278 Crisc Jobs - Page 8

POSITION RESPONSIBILITIES Percent of Time Data Privacy Operations: Supports local legal (India) & Privacy Office (Global) in operationalizing and maintenance of India's Privacy law (DPDPA) Supports in creating Processing activity records Operationalize Privacy management services and delivery aspect o Review and Approval of PbD (Privacy by Design) assessments o Proactively coordinating with stakeholders on PbD assessment follow-ups, pertaining to assessment completion Performs Periodic Monitoring on Personal Data Inventories Supports with Privacy Reporting metric and scorecard 50% Compliance Operations: Supports stakeholders in completing application risk profiles, assessing business critica...

En ABB, ayudamos a las industrias a ser ms eficientes y limpias. Aqu, el progreso es una expectativa - para usted, su equipo y el mundo. Como lder del mercado mundial, le daremos lo que necesita para lograrlo. No siempre ser fcil, crecer requiere agallas. Pero en ABB, nunca corrers solo. Run what runs the world. Este Puesto Reporta a IS Service Owner for Security Specialize Your Role And Responsibilities In this role, you will have the opportunity to successfully develop and implement security measures for ABB in your area of responsibility. Each day, you will protect ABB from rapidly escalating threats. You will also showcase your expertise by staying vigilant in combating security threats,...

Key Accountabilities and Main Responsibilities: Strategic Focus: Development of First Line Risk Frameworks : Contribute to the design and enhancement of risk procedures aligned with enterprise standards. Participation in Strategic Projects : Engage in cross-functional initiatives like system implementations and regulatory efforts. Compliance with Risk Governance Standards : Ensure alignment with CUSO Risk Framework and promote a strong risk culture. Operational Management: Support RCSA Program Execution : Plan and execute Risk and Control Self-Assessments . Issue Monitoring and Remediation Coordination : Track and resolve open issues across risk domains. Policy and Procedure Management : Mai...

Key Accountabilities and Main Responsibilities: Strategic Focus: Development of First Line Risk Frameworks : Contribute to the design and enhancement of risk procedures aligned with enterprise standards. Participation in Strategic Projects : Engage in cross-functional initiatives like system implementations and regulatory efforts. Compliance with Risk Governance Standards : Ensure alignment with CUSO Risk Framework and promote a strong risk culture. Operational Management: Support RCSA Program Execution : Plan and execute Risk and Control Self-Assessments . Issue Monitoring and Remediation Coordination : Track and resolve open issues across risk domains. Policy and Procedure Management : Mai...

As a member of our team, your main responsibility will be to evaluate new and existing security vulnerabilities sourced both internally and externally. You will need to determine their relevance, document the impact, and devise a remediation strategy in a format that is understandable to our customers. Your focus will encompass a wide range of technologies, including major cloud hosting environments, Linux servers, specialized hardware, various coding languages, and virtualization technologies. The ideal candidate will possess the ability to comprehend the technicalities of security, evaluate risks, and communicate these complex concepts in a clear and simple manner. Your tasks will include:...

As a Cybersecurity Analyst II - GRC at AGCO, you will play a crucial role in addressing some of the world's most pressing challenges related to cybersecurity. Your primary responsibilities will involve developing and maintaining relationships with various teams within the enterprise to influence and achieve cybersecurity objectives related to governance, risk, and compliance. By leveraging best practices, you will lead risk activities across product, enterprise, and manufacturing teams, ensuring compliance with policies and standards while staying informed about the latest regulatory trends. Your expertise will be pivotal in serving as a subject-matter expert in governance, risk, and complia...

As the Lead (BISO) Business Information Security Officer at Computacenter, you will have a unique opportunity to join the Cybersecurity leadership team reporting directly to the Group CISO. Your primary role will involve partnering with senior security professionals to protect Computacenter and its customers from Cyber threats. By ensuring security risk awareness, mitigation, and alignment with the strategic objectives of the business, you will play a crucial role in safeguarding the organization. In this hybrid working role, you will spend two to three days a week in Bangalore, following Computacenter's Strategic Business Partner model. Your responsibilities will include owning the Cybersec...

Description: Information Security Risk Specialist Experience: 7 to 9 years Location: Bengaluru Key Responsibilities: • Develop, implement, and maintain an enterprise-wide information security risk management program. • Identify, assess, and document information security risks, ensuring alignment with business objectives. • Perform risk assessments, vulnerability analyses, and impact evaluations on IT systems and processes. • Collaborate with cross-functional teams to establish risk mitigation strategies and action plans. • Monitor, track, and report on risk metrics and key performance indicators (KPIs). • Stay updated on regulatory requirements and ensure compliance with standards such as IS...

About The Role : Job Title: Information Security Officer (ISO) LocationBangalore, India Corporate TitleAS Role Description The role of an Information Security Officer (ISO) is of a role holder aligned to a portfolio of applications (Application ISO). The ISO has the responsibility for the operational aspects of ensuring compliance with the Information Security Principles. The ISO is the primary contact for information security relevant matters within their area of responsibility. The ISO has a disciplinary reporting line into their Line Manager and a functional reporting line into the Divisional CISO. What well offer you 100% reimbursement under childcare assistance benefit (gender neutral) ...

Role & responsibilities GRC Manager, inter alia, be responsible for the following: Plan and establish organization-wide Information security Management System (ISMS) in accordance with ISO/IEC 27001 Standard, and other relevant security standards, Evaluate compliance with respect to legal and regulatory requirement for information security. Perform information security audit at least annually or whenever significant changes have been made in IT systems/ Infrastructure. Prepare information security audit report along with recommendations for improving information security. Monitor and manage information security risks and highlight them to various stakeholder Monitor information security meas...

If you're seeking a career that will empower you to distinguish yourself, consider joining HSBC to unlock your full potential. Whether you aspire to ascend to the pinnacle of success or embark on a thrilling new path, HSBC offers a platform replete with opportunities, support, and rewards that will propel you towards greater heights. HSBC stands as one of the world's largest banking and financial services organizations, operating in 64 countries and territories globally. Our mission is to position ourselves where growth thrives, empowering businesses to flourish, economies to prosper, and individuals to achieve their aspirations and dreams. Currently, we are in search of a seasoned professio...

This role is for one of Weekday's clients Salary range: Rs 1200000 - Rs 2200000 (ie INR 12-22 LPA) Min Experience: 7 years Location: Hyderabad, Telangana JobType: full-time About the role A minimum of 0810 years of experience in Information Security, with at least 05-06 years in a senior Offensive Security role, preferably within the financial or banking sector. Hands-on experience in conducting covert security assessments, including physical, network, application, and social engineering scenarios. Proficiency in exploiting vulnerabilities, bypassing security controls, lateral movement, privilege escalation, and exfiltration techniques. Strong understanding of operating systems, networking p...

Role Description Infrastructure Chief Operating Office (COO) is responsible for the effective operation of the infrastructure functions, driving operational efficiency whilst supporting the effective delivery of infrastructure services in line with business objectives and control requirements. It also includes oversight of Infrastructure Divisional Control Office (DCO) and Trade Settlement and Confirmations Operations (TSCO). Infrastructure Divisional Control Office (IDCO) as part of Infrastructure COO, provides services to multiple functions in infrastructure. The IDCO function is a dedicated risk, control, and regulatory oversight function, with prime responsibility for managing and proact...

Role Description The Vice President of Transformation Risk and Control will lead the strategic oversight and management of risks associated with the organizations transformation initiatives. This executive role is pivotal in ensuring that transformation projects align with the companys risk appetite and regulatory requirements, while driving sustainable growth and innovation. Your key responsibilities Strategic Risk Management: Develop and implement a comprehensive risk management strategy for transformation projects, ensuring alignment with the organizations overall risk framework. Leadership and Governance: Provide leadership and direction to the Transformation initiatives by fostering a c...

Lead comprehensive control evaluations and substantive testing to independently assess the design and effectiveness of controls within the newly established Independent Testing Team Assess end to end business processes to identify significant gaps and determine issue root causes. Partners with business units to perform control evaluations, monitoring and testing efforts within Compliance and Operation Risk Framework to identify control gaps as well as opportunities for effectiveness and efficiency improvements. These assessments will include coverage for other regulatory programs including SOX Apply critical thinking skills to substantive testing techniques to thoroughly evaluate the effecti...

Job description At EY, you'll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we're counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. EY- Technology Risk Senior As an IT risk professional, you'll contribute technically to risk assurance client engagements and internal projects. An important part of your role will be to perform IT audits, document good quality assessment reports and issue opinions. You'll anticipate and identify risks within engagements and s...

As a Cloud Ops professional at Tally, you will be part of a team dedicated to delivering top-notch connected services in public clouds for Tally's customers. Your mission will be to ensure unmatched reliability, strong security, and optimal cost efficiency. You will have the opportunity to design, implement, and operationalize solutions using cutting-edge cloud native technologies to provide a seamless experience for our customers. Your responsibilities will include overseeing Risk Management & Governance for Tally's suite of cloud-based connected services, implementing secure access at every level, and ensuring compliance with regulatory requirements. You will focus on Cloud Security Oversi...

As a Senior Auditor, Technology at LegalZoom, you will be an impactful member of the internal audit team, assisting in achieving the department's mission and objectives. Your role will involve evaluating technology risks in a dynamic environment, assessing the design and effectiveness of internal controls over financial reporting, and ensuring compliance with operational and regulatory requirements. You will document audit procedures and results following departmental standards and execute within agreed timelines. Additionally, you will provide advisory support to stakeholders on internal control considerations, collaborate with external auditors when necessary, and focus on continuous impro...

You will be responsible for conducting third-party/supplier security risk assessments, interpreting security assurance reports including SOC2 and pen test reports, and reviewing security requirements in contracts. Additionally, you will need to understand outsourced solutions and associated information classification, assess supplier security controls based on ISO27001/2 standards, and identify and document security risks. You will be expected to suggest recommendations to address identified security risks, potentially perform information classification such as AIC assessment, and hold security certifications such as ISO27001 auditor/implementation, CISSP, CRISC, CISM, or CISA. If you have a...

We are hiring for- Role: Technical product Manager Experience: 5-10 Years Location: Bangalore Work Mode: Hybrid Key Responsibilities Product Roadmap & Execution: Lead the product vision and execution for AI features in our GRC suite, bringing insight into leveraging AI for threat detection, vulnerability management, and risk quantification. Cross-functional Collaboration: Partner with engineering, data science, design, and QA teams to ensure the delivery of secure, scalable, and cyber risk-aligned product capabilities. User Research: Conduct deep-dive interviews and research with cyber stakeholders to pinpoint pain points, regulatory requirements, and opportunities for improvement across thr...

Minimum 5+ years of experience in Information security and preferably in Banking and Financial services sector In-depth working experience on Cloud technologies, routers, switches, firewalls, load balancers and proxy will be added advantage for the role. Bachelor Degree in Engineering, Computer Science/Information Technology or its equivalent. Industry certifications will be a plus e.g. CISSP, CCNA Security, CCIE, CCNP Security, CISA, CRISC and CISM. Strong knowledge and subject matter expertise in multiple areas within Information Security. Hands on skill and expertise in performing risk / threat assessments/risk consulting. Excellent written, oral communication and reporting skills. Provid...

Domain Certifications CISSP, CISA, CRISC, ISO 27001 Responsibilities Own and lead the governance program at account level for a large Financial services account with 700 + head count and multi country locations having high security Offshore Delivery Centres & Work from home teams Develop, implement and monitor Account level Information security governance program; meeting client compliance requirements proactively Perform contract reviews, cyber security risk assessments and drive compliance programs to meet contractual and organizational cyber security requirements within the client offshore delivery centres. Experience in Application security and code reviews which can be leveraged to guid...

At EY, you'll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we're counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. As a Technology Transformation Risk Manager, you will play a pivotal role in ensuring that technology transformations within the organization are carried out with a comprehensive understanding and management of the associated risks. Your responsibilities will include identifying, evaluating, and mitigating risks related to technology change i...

As a Network Security Engineer with Third Party Risk Management, you will be responsible for conducting third party risk assessments in alignment with company security policies and industry standards. You will also perform on-site assessments of vendors to identify opportunities for improvement and provide input to aid in the development of policies focused on the security of third-party business processes. Additionally, you will foster relationships and influence the behavior of internal teams and external parties. Your role will involve developing and maintaining supplier risk and control monitoring plans, as well as performing monitor activities and analysis of evidence to ensure controls...

As a Cyber Risk Manager at Stryker, your primary role will involve identifying, analyzing, evaluating, and mitigating present and future risks to Stryker's data and assets. You will be responsible for driving efforts to achieve acceptable risk levels by collaborating with IT, Business, and Partner stakeholders. Your responsibilities will include completing reviews for all aspects of the cyber risk management lifecycle. Key duties and responsibilities of this role include: - Leading and completing 3rd party cyber security assessments of vendors and other parties engaging Stryker. - Driving the completion of cyber risk assessments across functions and proactively identifying opportunities to m...