and standardization topics. Coordinates resources and monitors and reports progress and milestones regularly to all stakeholders. Offer Governance related trainings for GBS BLs focusing relevant rules and regulations. Management & support of ISO topics for DS services & Products. Represent GCI ASP Lead in the various regional bodies and communities. Qualification: Bachelor"™s degree in information technology or a related field. Strong knowledge of ITIL, COBIT or other IT governance standards and Cybersecurity standards. Bais understanding in the CYS (IT) and identify potential threads Strong organizational and program management skills. 8-12 years of experience in Information technology with at least 5 years in IT governance or related area. Good communication and networking skills in an intercultural environment and across all management levels. Certified Lead auditor/Implementor in ISO 9001, ISO 27001 will be an advantage Create a better #TomorrowWithUs! This role, based in Bangalore, is an individual contributor position. You may be required to visit other locations within India and internationally. In return, you'll have the opportunity to work with teams shaping the future. At Siemens, we are a collection of over 312,000 minds building the future, one day at a time, worldwide. We value your unique identity and perspective and are fully committed to providing equitable opportunities and building a workplace that reflects the diversity of society. Come bring your authentic self and create a better tomorrow with us. Find out more about Siemens careers atwww.siemens.com/careers

Hello Talented Techie! We provide support in Project Services and Transformation, Digital Solutions and Delivery Management. We offer joint operations and digitalization services for Global Business Services and work closely alongside the entire Shared Services organization. We make efficient use of the possibilities of new technologies such as Business Process Management (BPM) and Robotics as enablers for efficient and effective implementations. We are looking for Information Security Professional (ISMS/InfoSec) Job Summary: We are seeking a dedicated Information Security Professional to join our team. The ideal candidate will focus on maintaining and managing our ISO27001 certification. This role involves handling the overall Information Security Management System (ISMS), managing internal stakeholders, conducting internal audits, facilitating external audits, and overseeing the information security program management. Key Responsibilities: Maintain and manage the ISO27001 certification and related processes. Oversee the Information Security Management System (ISMS) ensuring compliance with ISO27001 standards. Manage and coordinate internal audits, identifying areas for improvement and implementing necessary changes. Facilitate external audits, acting as the primary point of contact with external auditors. Engage with internal stakeholders to ensure information security policies and practices are effectively communicated and implemented. Develop, implement, and manage information security programs to enhance organizational security posture. Stay updated with the latest developments in information security standards and best practices. Qualifications: Bachelor"™s degree in Information Security, Computer Science, or a related field. 5-7 years of experience in information security with at least 5 years in direct ISMS. Strong knowledge of ISO27001 standards and requirements. Experience in managing and maintaining an Information Security Management System (ISMS). Excellent stakeholder management skills and the ability to communicate effectively with various levels of the organization. Strong organizational and program management skills. Certifications such as ISO27001 Lead Auditor (LA) and Certified Information Systems Auditor (CISA) are preferred. Preferred Certifications: ISO27001 Lead Auditor (LA) Certified Information Systems Auditor (CISA) Skills: Excellent analytical and problem-solving abilities. Strong communication and interpersonal skills. Ability to work independently and as part of a team. High attention to detail and a commitment to maintaining high standards of work. Create a better #TomorrowWithUs! This role, based in Bangalore, is an individual contributor position. You may be required to visit other locations within India and internationally. In return, you'll have the opportunity to work with teams shaping the future. At Siemens, we are a collection of over 312,000 minds building the future, one day at a time, worldwide. We value your unique identity and perspective and are fully committed to providing equitable opportunities and building a workplace that reflects the diversity of society. Come bring your authentic self and create a better tomorrow with us. Find out more about Siemens careers atwww.siemens.com/careers

Primary Roles & Responsibilities: Understand Blackbox Internal Business services and review proposed customer contracts for compliance, risks privacy, security and regulatory issues Coordinate external & Internal audits of the Blackbox IT environment and collate evidence submitted by technical team God understanding of security concepts, drivers of risk and mitigation control, BCP, DR, Risk Management 3 rd party vendor Audits and Management, policies and procedure writing and evaluations, IT - general and application controls Develop and maintain both continuous and spot check, autonomous and manual audit processes Educate users on IT controls processes and play an advisory role internally. Perform end - to end contracts evaluation for risk, compliance, and security evaluations and expectations. Report on compliance results & metrics to executive teams Provide continual improvement objectives to better align to external requests Build a strong knowledge and understanding of systems and processes Assist in development of data governance processes and RACI Review and update internal corporate Policies based on Industry best practices and Regulatory requirements Understand and document Data workflows and lifecycles Establish Processes to improve the life cycle Management of Contracts Possess experience or good knowledge on IT controls mapping as per global standards. Knowledge, Skills, Abilities: Strong familiarity with risk, compliance, and audit frameworks and the various ways they are applied in IT environments Understanding of Global data privacy and security regulations - like GDPR, CCPA etc. both at global and US state levels for data privacy laws and requirements. Ability to scope, assess, and revise contracts and suggest edits based on business drivers and compliance needs. Ability to find root causes of control failures and mitigate risks accordingly Ability to create and maintain policies, procedures and guidelines for the Company and maintain its lifecycle in SharePoint Ability to educate the company employees and respond to policy related queries. Ability to implement controls in a diverse technical and geographically distributed environment to mitigate risk Ability to convince a highly varied audience to follow prescribed controls Comfort with presenting progress reports and results to senior leadership Understanding of process design and compliance terminology Ability to write and speak clearly, consistently, and concisely Ability to Multitask responses to multiple Contracts and meet given deadlines Ability to be self-driven, Motivated with end-to-end ownership on contracts management Excellent Audit Life Cycle Management skills, Expert use of Excel sheet, Word document management, PPT, ability to track documents versions, evidence etc. Excellent written and verbal communication skills and English language command. Education/Experience Requirements: BA business or information technology or equivalent experience. Minimum 5 years or more of prior experience in IT-GRC domain like IT risk, auditing, Contracts evaluation, Data privacy, compliance evaluation etc. strongly preferred. Knowledge of working with US & Global regulations and compliance requirements like HIPAA, PCIDSS, GDPR and US state level laws like CCPA etc. Frameworks / Industry Standard & Regulations Data Privacy Laws like GDPR, CCPA, PCIDSS, SOC2, HIPAA Security and Assurance standards like NIST 800-53 controls, NIST CSF, CIS controls, ISO 27001 standards Certifications Desired / Preferred CISA and/or CRISC and/or CGEIT ISO 27001 L.A or CISM or CISSP - Desirable.

Who we are Were a leading, global security authority thats disrupting our own category. Our encryption is trusted by the major ecommerce brands, the worlds largest companies, the major cloud providers, entire country financial systems, entire internets of things and even down to the little things like surgically embedded pacemakers. We help companies put trust - an abstract idea - to work. Thats digital trust for the real world. Job Summary The Risk Analyst will support the operational functions of DigiCerts Risk Management and assist in maintaining Vercara GRC practices. This role involves collaboration with team members and stakeholders to ensure effective risk management. What you will do Assist in maintaining the risk register and issues register. Support risk and compliance council meetings. Complete customer security assurance tasks. Assist in policy maintenance and updates. Support external compliance audits and assessments. Assist in third-party risk management and business resiliency support. Support the administration of GRC tools and program documentation. What you will have Bachelors degree in information systems, computer engineering, or computer science. Certifications helpful: CRISC, CISSP, CISA, CSM, CompTIA Security. Experience in IT, risk management, or related roles. Knowledge of GRC functions and standards. Good communication and analytical skills.