2029 Cism Jobs - Page 14

Work Description: • 5 days a week at Site, No Remote & Hybrid • Location: Bangalore (Near Kadubeesanahalli) Key Responsibilities: • Bachelors degree/ Diploma • 10+ years of proven & relevant experience in project management, with a minimum of 3-5 years focused on security projects (cybersecurity, OS Vulnerabilities, compliance, etc.). • Strong understanding of security technologies such as firewalls, IDS/IPS, SIEM, endpoint protection, access control. • Proven ability to manage multiple complex projects simultaneously. • Excellent leadership, organizational, and communication skills. • Experience in Platform technologies preferred e.g. Windows, Linux, Network, Active Directory, Applications,...

Job Description: As the leader of the Cyber Security & Compliance product group, you will oversee the Application Security team, Infrastructure Security team, and Vulnerability Management team. Your role involves ensuring security assurance of applications, infrastructure components, and managing vulnerabilities. Your responsibilities include leading these teams, owning relevant security controls, collecting and reporting data points, maintaining technology capabilities, and developing strategy and roadmap for the product group. Key Responsibilities: - Lead the Application Security, Infrastructure Security, and Vulnerability Management teams - Own and manage relevant security controls and as...

As a Senior Technical Risk & Compliance Analyst at Expedia Group, you will play a crucial role in executing risk management tasks related to the SOX Compliance Program. Your responsibilities will include scoping, planning, conducting fieldwork, developing recommendations, writing reports, tracking findings, and verifying management remediation action plans under the guidance of managers. Key Responsibilities: - Acquire a solid understanding of the organization's operations and its various functions - Prepare risk and controls documentation for business initiatives and projects - Design controls for new or changed business processes/tools and train control owners - Report project status to se...

This role will work closely with the Information Protection Manager in identifying, assessing and mitigating potential risks and threats related to the company s strategic supplier off-shore footprint. The role will be responsible for executing the operational components of the Third Party Cyber Risk Management lifecycle. The TPCRM advisor will support the overall Outsourcing Security Governance function with responsibilities that include but not limited to analyzing key service providers, monitoring, managing on-going third party risk assessments, vendor scorecards, offboarding and project management. This role will support the company s Drive to 2025 strategy and will support key technolog...

As Manager in our Cyber Team, you ll build and nurture positive working relationships with teams and clients with the intention to exceed client expectations: Key Responsibilities: Quality Assurance & Compliance: Develop and implement quality assurance frameworks for SOC operations. Ensure adherence to cybersecurity standards (e.g., NIST, ISO 27001, MITRE ATT&CK). Conduct regular audits of SOC processes, incident handling, and reporting. Process Improvement: Identify gaps and inefficiencies in SOC workflows and recommend improvements. Lead initiatives for automation, standardization, and documentation of SOC procedures. Collaborate with SOC leadership to refine triage playbooks and escalatio...

Perform end-to-end technical risk assessments across applications, platforms, and cloud services validating risks through technical risk analysis and security control testing Conduct technical risk analysis by correlating data from vulnerability management, configuration assessments, and monitoring tools to identify emerging risks Support threat modeling efforts to assess potential attack vectors and prioritize mitigations based on impact and likelihood Collaborate with Product Security and Engineering teams to embed secure-by-design and risk-aware decision-making throughout the software development lifecycle Identify recurring risk patterns and recommend control or process improvements that...

Detect and respond to cyber security threats to ensure your organization operates securely. Partner with the existing internal SOC team across the world and keep the CISO informed about security Incidents. Act as a liaison between the SOC team, other internal stakeholders, and external parties such as vendors, clients, or regulatory bodies. Monitor security systems and networks for potential security breaches or incidents. Conduct in-depth investigations into security incidents to determine the root cause and extent of the compromise. Develop and implement incident response plans and procedures to contain, eradicate, and recover from security incidents. Coordinate with cross-functional teams...

1. Regulatory Compliance Governance Ensure adherence to Reserve Bank of India (RBI) cybersecurity directives and other applicable regulatory frameworks. Lead internal audits and coordinate with external auditors for compliance assessments. Maintain up-to-date documentation and evidence for regulatory inspections and certifications. 2. Vulnerability Risk Management Oversee the vulnerability management lifecycle , ensuring timely identification, prioritization, and remediation of security gaps. Collaborate with IT and development teams to implement and track remediation plans. Conduct periodic risk assessments and report findings to senior leadership. 3. Secure Configuration Architecture Defin...

Position Overview: We are seeking an experienced Security Compliance Engineer to join our team and ensure that our API services, particularly those integrating with payment gateways, are fully compliant with industry security standards, including PCI DSS (Payment Card Industry Data Security Standard). The ideal candidate will have a strong background in security engineering, a deep understanding of compliance frameworks, and the ability to work closely with development teams to implement secure and compliant systems. Key Responsibilities: PCI DSS Compliance: Ensure that all aspects of our API services meet PCI DSS requirements. Conduct regular assessments, gap analysis, and provide remediati...

We are seeking an experienced Cyber Security Consultant to join our team. The ideal candidate will have a strong background in cloud security, incident response, and vulnerability management. You will be responsible for assessing security risks, developing and implementing security measures, and responding to security incidents to protect our digital assets. Key Responsibilities : Incident Response : Lead the incident response process, including detection, analysis, containment, eradication, and recovery. Investigate security breaches and provide detailed reports on findings and recommendations. Coordinate with other IT teams to ensure timely resolution of security incidents. Participate in ...

Associate Director

Associate Director

JD for Azure Security Engineer. Bachelors degree in Computer Science, Information Technology, or related field (or equivalent work experience). Minimum 6 years of industry experience. Proficiency in cloud services and tools Specific to Azure and strong understanding of Azure Cloud Security Services. Proven experience as Azure security Engineer with azure EntraID Identity and Access Management RBAC, ID governance, PIM/PAM, Conditional Access Policies, ID protection, MFA Access Reviews. Work under the guidance of security Architect team and help in Designing security Standards. Collaborate with engineering and architecture teams to identify security risks and recommend mitigating controls. Han...

Key Responsibilities: Lead the design, development, and deployment of integrated cyber security platforms & GTM strategy Oversee implementation and management of multiple security products such as SIEM, SOAR, EDR, UEBA, Application Security, Network Security, Identity & Access Management, OT Security etc. Should have worked on all / some of leading platforms across mentioned domains Leverage AI for automation and AI-enabled solutions to enhance threat detection and response capabilities Collaborate with cross-functional teams to ensure seamless integration of security platforms Engage with CISO and other senior stakeholders to understand their security asks and provide tailored solutions Man...

About The Role Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Cloud Security Architecture Good to have skills : NA Minimum 3 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with vario...

As a Firewall Ruleset Reviewer, your primary responsibility will be to review and approve firewall requests in accordance with the organization's risk appetite. You will need to analyze firewall rules, ensuring their effectiveness and alignment with security best practices. It will be crucial for you to oversee the recertification of all firewall rules within the specified timeframe. Additionally, you will be tasked with identifying and assigning owners to unclaimed rules and updating relevant information accordingly. Key Responsibilities: - Conduct reviews of firewall rulesets and verify rule compliance reports from automated firewall review solutions. - Collaborate with stakeholders to man...

As the Director Corporate IT at VitalEdge, your primary responsibility will be to ensure a seamless, secure, and world-class digital experience for all employees. Leading a global team, your duties will encompass managing end-user support, IT operations, and security initiatives. Your main focus will involve driving upgrades, fostering innovation, and cultivating a high-performing team that adheres to ITIL and Six Sigma standards. Key Responsibilities: - Design IT touchpoints with empathy and usability in mind - Embrace modern architectures and prioritize secure-by-design practices - Utilize analytics to enhance IT services continuously - Serve as a strategic partner, showcasing strategic th...

You will be a part of KPMG in India, a professional services firm affiliated with KPMG International Limited. Established in August 1993, KPMG has offices across India in various cities including Ahmedabad, Bengaluru, Chennai, Mumbai, and Pune. As a Cyber Risk Assessment professional, your responsibilities will include: - Minimum 1+ years of experience in cyber risk assessments with industry certifications like CISSP, CCSP, CISA, CISM, CRISC, ISO/IEC. - Profound knowledge of cybersecurity frameworks, industry standards, and best practices. - Familiarity with cybersecurity policies and standards such as NIST and IEC. - Experience in network security, infrastructure assessment, and network arc...

As a Cybersecurity Pre-Sales lead at the company, your role will involve leading the pre-sales function for cybersecurity solutions. You will collaborate with sales, technical teams, and customers to design and deliver tailored cybersecurity solutions, focusing on driving the technical and strategic aspects of the sales process to align with customer needs and support business growth. Key Responsibilities: - Lead the pre-sales team to deliver high-quality technical solutions for cybersecurity opportunities. - Collaborate with sales teams to identify customer requirements and develop tailored cybersecurity solutions. - Serve as the technical authority and advisor during customer engagements. ...

About The Role Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Network Security Operations Good to have skills : NA Minimum 7.5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with var...

About The Role Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : CyberArk Privileged Access Management Good to have skills : NA Minimum 3 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating ...

About The Role Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : CyberArk Privileged Access Management Good to have skills : NA Minimum 3 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating ...

About The Role Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : CyberArk Privileged Access Management Good to have skills : NA Minimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating ...

About The Role Project Role : Security Delivery Lead Project Role Description : Leads the implementation and delivery of Security Services projects, leveraging our global delivery capability (method, tools, training, assets). Must have skills : Saviynt Identity Platform Good to have skills : Identity Access Management (IAM) Minimum 7.5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Delivery Lead, you will be at the forefront of implementing and delivering Security Services projects. Your typical day will involve coordinating with various teams to ensure that projects are executed efficiently, utilizing our global delivery cap...

About The Role Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Saviynt Identity Platform Good to have skills : NA Minimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various...