2077 Cisa Jobs - Page 16

Role Overview: As a Manager in Risk and Compliance, your main responsibility will be to lead assignments on Test of Control Effectiveness, Control Design, and support remediation efforts for control failures related to SOX and ISAE, SSAE compliance. It is essential for you to have knowledge of key F&A compliances such as ISAE 3402, SSAE 16, and SOX. Your experience in working in a Global Business Services (GBS) delivery environment will be crucial for success in this role. Key Responsibilities: - Lead assignments on Test of Control Effectiveness and Control Design. - Support remediation efforts for control failures related to SOX and ISAE, SSAE compliance. - Possess knowledge of key F&A comp...

As an experienced IT Audit Manager, you will play a crucial role in leading and overseeing comprehensive IT & Cybersecurity audits. Your strong analytical skills, leadership abilities, and deep understanding of IT and cyber controls will be essential for success in this position. **Key Responsibilities:** - Support the Engagement Lead in effective planning and execution of engagements. - Prepare IT and Cyber audit programs targeting high-risk areas in the company's control systems and processes. - Direct and oversee audit activities with external / co-sourced internal auditors to ensure proper audit coverage and efficiency. - Supervise team members, provide feedback on performance, and ensur...

Job Description Team Member - IT Audits Grade: M3/M4 Location: Mumbai Job Role . Responsible to deliver multiple IT Audit assignments including IT Application and Infrastructure Audits, Application Security Assessments, Vendor Audits, Concurrent Audits, Thematic Assignments, Regulatory submissions etc. . Develop the Risk Based Audit Framework, meeting RBI regulations and adopting ISO 27001 Standards. . Manage and liaison with outsourced audit partners with an emphasis on audit time and cost reduction, improvement in efficiency without the need of additional resources and delivery of high quality audit work products which can be presented to the board. . Establish and maintain the Quality Ass...

Role Overview: This engineer position is designed to support the internal audit and compliance team in performing cybersecurity audits and assessments. The role provides hands-on exposure to cybersecurity standards such as ISO 27001, NIST and SOC 2 and offers a learning pathway for becoming a certified lead auditor. Key Responsibilities: Assist in planning and conducting cybersecurity audits under supervision. Review and validate IT policies, procedures, and security controls. Collect and document audit evidence (logs, reports, screenshots). Support risk assessments and gap analysis activities. Participate in audit walkthroughs and internal interviews. Track and follow up on audit findings a...

Job Description Position Summary: Sr Manager Information Security Governance The Incumbent would be responsible to manage the information security governance, risk, and compliance process. Standardize GRC policies, evaluate their impacts, and implement the relevant measure. Liaise with Internal Audit, Corporate Compliance, Office of General Counsel and Risk Management to remediate new and outstanding issues; track security-related issues in the electronic GRC system. This is a global role engaging stakeholders (at all levels) across geographies like India, Philippines and US. Certifications such as CISA, CISSP, CISM, CEH, ISO27001 LA are required (The Incumbent needs to possess at least two ...

Join us as a Technology Control Assurance at Barclays, where you'll spearhead the evolution of our digital landscape, driving innovation and excellence. You'll harness cutting-edge technology to revolutionize our digital offerings, ensuring unapparelled customer experiences. To be successful as a Technology Control Assurance, you should have experience with: Core Infrastructure like Active Directory, Servers, Mainframe, Middleware, Database, Operating System, Network Devices. Key technology and cyber risk areas, like Cloud, Networks, Remote access, Cryptography, Secure Configuration, Resilience and Recovery at both application and infrastructure level. IT risk assessment by understanding bus...

Job description If you want to work with former heads of security, cloud experts, and build a game-changing cloud security solution, join Invi Grid! You will be at the forefront of building a groundbreaking approach to cybersecurity. You will come to be in this space but stay for the vision, passion, growth, and teamwork. Please complete the form to be considered: https://docs.google.com/forms/d/1W9SQy1wvJTgJ189O_oPo2h9-yM0jL0It8xjBmurf9A4/edit Preferred locations: Mumbai, Pune, Bangalore, Delhi, NCR, Chennai Must-have experience: 5+ years of cloud experience with AWS, Azure, GCP required. Multi-cloud experience preferred. Experience with Oracle Cloud (OCI) is a strong plus. Must have certif...

The Principal I, Security Assessment & Risk Management (Science/Tech/Engineering Path), is primarily responsible for overseeing daily security assessments and risk management operations, ensuring effective risk identification and mitigation across the organization. Specifics include: Lead the execution of risk assessments, audits, and security evaluations to identify risks and vulnerabilities Collaborate with stakeholders to design and implement risk mitigation and security strategies Monitor and ensure compliance with organizational security policies and procedures Provide support in managing incidents and addressing security breaches Assist in the creation and maintenance of documentation ...

Ready to be pushed beyond what you think you're capable of To achieve our mission, we're seeking a very specific candidate. We want someone who is passionate about our mission and who believes in the power of crypto and blockchain technology to update the financial system. We want someone who is eager to leave their mark on the world, who relishes the pressure and privilege of working with high caliber colleagues, and who actively seeks feedback to keep leveling up. We want someone who will run towards, not away from, solving the company s hardest problems. Team/ Role Paragraph: This role is for the EDD Associate Manager as part of the operations function in the Compliance team, reporting to...

As a Cybersecurity GRC Specialist, this role plays a pivotal part in safeguarding the organizations information assets through comprehensive governance, risk management, and compliance initiatives. The focus is on ensuring adherence to regulatory requirements, industry standards, and cybersecurity best practices while supporting the design and documentation of cybersecurity control frameworks. Responsibilities include managing risk, evaluating third-party security postures, and ensuring that digital payment systems comply with relevant standards such as NIST, ISO27001, and ITGC. A strong understanding of cybersecurity frameworks and a proactive approach to aligning with global regulatory fra...

Ability to effectively perform the technical components of risk assessments to provide an accurate view of the client s current risk state. Ability to perform end-to-end business process analyses and design. Ability to gather, synthesize, and analyze data using appropriate tools and technologies. Ability to assess and design internal controls by applying an understanding of internal control design frameworks and regulatory requirements. Ability to understand the client s business, interpret sector trends, and learn leading practices. Ability to effectively interact with colleagues and clients of varying backgrounds to effectively serve clients. Ability to enhance quality and efficiency of re...

- Lead the creation of security awareness programs for employees to foster a security-conscious culture. - Maintain and report on the status of the organization s security posture to leadership. - Conduct regular risk assessments to identify vulnerabilities and threats to critical systems and data. - Work with the business to evaluate security risks associated with new projects, third-party vendors, and technologies. - Prioritize and recommend security measures to mitigate identified risks. - Lead efforts to perform security audits and assessments, ensuring adherence to compliance and regulatory requirements. - Lead the response to security incidents, including identification, containment, e...

Execution on client engagement Ensure quality delivery as per client requirements Determine that the work delivered is of high quality through quality review/ assurance process with respect to complete and accurate documentation of testing results and review others documentation according to regulatory guidelines Suggest ideas on improving engagement productivity and identify opportunities for improving client service Ensure compliance with engagement plans and internal quality risk management procedures of the firm Anticipate and identify engagement related risks and escalate issues as appropriate on a timely basis Identify internally escalate and potential red flags related to the engageme...

Execution on client engagement Ensure quality delivery as per client requirements Determine that the work delivered is of high quality through quality review/ assurance process with respect to complete and accurate documentation of testing results and review others documentation according to regulatory guidelines Suggest ideas on improving engagement productivity and identify opportunities for improving client service Ensure compliance with engagement plans and internal quality risk management procedures of the firm Anticipate and identify engagement related risks and escalate issues as appropriate on a timely basis Identify internally escalate and potential red flags related to the engageme...

Execution on client engagement Ensure quality delivery as per client requirements Determine that the work delivered is of high quality through quality review/ assurance process with respect to complete and accurate documentation of testing results and review others documentation according to regulatory guidelines Suggest ideas on improving engagement productivity and identify opportunities for improving client service Ensure compliance with engagement plans and internal quality risk management procedures of the firm Anticipate and identify engagement related risks and escalate issues as appropriate on a timely basis Identify internally escalate and potential red flags related to the engageme...

A Senior consultant with proven technical and consultative experience, fluent Japanese language proficiency, and expected to be strong in both technical and interpersonal skills. A Senior Consultant must be a proven self-starter with the ability to problem-solve, communicate, participate in diverse project teams from a technical perspective, and interface effectively with customers, vendor partners, and colleagues. You will actively contribute to improving operational efficiency on projects and internal initiatives. Deliver timely engagements and work closely with Practice Directors to drive training and education, career development, performance development, and collaboration across the tea...

Job Title Cyber Security Lead Experience 9 -16 years Domain Certifications – ISO 27001, CISA, CRISC, CISM Background – a senior professional with hands on experience in Risk, Governance and Compliance role for a leading client in Banking unit. Should be able to articulate the contractual requirements, IT controls, processes, procedures and assurance requirements. Key Skills: Cyber Security, Risk, Governance, Compliance, PCI DSS, ISO 27001, CISO Responsibilities : Deploy governance & policy framework aligned with Group policies and local legislation. Monitor risks & threats to take preventative actions (perform risk assessment for internal applications/digital services and annual threat asses...

Who we are VOIS (Vodafone Intelligent Solutions) is a strategic arm of Vodafone Group Plc, creating value for customers by delivering intelligent solutions through Talent, Technology & Transformation. As the largest shared services organisation in the global telco industry with 30,000 FTE, our portfolio of next-generation solutions and services are designed in partnership with customers across Vodafone Group, local markets, and partner markets to simplify and drive growth. With our strategic partner Accenture, we work alongside our Vodafone customers, other Telco and tech companies to drive transformation, meet the challenges of our industry and ensure we stay relevant and resilient. This pa...

Position Overview Job Title: NFRM Information Security & Technology Risk Specialist Location: Mumbai, India Corporate Title: AVP Role Description An Information Technology & Security Risk Specialist to join the 2nd LoD Information Security & Technology Risk Team. The team is global, this role is within the Mumbai team (currently 1 person) which is being built out to support the global team. Should have a proven depth of knowledge and keen interest of Information Security and Technology and their application in large financial institutions. Working with other team members the role will input subject matter expertise and drive innovative approaches in applying risk management in an evolving th...

Role : IT Risk Designation : Associate Director Location : Gurugram About The Client Our client is the India member and offers strategic, operational, accounting, tax & regulatory advisory and assistance for both domestic and international organisations across a range of industries. We are led by more than 300 Partners & Directors with a team of over 8500 professionals operating across 12 cities Ahmedabad, Bengaluru, Chandigarh, Coimbatore, Chennai, Hyderabad, Goa, Kochi, Kolkata, Mumbai, New Delhi-Gurugram and Pune. We take pride in our service portfolio on the backing of a rich blend of experience and expertise, bringing to fore a work culture that is both client-centric and knowledge driv...

We are seeking a highly skilled and motivated professional with 6 8 years of experience in Technology Risk and Compliance. The ideal candidate will bring deep expertise in Technology Audit, including infrastructure audits with a focus on Operating Systems (OS) and Databases (DB). A strong understanding of IT SOX and PCI compliance is essential for success in this role. This position will be part of the User Access Review (UAR) function within the Risk and Compliance team, where one of the key responsibilities will be facilitating the successful completion of quarterly UARs in collaboration with stakeholders across business and technology teams. The candidate will ensure accuracy, timeliness,...

Whats in it for you: This role provides extraordinary learning opportunities and interacts with senior management across the Company. If youre right for this role, you will interact, meet and work with several key stakeholders in interesting and meaningful engagements. Youll love this job because it provides new opportunities for professional growth daily. You will leverage cutting edge digital next generation capabilities, including AI and data analytics practices to improve the audit activities. This role will be primarily accountable for S&P Global annual audit plan development and internal audits execution (planning, fieldwork and reporting phases). You will be responsible for performing...

At least 10 to 12 years of experience out of which minimum 7 Years of experience in security incident monitoring, security architecture, security solution implementation, administration and management of security devices as mentioned in RFP. Required Candidate profile different security tools like Network Security (WAF, Network APT, Secure Web Gateway), IAM (PIM, RSA), Endpoint, Security (EDR, DAM, NAC, DLP, FIM, IRM, SIEM/SOAR, Active Directory, Web Application

Role & responsibilities > JOB DESCRIPTION ROLE & RESPONSIBILTY: Conduct thorough and detailed cyber risk assessments for our clients, analyzing their digital infrastructure, systems, and security controls. Collaborate with cross-functional teams to gather essential information and data required for comprehensive risk assessments. Evaluate and interpret assessment results to identify potential vulnerabilities and risks, and provide actionable recommendations for risk mitigation. Stay up-to-date with the latest cyber threats, attack vectors, and industry best practices to enhance the effectiveness of risk assessments. Prepare and deliver clear and concise reports summarizing the findings of ri...

As a Manager Internal Audit, you will be responsible for performing audits diligently from planning to reporting. Your key responsibilities will include: - Performing audits diligently from planning to reporting. - Performing follow-ups with the process owners to ensure the closure of open issues. - Conducting investigations/management reviews as per the requirement. - Driving special projects/initiatives as part of the continuous improvement of the Internal Audit function. - Utilizing working knowledge of Data Analytics tools and SAP. - Handling an individual contributor role, with some project-specific staff support as necessary. - Preference for experience in the Manufacturing Industry or...