1426 Cisa Jobs - Page 34

At BlackStone eIT, we are seeking a passionate IT Security & Compliance professional to join our dynamic team. In this role, you will play a crucial part in ensuring the security of our IT infrastructure while aligning our practices with compliance standards. Your proactive approach will help us protect our data and systems from evolving cyber threats. Key Responsibilities: Establish and maintain security policies, compliance frameworks, and risk management strategies that meet industry standards. Perform regular audits and assessments of our IT systems to identify and mitigate security vulnerabilities. Investigate security incidents and ensure effective incident response and documentation. ...

Key Deliverables: Lead cyber risk assurance initiatives, including control testing and framework implementation Conduct system-level assessments and ensure remediation of security gaps Monitor cyber risk indicators and produce governance-level reporting Design and improve processes to strengthen enterprise-wide cybersecurity posture Role Responsibilities: Perform gap assessments across ISO 27001, NIST, CIS, PCI frameworks Review and validate evidence for control assurance from tech teams Build and maintain strong relationships with IT, business, and security stakeholders Mentor teams on cyber governance standards and risk assessment techniques

Role & responsibilities Requirement IT Risk Assessment Location : Mumbai/Gurgaon Work mode : 5 days WFO Experience 4+ years(AM), 7+ years(Manager) Budget max 15 LPA(AM), 24 LPA(Manager) Mandates IT Audit, Risk Assessment, ITGC, ITAC Have you executed client related engagements in the areas ITGC, process reviews, IT Application Controls, standard operating procedures review, SOCR (SOC 1, SOC 2), SOX 404 Audits. Have you identified engagement related risks and escalate issues as appropriate. Have you actively establish & strengthen client (functional heads & key influencers) and internal relationships. Have you Identified & escalated potential business opportunities for the firm on existing cl...

1. Extensive experience working in the NBFC and Banking industry, with a solid understanding of the unique security challenges faced by these sectors. 2. Proven track record of conducting Cyber security reviews and performing gap assessments to identify and mitigate potential security risks. 3. Strong knowledge of DPDP and GDPR regulations, with the ability to ensure compliance and protect sensitive data. 4. Familiarity with Regulatory circulars related to Information security, Cyber Security, and Data Privacy, and the ability to stay informed on the latest developments in this rapidly evolving field. 5. Possession of certifications such as CISA, CISSP, ITIL, and ISO27000, demonstrating a co...

Role & responsibilities: Testing the controls from regulatory guidelines/circulars/advisories on IT and Cyber Security issued by RBI, SEBI, NSDL, NPCI, UADAI by identifying the observations based on control implementation & its effectiveness. Follow up with stakeholder to ensure timely testing of regulatory guidelines, legacy Circulars, Advisories, Show cause notice/ Penalties/Displeasures. Prepare Annual testing plan based on Compliance risk and senior management directions. Support IT & InfoSec team during the onsite IT Examination Review conducted by RBI. Conduct Compliance Testing / Review of RAR, RMP & other regulatory observations related to IT, InfoSec & Digital Banking units to ensur...

JOB DESCRIPTION JOB TITLE -AVP/ VP- Internal Audit GENERAL DESCRIPTION - He/ She will be responsible for evaluating the company's internal controls, risk management processes, and compliance with policies and regulations. This role ensures operational efficiency, identifies financial discrepancies, and recommends improvements to mitigate risks. DIVISION/DEPARTMENT - Finance & Accounts DETAILED JOB DESCRIPTION- 1. Executing transactional & Internal Audit. 2. Ability to effectively perform the technical components of risk assessments to provide an accurate view of the client's current risk state. 3. Ability to perform end-to-end business process analysis and design. 4. Ability to assess and de...

IT Audit Manager At Smith+Nephew, we design and manufacture technology that takes the limits off living. As a key member of the Internal Audit team, the IT Audit Manager will be responsible for: leading IT Reviews; supporting the Director to develop the end-to-end IT Audit Plan; developing stakeholder relationships across the Group; coaching and mentoring more junior team members; and acting as an ambassador for the Internal Audit Function across the Group. What will you be doing? Leads and conducts assigned audit engagements (specifically IT audits consisting of complex cyber security, IT, and programme assurance reviews) successfully in accordance with the Global Internal Audit Methodology...

About the Role: Core Responsibilities: Plan, execute, and report on internal IT audits. Evaluate the effectiveness of IT controls, identify risks, and provide recommendations for improvement. Conduct regular access reviews to ensure that users have appropriate access levels based on their roles. Evaluate the effectiveness of access controls in safeguarding sensitive information. Recommend improvements for identity and access management (IAM) processes. Perform internal risk assessments to identify vulnerabilities and ensure timely mitigation strategies. Work closely with IT, legal, and business teams to address audit findings and track remediation efforts. Preference and Experience: The cand...

: Job TitleInformation Security Risk Specialist , AVP LocationMumbai, India Role Description An Information Technology & Security Risk Specialist to join the 2nd LoD Information Security & Technology Risk Team. The team is global, this role is within the Mumbai team (currently 1 person) which is being built out to support the global team. Should have a proven depth of knowledge and keen interest of Information Security and Technology and their application in large financial institutions. Working with other team members the role will input subject matter expertise and drive innovative approaches in applying risk management in an evolving threat environment. The team has a global footprint in ...

: Job Title Risk & Control Specialist, AVP LocationBangalore, India Role Description Risk, Finance, Treasury (RFT) Technology is the technology partner to the CRO (Chief Risk Office) and CFO (Chief Financial Office) divisions. The Chief Risk Office is responsible to identify, aggregate, manage and mitigate Financial and Non-Financial risks and includes Market & Valuation Risk Management (MVRM), Credit Risk Management and Non-Financial Risk Management (NFRM). The Chief Finance Office includes Finance and Treasury and is responsible for a broad range of activities designed to ensure the financial and regulatory integrity of the Deutsche Bank Group including official production of PnL, Financia...

Should be able to direct/execute audit project independently (covering planning, fieldwork and reporting stages of audits) Lead a variety of moderately complex to complex IT focused audits including IT governance, service and project delivery, audits of IT technical domains such as networks, infrastructure, and applications. Audit Co-ordination & Facilitation - Meetings with key personnel of various work areas Planning, conducting walkthroughs, drafting process understanding and relevant controls. Preparing planning memos, risk assessment matrix, risk assessment control matrix (RACM) and Internal controls Documenting and Reviewing Test of Designs and Test of Effectiveness controls. Perform a...

Develop and implement Cyber security and Cyber Crime Programs Implement Security functions like Risk Management, Audit Management, BC/DR Management, Vulnerability management, IAM, End-point Security, etc.

- Act as the primary support contact for payment partners (e.g., Payfacs, ISOs). - Handle inquiries related to settlements, transaction statuses, integration, and account settings. - Troubleshoot issues related to transaction processing, reconciliations, chargebacks, and payout delays. - Support partners with onboarding processes, including technical integration (API or host-to-host integrations). - Guide partners through KYC documentation processes and regulatory compliance requirements. - Monitor payment flows and flag any inconsistencies or performance degradation across payment channels. - Deliver periodic performance and transaction reports to partners. - Work closely with product, risk...

Provide guidance and direction to the planning process and the execution of fieldwork such as overseeing interviews and walkthroughs, reviewing materials, the design and execution of audit testing, analyzing results, drawing conclusions within the allotted time scheduled. Manage the audit lifecycle, staffing, scheduling, methodology and approach to testing and fieldwork and finally, the quality and timeliness of all work products you oversee. You will be expected to provide weekly, monthly, or periodic status reporting and work with the CAAS leadership team to ensure the appropriate allocation and assignment of resources. Assist the Audit Director in the development and mentoring of Senior a...

Should be able to direct/execute audit project independently (covering planning, fieldwork and reporting stages of audits) Lead a variety of moderately complex to complex IT focused audits including IT governance, service and project delivery, audits of IT technical domains such as networks, infrastructure, and applications. Audit Co-ordination & Facilitation - Meetings with key personnel of various work areas Planning, conducting walkthroughs, drafting process understanding and relevant controls. Preparing planning memos, risk assessment matrix, risk assessment control matrix (RACM) and Internal controls Documenting and Reviewing Test of Designs and Test of Effectiveness controls. Perform a...

Project Management Working as a team leader & resource management. Audit Co-ordination & Facilitation - Meetings with key personnel of various work areas Conduct comprehensive Cyber and Technology controls audits, IT General controls (ITGC) audits. Planning, conducting technology domain/controls related walkthroughs, drafting, and reviewing process understanding and its controls. Preparing planning memos, risk assessment matrix, risk assessment control matrix (RACM) and Internal controls Reviewing Test of Designs and Test of Effectiveness controls Perform analytical procedures/analysis to test the effectiveness of controls. Document audit procedures and cross reference working papers. Create...

We are seeking a highly skilled and experienced Contract Security Auditor to join our team for a 1-year engagement. This critical role will be instrumental in enhancing our organization's security posture. The ideal candidate will be an unbiased expert, capable of meticulously assessing our current security controls against various global standards. If you thrive in an environment where you can make a significant impact and demonstrate exceptional performance, this contract offers a unique pathway to a permanent position within our core security team. Responsibilities: As our Contract Security Auditor, you will be responsible for: Comprehensive Security Assessments: Conducting in-depth secur...

We help the world run better At SAP, we enable you to bring out your best. Our company culture is focused on collaboration and a shared passion to help the world run better. How? We focus every day on building the foundation for tomorrow and creating a workplace that embraces differences, values flexibility, and is aligned to our purpose-driven and future-focused work. We offer a highly collaborative, caring team environment with a strong focus on learning and development, recognition for your individual contributions, and a variety of benefit options for you to choose from. What you`ll do We are seeking an Audit and Compliance Specialist to uphold the integrity of our certification processe...

About New Relic New Relic is a leader in observability, empowering engineers with real-time insights to build better software, faster. We are deeply committed to fostering an environment of innovation and collaboration, where our technology and people thrive. Our mission is to be the observability platform of choice & the system of intelligence for customers. As the Lead Product Security & Compliance Manager at New Relic, you will play a critical role in ensuring our innovative products meet global compliance standards and customer expectations. You will be a key partner to our product, engineering, legal, and security teams, providing guidance and oversight on a wide range of compliance and...

IT Infrastructure Compliance Manager job consist of creation of IT Compliance Framework, track all compliances as per regulatory requirements and to ensure IT Compliance adherence to regulatory requirements. To identify Technology Compliance requirement for IT Infrastructure Units To draft Compliance policies & procedure To work with IT Infra Units to implement compliance controls. To track Status of compliance To remediate noncompliance as per the governance structure To interface with External Auditors for all IT Infra Units To ensure all audit points are closed as per the defined TAT Key Decisions / Dimensions Compliance Status of Control as per the documented policy and procedure Major C...

manage&improve Governance,Risk,and Compliance,GRC frameworks,setting up and leading assessments,implementing strategies,advising clients on how to mitigate cybersecurity risks and achieve compliance with industry standards and regulatory requirements

Roles and Responsibilities : Conduct regular security testing and vulnerability assessments to identify potential risks and threats to the organization's IT systems. Develop and implement effective mitigation strategies to address identified vulnerabilities, ensuring compliance with relevant regulations such as SOX, PCI DSS, GDPR, CCPA, etc. Collaborate with cross-functional teams to ensure seamless integration of security controls into software development lifecycle (SDLC) using tools like CCM/CSCF/OWASP. Provide expert guidance on cybersecurity best practices to stakeholders across the organization. Job Requirements : 7-15 years of experience in Cyber Security Testing & Vulnerability Asses...

Job Posting Title: Internal Audit IT Location: Thane What does a successful Internal Audit IT do at FISERV? Efficiently manage and conduct the audit projects as per The Institute of Internal Auditors standards and in accordance with Fiserv global Internal Audit framework and methodologies. What will you do: Project Management Working as a team leader & resource management. Audit Co-ordination & Facilitation - Meetings with key personnel of various work areas Conduct comprehensive Cyber and Technology controls audits, IT General controls (ITGC) audits. Planning, conducting technology domain/controls related walkthroughs, drafting, and reviewing process understanding and its controls. Preparin...

As an Internal Fraud Risk Manager at Tide, you'll be instrumental in building a new global internal fraud function. Reporting to the Head of Internal Fraud, you'll collaborate with stakeholders such as the CRO, CAO, Director of Financial Crime Risk, and CISO, and engage directly with Tide's Executive and Senior Leadership Team. This role spans all of Tide's markets, offering broad exposure and the chance to help shape a fraud-resilient culture in a high-growth fintech environment. Key Responsibilities Support the design and implementation of Tide's internal fraud risk management framework Conduct internal fraud risk assessments to identify and mitigate vulnerabilities across the business Wor...

Core Responsibilities Assist with technical control design, implementation and monitoring, support incident responses and assist with providing root cause analysis support for incidents. Monitor for attacks, intrusions, and un-usual, unauthorised or illegal activities when the Security Analysts are finding the instance challenging. Keep an eye on the alerts from systems including SEIM solutions and vulnerability monitoring services and check if the Analysts are able to handle the flow appropriately, if not then jump in and investigate if there are any abnormality in the inflow. Monitor identity and access management, including monitoring for abuse of permissions by authorised systems users i...