173 Crisc Jobs - Page 3

Position Purpose As part of the BNP Paribas Group's Expertise and Innovation team (ZT Core Team) - within CDF department, you will participate in the design, functional & technical assessment architectures and solutions to support the implementation of the Group's Zero Trust Strategy. Responsibilities After having learned and assimilated the Zero Trust concepts and their application within the BNP Paribas Zero Trust framework (approach, principles, patterns, objectives, pillars, etc...), the applicant will be appointed on different activities : - Participate into the Zero trust framework and strategy adaptation including feedbacks from practical implementation, evolution of needs and market ...

As a Senior Analyst in IT Risk and Compliance based in Chennai, you will be a key member of the IT Risk & Compliance department reporting to the Manager, IT Risk and Compliance. Your primary responsibility will be to conduct thorough IT compliance assessments, test IT general controls, and IT automated controls to ensure that the organization is in line with internal policies and external regulatory requirements, including Sarbanes-Oxley (SOX). Your role will be vital in upholding a robust internal control environment and driving process enhancements throughout the organization. Your day-to-day activities will include assisting in the planning and scoping of IT compliance and internal contro...

Position Purpose Key role to develop Indian platform, ensuring core Cybersecurity, IT Risk and Operational Resilience activities are performed with the required efficiency and quality to protect BNP Paribas. The Cybersecurity Framework team develops and maintains the cybersecurity policies and requirements at BNP Paribas Group level, covering all cybersecurity topics (Artificial Intelligence, Application security, Data security, cloud security, IAM, asset management, SWIFT etc..), that will must be enforced by the Group entities. Responsibilities - Contribute to the definition of new cyber security requirements (or review of existing) regarding 28 cyber topics (Artificial Intelligence, Appli...

Required Skills: Cyber Risk Risk Mitigation Strategies for Security Controls SAST and DAST Tools Profile: - 5+ years of experience in application/API security, risk management, or related fields - Strong understanding of application security architecture, compliance frameworks, and risk management principles - Experience with application security assessments, risk assessments, and security controls implementation - Excellent analytical, problem-solving, and communication skills - Familiarity with cloud security framework, tools, and technologies (e.g., OSWAP, CSPM, CWPP, CIEM, DAST/SAST) - Certifications in cloud security, risk management, or related fields (e.g., CCSK, CRISC, CISSP) Job Sum...

About Us: Liberis is on a mission to supercharge the power of small businesses all over the world - delivering the financial products they need to grow through a network of global partners. Before all else, Liberis is a technology company, connecting finance with small businesses. We use data to help partners understand their customers real time needs and tech to offer tailor-made funding and financial products. Empowering small businesses to grow and keep their independent spirit alive is central to our vision. Up to now we have funded almost 40,000 small businesses with over $1.5bn - but we believe there is much more to be done. Liberis and Blenheim Chalcot Liberis was founded and is backe...

Required Skills: Cyber Risk Risk Mitigation Strategies for Security Controls SAST and DAST Tools Profile: - 5+ years of experience in application/API security, risk management, or related fields - Strong understanding of application security architecture, compliance frameworks, and risk management principles - Experience with application security assessments, risk assessments, and security controls implementation - Excellent analytical, problem-solving, and communication skills - Familiarity with cloud security framework, tools, and technologies (e.g., OSWAP, CSPM, CWPP, CIEM, DAST/SAST) - Certifications in cloud security, risk management, or related fields (e.g., CCSK, CRISC, CISSP) Job Sum...

About The Role Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : Security Compliance Management Good to have skills : Security Architecture DesignMinimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :Seeking an experienced Security Architect/ Security Compliance Professional to lead and support the design, implementation, and maintenance of security governance, risk, and complia...

Position: Information Technology Risk Management Consultant Location: Chennai Experience: 8-12 years Education: B.E./ B.Tech./MCA Role Overview Responsible for developing, implementing, and maintaining the organisation’s IT Risk Management framework. This role focuses on identifying, assessing, and mitigating risks to protect information assets, ensure regulatory compliance, and enhance overall IT governance. The position requires a deep understanding of risk frameworks, threat modelling, control evaluation, and GRC tools, combined with strong stakeholder management skills. Job Profile: Conduct comprehensive risk assessments: identification, impact analysis, heatmap/matrix creation, inherent...

Hi, We have 4 open positions for the below role in Mumbai, Secondary location is Pune. Interested candidates can email their updated profiles to [HIDDEN TEXT] alongwith the following details: Current CTC, Expected CTC, Notice period, Preferred location: Mumbai / Pune L3 Vulnerability Management, Risk & Compliance Lead Job Summary: ITCI Cyber Security team is looking for the role which is accountable for leading the organizations end-to-end vulnerability lifecycle and aligning risk and compliance efforts with regulatory mandates such as RBI Master Directions and SEBI Cybersecurity Framework. The individual will ensure timely vulnerability detection, validation, remediation governance, and ris...

L3 Vulnerability Management, Risk & Compliance Lead Location : Mumbai (Andheri East) Mode: Hybird Job Summary: ITCI Cyber Security team is looking for the role which is accountable for leading the organizations end-to-end vulnerability lifecycle and aligning risk and compliance efforts with regulatory mandates such as RBI Master Directions and SEBI Cybersecurity Framework. The individual will ensure timely vulnerability detection, validation, remediation governance, and risk-based prioritization. The role also anchors all compliance readiness activities across cybersecurity, translating control gaps into actionable security initiatives while coordinating with internal and external audit func...

About Marvell Marvells semiconductor solutions are the essential building blocks of the data infrastructure that connects our world. Across enterprise, cloud and AI, automotive, and carrier architectures, our innovative technology is enabling new possibilities. At Marvell, you can affect the arc of individual lives, lift the trajectory of entire industries, and fuel the transformative potential of tomorrow. For those looking to make their mark on purposeful and enduring innovation, above and beyond fleeting trends, Marvell is a place to thrive, learn, and lead. Your Team, Your Impact You are responsible for delivering the cyber security risk & compliance-related activities defined as per Mar...

About Marvell Marvells semiconductor solutions are the essential building blocks of the data infrastructure that connects our world. Across enterprise, cloud and AI, automotive, and carrier architectures, our innovative technology is enabling new possibilities. At Marvell, you can affect the arc of individual lives, lift the trajectory of entire industries, and fuel the transformative potential of tomorrow. For those looking to make their mark on purposeful and enduring innovation, above and beyond fleeting trends, Marvell is a place to thrive, learn, and lead. Your Team, Your Impact You are responsible for delivering the cyber security risk & compliance-related activities defined as per Mar...

Project description CISO organization plays a leading role in ensuring cyber and information security for our clients, employees and data and also manages the Group Operations and Technology (GOTO) risk and group strategies combined firm. Responsibilities The role involves providing advisory, guidance and assessment of DLP policies, allow lists/exceptions and baseline build up. Support the DLP taskforce/Issues with respect to changes and co-ordinate with the technology teams for implementation. Involvement with policy and requirements management and DLP Governance Skills Must have Good working experience with data protection/security controls such as data scanning, data leakage protection/pr...

Project description CISO organization plays a leading role in ensuring cyber and information security for our clients, employees and data and also manages the Group Operations and Technology (GOTO) risk and group strategies combined firm. Responsibilities The role involves providing advisory, guidance and assessment of DLP policies, allow lists/exceptions and baseline build up. Support the DLP taskforce/Issues with respect to changes and co-ordinate with the technology teams for implementation. Involvement with policy and requirements management and DLP Governance Skills Must have -Very Good working experience with data protection/security controls such as data scanning, data leakage protect...

ECI is the leading global provider of managed services, cybersecurity, and business transformation for mid-market financial services organizations across the globe. From its unmatched range of services, ECI provides stability, security, and improved business performance, freeing clients from technology concerns and enabling them to focus on running their businesses. More than 1,000 customers worldwide with over $3 trillion of assets under management put their trust in ECI. At ECI, we believe success is driven by passion and purpose. Our passion for technology is only surpassed by our commitment to empowering our employees around the world. The Opportunity: ECI has an exciting opportunity for...

You will be participating in the design, functional, and technical assessment architectures as part of the Group's Zero Trust Strategy. This includes contributing to the Zero Trust framework and strategy adaptation/enhancement, proposing new security ecosystem urbanization approaches, and establishing high-level architecture patterns needed for the Zero Trust strategy. Additionally, you will be working on understanding identified Use Cases, identifying new ones, and planning related technical and non-technical streams. Your role will involve challenging and assisting IT production/operations teams in operationalizing the Zero Trust Strategy, designing robustness and Zero Trust compliance ass...

As an IT Application Owner (ITAO) at Home Loan Savings in Pune, India, you will be part of a team collaborating with the existing team in Germany to achieve continuous delivery, process improvement, and internalization of technical expertise through virtual collaboration techniques. Your role involves working closely with business and operation units as well as the development team to ensure structural stability of the applications, compliance with technical/risk/policy processes, and managing the technical roadmap in the context of Deutsche Bank's digitalization journey. In this position, you will be responsible for managing and maintaining the application to ensure compliance with IT polic...

Line of Service Advisory Industry/Sector Not Applicable Specialism Risk Management Level Senior Associate Job Description & Summary At PwC, our people in cybersecurity focus on protecting organisations from cyber threats through advanced technologies and strategies. They work to identify vulnerabilities, develop secure systems, and provide proactive solutions to safeguard sensitive data. In threat intelligence and vulnerability management at PwC, you will focus on identifying and analysing potential threats to an organisation&aposs security, as well as managing vulnerabilities to prevent cyber attacks. You will play a crucial role in safeguarding sensitive information and enabling the resili...

Line of Service Advisory Industry/Sector Not Applicable Specialism Risk Management Level Senior Associate Job Description & Summary At PwC, our people in cybersecurity focus on protecting organisations from cyber threats through advanced technologies and strategies. They work to identify vulnerabilities, develop secure systems, and provide proactive solutions to safeguard sensitive data. In threat intelligence and vulnerability management at PwC, you will focus on identifying and analysing potential threats to an organisation&aposs security, as well as managing vulnerabilities to prevent cyber attacks. You will play a crucial role in safeguarding sensitive information and enabling the resili...

Line of Service Advisory Industry/Sector Not Applicable Specialism Risk Management Level Senior Associate Job Description & Summary At PwC, our people in cybersecurity focus on protecting organisations from cyber threats through advanced technologies and strategies. They work to identify vulnerabilities, develop secure systems, and provide proactive solutions to safeguard sensitive data. In threat intelligence and vulnerability management at PwC, you will focus on identifying and analysing potential threats to an organisation&aposs security, as well as managing vulnerabilities to prevent cyber attacks. You will play a crucial role in safeguarding sensitive information and enabling the resili...

POSITION RESPONSIBILITIES Percent of Time Data Privacy Operations: Supports local legal (India) & Privacy Office (Global) in operationalizing and maintenance of India's Privacy law (DPDPA) Supports in creating Processing activity records Operationalize Privacy management services and delivery aspect o Review and Approval of PbD (Privacy by Design) assessments o Proactively coordinating with stakeholders on PbD assessment follow-ups, pertaining to assessment completion Performs Periodic Monitoring on Personal Data Inventories Supports with Privacy Reporting metric and scorecard 50% Compliance Operations: Supports stakeholders in completing application risk profiles, assessing business critica...

En ABB, ayudamos a las industrias a ser ms eficientes y limpias. Aqu, el progreso es una expectativa - para usted, su equipo y el mundo. Como lder del mercado mundial, le daremos lo que necesita para lograrlo. No siempre ser fcil, crecer requiere agallas. Pero en ABB, nunca corrers solo. Run what runs the world. Este Puesto Reporta a IS Service Owner for Security Specialize Your Role And Responsibilities In this role, you will have the opportunity to successfully develop and implement security measures for ABB in your area of responsibility. Each day, you will protect ABB from rapidly escalating threats. You will also showcase your expertise by staying vigilant in combating security threats,...

Key Accountabilities and Main Responsibilities: Strategic Focus: Development of First Line Risk Frameworks : Contribute to the design and enhancement of risk procedures aligned with enterprise standards. Participation in Strategic Projects : Engage in cross-functional initiatives like system implementations and regulatory efforts. Compliance with Risk Governance Standards : Ensure alignment with CUSO Risk Framework and promote a strong risk culture. Operational Management: Support RCSA Program Execution : Plan and execute Risk and Control Self-Assessments . Issue Monitoring and Remediation Coordination : Track and resolve open issues across risk domains. Policy and Procedure Management : Mai...

Key Accountabilities and Main Responsibilities: Strategic Focus: Development of First Line Risk Frameworks : Contribute to the design and enhancement of risk procedures aligned with enterprise standards. Participation in Strategic Projects : Engage in cross-functional initiatives like system implementations and regulatory efforts. Compliance with Risk Governance Standards : Ensure alignment with CUSO Risk Framework and promote a strong risk culture. Operational Management: Support RCSA Program Execution : Plan and execute Risk and Control Self-Assessments . Issue Monitoring and Remediation Coordination : Track and resolve open issues across risk domains. Policy and Procedure Management : Mai...

As a member of our team, your main responsibility will be to evaluate new and existing security vulnerabilities sourced both internally and externally. You will need to determine their relevance, document the impact, and devise a remediation strategy in a format that is understandable to our customers. Your focus will encompass a wide range of technologies, including major cloud hosting environments, Linux servers, specialized hardware, various coding languages, and virtualization technologies. The ideal candidate will possess the ability to comprehend the technicalities of security, evaluate risks, and communicate these complex concepts in a clear and simple manner. Your tasks will include:...