882 Cisa Jobs - Page 8

EC-Council is the worlds largest cyber security technical certification body. We operate in 145 countries globally and we are the owner and developer of various world-famous cyber security programs. We are proud to have trained and certified over 220,000 information security professionals globally that have influenced the cyber security mindset of countless organizations worldwide. www.eccouncil.org We are seeking a seasoned and strategic Information Security Lead to spearhead our cybersecurity initiatives and lead a team of talented security engineers. In this critical role, you will be responsible for defining security strategy, optimising security architecture, and driving execution across multiple security domains including cloud, network, application, and endpoint security. You will serve as both a technical expert and a team leader, ensuring the organization's digital assets are well protected while fostering a high-performing security team. If you bring a passion for security, strong leadership skills, and a track record of building secure enterprise environment then we want to hear from you. Infosec Lead Responsibilities: As an Infosec Lead, your responsibilities will include: Lead a team of security engineers, overseeing their work, mentoring them, and ensuring alignment with organizational objectives. Manage end-to-end execution of IT security projects, including design, planning, implementation, and ongoing optimization ofsecurity architecture, infrastructure and solutions. Define and implement next-generation security strategies, architectures, and governance processes. Partner with key stakeholders across business units to understand requirements and deliver for-purpose security solutions. Validate and manage Business Continuity (BCP) and Disaster Recovery (DR) plans, coordinating with relevant teams. Prepare, review, and maintain documentation including incident reports, policies, procedures, and technical recommendations. Continuously assess and enhance the organizations security posture across antivirus, application control, rewall, SIEM, VPN, SSL, IDS/IPS, and more. INFORMATION SECURITY LEAD JD Develop and enforce infrastructure and application hardening strategies aligned with best practices. Lead threat modeling, risk assessments, and vulnerability remediation efforts. Identify new tools, opportunities, and innovations to improve Security Operations and efficiency. Drive implementation of audit recommendations, and continuously in-tune security appliances and controls. Maintain expertise in threat landscape analysis and risk profiling, and apply it to organizational defense mechanisms. Manage relationships with external vendors, security product providers, and managed services partners. Oversee vulnerability management and penetration testing programs; ensure timely mitigation and closure of findings. Collaborate with application, DevOps, and infrastructure teams to integrate security into DevSecOps pipelines. Present detailed security posture reports, KPIs, and dashboards to senior leadership and the board. Infosec Lead Requirements: To be successful in this role, you should have: 10+ years of experience in Information Security, with 3+ years in a team leadership role managing security teams. Proven experience in leading cross-functional team, mentoring security engineers, and building strong team dynamics. Expertise in developing and managing security architectures, policies, and controls across cloud and on-prem environments. Hands-on experience with cloud security in Azure and AWS environments. Proficient with security tools including rewalls (SonicWALL, Fortinet), SIEM, endpoint protection, network monitoring, and IAM solutions. Deep knowledge of routing, switching, and network segmentation practices for secure infrastructure design. Familiarity with ISO 27001, NIST, CIS, PCI-DSS, and other global security standards. Proficient in DevSecOps methodologies, tools, and CI/CD integration. Experience presenting security metrics, dashboards, and strategic updates to executive stakeholders. Bachelor'ss degree in Computer Science, Information Systems, or related field; certiifications such as CISSP, CISM, CCSP, or CEH are preferred. Strong understanding of threat intelligence, incident response, and forensics. Excellent communication skills with the ability to simplify complex technical topics for business audiences. Personal Attributes and Soft Skills Team Leadership: Builds, mentors, and inspires a high-performing security team; leads with integrity, empathy, and technical credibility. Strategic Thinking: Aligns security initiatives with business goals, ensuring a proactive and forward-thinking security posture. Customer Focus: Balances security needs with user experience and business priorities. Problem-Solving Skills: Approaches challenges analytically and methodically to design effective, ong-term security solutions. Project & Task Ownership: Takes full accountability for delivering results across people, process, and technology. Mentorship: Guides junior engineers with structured feedback, hands-on coaching, and growth opportunities. Requirement Understanding: Converts business and technical requirements into well-dened security policies and actions. Proactive Approach: Anticipates security risks, stays updated with industry trends, and responds with agility. Effective Time Management: Prioritizes competing demands effectively while managing incidents and projects simultaneously. Additional Information We are an equal opportunity workplace and are an affirmative action employer. We are always committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity, or Veteran status and we do not discriminate on the basis of such characteristics or any other status protected by the laws or regulations in the locations where we work. This job description has been designed to indicate the general nature and level of work performed by employees within this classification. It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities, and qualifications required of employees assigned to this job. EC-Council is committed to working with and providing reasonable accommodation to individuals with disabilities. If you have a medical condition or disability which inhibits your ability to complete any part of the application process and are in need of a reasonable accommodation to complete the process, please contact us ecchr@eccouncil.org and let us know how we may assist you. This notice together with our Privacy Policy and Terms of Use of this website and any other documents we mention here are meant to inform you on what personal data about you we collect, use, disclose, share or otherwise process when you are applying for a job at EC-Council or when EC-Council contacts you for recruitment purposes. Please read carefully to understand our views and practices on how we protect your personal data - Privacy Policy | EC-Council (eccouncil.org).

RoRR Roles & Responsibilities: Discuss with Business & IT on new process / system / activity before Onboarding / Go-Live Conduct risk assessments to identify information security risks Propose controls to business and / or work with business to plan risk mitigation Prepare Risk Assessment & Recommended Control Report Follow-ups for mitigation of identified risks & maintain Risk Assessment Tracker Release Monthly dashboards Ensure all recommendations made in RA are implemented Maintain and update Risk Assessment Procedure & Process documents Manage and address any escalations related to risk assessments Assess risk and provide timely approvals / rejections for requests such as firewall port opening, external data sharing, data movement, new software installations Provide status reports to CISO and Sr. Management on periodic basis Dashboards & Presentations for Information Security Review / Board Notes Handle periodic audits from regulator / government agencies / internal audits independently for respective work areas Job Requirement: Experience required for the Job8-10 years in information technology & security; MSc IT / BSc IT / Engineer / Post Graduate / MBA Good understanding of IT/Cyber Security Risk Certification like ISO27001 / ITIL / CISA / CISSP / CRISC (Preferable) Knowledge on Layered Security - Firewalls, Intrusion Detection, OS Hardening, Malicious Code Security, Security Policies and Procedures, IT controls implementation, DLP, Security Training. Knowledge of cloud technologies and security practices for cloud Experience in Third-party Risk Management; Experience in Banking (Preferable) Good interaction and communication ability Capability for aggressive follow-ups and work with deadlines Excellent verbal, written communication & presentation skills

Technology Risk and Governance Professional Lead and act as SPOC for the Internal and External audits as part of Information Technology function. Provide clarity to IT stakeholders pertaining to requirements/queries raised by auditor wherever required. Ensure timely submission of data to auditors Ensure appropriate management responses provided along with reasonable and achievable timelines for the observations Publish progress tracker and ensure timely completion of audit as per plan Lead or conduct regular assessments of IT processes and systems to identify areas for improvement (In terms of security and compliance) which are identified as part of Assurance program. Ensure closure of open findings with technology leaders and auditors Create awareness among IT teams for Audits, compliance and legal requirements Prepare IT audit Assurance program in collaboration with Risk, Security and Compliance Team considering Design and implementation of IT Controls Skills Required: Min 4-12 years of Work Experience as Internal Auditor/GRC team Knowledge of Internal controls, auditing standards and statutory compliance (RBI, UIDAI, NCIIPC regulations) Sound understanding of Banking/Fintech industry and frameworks such as COSO, COBIT Ability to add value and improve operations by bringing a systematic approach to the effectiveness of Risk management, control and governance processes Certification ISO 27001/CISA or equivalent Certification

As a Deputy Manager in VAPT & Governance at our Consulting firm in Navi Mumbai, you will be responsible for leading and managing VAPT projects for our BFS clients. Your role will involve scoping, executing, reporting, and tracking remediation of these projects. Additionally, you will deliver technical and governance-driven security assessments across various environments such as infrastructure, applications, cloud, and network. Your expertise in security governance frameworks, controls, and compliance (including RBI, ISO 27001, NIST, etc.) will be crucial in this role. You will play a key part in reviewing and developing security policies, procedures, and risk assessment frameworks. Collaborating with cross-functional teams and managing client relationships will be essential to ensure successful project outcomes. Timely reporting and communication of critical findings to stakeholders will also be part of your responsibilities. Moreover, you will have the opportunity to mentor junior team members and contribute to the development of our practice. To excel in this role, you should hold a Bachelors or Masters degree in IT, Cybersecurity, or a related field. Possessing relevant certifications such as OSCP, CEH, CISA, or CISSP would be advantageous. Your extensive consulting experience in the Banking and Financial Services industry, along with strong hands-on knowledge of VAPT tools and methodologies, will be highly valued. A deep understanding of governance, risk, and compliance specific to the BFSI sector is essential. Excellent presentation, reporting, and client communication skills are also necessary for success in this position.,

As a Network Security Engineer with Third Party Risk Management, you will be responsible for conducting third party risk assessments in alignment with company security policies and industry standards. You will also perform on-site assessments of vendors to identify opportunities for improvement and provide input to aid in the development of policies focused on the security of third-party business processes. Additionally, you will foster relationships and influence the behavior of internal teams and external parties. Your role will involve developing and maintaining supplier risk and control monitoring plans, as well as performing monitor activities and analysis of evidence to ensure controls are operating effectively. You will be required to complete monitor and control tasks triggered by supplier Tier and Third Party Interaction Model. Collaboration with line of business stakeholders to deliver year-over-year cost savings with managed third party relationships is a key aspect of the position. Qualifications for this role include a minimum of 4 years of experience in developing and maintaining global vendor risk management programs. Possession of CISSP, CISM, CISA, or CRISC certification is preferred. A solid understanding of information technology and security solutions is essential. You will also be responsible for monitoring and ensuring successful delivery against third party contractual obligations, as well as assisting in the development of SLAs or key performance indicators for third party relationships. To apply for this position, please email your resume to hr@harinexsolutions.com and follow our company page for more job opportunities.,

The role involves working as a Project Management Officer (PMO) across client, territory, and internal organizational models. You will be responsible for project management for clients, including senior stakeholder management for both internal and end clients. Your duties will include creating project plans, charters, steering decks, and tracking objectives, workstreams, milestones, timelines, and dependencies. Leading large transformation and transition programs, utilizing Project Management tools like MPP, and managing change are crucial aspects of the role. Additionally, you will be involved in resourcing, recruitment, support to proposal and business development, and practice, territory, market, and capability development. Data analytics, reporting, automation, contractual lifecycle, financial aspects, learning and development, onboarding, compliances, technology, coordination among internal departments, vendor management, and overall general administration for operational pillars will also be part of your responsibilities. You will play a critical role in driving business growth, revenue generation, people management, performance management, firm operations, process foundation, continuous improvements, escalation management, and ensuring operational excellence. To excel in this role, you must possess excellent communication and written skills, trusted relationship-building abilities, collaboration skills, a strategic mindset, leadership qualities, and innovative thinking. Preferred certifications include PMP and Prince2, while mandatory tools include Excel, PowerPoint, and Macros. Proficiency in tools like Alteryx and PowerBI would be advantageous. Key responsibilities include conducting reviews and evaluations of banking processes, collaborating with cross-functional teams to identify and mitigate risks, performing risk assessments and gap analyses, staying updated on regulatory changes, providing expert guidance to senior management, working with stakeholders to address compliance issues, delivering training programs, supporting policy implementation, and utilizing data analytics and technology tools for audit and control processes. The role requires strong interpersonal skills, the ability to work independently and collaboratively, effective communication, attention to detail, multitasking abilities, and managing predominantly offshore engagements and relevant PwC Territory teams. You will be responsible for client management, operational excellence, and fostering teamwork and innovation within the team. Minimum qualifications include a Bachelor's/Masters Degree in Commerce/Economics/MBA/BBA or Chartered Accountancy, relevant certifications, experience in banking operations, control gap identification, audit concepts, and regulations, with 4-6 years of relevant experience in a similar role, preferably with a Big 4 or equivalent firm.,

As a Senior Information Security Engineer, you will be responsible for leading vulnerability assessments and policy compliance scans across various environments including on-premises, cloud, container, database, and web environments using tools like Qualys. Your role will involve validating scan results, eliminating false positives, and delivering accurate, actionable reports to stakeholders. You will serve as a technical Subject Matter Expert (SME), analyzing findings, diagnosing root causes, and guiding remediation efforts. Additionally, you will be expected to develop and maintain a knowledge base to support continuous improvement and team expertise while staying current on emerging threats, tools, and vulnerability management lifecycle advancements to recommend service enhancements. Effective communication of security requirements across the organization and stepping in as an interim team lead when necessary will also be part of your responsibilities. In terms of experience and education, you should have a minimum of 8 years in the field of information security along with a Bachelor's degree in Engineering, Computer Science, Information Technology, or equivalent. Industry certifications such as CISSP, CISA, CISM, CRISC, or CCNA/CCNP/CCIE Security are preferred. You are expected to be proficient in working with vulnerability scanning platforms like Qualys, Nessus, etc., false-positive tuning, and compliance frameworks. Your technical expertise should span across cloud and on-premises systems, network devices such as routers, firewalls, proxies, and various infrastructure components. Skills in risk and threat assessment, as well as security policy enforcement, are essential. Familiarity with containers, DDI (DNS/DHCP/IPAM), WAF/CDN/DDOS solutions (e.g., Infoblox, Zscaler, Imperva) will be advantageous. Knowledge of scripting languages like Python and experience with monitoring tools like Spectrum, SevOne, ThousandEyes, CyberArk, and MS-Entra-ID will also be beneficial. Apart from technical skills, soft skills and leadership qualities are equally important. Excellent analytical, communication, and report-writing abilities are required. Strong organizational and time-management skills are essential for success in this role. Demonstrated leadership abilities, including guiding teams, managing escalations, and fostering a security culture, are expected. As an adaptable self-starter, you should be committed to continuous learning and proactive problem-solving.,

At EY, you will have the chance to build a career as unique as you are, with the global scale, support, inclusive culture, and technology to become the best version of yourself. Your unique voice and perspective are essential to help EY become even better. Join us to build an exceptional experience for yourself and contribute to creating a better working world for all. As a Risk Assurance Staff, you will contribute technically to Risk Assurance client engagements and internal projects. Your role will involve assisting Seniors & Managers and actively participating within client engagements. Anticipating and identifying risks within engagements and sharing any issues with senior team members will be a crucial part of your responsibilities. In line with EY's commitment to quality, you will ensure that your work is of high quality and is reviewed by the next-level reviewer. You will also help create a positive learning culture within the team and assist fellow team members while delivering assignments. Your responsibilities will include: - Participating in Risk Assurance engagements - Working effectively as a team member, sharing responsibility, providing support, maintaining communication, and updating senior team members on progress - Conducting research and assisting senior team members in preparing client presentations and information memorandums - Striving towards exceeding client and team expectations and working on increasingly complex assignments In terms of people responsibilities, you will be required to: - Maintain an educational program to continually develop personal skills of staff - Understand and follow workplace policies and procedures - Attend L&D programs and exhibit thorough knowledge of advisory methodology and consulting attributes - Exhibit initiative and participate in corporate social and team events Technical Skills Requirements: - Preferably CA/MBA/M.Sc/B.E/B.Tech (Electronics, Electronics & Telecommunications, Comp. Science)/MBA/M.Sc. with 0-3 years of experience - Knowledge of Information system audit covering areas like ITGC, Application controls, etc. - Knowledge of data analysis tools like MS Excel, MS Access, MS SQL Server, ACL, Monarch, etc. - Certifications: CISA Additional Requirements: - Demonstrated track record with a blue-chip consulting organization and/or a blue-chip organization - Strong academic record including a degree (percentage more than 70% throughout) EY exists to build a better working world, helping to create long-term value for clients, people, and society, and build trust in the capital markets. Enabled by data and technology, diverse EY teams in over 150 countries provide trust through assurance and help clients grow, transform, and operate. Working across assurance, consulting, law, strategy, tax, and transactions, EY teams ask better questions to find new answers for the complex issues facing our world today.,

Responsibilities Plan and execute complex, risk-based operational, compliance, and financial audits across various business units and functions globally, designed to enhance and protect organizational value. Lead audit engagements and execute audit procedures in conformance with our quality standards, policies, and procedures to provide assurance and identify risks, issues, and/or best practices. Ability to manage multiple projects and meet deadlines. Must be able to write test objectives and test procedures clearly and concisely. Identify and assess key business risks, understanding the relationship between business strategies and risks. Evaluate the adequacy and effectiveness of associated control activities (e.g., internal control design and effectiveness) and apply a risk-based approach to achieve audit test objectives. Prepare comprehensive audit reports, synthesize audit testing results, analyze root causes of issues, draft audit findings, risks, and recommendations for process improvements, and communicate to management. Utilize data analytics and audit software tools to enhance audit efficiency and effectiveness. Lead and mentor newer audit team members, providing guidance and support throughout the audit process. Use audit tool (TeamMate+) to document audit work contemporaneously when procedures are performed. Abilities / Skills Analytical and Problem Solving - Ability to define, clarify and propose solutions that align to audit methodology. Attention to Detail - Execution of the task-in-hand with accuracy. Intellectual Curiosity - Natural desire to learn new things and independently pursue a stronger understanding of the topic. Personal Courage - Uphold GIA principles of independence and objectivity while identifying when escalation is needed. Effective Communication (verbal and written) - Ability to communicate to stakeholders the role of internal audit and translate audit terminology into digestible language to aide in business adoption. Teamwork and Collaboration Ability to work effectively in a team environment as well as independently. Education & Experience Undergraduate degree, in Accounting, Finance or related business field. At least 4-6 years of internal audit experience , with a strong emphasis on the execution of audit testing procedures, and quality work paper documentation in conformance with internal audit (or relevant) methodology. Self-discipline and the ability to balance multiple priorities in a deadline-driven environment. Experience with broader capabilities, such as risk assessments and monitoring activities, is a plus. Awareness and exposure to fundamentals of internal audit, risk and controls including the IIA, IPPF and COSO. Relevant Professional certification (CIA, CISA, CA, CPA) or desire to obtain, is a plus.

TempHtmlFile Job Title: Consultant Function: Governance, Risk and Compliance Services (GRCS) Location: Bangalore OVERVIEW KPMG is a global network of professional firms providing Audit, Tax and Advisory services. We operate in 156 countries and have 152,000 people working in member firms around the world. KPMG in India, a professional services firm, is the Indian member firm of KPMG International and was established in September 1993. Our professionals leverage the global network of firms, providing detailed knowledge of local laws, regulations, markets and competition. KPMG in India provide services to over 4,500 international and national clients, in India. KPMG has offices across India in Delhi, Chandigarh, Ahmedabad, Mumbai, Pune, Chennai, Bangalore, Kochi, Hyderabad and Kolkata. The Indian firm has access to more than 7,000 Indian and expatriate professionals, many of whom are internationally trained. We strive to provide rapid, performance-based, industry-focused and technology-enabled services, which reflect a shared knowledge of global and local industries and our experience of the Indian business environment. KPMG Advisory professionals provide advice and assistance to enable companies, intermediaries and public sector bodies to mitigate risk, improve performance, and create value. KPMG firms provide a wide range of Risk Consulting, Management Consulting and Transactions & Restructuring services that can help clients respond to immediate needs as well as put in place the strategies for the longer term. With increasing regulatory requirements, the need for greater transparency in operations, and disclosure norms, stakeholders require assurance beyond the traditional critique of numbers. Hence assurance is being increasingly required on industry issues, business risks and key business processes. The Governance, Risk & Compliance Services practice assists companies and public sector bodies to mitigate risk, improve performance and create value. We assist our clients to effectively manage business and process risks by providing a full spectrum of corporate governance, risk management, and Compliance Services. These services are tailored to meet client s individual needs, and provide effective support to management in meeting the challenges and opportunities presented by todays complex business environment. Our professionals provide the experience to help companies stay on track and deal with risks that could unhinge their business survival. Our services enable clients to effectively co-ordinate their key growth, quality and operational challenges and working in partnership with us, clients have the benefits of KPMGs experienced, objective, and industry-grounded viewpoints. Following are some of our key service offerings: Risk Based Internal Audit Enterprise Risk Management Risk Assessment Model Business Process Development Sarbanes - Oxley 404 Assistance Compliance Assistance - Contracts and regulations Corporate Governance Advisory- Review and Assessment Revenue Assurance Control Self Assessment Continuous Auditing / Continuous Monitoring Apart from the above service offerings, we also assist client organizations around various aspects viz. Accounting Manuals, Capital Projects Audits, Project focused Control Assessment, setting up IA function, etc. Role & Responsibilities Executives are typically project team members who will be involved in conducting process consulting/ internal audit/ risk consulting and execution of other solutions of GRCS Executives may lead a small team of analysts/trainees on engagements. Consistently deliver quality client services and take charge of the project area assigned to him/her. Monitor progress, manage risk and verify key stakeholders are kept informed about progress and expected outcomes. Demonstrate in-depth technical capabilities and professional knowledge. Demonstrate ability to assimilate to new knowledge. Possess good business acumen. Remain current on new developments in advisory services capabilities and industry knowledge. The job would require travel to client locations within India and abroad. THE INDIVIDUAL Have experience in process consulting/ internal audit/ risk consulting. Possess strong domain knowledge, understanding of business processes and possible risks in operations of various Sectors. Ability to perform and interpret process gap analysis. Understanding of control rationalization, optimization, effectiveness, and efficiency Strong analytical and problem-solving skills. Possess strong data analytics skills and knowledge of advanced data analytical tools will be an advantage. Strong written and verbal communication skills (presentation skills) Ability to work well in teams. Basic understanding of IT systems, Knowledge of MS office (MS Excel, PowerPoint, Word etc) Have the ability to work under pressure - stringent deadlines and tough client conditions which may demand extended working hours. Willingness to travel within India or abroad for continuous long periods of time. Demonstrate integrity, values, principles, and work ethic. Qualification Qualified CAs/ MBAs with 0 - 2 years OR Graduates with 4 - 7 years of relevant experience in risk consulting/ operations or compliance function role (Understanding of internal audit, business processes, sector understanding). Certifications like Certified Internal Auditor (CIA), Certified Information Systems Auditor (CISA) would be an added advantage. SELECTION PROCESS Candidates should expect 2 - 3 rounds of personal or telephonic interviews to assess fitment and communication skills. Compensation Compensation is competitive with industry standards. Details of the compensation breakup will be shared with short-listed candidates only. People BENEFITS Continuous learning program Driving a culture of recognition through ENCORE our quarterly rewards and recognition program Comprehensive medical insurance coverage for staff and family Expansive general and accidental coverage for staff Executive Health checkup (Manager & above, and for staff above the age of 30) Les Concierge desks. Internal & Global mobility Various other people friendly initiatives Strong commitment to our Values such as CSR initiatives The opportunity is now! If you are interested in being part of a dynamic team, serving clients and reaching your full potential - KPMG Advisory Services is for you! .

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Security Solution Development Good to have skills : NAMinimum 7.5 year(s) of experience is required Educational Qualification : 15 years full time educationAs a Security Solution Architect, candidate would be primarily responsible for solution architecture effort on small to medium complexity deals. Lead or work as Lead Solution Architect on small to medium complex deals. Independently and with little oversight can come up with the solution. Conduct the solution reviews with SMEs and the delivery approvers. Attend calls with the client team to understand the requirement. Can be able to bring value and differentiated solution. Work on building the cost model for the solution. Should be good to work as individual contributor and good team player. When assigned responsibilities to lead the team, candidate should show leadership qualities to manage the team and get the work done. Roles & Responsibilities:Frequently interacts with senior client leadership.Develop statement of workPerforms Peer ReviewsAssists in performing QAHas led solution development for multiple deal typesWork with delivery leads for the approval of solution/effortsBring out technical differentiators and value in the solutionAble to represent the solution in front of the client leadership team. Professional & Technical Skills: Prior experience at least 3 years in leading solution development in a reputed organizationDeep knowledge and experience in Cyber security Infra Sec, App Sec, Threat and Vulnerability Management and Identity Access Management is necessaryShould be a good presenterShould have leadership qualitiesShould keep himself/herself up to date on various SA Cost models and processes, work independently to develop costing and pricingGood communication and collaboration skills Prior experience in leading solution development will be an advantageExperience in leading delivery and solution planning of large, complex dealsComfortable in using relevant tools and estimatorsComfortable working in extended working hoursCISSP, CISM, CISA Cloud Security knowledge and certification AWS, AzureSolution Architect Core TrainingSolution Architect Advance Training Additional InformationMinimum 15- year full time education with Bachelor or college degree in related field or equivalent work experience The candidate should have a minimum of 8 years of experience This position is based at our Gurugram office. Qualification 15 years full time education

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Security Solution Development Good to have skills : NAMinimum 15 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Solution Architect, candidate would be primarily responsible for solution architecture effort on deals that are large and complex and own all components of complex deals. Lead or work as Lead Solution Architect on complex and bundled deals and independently can come up with the solution. Conduct solution reviews with SMEs and the DCSO approver. Attend calls with the client team to understand the requirement. Can be able to bring value and differentiated solutions. Work on building the cost model for the solution. Roles & ResponsibilitiesShould be able to lead the joint solutioning workshops with client and be able to walk through technical security solutions with the clients during Orals. Should possess excellent stakeholder management skills and be good to work as individual contributor and good team player. When assigned responsibilities to lead the team, candidate should show leadership qualities to manage the team and get the work done. Frequently interacts with senior client leadership. Develop statement of work Performs Peer Reviews Assists in performing QA Frequently sells to senior client leadership Leads negotiations or develop business terms and conditions Leads QA or plays major QA role for largest, most complex deals Has led solution development for multiple deal types Work with delivery leads for the approval of solution/efforts Bring out technical differentiators and value in the solution Able to represent the solution in front of the client leadership team. Professional & Technical Skills: Prior experience at least 5 years in leading solution development in a reputed organization Deep knowledge and experience in Cyber security Infra Sec, App Sec, Threat and Vulnerability Management and Identity Access Management is necessary Should be a good presenter Should have leadership qualities Should keep himself/herself up to date on various SA Cost models and processes, work independently to develop IDL files Good communication and collaboration skills Prior experience in leading solution development will be an advantage Experience in leading delivery and solution planning of large, complex deals at least 5 opportunities with Security TCV of greater than10m in the recent experience Comfortable in using relevant tools and estimators Comfortable working in extended working hours Good to have CISSP, CISM, CISA Cloud Security knowledge and certification AWS, Azure Solution Architect Core Training Good to have Solution Architect Advance Training Additional InformationMinimum 15- year full time education with Bachelor or college degree in related field or equivalent work experience The candidate should have minimum 15 years of experience This position is based at our Gurugram office. Qualification 15 years full time education

The position will be primarily responsible for implementation and / or assessment of ISO 27001:2022, 27002, SOC 2 standard for clients. The position will work independently or with senior consultants for the implementation and management of information security compliance and/or other best practices. Key Performance Indicators Experience in ISO 27001/27002 controls verification and compliance: Assist Clients to get ISO 27001 certification by identification and implementation of appropriate controls in the Audit scope. Conduct Risk assessment of activities and coordinate with stakeholders till closure signoff / risk acceptance. Define, Develop and review information security policies, procedures, guidelines, forms and templates as per best practice Create and review baseline standards for OS, Database, webservers and applications and recommend improvements Support post implementation and continuous audits for ISO 27001:2013 and ensure compliance. Create organizational information security awareness program and conduct awareness. Assist and recommend measures to ensure compliance with Security standards (ISO, NIST, CIS, PCI DSS etc) or any best practices. Skills: Information Technology and/or Cybersecurity skills: Information Technology and/or Cybersecurity skills a solid IT foundation, ability to communicate technical information verbally and through written documentation, Knowledge of security areas such as auditing, policy, database security, firewall design and implementation, risk analysis, identity management, access management, or web services is preferred Presales skills: Excellent communication, problem-solving, client-facing, ability to work as a team Competence: ISO 27001 / Cybersecurity Certifications. Willingness to obtain the Certified Information Systems Security Professional (CISSP) or Certified Information Systems Auditor (CISA) designations.

SUMMARY: This position is reporting to the Director or Sr Manager/Manager, IT Internal Audit and part of a strong, dynamic global internal audit function. This Senior position will be a member of the Internal Audit IT team focusing on global projects based in our Bangalore, India office. ESSENTIAL DUTIES AND RESPONSIBILITIES: Reporting to the Director, IT Internal Audit, the Senior will assist leading and executing projects for the IT Audit & Data Analytics pillars, assisting in Internal Audit function improvement projects, and collaborating with the other internal audit pillars - Finance & Operations audit, Internal Controls, Channel audit, and Audit Operations. Execution of projects in the IT audit pillar including: Assisting in performance of annual risk assessment of the business, development of an overall audit plan, and periodic refreshes of the risk assessment and the audit plan Executing projects on the internal audit plan including IT, operational, compliance, site, and cross functional audits across the global business Assisting in executing project risk assessments, planning, and scoping decisions on individual audit and advisory projects Executing controls documentation, testing, and fieldwork for audit and advisory projects Assisting in drafting audit and advisory observations and reports Assisting in coordinating, planning, reviewing, and executing on Management s assessment of Internal Controls over Financial Reporting (SOX) Developing, cultivating, and growing relationships with key stakeholders across various business functional and operational areas Developing relationships with the external auditor Taking ownership of career and skill development, including coaching and mentoring opportunities and attending training Identifying opportunities and helping the maturation of the data analytics function, including working to audit robotic process automations, application controls, and other IT dependent controls in close coordination with the finance & operations audit and Data Analytics pillar teams Qualifications Required and preferred knowledge and job skills: Work experience: 3+ years of relevant work experience required. Strong preference for experience with public account

Business Functions Technology and Operations (T&O) enables and empowers the bank with an efficient, nimble and resilient infrastructure through a strategic focus on productivity, quality & control, technology, people capability and innovation. In Group T&O, we manage the majority of the Banks operational processes and inspire to delight our business partners through our multiple banking delivery channels. Business Function Technology and Operations (T&O) enables and empowers the bank with an efficient, nimble and resilient infrastructure through a strategic focus on productivity, quality & control, technology, people capability and innovation. In Group T&O, we manage the majority of the Banks operational processes and inspire to delight our business partners through our multiple banking delivery channels. Job Purpose This is to manage risks for LOBTs acting as Line 1 risk manager Key Accountabilities: Assist Line of Business Technology in managing technology and operational risks Drive and ensure regulatory compliance for the LOBT Liaise and co-ordinate audit activities involving the LOBT Issue & Action management for LOBT including is impacted (across external and internal audits and reviews and excluding IT Information Security) and action planning. Engagement across Technology verticals, Operations, Business, Compliance to prioritize, plan, act, prove, close all open findings within committed timelines. Scan regulatory requirements, circulars to ensure forward planning and execution for compliance. This includes Singapore and India regulatory requirements. Prepare, maintain and conduct control testing for units Risk Control Self Assessments (RCSAs) Outsourcing Risk assessment for the LOBT Monitor risk issues and incidents for LOBT. Job Duties & Responsibilities: Liaise with stakeholders within and outside DBS, including at Group level to have a comprehensive view of all Technology Risks. Engage with Technology verticals and others as appropriate within DBS, to progress on closure of all open points. Engage with Compliance, understand the regulatory requirements at country and group level, and add these to the action points which Technology must ensure. Early identification of execution challenges in risk mitigation actions and being an effective catalyst with Technology teams and seniors to resolve bottlenecks such as cost or resource approvals, conflicting priorities. Risk assessment for LOBT covering partners, external environment and identify potential risks such as relating to scale-preparedness, DR & BCP support for the organization, code quality in terms of testing and deployment governance. Regular updates as per agreed rhythm, and fronting dialogues with stakeholders/LOBT, to highlight process on Risk Management and Risk Mitigation. Liaise with relevant departments to ensure awareness of Technology Risk within the DBS India Technology Team, and partner for this awareness across DBS India. Liase with Line of Business Risk in the region and co-ordinate efforts for the LOBT landscape used by India. Requirements Ideally, 10+ years of successful experience in Technology Risk Management, Information Security, Technology Audit. Education / Preferred Qualifications: Ideally, risk-accreditations like CISA, CRISC, CISM, CISSP experience on Information System audits and remediation, Agile Scrum accreditation and/or experience, and has worked as a Lead Auditor in Information System audits including ISO audits. Minimum Computer Science or Technology Management graduate, preferably in Info-Sec specialization. Core Competencies: Awareness of Information Systems and their complexity, potential points of failure from a risk perspective. Good communication skills and ability to manage dialogues with seniors. Readiness to raise the red flag for risks, in the interests of the bank.

The Chief Data and Analytics Office (CDAO) is responsible for building enterprise-scale, cutting-edge platforms for Data Management & Analytics and AI/ML Operations that are used firm-wide by the JPMC workforce for Artificial Intelligence (including generative AI)/Machine Learning (AI/ML) development and Data Management. As an AI & Data Governance Product Manager-Vice President within our organization, you will take the lead in understanding, formulating and executing well designed, user friendly, product feature that apply AI & Data governance frameworks, policies, and procedures. Your role is crucial in ensuring the ethical and compliant application of AI & Data Management technologies across the firm. You will be instrumental in integrating AI/ML & Data Management technology into the companys structure, adhering to sustainable best practices in compliance with JPMC technology, operational risk, and relevant regulations. Collaborating with cross-functional teams such as Firmwide CDO, data scientists, engineers, design, legal, compliance, and business units, you will spearhead AI & Data governance initiatives and ensure they align with regulatory requirements and industry best practices. Additionally, you will manage the delivery of risk and control issues, action plans, control processes, and preparations for audits and regulatory examinations. Job Responsibilities Design and implement comprehensive products that implement AI & Data governance frameworks, policies, and procedures to ensure the ethical and responsible use of AI & Data management technologies across the organization. Ensure compliance with relevant AI & Data regulations, standards, and guidelines, including GDPR, CCPA, and emerging regulations. Identify, assess, and mitigate risks associated with AI & Data Management technologies, including data quality, data protection & privacy, bias, transparency, and accountability. Collaborate with cross-functional stakeholders such as Firmwide CDO, data scientists, designers, engineers, legal, compliance, and business units to integrate AI & Data governance practices into the AI/ML & data development lifecycle, and also deliver firm wide control standards and procedures including adherence to controls in technology and cyber risk domains (application security, vulnerability management and data management ) Establish monitoring and reporting mechanisms to track compliance with AI governance policies and identify areas for improvement. Present product/program updates, risk management and governance findings, and recommendations to senior leaders and stakeholders, ensuring transparency and accountability. Keep abreast of industry trends, regulatory changes, and emerging risks related to AI & Data governance to proactively address potential threats. Required qualifications, capabilities and skills Formal training or certification in product management concepts and 5+ years applied experience . Strong understanding of AI/ML and data governance, MLOps, and technology governance/risk/compliance principles. Proven experience in business analysis and driving operational change/system development with ability to identify critical requirements by understanding complex and interdependent processes. Familiar with industry standards, frameworks, and regulations related to AI & Data governance. Strong critical thinking and problem-solving skills, with the ability to identify and mitigate risks effectively. Excellent presentation and communication skills, with the ability to convey complex information to senior leaders and stakeholders. Proven ability to collaborate effectively across cross-functional teams and build strong working relationships. Preferred qualifications, capabilities and skills Experience with public cloud platforms (e.g., AWS, GCP, Azure) is a plus. Advanced certifications in AI governance, data governance, or related fields. Relevant certifications such as CISSP, CISA, CRISC, or certifications in AI governance and MLOps are highly desirable. The Chief Data and Analytics Office (CDAO) is responsible for building enterprise-scale, cutting-edge platforms for Data Management & Analytics and AI/ML Operations that are used firm-wide by the JPMC workforce for Artificial Intelligence (including generative AI)/Machine Learning (AI/ML) development and Data Management. As an AI & Data Governance Product Manager-Vice President within our organization, you will take the lead in understanding, formulating and executing well designed, user friendly, product feature that apply AI & Data governance frameworks, policies, and procedures. Your role is crucial in ensuring the ethical and compliant application of AI & Data Management technologies across the firm. You will be instrumental in integrating AI/ML & Data Management technology into the companys structure, adhering to sustainable best practices in compliance with JPMC technology, operational risk, and relevant regulations. Collaborating with cross-functional teams such as Firmwide CDO, data scientists, engineers, design, legal, compliance, and business units, you will spearhead AI & Data governance initiatives and ensure they align with regulatory requirements and industry best practices. Additionally, you will manage the delivery of risk and control issues, action plans, control processes, and preparations for audits and regulatory examinations. Job Responsibilities Design and implement comprehensive products that implement AI & Data governance frameworks, policies, and procedures to ensure the ethical and responsible use of AI & Data management technologies across the organization. Ensure compliance with relevant AI & Data regulations, standards, and guidelines, including GDPR, CCPA, and emerging regulations. Identify, assess, and mitigate risks associated with AI & Data Management technologies, including data quality, data protection & privacy, bias, transparency, and accountability. Collaborate with cross-functional stakeholders such as Firmwide CDO, data scientists, designers, engineers, legal, compliance, and business units to integrate AI & Data governance practices into the AI/ML & data development lifecycle, and also deliver firm wide control standards and procedures including adherence to controls in technology and cyber risk domains (application security, vulnerability management and data management ) Establish monitoring and reporting mechanisms to track compliance with AI governance policies and identify areas for improvement. Present product/program updates, risk management and governance findings, and recommendations to senior leaders and stakeholders, ensuring transparency and accountability. Keep abreast of industry trends, regulatory changes, and emerging risks related to AI & Data governance to proactively address potential threats. Required qualifications, capabilities and skills Formal training or certification in product management concepts and 5+ years applied experience . Strong understanding of AI/ML and data governance, MLOps, and technology governance/risk/compliance principles. Proven experience in business analysis and driving operational change/system development with ability to identify critical requirements by understanding complex and interdependent processes. Familiar with industry standards, frameworks, and regulations related to AI & Data governance. Strong critical thinking and problem-solving skills, with the ability to identify and mitigate risks effectively. Excellent presentation and communication skills, with the ability to convey complex information to senior leaders and stakeholders. Proven ability to collaborate effectively across cross-functional teams and build strong working relationships. Preferred qualifications, capabilities and skills Experience with public cloud platforms (e.g., AWS, GCP, Azure) is a plus. Advanced certifications in AI governance, data governance, or related fields. Relevant certifications such as CISSP, CISA, CRISC, or certifications in AI governance and MLOps are highly desirable.

POSITION SUMMARY : The Internal Audit Department is responsible for overseeing Ocwens Internal Audit program at the direction of the Audit Committee The incumbent will perform controls testing as part of Internal Audit projects to establish and ensure that Ocwen has an effective internal controls structure, with controls that are properly designed to operate effectively and efficiently The incumbent will be involved in executing the internal audit methodology This is a global role engaging stakeholders (at all levels) across geographies like India, Philippines & US JOB FUNCTION AND RESPONSIBILITIES: Test of Design & Effectiveness (TOD & TOE) : Conduct TOD & TOE for various IT processes, incorporating established industry baselines and frameworks for processes such as user access management, change management, incident management, backup & recovery. Technology Testing : Perform TOD & TOE for various technologies, utilizing established industry baselines and frameworks for databases, operating systems, cloud, and SaaS. Documentation : Draft and maintain comprehensive documentation to support the test work performed. Audit Support : Provide support for external audits and other ad hoc audit engagements. Project Management : Assist in various audit project management activities, including the design and planning of audits, project status reporting, and dashboard creation. Team Collaboration : Act as an effective team player with strong initiative and communication skills. Multi-tasking : Manage multiple priorities in an organized manner with keen attention to detail. Complex Audits : Demonstrate the capability to effectively perform complex or multi-functional audits. Cross-Department Interaction : Engage with management and collaborate across departmental lines to execute audits effectively. Communication Skills : Exhibit excellent oral and written communication skills. QUALIFICATION: Minimum Qualification required - Bachelor s degree (Preferably in computer science or IT). CISA preferred. 3 - 5 years of relevant work experience in SOX ITGC control testing. WORK SCHEDULE OR TRAVEL REQUIREMENTS: Mid-Shift

Role & responsibilities Ability to conduct audits in the areas of Information Technology and Information Security across various applications, Hardware and Software, domains and Network etc. Thorough review of the policy, procedure and processes related to IT function Review of the Access Management, Incident and Change Management, Password and Remote Access Management policies and related procedures in place. Ability to review the segregation of environment and duties in all related IT applications and peripheral systems Review of Information Technology General Controls (ITGC), IT Service Management, Asset Management Experience of conducting audits in the areas of Data Privacy and Protection, BCP Provides advice to management from the risk perspective in the event of new and/or modifications of Standard operating procedures. Hands-on experience of working in data analytics, data mining to arrive at meaningful and informational matrix using SQL, Python, Power BI and other advanced techniques. Performs audit reviews to verify that controls are operating in IT Function through testing and interviewing techniques and documents the results of audit reviews in accordance with internal audit standards. Provides objective assurance and independent review on the adequacy and effectiveness of the companys risk management and internal control system specifically for IT Function to safeguard assets, improves operations, recommend and implement best practices. Conducts risk assessments; identifies controls in place to mitigate identified risks and opportunities for improvements. Ensures common Fraud/errors/irregular transactions are identified and investigated by audit of digital framework and architecture in place in a timely manner as well as providing corrective action plans to mitigate expectations. Interface with management, including executive management, on a regular basis to communicate audit results and assess IT/ business/ regulatory risks etc. Drafts reports in a timely manner and communicates issues and recommendations effectively and appropriately to senior management and Board of Directors. Support Audit Head on communication and presentation of audit results to Sr. Management and Audit Committee.

POSITION SUMMARY : The Internal Audit Department is responsible for overseeing Ocwens Internal Audit program at the direction of the Audit Committee The incumbent will perform controls testing as part of Internal Audit projects to establish and ensure that Ocwen has an effective internal controls structure, with controls that are properly designed to operate effectively and efficiently The incumbent will be involved in executing the internal audit methodology This is a global role engaging stakeholders (at all levels) across geographies like India, Philippines & US JOB FUNCTION AND RESPONSIBILITIES: Test of Design & Effectiveness (TOD & TOE) : Conduct TOD & TOE for various IT processes, incorporating established industry baselines and frameworks for processes such as user access management, change management, incident management, backup & recovery. Technology Testing : Perform TOD & TOE for various technologies, utilizing established industry baselines and frameworks for databases, operating systems, cloud, and SaaS. Documentation : Draft and maintain comprehensive documentation to support the test work performed. Audit Support : Provide support for external audits and other ad hoc audit engagements. Project Management : Assist in various audit project management activities, including the design and planning of audits, project status reporting, and dashboard creation. Team Collaboration : Act as an effective team player with strong initiative and communication skills. Multi-tasking : Manage multiple priorities in an organized manner with keen attention to detail. Complex Audits : Demonstrate the capability to effectively perform complex or multi-functional audits. Cross-Department Interaction : Engage with management and collaborate across departmental lines to execute audits effectively. Communication Skills : Exhibit excellent oral and written communication skills. QUALIFICATION: Minimum Qualification required - Bachelor s degree (Preferably in computer science or IT). CISA preferred. 3 - 5 years of relevant work experience in SOX ITGC control testing. WORK SCHEDULE OR TRAVEL REQUIREMENTS: Mid-Shift

Business Funtion Technology and Operations (T&O) enables and empowers the bank with an efficient, nimble and resilient infrastructure through a strategic focus on productivity, quality & control, technology, people capability and innovation. In Group T&O, we manage the majority of the Banks operational processes and inspire to delight our business partners through our multiple banking delivery channels. Job Purpose This is to manage and mitigate Technology Risk for DBS India. Key Accountabilities The Scope includes all Findings where Technology is impacted (across external and internal audits and reviews, and excluding IT Information Security) are in scope. Engagement across Technology verticals, Operations, Business, Compliance to prioritize, plan, act, prove, close all open findings within committed timelines. Scan regulatory requirements, circulars to ensure forward planning and execution for compliance. This includes Singapore and India regulatory requirements. For the overall e2e Technology estate” across DBS, Partners, external environment : are we ready for scale / DR & bcp / quality of code in terms of impact & user experience & customer experience / newer technologies Job Duties & responsibilities Liaise with stakeholders within and outside DBS, including at Group level to have a comprehensive view of all Technology Risks. Engage with Technology verticals and others as appropriate within DBS, to progress on closure of all open points. Engage with Compliance, understand the regulatory requirements at country and group level, and add these to the action points which Technology has to ensure. Early identification of execution challenges in risk mitigation actions, and being an effective catalyst with Technology teams and seniors to resolve bottlenecks such as cost or resource approvals, conflicting priorities. Risk assessment across the estate” covering partners, external environment and identify potential risks such as relating to scale-preparedness, DR & bcp support for the organization, code quality in terms of testing and deployment governance. Regular updates as per agreed rhythm, and fronting dialogues with different seniors across DBS at country and group, to highlight process on Risk Management and Risk Mitigation. Liaise with relevant departments such as HR, to ensure awareness of Technology Risk within the DBS India Technology Team, and partner for this awareness across DBS India. People management and Team building Requirements Ideally, 15+ years of successful experience in Technology Risk Management. The more recent 5+ years should be in a well established bank (Indian or Multinational). Education / Preferred Qualifications Minimum Computer Science or Technology Management graduate, preferably in Info-Sec specialization. Core Competencies Good communication skills and ability to manage dialogues with seniors. Readiness to raise the red flag” for risks, in the interests of the bank. Technical Competencies Ideally, risk-accreditations like CISA, experience on Information System audits and remediation, Agile Scrum accreditation and/or experience, and has worked as a Lead Auditor in Information System audits including ISO audits. Work Relationship Awareness of Information Systems and their complexity, potential points of failure from a risk perspective. DBS India - Culture & Behaviors Drive Performance Through Value Based Propositions Ensure Customer Focus by Delighting Customers & Reduce Complaints Build Pride and Passion to Protect, Maintain and Enhance DBS Reputation Enhance Knowledge Base, Build Skill Sets & Develop Competencies Invest in Team Building & Motivation through Ideation & Innovation Execute at Speed While Maintaining Error Free Operations Develop a Passion for Performance to Grow Talent Pool Maintain the Highest Standards of Honesty and Integrity

Role & responsibilities Position Summary The IT Audit Senior Manager will be responsible for leading the execution of the annual IT audit plan. This position will plan and execute control documentation and control testing in accordance with SOX and execute integrated audits that focus on process level and underlying computer application controls. This position will also conduct pre-implementation and post- implementation reviews of new applications and technologies. This position will regularly interact with executive leadership and the external auditors. Key Accountabilities: Lead corporate IT SOX compliance activities including: Developing ITControl Framework which includes IT general controls and application controls Updating SOX documentation Performing SOX walkthroughs Executing control testing for both general and application IT control reviews- including review of system architecture, configuration settings and application functionality Follow up action plans for SOX IT findings to ensure timely implementation of remediation plans Leads IT internal audit engagements and assessments to evaluate the adequacy of internal controls and deliver audit reports that add value to the area audited Perform the planning, fieldwork, reporting, and follow-up phases of IT audits with limited supervision Perform infrastructure, network and applications reviews, pre and post implementation reviews of new IT systems/applications Evaluate and document system-related controls supporting applications, operating systems, databases, networks, and other technologies Assess the design and effectiveness of policies and procedures related to deployment of IT system changes and IT application changes Assess the design and effectiveness of security policies and standards, internet use, network security awareness and enforcement, access controls security architecture and administration, and operating systems. Perform data privacy and cyber reviews and related risk analysis Demonstrates a thorough understanding of complex information systems, and utilizes knowledge of emerging technology to identify technological developments and evaluate impacts on the business Maintain relationships with IT and business management and is seen as a trusted advisor for system development projects and other critical IT initiatives Establish and maintain effective relationships with management, external auditors, and other control partners to analyze business risks and controls Provides guidance and shares knowledge with staff members during the execution of the audits, and participates in performing procedures especially focusing on complex, judgmental and/or specialized issues Take a proactive role in departmental continuous improvement initiatives Education and Experience: Bachelors degree in business or related field CISA 8+ years of experience in IT SOX Compliance Experience in audit, public or private Experience in project management preferred Preferred candidate profile Skills and Behaviors: Ability to direct multiple projects ensuring timely communications and resource planning Knowledge of SAP is required GRC knowledge is preferred Excellent analytical and organizational skills Must have strong attention to detail Ability to meet monthly deadlines and goals Ability to work and adapt to a fast paced, highly engaged, team environment Excellent verbal and written communication and interpersonal skills Strong working knowledge of Microsoft Office; must be proficient in Excel, Access, and Word Knowledge of business intelligence query tools, such as Cognos, Business Object, Micro Strategy, etc. preferred Strong leadership and supervisory skills

Hi , As per response to your profile which is uploaded in Job portals. We have an excellent job openings for InfoSec(Cyber Resilience-BCP/BCM/DR) in IT MNC If your already received email or not looking for job change/ irrelevant - please ignore it. Note: Apply for only Relevant & interested candidates. Job Description: Information Security(Cyber Resilience-BCP/BCM/DR) 1)Digital Risk Consulting_Partners with IT and business units to identify critical systems, document impacts, asses risks, and define recovery objectives to ensure minimal disruption during incidents. They monitor evolving regulatory requirements to continuously update resilience plans and drive continuous improvement. Additionally, they advance the current state o CMDB and BCM by updating policies, standards and templates as well as defining workflows and integrating business continuity management system practises into change management and IT service management processes and procedures. OR 2)BCP- Partner with IT and business units to update existing impacts, loss scenarios, risks and application recovery plans on regular cadence. They are responsible to ensure that assets and configuration items are correctly tiered and that all dependencies are documented. They are also responsible for documenting backups, alternatives and redundancy plans that drive our systems towards greater resilience OR 3) Cyber Resilience _Responsible for ensuring IT infrastructure, applications and critical technology services including multicloud workloads on AWS, Azure, Google cloud are resilient against disruptions. They lead the execution of technology resilience strategies, enterprise-grade backup and disaster recovery planning and crisis response initiatives to mitigate risks and maintain operational continuity. They will collaborate with IT, cybersecurity, business continuity and risk management teams to architect, deploy and test cloud backups and DR solutions at scale. Additionally they perform tests, exercises, drills, simulations and audits of systems, processes and procedures to ensure adherence to enterprise policies and standards and measure the effectiveness of resilience efforts. Those who have relevant experience and Skills, as mentioned above please revert back your updated resume to Sreenivasa.k@happiestminds.com, It"s a kind request, Please provide the below mentioned details in Ur CV/mail before u send it to us. Total Exp: Relevant Exp:- Current Company: Current CTC: Expected CTC: Current Location: Preferred location: Notice Period: DOB: Degree: Regards Sreenivas Sreenivasa.k@happiestminds.com

The Global Information Security (GIS) Technology Risk Management Analyst will work with peers in Global Information Security (GIS) and across the Technology Division to ensure that third party technology risks are properly identified, assessed, monitored, and communicated in support of the overall Third Party Risk Management (TPRM) program. The Analyst will assist with the continuous improvement and daily operation of the GIS Third Party Risk Management (GIS TPRM) program. Responsibilities Include: Work with peers to identify and assess Information Security risks Conduct risk assessments using CME Groups established GIS Third Party Risk Management assessment process Collaboratively author and edit various assessment related documents including Deficiencies Observed, Summary of Work, Risk Advisory Memos, exceptions from GIS technical policies and standards, and other related output resulting from risk adjudication activities Participate in and contribute to various working groups across the Technology Division, including, but not limited to, Third Party Risk Management working group, Governance, Risk Management, and Compliance (GRC) working group, etc. Assist the GIS TPRM function with: Continuous improvement and maturation of the methods, instrumentation, training, documentation, and processes required to properly manage third party technology risks Providing advisory and consulting services to the Information Technology Management Team related to InfoSec risks, treatment strategies, and decision-making Assist in the preparation of management reports, presentations, metrics, and other documentation required to support governance functions Assist in compiling and delivering business and operational metrics at regular intervals Promoting a culture of risk awareness and accountability through training, education, and risk management consultative support Problem Solving: Objectively assess the impact, likelihood, and velocity of identified risks Objectively advise on any number of controls that will mitigate risk while not imposing undue burden on those who must implement the controls Drive objectivity and build consensus among stakeholders with widely divergent perspectives and drivers Rapidly analyze complex technical details Synthesize detailed analysis into a big picture view that can be easily understood by non-technical stakeholders in order to support risk-based decision-making for senior managers within the company Decision Making: Recommend risk treatment decisions Recommend remediation actions when risk mitigation is desired Recommend improvements to methods, instrumentation, training, documentation, and processes Recommend solutions for automating and streamlining GIS TPRM risk management practices Working Relationships: Interacts with peers across all elements of the Technology Division Communicate regularly with cross-functional peers outside of the Technology Division, including Legal, Information Governance, Global Operations, Global Assurance (Internal Audit), Enterprise Risk Management, Third Party Risk Management, and other business unit leadership Interact occasionally with industry peers from other Systemically Important Financial MarketUtilities(SIFMUs),research organizations, solution providers, etc. Required Experience: Bachelors Degree or equivalent experience Minimum of 4 to 6 years of relevant experience in publicly traded companies or finance/technology industry operations with third party risk management experience a plus Experience in at least two of the following: InfoSec (Operations, Program Management, Governance, Risk Management, etc.), Enterprise Architecture, Identity & Access Management, Application Development, Infrastructure & Operations, IT Compliance, or Internal Audit Experience working with industry based information security and / or control frameworks (NIST Cyber Security Framework, ISO 27002, COBIT, etc.) Demonstrable knowledge of a broad range of InfoSec technologies and practices Demonstrable, impeccable writing skills for technical, management, and executive audiences Additional preferred experience: Demonstrable knowledge of InfoSec risk management methods and practices Experience with operating GRC solutions Professional certification in InfoSec or Risk Management (such as CRISC, CISM, CISSP, CGEIT, CISA, etc.)

At EY, you'll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture, and technology to become the best version of you. We're counting on your unique voice and perspective to help EY become even better. Join us and build an exceptional experience for yourself and contribute to creating a better working world for all. As a Manager in Risk Consulting - Protect Tech, specifically focusing on IT Risk Emerging Tech or Cloud, you will have the opportunity to embark on your next adventure. Are you a tech-savvy professional with a risk mindset passionate about leveraging people, technology, and innovation to build a better working world Our dynamic Risk Consulting - Technology Risk team offers an incredible opportunity for you to make a real impact in our rapidly evolving world. You will work in areas such as IT Risk Management, IT SOX, IT Regulatory Compliance, IT Audits, and IT and Digital Transformations, including ERP, Emerging Tech, and Cloud transformations. By enabling technology to better manage risk, you will collaborate with industry leaders to help transform businesses and address complex challenges with our clients. In this client-facing role within a rapidly growing practice, you will build relationships with key stakeholders, including management executives of globally recognized brands. This role provides a platform to deepen your understanding of complex business transactions, recommend solutions to pressing business challenges, and process inefficiencies. You will collaborate with our global professionals in multidisciplinary engagements to assist major global clients in transforming and sustaining business performance. Leveraging emerging technologies like AI and ML, you will develop and enhance new solutions, actively contributing to building multiple tools and assets for efficient and effective client delivery. By connecting with our market-leading global network, you will gain the experience necessary to excel as an IT Risk Advisor. Key responsibilities include supervising delivery, providing technical and project leadership to team members, building client relationships, delivering quality client services, and driving high-value work products within expected timeframes and budgets. You will monitor progress, manage risks, and ensure key stakeholders are informed about progress and expected outcomes. Additionally, you will understand clients" challenges and industry-related issues, participate in go-to-market activities, create proposals, respond to RFPs, and identify opportunities for cross-selling to current clients. You will travel to client locations for meetings, workshops, and knowledge-sharing sessions, jointly lead global account relationships, manage engagement deliveries, ensure quality, and drive the growth agenda on accounts. As a Manager, you will also manage a team of Seniors and Staff across geographies, foster an innovative and inclusive team-oriented work environment, and play an active role in counselling and mentoring junior consultants within the firm. To qualify for this role, you must have a bachelor's or master's degree and approximately 5-7 years of related work experience, with at least 3-4 years of experience in IT Risk Management focusing on Emerging Tech and Cloud. You should possess knowledge of strategic, IT, and business risks, control gaps, IT regulatory compliances, information security frameworks, IT general controls, IT application controls, business process controls, and risks during Digital Transformations and Cloud migrations. Your exposure to working in client-facing roles, collaborating with cross-functional teams, and strong communication, documentation, and report writing skills are essential. Relevant industry certifications such as CISA, CISM, CISSP, or CCSK are desirable. EY is dedicated to building a better working world by creating long-term value for clients, people, and society while fostering trust in the capital markets. Our diverse teams across over 150 countries leverage data and technology to provide trust through assurance, help clients grow, transform, and operate across various service lines. Join us in asking better questions to find new answers for the complex issues facing our world today.,

About the role: The global Identity Access Management team is passionately serving our stakeholders while evolving best practices. As an Identity Access Engineer , you have a pivotal operational role to provide and deprovision system access. You have an equally crucial role to partner collectively with stakeholders to mature, streamline, and automate Identity and Access Management procedures for Blackbaud. What youll do Ensure appropriate Control through timely removal of unnecessary or inappropriate system access Expediently provision approved access, often utilizing evolving Role Based Access Controls (RBAC), for Blackbaud systems to prevent excessive permissions and rights. Proactively expand approved RBAC roles through analysis, recommendation and adoption/rollout. Analyze and resolve access issues, coordinating with system owners or technical support resources as necessary. Participate in ongoing audits and assessments, and assist with implementation of audit or compliance recommendations Develop and maintain detailed documentation on standard operating procedures, system configurations, and technical settings for internal team use, end user support Identify , evaluate and recommend opportunities to eliminate, streamline, and automate access management practices. Partner with colleagues including application owners, cloud engineers, cyber security SMEs, etc. to effectively execute improvements based on expected value. Generate reports to perform in-depth analysis and data collection for issues associated with IAM What youll bring 2 years of experience in Identity or Access Management Tireless adherence and attention to appropriate IT general computing controls Ability to understand, work with and where appropriate leverage various technologies including PowerShell , ServiceNow, SailPoint's Identity-Now, Active Directory, EntraID , Salesforce, Workday, etc. Practical experience with SCA, ITIL, COBIT, NIST and/or other security and control frameworks Stay up to date on everything Blackbaud, follow us on Linkedin, X, Instagram, Facebook and YouTube Blackbaud is proud to be an equal opportunity employer and is committed to maintaining an inclusive work environment. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, physical or mental disability, age, or veteran status or any other basis protected by federal, state, or local law.