1426 Cisa Jobs - Page 27

Implement security strategy, policies & controls.Oversee risk, vendor security, BCDR, vulnerability remediation & AppSec.Drive compliance, training,audits,and continuous improvement.GRC tool expertise,ISO27001 Implementer/Auditor,CGRC/BCMS preferred.

Consultant/Senior Consultant || SOX || Gurgaon || (Immediate joiners preferred) What are we looking out for: Skilled and detail-oriented SOX Compliance and Internal Audit Consultant who will play a critical role in ensuring compliance with SOX requirements through the design, execution, and assessment of internal controls over financial reporting (ICFR). Job Profile (Non IT SOX): Responsible for executing client-related engagements in the areas of SOX 404 & Clause 49 assistance, Governance, Risk & Compliance (GRC), Internal Audits, Process Reviews, Standard Operating Procedures,. Responsible to discuss with risk owners for identification and assessment of key risks and development of mitigat...

As a candidate for this position, you will be responsible for performing and documenting testing on consulting, compliance, and internal audit engagements with a focus on IT risk, strategy, and governance within financial institutions. You will also provide training and supervision for engagement staff, identify findings, and document opportunities for process improvement. Additionally, you will research technical issues that arise during engagements and assist Managers and/or Senior Managers in developing strategic solutions to meet client needs. Furthermore, you will work closely with Managers and/or Senior Managers on engagement planning, execution, and issuing a final report that meets c...

As the Identity & Security Visionary at Diageo, you will be a crucial part of the Security & Network Enterprise Architecture team, focusing on shaping the future of Identity Management across the organization. Your role will involve contributing to the broader cybersecurity strategy, with a split focus of approximately 60% on Identity and 40% on Security domains, adapting as per the evolving business needs. Your responsibilities will include: - Translating business objectives into a robust architecture for Identity and Access Management (IAM) and cybersecurity. - Collaborating with stakeholders to define Diageo's vision and capabilities in these areas, developing a 3-5 year roadmap for lever...

Provide strong domain leadership managing a team of audit professionals in F&A/ HRO/ S&F services Lead teams performing Risk Assessments, Process Walkthroughs, Process Documentation Narratives, Process Flow Diagrams, Finalize Risk and Control Matrix, Lead assignments on Test of Control Effectiveness, Control Design , support remediation efforts for control failures - SOX and ISAE SSAE compliance. Lead Interventions Special Assignments at Client Engagements identifying reasons for operations failures, critical errors, process weaknesses Performing Root Cause Analysis remediating and resolving causes. Requirement to interact with overseas clients and senior stakeholders within and external to ...

Provide strong domain leadership managing a team of audit professionals in F&A/ HRO/ S&F services Lead teams performing Risk Assessments, Process Walkthroughs, Process Documentation Narratives, Process Flow Diagrams, Finalize Risk and Control Matrix, Lead assignments on Test of Control Effectiveness, Control Design , support remediation efforts for control failures - SOX and ISAE SSAE compliance. Lead Interventions Special Assignments at Client Engagements identifying reasons for operations failures, critical errors, process weaknesses Performing Root Cause Analysis remediating and resolving causes. Requirement to interact with overseas clients and senior stakeholders within and external to ...

Lowe s Companies, Inc. (NYSE: LOW) is a FORTUNE 50 home improvement company serving approximately 16 million customer transactions a week in the United States. With total fiscal year 2024 sales of more than $83 billion, Lowe s operates over 1,700 home improvement stores and employs approximately 300,000 associates. Based in Mooresville, N.C., Lowe s supports the communities it serves through programs focused on creating safe, affordable housing, improving community spaces, helping to develop the next generation of skilled trade experts and providing disaster relief to communities in need. For more information, visit Lowes.com . Job Summary The primary purpose of this role is to manage a team...

ASSOCIATE CONSULTANT Experienced in Information Security Risk Management with experience in implementing and maintaining Risk Management frameworks (ISO 31000 & ISO 27001) Should have executed and managed consulting and audit assignments for clients in the areas such as internal audit, operational risk management and compliance management. Should be adept at conducting gap analysis, risk assessments to identify vulnerabilities. Have worked with organizations to develop Business Continuity Plans and Disaster Recovery related processes. Should be able to understand and explain technical vulnerabilities Basic knowledge on Active directory, firewalls, SCCM, MacAfee security products, DLP, Secure...

ASSOCIATE CONSULTANT Experienced in Information Security Risk Management with experience in implementing and maintaining Risk Management frameworks (ISO 31000 & ISO 27001) Should have executed and managed consulting and audit assignments for clients in the areas such as internal audit, operational risk management and compliance management. Should be adept at conducting gap analysis, risk assessments to identify vulnerabilities. Have worked with organizations to develop Business Continuity Plans and Disaster Recovery related processes. Should be able to understand and explain technical vulnerabilities Basic knowledge on Active directory, firewalls, SCCM, MacAfee security products, DLP, Secure...

Policy & Framework Management: Define, review, and update cybersecurity policies, procedures, and standards to align with business and regulatory requirements.Regularly review and update Security Configuration Documents (SCDs).Drive the adoption and alignment of the NIST Cybersecurity Framework.Implement and manage the Unified Compliance Framework to streamline regulatory mapping.Security Controls & Automation: Conduct configuration reviews across critical systems and platforms.Lead initiatives to automate policy management and control validation.Evaluate and recommend risk management solutions and security technologies.Risk & Change Management: Perform third-party/vendor risk assessments, i...

Job Area: Finance & Accounting Group, Finance & Accounting Group > IT Internal Audit Qualcomm Overview: Qualcomm is a company of inventors that unlocked 5G ushering in an age of rapid acceleration in connectivity and new possibilities that will transform industries, create jobs, and enrich lives. But this is just the beginning. It takes inventive minds with diverse skills, backgrounds, and cultures to transform 5Gs potential into world-changing technologies and products. This is the Invention Age - and this is where you come in. General Summary: Unique opportunity to join Qualcomms Corporate Internal Audit & Advisory Services department within the SOX Program Management Office (PMO) organiza...

You will be responsible for conducting application security reviews for Web, Mobile (Android and iOS), and API technologies. Your role will involve assessing and identifying potential vulnerabilities in the technology being developed before implementation. You should have expertise in application security testing methodologies such as SAST, DAST, and MAST, with experience in web application, API security, and mobile application security testing according to industry standards like OWASP top 10, SANS top 25, etc. It would be beneficial to have knowledge of programming and scripting languages such as Java, JavaScript, Angular, Spring Boot, Kotlin, and Swift. Familiarity with tools like Burp Su...

You will be responsible for conducting third-party risk assessments in alignment with ISO 27001:2022 and ISO 22301:2019 frameworks. Your duties will include identifying, assessing, and mitigating risks related to information security, business continuity, and third-party vendors. Collaboration with cross-functional teams and external stakeholders to drive risk mitigation strategies will be a key aspect of your role. Additionally, drafting and reviewing policies, procedures, and audit reports will be part of your responsibilities. As a TPRM Consultant / Senior Consultant, you will need to effectively communicate complex risks and findings to both technical and non-technical audiences. Strong ...

As an organization focused on re-imagining agricultural insurance through the innovative integration of Public Cloud, GIS, Remote-sensing, and cutting-edge AI-based algorithms, we at Kshema are dedicated to empowering the future of agricultural insurance. Leveraging the latest advancements in Mobile and Geospatial technologies, we are committed to revolutionizing the industry. We are currently seeking a Chief Information Security Officer (CISO) who will play a pivotal role in driving our cyber security strategy and ensuring strict compliance with regulatory and statutory guidelines pertaining to information and cyber security. As the CISO, you will be entrusted with the responsibility of enf...

Risk Management Service Engineer 1 Job Summary Assist in implementing and maintaining SOX controls supporting the Application Managers for Intern applications and 3rd party Applications, support internal and external audits, and identify potential SOX compliance risks. Key Responsibilities: Assist in maintaining SOX controls for 1P and 3P products Support internal and external audits related to SOX compliance Support engineering teams and Application Managers during SOX walkthrough Managing evidence requirements initiated by Internal audit Performing quality and compliance check of evidence submitted by engineering and Application management Support engineering and Application Management for...

Risk Management Service Engineer 1-QA Job Summary: Assist in implementing and maintaining SOX controls supporting the Application Managers for Intern applications and 3rd party Applications, support internal and external audits, and identify potential SOX compliance risks. Key Responsibilities: Assist in maintaining SOX controls for 1P and 3P products Support internal and external audits related to SOX compliance Support engineering teams and Application Managers during SOX walkthrough Managing evidence requirements initiated by Internal audit Performing quality and compliance check of evidence submitted by engineering and Application management Support engineering and Application Management...

Partner with the best As an IT SOX Analyst, you will be responsible for ensuring the organization is compliant to regulatory (SOX) policies within the IT landscape. Your primary role consists of testing the IT General controls across key ERP systems such as SAP and Oracle. In this role, you will build relationships with the business, finance controllership, Internal and External auditors to achieve shared objectives. Responsibilities, authorities and accountabilities Conduct walkthrough meetings with internal and external stakeholders to support audit activity Perform assurance activities to assist management in the testing of Internal Controls Over Financial Reporting (ICOFR) Develop and mo...

As an Information Security professional in our organization, you will be responsible for various key tasks related to ensuring the security of our third-party suppliers and information systems. Your role will involve assessing and managing the security risks associated with our suppliers, interpreting security assurance reports such as SOC2 and pen test reports, as well as reviewing security requirements in contracts. Your responsibilities will also include understanding outsourced solutions and the information classification associated with them, assessing supplier security controls based on ISO27001/2 standards, and identifying and documenting security risks. Additionally, you will be expe...

Summary Implements the information security, governance and strategy per the information management framework through business partnering. Perform ISRM compliance activities for a specific area or technology within TT. About the Role Major accountabilities: Deep understanding of IT risk, information security or cyber security frameworks such as COSO, COBIT, ISO, NIST, GDPR, NIS2. Hands-on experience in GRC tools such as ServiceNow to configure, build and automate controls / assessments logic for the compliance management. Provide input to GRC team on risk and control register business requirements. Aptitude for technology, open-mindedness towards picking up new skills and working in various ...

As a Enterprise Technology Internal Audit Associate in the Technology Internal Audit Team, you will be executing technology audits across Asia and globally. You will be responsible for maintaining effective relationships with key technology stakeholders throughout the audit lifecycle and for continuous monitoring purposes. This role provides an opportunity to apply your auditing and communication skills, as well as your knowledge and experience of auditing IT infrastructure, processes, and applications. You will also have the chance to enhance your data analytics skills in the audit process. This position is based in India and reports to the India Technology Audit Lead. Job responsibilities ...

As a Central Technology Internal Audit Associate in the Technology Audit Team, you will be executing technology audits across Asia and globally. You will be responsible for maintaining effective relationships with key technology stakeholders throughout the audit lifecycle and for continuous monitoring purposes. This role provides an opportunity to apply your auditing and communication skills, as well as your knowledge and experience of auditing IT infrastructure, processes, and applications. You will also have the chance to enhance your data analytics skills in the audit process. This position is based in India and reports to the India Technology Audit Lead. Job responsibilities Working clos...

You will be joining M&G Global Services Private Limited, a subsidiary of M&G plc group of companies, as a Manager Business Senior Auditor. In this role, you will report to the Assistant Vice President in M&G Global Services Private Limited, located in Mumbai. Your primary responsibility will be in the Internal Audit function, which is crucial for meeting business ambitions and protecting customer interests by ensuring internal control, risk, and governance frameworks are effective. As a Business Senior Auditor, you will work closely with stakeholders to identify risks and control improvements across various business functions. This role requires at least three to six years of experience in f...

As a professional in IT Risk, Compliance, and security, you will play a crucial role in ensuring the security and integrity of core IT projects. Your responsibilities will include assessing audit findings and control weaknesses, collaborating with stakeholders to develop management action plans, and implementing security classification, change controls, and SDLC. Your expertise in industry frameworks such as ISO standards, GDPR, NIST, and PCI DSS will be essential in identifying and mitigating cyber security risks. In addition to your technical skills, you will also utilize your project management experience to plan and execute multiple IT Risk, Compliance, and security operations. You will ...

As a Cyber Assurance Assistant Vice President (AVP) at Barclays in Pune, you will play a crucial role in partnering with the bank to provide independent assurance on control processes and offer advice on enhancements to ensure the efficiency and effectiveness of the bank's internal controls framework. Your responsibilities will include collaborating across the bank to maintain a robust control environment by conducting ad-hoc assessments and testing the design and operational effectiveness of internal controls aligned with the bank's policies and standards. You will develop detailed test plans and procedures to identify weaknesses in internal controls and other initiatives within the bank's ...

As a Presales Consultant at Netenrich, you will play a crucial role in the sales process, specializing in advanced cybersecurity solutions with a focus on SIEM (Security Information and Event Management) and SOAR (Security Orchestration, Automation, and Response) technologies. Your deep understanding of these technologies will enable you to tailor solutions to meet the unique security needs of our clients. Your responsibilities will include collaborating with the sales and marketing teams to drive sales by presenting and demonstrating comprehensive security solutions that incorporate SIEM and SOAR capabilities. You will oversee partner support for Netenrich partners, managing account managem...