2077 Cisa Jobs - Page 22

Lennox (NYSE: LII) Driven by 130 years of legacy, HVAC and refrigeration success, Lennox provides our residential and commercial customers with industry-leading climate-control solutions. At Lennox, we win as a team, aiming for excellence and delivering innovative, sustainable products and services. Our culture guides us and creates a workplace where all employees feel heard and welcomed. Lennox is a global community that values each team member s contributions and offers a supportive environment for career development. Come, stay, and grow with us. Job Description We are seeking a highly motivated and detail-oriented IT Compliance Analyst to join our Risk & Compliance team. The ideal candid...

As Kotak Internal Audit Member, you will be a part of Kotak Internal Audit Department (IAD) which aims to provide independent , reliable, valued, insightful and timely assurance to the Board and executive management thus demonstrating a role of an ENABLER . This is achieved by looking at the effectiveness of governance, risk/control framework over current and evolving risks, within the current and expected business environment and in accordance with the international standards definition of internal auditing. Kotak IAD is a 200+ member department spread across 5 locations PAN India (Mumbai, Ahmedabad, Bangalore, Chennai and Delhi) which is set up to perform Internal Audits for KMBL (Kotak Ma...

Line of Service Advisory Industry/Sector FS X-Sector Specialism Risk Management Level Senior Associate Job Description & Summary At PwC, our people in cybersecurity focus on protecting organisations from cyber threats through advanced technologies and strategies. They work to identify vulnerabilities, develop secure systems, and provide proactive solutions to safeguard sensitive data. In threat intelligence and vulnerability management at PwC, you will focus on identifying and analysing potential threats to an organisations security, as well as managing vulnerabilities to prevent cyber attacks. You will play a crucial role in safeguarding sensitive information and enabling the resilience of ...

At American Express, our culture is built on a 175-year history of innovation, shared values and Leadership Behaviors, and an unwavering commitment to back our customers, communities, and colleagues. As part of Team Amex, youll experience this powerful backing with comprehensive support for your holistic well-being and many opportunities to learn new skills, develop as a leader, and grow your career. Here, your voice and ideas matter, your work makes an impact, and together, you will help us define the future of American Express. How will you make an impact in this role About the Internal Audit Group at American Express Our Internal Audit Group is a worldwide function with 300+ team members ...

We have a team of security compliance leaders overseeing solutions for this complex environment, collaborating with security architects and Cloud DevOps teams internally and around IBM. The security compliance leader’s role is to determine the secure operation of the all computer systems, servers, and network connections in accordance with our policies, procedures, and compliance requirements. A security compliance leader in our team will participate in some or all of the following: Providing subject matter expertise in the creation, implementation, and maintenance of appropriate enterprise programs, policies, and procedures to be compliant with all applicable regulations including ISO, SOC,...

Responsibilities: Prior experience in IT Audit (ITGC/GITC/SOC report, testing) from a client facing or offshore role Knowledge of the domains of ITGC Having reviewed/audited ERPs/DBs/OS/App SAP, ORACLE, JD Edwards, SQL, Win, OS 400, Mainframe, Home grown ERPs, etc. Having knowledge of Excel macros / Microsoft Office / Visual basic / Development of audit automation tools Having experience in leading a small team or managing a portfolio. Primary Responsibilities Manage a portfolio of engagements, by leading a team of senior associates, associates or analysts. Managing the client engagement Ensure quality delivery as per client requirements respecting timelines as per budget. Determine that the...

Role & responsibilities : About the Role In this role, you will be at the forefront of protecting the organizations digital assets, ensuring data confidentiality, integrity, and availability. You will develop and implement security measures, monitor security systems, and respond to potential threats. You will work closely with cross-functional teams to establish best practices and compliance standards, equipping the organization with a robust information security framework. Your expertise will be critical in identifying vulnerabilities, mitigating risks, and keeping our data secure against evolving threats. Key Responsibilities Design, implement, and manage the organization's information sec...

Role Overview: As a Security Architect at EY, you will lead the implementation of security solutions for clients, supporting their efforts to protect their business from cyber threats and ensure business resilience. You will work with a team of specialists to address complex information security needs and leverage advanced security tools to combat cybercrime effectively. Key Responsibilities: - Provide Enterprise and Cyber security architecture services for global clients, focusing on a multi-layered security approach. - Develop reusable solutions to common security issues, including design patterns and best practices, aligning with industry standards such as NIST, CIS, or vendor recommendat...

About Information Systems Security: Information Systems Security (ISS) team ensures that Cyber Security Risk and Threats are managed through an risk management framework comprising of Information Systems Security Policies, Standards and Guidelines. The bank's Information Security and Cyber Security Policy and Standards based on various regulatory requirements / guidelines from RBI Gopal Krishna report, cyber security framework, NPCI, IT Act, MAS, HKMA, Aadhaar etc., International regulations and standards such MAS, HKMA, PCI-DSS etc. The policies and standards approved by the Board of Directors encompassing independent identification, measurement and management of risks across the various bu...

Role Overview: You will be part of the Divisional Control Office (DCO) team in Mumbai, India, responsible for ensuring high levels of integrity within the division. Your main role will involve developing, implementing, and maintaining a risk culture to establish a strong and sustainable business control environment while minimizing risks from non-financial factors. Specifically, you will focus on supporting Corporate Bank (CB) by overseeing the Risk & Control Assessments (RCA) with a key emphasis on Information Security (IS) / Information Technology (IT) risks. Key Responsibilities: - Collaborate with businesses to conduct Risk & Control Assessments following NFRM guidelines, particularly co...

Job description If you're looking for a career that will help you stand out, join HSBC, and fulfil your potential. Whether you want a career that could take you to the top, or simply take you in an exciting new direction, HSBC offers opportunities, support and rewards that will take you further. HSBC is one of the largest banking and financial services organizations in the world, with operations in 64 countries and territories. We aim to be where the growth is, enabling businesses to thrive and economies to prosper, and, ultimately, helping people to fulfil their hopes and realize their ambitions. We are currently seeking an experienced professional to join our team in the role of AVP - Busi...

Role & responsibilities : Qualification and Minimum Entry Requirements B.Tech/MCA/MBA with 3 5 Years of relevant experience in Information Technology/Security Controls, SSAE 18, SOC reports, IT Audits, IT General Controls, IT Application Controls and ERP Audits. Candidate should have intermediate knowledge of financials, operations and technology and its related risks Candidate should have good knowledge for SOC 1, SOC 2, ICFR, IT General Controls, IT Application Controls, Information security and risk management frameworks/ standards (ISO 27001, NIST, COBIT, ITIL, PCI.) Qualified to pursue a job-relevant certification (CIA, CISA, CMA, ISO, CRISC, CISSP) Strong Data Analytical skills includi...

Job Title: Governance, Risk & Compliance - IT Audit, IT Lifecycle, Internal Audit, ITGC, Process Audit Location : Mumbai Education: CA/MBA Job Responsibilities: Audit Planning and Execution: Assist in planning and executing IT/ ITGC audits to evaluate the effectiveness of IT controls. Work on audits related to IT infrastructure, applications, and data management systems and assess compliance with internal policies, external regulations, and requirements such as IFC/SOX. Identify IT risks and recommend mitigating controls. Collaboration: Work closely with IT, InfoSec (IS) and other business units to understand IT infrastructure, applications, and operations. Reporting: Document audit findings...

Type: Full time Experience required: 7+ years Work timings: UK shift Notice: Immediate to 15 days (preferred), or someone less than 30 days serving notice Work mode: Onsite Location: Hyderabad (or) Pune Interview Mode: Virtual only Job Description: The Cyber Security function is responsible for enabling businesses and functions to manage their information security and cybersecurity risks as well as ensuring risk and controls are assessed and implemented appropriately, objectively and independently through professional and specialized subject matter experts. Cybersecurity Lead for Risk and Compliance IT is a role supporting the Chief Information Security Officer for Enterprise Technology that...

Greetings from SmartStream Technologies India Pvt. Ltd. ! Job Type - Office working (Hybrid) An IT Risk Specialist is responsible for identifying, assessing, and mitigating potential risks to an organization's information technology systems and data. They ensure the security, privacy, and integrity of IT infrastructure while adhering to relevant regulatory standards and industry best practices. ? Monitor industry compliance (PCI-DSS, ISO 27001, SSAE, NIST) requirements and cyber security trends. ? Review cloud security solutions with respect to PCI and Cloud Security Attestation (CSA). ? Support the PCI Network, IT Infrastructure and Applications with security solutions, that offers SaaS OnD...

Essential Services : Role & Location fungibility In essence, this captures our belief in serving the entire banking needs of our customers as One Bank, One Team . To achieve this, employees at ICICI Bank are expected to be role and location-fungible with the understanding that Banking is an essential service . The role descriptions give you an overview of the responsibilities, it is only directional and guiding in nature. About the role As a DevSecOps Manager, you will be responsible for implementation of security tools in DevOps CI/CD (Continuous Integration/ Continuous Delivery) pipeline and publish security standards and best practices for developer team. You will be responsible for integ...

Professional should be able to work in hybrid model from office/client office. Strong knowledge of IT audits- ITGC, ITAC and SOC report understanding Conduct process walkthroughs and test the controls. Ensure timely closure of audit tasks. Collaborate with teams to ensure timely completion of audit activities. Desired qualifications Graduation / B.E/ B. Tech in Any Specialization. Work experience: Minimum 4 years. Role Summary: Takes ownership of client deliverables and leads modules end-to-end. Responsibilities: Lead modules or small-scale engagements and supervise fieldwork execution for ITGC, ITAC, and SOC reviews. Manage stakeholders for walkthroughs, data requests, and clarifications. T...

Ensuring compliance with global data privacy regulations, including but not limited to the Data Protection and Digital Information Act (DPDPA), General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA), Health Insurance Portability and Accountability Act (HIPAA), EU Artificial Intelligence Act, SEC cybersecurity disclosure, cross border data transfer mechanisms and privacy litigation support. Managing data processing agreements and conducting third-party vendor privacy assessments. Supporting the conduct of privacy impact assessments for new projects, systems, and processes. Assisting in responding to and managing data subject access requests in accordance with applic...

About the Role: We are looking for an experienced IT Governance & Compliance Leader to head critical areas including IT audit facilitation, regulatory compliance, business continuity, access management, and employee-facing applications. The role involves leading a team, ensuring strong IT governance, and driving regulatory adherence in a BFSI environment. Role & responsibilities: Establish and monitor an auditable governance framework, consistent with general regulatory requirements forinformation technology. Own the role of IT Audit SPOC. Co-ordinate with auditors like Internal Audit Department (IAD), Regulators (RBI/ NHB), Statutory Auditors and external accessors. Cadence mechanism for tr...

Job Purpose Support and act as a key team member of LOS Compliance unit for review of functional applications controls across various lending applications. Duties and Responsibilities Lead projects of LOS (lending Origination Systems) Compliance for one of the largest, most prestigious NBFC, be part of Fintech Transformation journey of BFL. Guide, manage and review compliance assignments in the areas of IT application controls (ITACs) or manual functional mainly comprising of Access control review. Segregation of Duties (SOD) controls review review of actual accesses against set policy. Functional lending functions of SFDCs and other similar applications such as workflows review, layout revi...

Job Summary: We are looking for a System Security & Patch Management Engineer to ensure the security, compliance, and efficiency of our IT infrastructure. This role involves vulnerability scanning, patch management, Windows Server administration, automation, and compliance enforcement . The ideal candidate should have strong expertise in PowerShell scripting, WSUS, and security best practices . Key Responsibilities: System Vulnerability Scans: Conduct regular scans to identify and remediate security vulnerabilities. Patch Management: Test, deploy, and verify system and application patches to maintain security and performance. Compliance: Ensure systems adhere to PCI compliance and other regu...

We are seeking an experienced Third-Party Risk Management (TPRM) Specialist to conduct cybersecurity risk assessments and ensure compliance with industry standards and regulations. The ideal candidate will have a strong background in risk management, governance, and security frameworks, with hands-on experience in TPRM tools and technologies. Key Responsibilities Conduct third-party cybersecurity risk assessments , evaluating vendors security posture and potential risks. Assess and analyze internal controls, business processes, and governance structures related to TPRM. Implement and manage TPRM frameworks , ensuring alignment with risk management and information security best practices. Uti...

Job Overview: We are looking for an experienced GRC & IT Audit Specialist with 8+ years of expertise in Governance, Risk, and Compliance (GRC) , IT audits (internal/external), and regulatory frameworks. The ideal candidate will coordinate with operations teams, conduct risk assessments, ensure compliance with industry standards, and manage risk mitigation efforts. Key Responsibilities: GRC & IT Audit Management: Conduct and manage internal/external IT audits , ensuring adherence to industry standards. Develop and maintain audit reports, documentation, and risk tracking systems . Coordinate with operations teams to verify control status and identify security/compliance gaps. Regulatory Compli...

We are looking for a highly skilled Cyber Security Analyst with 5-10 years of experience to join our team in PAN India, including Bangalore, Hyderabad, Chennai, Pune, Noida, Bhubaneswar, Delhi, and Mumbai. The ideal candidate will have a strong background in data privacy, information security policy, and stakeholder management. Roles and Responsibility Develop and implement comprehensive cybersecurity strategies to protect against threats and vulnerabilities. Conduct risk assessments and penetration testing to identify potential security risks. Design and implement secure systems and networks to ensure the confidentiality, integrity, and availability of sensitive data. Collaborate with cross...

As an IT Continuity Program Manager, you will be responsible for ensuring the uninterrupted operation of Garrett IT systems and services in the face of various disruptions such as natural disasters, cyber-attacks, equipment failures, or other emergencies. You will develop and maintain strategies, policies, and procedures to minimize downtime and data loss, while also overseeing the implementation of business continuity and disaster recovery plans. Your role will involve collaborating with various departments such as with Infrastructure service owners, Application Owners, Plant IT and non-manufacturing site IT focals etc to assess risks, identify critical systems and processes, and develop mi...