2621 Cissp Jobs - Page 47

JD Exp : 1-3 Looking for candidates to join with 15-30 days *Track and ensure adequate and timely resolution to all audit and risk assessment findings or issues relating to information security and never miss a deadline. * Effectively and appropriately communicate audit engagement reports and recommendations to client management and resolve any client concerns or questions. * Ensure 100% certification success rate on ISMS projects. * Grow into a role with increasing responsibility. * Significant experience leading information security audits with a preference for IS0 27001 and SOC 2 audits or assessments. * Experience in leading or knowledge with implementations. * Experience authoring polic...

As a Senior Application Security Engineer, you will be responsible for ensuring the security of applications by conducting regular security assessments, identifying vulnerabilities, and working with development teams to design secure software systems. Your key responsibilities will include: - Conducting regular security assessments to identify vulnerabilities in applications - Collaborating with development teams to resolve vulnerabilities and implement robust security measures - Performing security audits and penetration testing as required Your technical skills should include proficiency in multiple programming languages, such as Java, JavaScript, C++, Python, and Ruby. Additionally, exper...

Role & responsibilities We are recruiting for a Senior in the IT Audit & Assurance, Risk Consulting team. Working as a Senior in this team, your responsibilities will include: Performing IT gap and maturity assessments against regulations and frameworks Experience in atleast one of the frameworks: ISO 27001, HIPAA, PCI DSS, NIST will be preferred Assist in planning activities, development of audit program, and execution of internal audits and IT control assessments in atleast two of the following areas: IT strategy and governance, IT operations, network and infrastructure security, cloud and third-party risk, programs and projects, automation, GITCs and application controls, and regulatory/c...

Title: Lead Security Specialist Sector: IT & Services Consulting Location: Permanent Work From Home (Anywhere in India) Duration: 1 year - Renewable contract Working Hours: Monday to Friday, Eastern Standard Time Zone The impact you will have: The Principal Security Specialist role will be responsible for guiding the strategic development and execution of our Microsoft Security Go-to-Market within an aligned industry vertical. They will play a critical role in elevating our security credibility across key industries, driving strategic customer outcomes, and strengthening our position as a trusted partner to Microsoft and the market: Secure high-value customer wins and develop compelling case...

Internal Audit: Auditor - Information Systems Audit INTERNAL USAGE: No. of Vacancies:Reports to:IS Audit Head Is a Team leaderNoTeam Size: Grade:Manager - Assistant Vice President Business:Corporate CentreDepartment: Internal AuditSub-Department: Location: Corporate Office , Worli Mumbai / Virtual About Department Internal Audit function of the Bank, operates independently under the supervision of the Audit Committee of the Board and is responsible for providing an independent view to the Board of Directors and Senior Management on the quality and efficacy of the internal controls, risk management systems, governance systems and processes in place on an on-going basis. This is provided to pr...

As a VP - CCO - Cyber at Barclays, you will be responsible for providing control advisory and governance on various aspects related to cybersecurity. Your role will involve ensuring proactive identification of security risks, timely remediation to reduce risk exposure, and developing and refreshing security policies and standards to address emerging risks and regulatory requirements. Key Responsibilities: - Provide control advisory and governance on Application Security, DevSecOps practices and controls, Threat modelling controls, Secure coding, and API security. - Develop and refresh security policies and standards to address new emerging risks and changes in regulatory requirements. - Iden...

Role Overview: As the Data Protection & Regulatory Security Compliance Advisor at Schneider Electric, you will be a key expert resource responsible for supporting regional regulatory compliance, guiding data strategy, and safeguarding data security across the organization. Your role will involve translating business needs into actionable data privacy controls and guidance to ensure that all data handling processes are robust, secure, and fully compliant with relevant regulations. You will collaborate closely with legal and technical teams, acting as a strategic consultant to interpret and implement regulatory standards, fostering a unified approach to data protection. Additionally, you will ...

As a Manager in the Risk Consulting - Protect Tech team at EY, you will have the opportunity to leverage your tech-savvy mindset and passion for building a better working world through people, technology, and innovation. You will be focusing on IT Risk Management, IT SOX, IT Regulatory Compliance, IT Audits, and IT and Digital Transformations (including ERP, Emerging Tech, and Cloud transformations) while enabling technology to better manage risk. By joining our dynamic team, you will collaborate with industry leaders to tackle complex challenges and transform businesses for our clients. **Key Responsibilities:** - Supervise delivery, provide technical and project leadership, and build clien...

Role Overview: As a Manager, Detection and Response at Synchrony, you will be a part of the Synchrony Joint Security Operations Center (JSOC) and will play a crucial role in cyber detection of information security alerts and assisting in the investigation and reporting of major information security incidents across all business units. Your responsibilities will include operating the detection and response program, handling escalated incidents, and ensuring the security of both traditional on-premise and cloud management plane. You will be expected to have a strong understanding of communication technologies, emerging cloud security practices, and building relationships within the organizatio...

Cigna TTK Health Insurance Company Limited is looking for Cyber Security Lead Analyst to join our dynamic team and embark on a rewarding career journey Design and implement security measures to protect systems, networks, and data from cyber threats. Perform vulnerability assessments, penetration tests, and security audits to identify risks. Monitor security systems for suspicious activity and respond to incidents promptly. Develop and enforce security policies, procedures, and standards. Collaborate with IT and development teams to integrate security into software development lifecycle (SDLC). Stay updated on emerging cybersecurity threats and mitigation techniques. Disclaimer: This job desc...

Implement ISMS System and monitor and manage informationsecurity as per ISO 27001 and support audit and compliance. Should be CISA certified. Should have 5 to 10 yrs of Experience with atleast 4 to 5implementation

We are seeking a highly skilled and experienced Senior Project Owner- Security Officer to join our team. This critical role will be instrumental in strengthening our organization s security posture, ensuring compliance with global standards, and serving as a key liaison with clients regarding our security protocols. Responsibilities As our Lead Security Officer, you will be responsible for: Security Program Implementation: Leading the development and execution of security controls, procedures, and protocols across the organization. Compliance Oversight: Ensuring ongoing compliance with relevant frameworks and regulations including ISO 27001, HIPAA, GDPR, and others as applicable. Internal Au...

We are looking for a seasoned Network Security Engineer to lead the deployment and management of a Cisco Identity Services Engine (ISE) environment within our AWS infrastructure. This role demands deep expertise in cloud-based network security, ISE architecture, and secure integration practices. Key Responsibilities: Architect and deploy Cisco ISE within AWS cloud environments. Design secure VPC architectures and configure routing, subnets, and security controls. Implement and manage AWS security services (e.g., IAM, Security Groups, NACLs, GuardDuty, etc.). Integrate ISE with AWS services and on-prem systems for identity and access control. Conduct vulnerability assessments and ensure compl...

Job Purpose The Engineer, Information Security GRC is part of a team responsible for the global Information Security program. The role would gain exposure to the full suite of businesses and products which underpin the Parent ICE company. Information Security (IS) is charged with: Preventing impactful cybersecurity and physical security incidents, maintaining a reputation with customers, regulators, and key stakeholders as running a best-in-class cybersecurity and physical security program, and avoiding negative impact to business agility and growth from cybersecurity and physical security policies and controls. Governance, Risk, and Compliance maintain said policies, ensure controls are ope...

About The Role Project Role : Security Engineer Project Role Description : Apply security skills to design, build and protect enterprise systems, applications, data, assets, and people. Provide services to safeguard information, infrastructures, applications, and business processes against cyber threats. Must have skills : Product Security Good to have skills : NA Minimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :Client accelerates organizations ability to digitally transform their business with the best infrastructure, platform, industry solutions and expertise. We deliver enterprise-grade solutions that leverage cutting-edge techn...

About The Role Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Product Security Good to have skills : NA Minimum 7.5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :Client accelerates organizations ability to digitally transform their business with the best infrastructure, platform, industry solutions and expertise. We deliver enterprise-grade solutions that leverage cutting-edge ...

About The Role Project Role : Security Engineer Project Role Description : Apply security skills to design, build and protect enterprise systems, applications, data, assets, and people. Provide services to safeguard information, infrastructures, applications, and business processes against cyber threats. Must have skills : Product Security Good to have skills : Security Information and Event Management (SIEM) Minimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :Client accelerates organizations ability to digitally transform their business with the best infrastructure, platform, industry solutions and expertise. We deliver enterprise-gr...

About The Role Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : One Identity Manager Good to have skills : NA Minimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Your typical day will involve collaborating with various team...

10+ years of IT/cybersecurity experience with 4+ years as a Security Architect . Strong knowledge of security frameworks and standards (NIST CSF, ISO 27001, TOGAF, SABSA, MITRE ATT&CK). Expertise in cloud security (Azure, AWS, GCP) and cloud-native security controls. Solid understanding of SIEM, SOC, IAM, PAM, DLP, EDR, IDS/IPS, WAF, PKI, and encryption technologies . Hands-on experience with threat modeling, risk assessment, penetration testing methodologies. Knowledge of DevSecOps, CI/CD pipeline security, and secure software development lifecycle (SSDLC) . Experience in regulatory compliance and audit requirements (GDPR, HIPAA, PCI-DSS, SOX). Excellent communication skills to influence st...

Experience & Role: Internship, project work, or academic exposure to IT Risk, Information Security, or GRC topics will be beneficial. Will work under the guidance of the Risk Management team on real-time projects and operational support tasks. Key Responsibilities: Support in tracking risk items and control remediation status across departments. Participate in drafting or reviewing internal policies, procedures, and documentation. Help coordinate meetings, training, or awareness sessions related to IT risk and governance. Aid in the preparation of risk reports and dashboards. Support third-party risk assessments and follow-ups with stakeholders. Assist in documenting IT General Controls (ITG...

Job Purpose This position is open with Bajaj Finance Ltd. Duties and Responsibilities Role: Work as part of the audit team for one of the most prestigious rapidly growing fintech company in India Conduct Internal Audit for BFL other group companies with special focus on IT domain; under supervision of National Lead / Chief Corporate Audit Work jointly with dynamic team of ~20 professionals with varied experience Scope: Cover specific domains as IT General Controls (ITGC): IT infra, Cloud, DC, User Assets IT Security: Information security, cyber security, Change management SoD controls Fintech technologies: RPA, BOT, API, Mobile Apps, Website controls Platform review: Technical Functional con...

Job Title: SOC Delivery & Operations Lead Location: [Insert Location] Experience Required: 1015 years Certifications Preferred: CISM, CISSP Role Overview: We are seeking a seasoned professional to lead the Security Operations Center (SOC) delivery and operations. The ideal candidate will have deep expertise in cybersecurity operations, strong leadership skills, and a proven track record in managing SOC contracts and tooling. Key Responsibilities: Lead and manage end-to-end SOC operations and service delivery. Oversee incident detection, response, and resolution processes. Ensure compliance with SLAs and contractual obligations. Collaborate with internal and external stakeholders to optimize ...

Role Purpose The purpose of this role is to design the organisations computer and network security infrastructure and protect its systems and sensitive information from cyber threats Do 1. Design and develop enterprise cyber security strategy and architecture a. Understand security requirements by evaluating business strategies and conducting system security vulnerability and risk analyses b. Identify risks associated with business processes, operations, information security programs and technology projects c. Identify and communicate current and emerging security threats and design security architecture elements to mitigate threats as they emerge d. Identify security design gaps in existing...

As a VP Identity & Access Management (MFA Engineer) at our client, a leading Investment banking company, you will play a crucial role in driving the migration project from Cisco DUO and RSA SecurID to Microsoft Authenticator for Multi-Factor Authentication (MFA). Your expertise in MFA technologies will be utilized to design robust solutions that align with organizational security needs and industry regulations. Here's what you will be responsible for: - **MFA Implementation & Migration**: Lead the migration project to transition from Cisco DUO and RSA SecurID to Microsoft Authenticator, ensuring minimal disruption to services and user experience. - **Technical Expertise**: Act as a Subject M...

As an Industrial Control System (ICS) Architect, your primary role will involve system design and architecture for ICS environments, including SCADA systems, Distributed Control Systems (DCS), Programmable Logic Controllers (PLCs), and other control systems. You will be responsible for developing and maintaining architecture designs, ensuring compliance with industry standards such as ISA/IEC 62443, NERC CIP, and other best practices. Your expertise in cybersecurity implementation will be crucial in integrating robust protocols to safeguard against hacking, malware, and unauthorized access. Key Responsibilities: - Develop and maintain architecture designs for ICS environments - Ensure compli...