8 Glba Jobs

Job description This role reports to the Information Security Governance, Risk and Compliance (GRC) Manager and will work across all the product and technology teams to strengthen and enforce Bottomline s information security posture. As the Information Security GRC consultant, you will be responsible for building trust and confidence among our clients on the information security posture. This role also involves working closely with stakeholders to ensure adherence to regulatory requirements and security frameworks (e.g., SWIFT, NACHA, PCI, NIST, GLBA). Essential Functions and Responsibilities: Governance - work with key stakeholders to develop, implement and enhance the information security policies, standards and processes in alignment with regulatory requirements and security frameworks (e.g., SWIFT, NACHA, PCI, NIST, GLBA). Execute governance routines and reporting to ensure compliance with required policies and standards. Risk Management - build and maintain a control library for enterprise-wide controls and product specific controls. Maintain the risk register (issues and risk acceptances) to ensure effective tracking, prioritization and reporting of risks. Process risk acceptances to ensure they are appropriately rated with sufficient mitigating controls. Compliance - Coordinate assessments to ensure compliance with applicable regulations and industry requirements (e.g., SWIFT, NACHA, PCI, NIST, GLBA). Client Support - Gather, assess and present the information security posture to customer (i.e., completion of request for information, contract language reviews, completion of due diligence questionnaires etc.). Education and Awareness - develop and deliver information security awareness and training Required Experience & Qualifications 6+ years of experience in Cybersecurity and Risk Management Bachelor s degree In depth knowledge on regulations and industry requirements (e.g., SWIFT, NACHA, PCI, NIST, GLBA). Preferred Experience & Qualifications Cyber certifications (e.g., CISSP) or equivalent Role: Head - Information Security Industry Type: Software Product Department: IT & Information Security Employment Type: Full Time, Permanent Role Category: IT Security Education UG: Any Graduate PG: Any Postgraduate

Job description This role reports to the Information Security Governance, Risk and Compliance (GRC) Manager and will work across all the product and technology teams to strengthen and enforce Bottomline s information security posture. As the Information Security GRC consultant, you will be responsible for building trust and confidence among our clients on the information security posture. This role also involves working closely with stakeholders to ensure adherence to regulatory requirements and security frameworks (e.g., SWIFT, NACHA, PCI, NIST, GLBA). Essential Functions and Responsibilities: Governance - work with key stakeholders to develop, implement and enhance the information security policies, standards and processes in alignment with regulatory requirements and security frameworks (e.g., SWIFT, NACHA, PCI, NIST, GLBA). Execute governance routines and reporting to ensure compliance with required policies and standards. Risk Management - build and maintain a control library for enterprise-wide controls and product specific controls. Maintain the risk register (issues and risk acceptances) to ensure effective tracking, prioritization and reporting of risks. Process risk acceptances to ensure they are appropriately rated with sufficient mitigating controls. Compliance - Coordinate assessments to ensure compliance with applicable regulations and industry requirements (e.g., SWIFT, NACHA, PCI, NIST, GLBA). Client Support - Gather, assess and present the information security posture to customer (i.e., completion of request for information, contract language reviews, completion of due diligence questionnaires etc.). Education and Awareness - develop and deliver information security awareness and training Required Experience & Qualifications 6+ years of experience in Cybersecurity and Risk Management Bachelor s degree In depth knowledge on regulations and industry requirements (e.g., SWIFT, NACHA, PCI, NIST, GLBA). Preferred Experience & Qualifications Cyber certifications (e.g., CISSP) or equivalent Role: Head - Information Security Industry Type: Software Product Department: IT & Information Security Employment Type: Full Time, Permanent Role Category: IT Security Education UG: Any Graduate PG: Any Postgraduate

Job description This role reports to the Information Security Governance, Risk and Compliance (GRC) Manager and will work across all the product and technology teams to strengthen and enforce Bottomline s information security posture. As the Information Security GRC consultant, you will be responsible for building trust and confidence among our clients on the information security posture. This role also involves working closely with stakeholders to ensure adherence to regulatory requirements and security frameworks (e.g., SWIFT, NACHA, PCI, NIST, GLBA). Essential Functions and Responsibilities: Governance - work with key stakeholders to develop, implement and enhance the information security policies, standards and processes in alignment with regulatory requirements and security frameworks (e.g., SWIFT, NACHA, PCI, NIST, GLBA). Execute governance routines and reporting to ensure compliance with required policies and standards. Risk Management - build and maintain a control library for enterprise-wide controls and product specific controls. Maintain the risk register (issues and risk acceptances) to ensure effective tracking, prioritization and reporting of risks. Process risk acceptances to ensure they are appropriately rated with sufficient mitigating controls. Compliance - Coordinate assessments to ensure compliance with applicable regulations and industry requirements (e.g., SWIFT, NACHA, PCI, NIST, GLBA). Client Support - Gather, assess and present the information security posture to customer (i.e., completion of request for information, contract language reviews, completion of due diligence questionnaires etc.). Education and Awareness - develop and deliver information security awareness and training Required Experience & Qualifications 6+ years of experience in Cybersecurity and Risk Management Bachelor s degree In depth knowledge on regulations and industry requirements (e.g., SWIFT, NACHA, PCI, NIST, GLBA). Preferred Experience & Qualifications Cyber certifications (e.g., CISSP) or equivalent Role: Head - Information Security Industry Type: Software Product Department: IT & Information Security Employment Type: Full Time, Permanent Role Category: IT Security Education UG: Any Graduate PG: Any Postgraduate

As a Privacy and Data Protection Manager at our professional services firm, you will play a crucial role in leading strategic consulting engagements, managing client relationships, and driving privacy program implementations. With a focus on data privacy and protection, you will navigate global regulatory frameworks such as GDPR, CCPA, HIPAA, and GLBA. Your responsibilities will include leading end-to-end delivery of data privacy engagements, conducting data inventory, compliance readiness assessments, and implementing privacy programs. Leveraging your deep regulatory knowledge, you will apply GDPR, CCPA, HIPAA, and other regulations to client-specific environments. In this role, you will manage multiple client engagements in a fast-paced, collaborative setting while mentoring teams, resolving client challenges, and driving continuous improvement. Additionally, you will support business development, marketing, and thought leadership initiatives. The ideal candidate will have a Bachelor's degree in Law, Cybersecurity, Computer Science, IT, or an MBA/PGDM from a reputed institute, along with at least 7 years of experience in privacy consulting or a related domain. Strong knowledge of privacy tools such as OneTrust, Securiti, and BigID is a plus. To excel in this role, you must possess excellent stakeholder communication, project management, and team leadership skills. Additionally, holding certifications such as CIPP, CIPT, CISSP, or related certifications is mandatory. If you are passionate about shaping data privacy strategy and making a meaningful impact, we invite you to join our team and be part of something significant. If you meet the qualifications and are ready to take on this exciting opportunity, we encourage you to reach out to us. Let's discuss how your expertise can contribute to our mission. Please send us a message or email namitha@careerxperts.com to get connected.,

Roles and Responsibilities : Conduct regular security testing and vulnerability assessments to identify potential risks and threats to the organization's IT systems. Develop and implement effective mitigation strategies to address identified vulnerabilities, ensuring compliance with relevant regulations such as SOX, PCI DSS, GDPR, CCPA, etc. Collaborate with cross-functional teams to ensure seamless integration of security controls into software development lifecycle (SDLC) using tools like CCM/CSCF/OWASP. Provide expert guidance on cybersecurity best practices to stakeholders across the organization. Job Requirements : 7-15 years of experience in Cyber Security Testing & Vulnerability Assessment. Strong understanding of regulatory frameworks such as SOX, PCI DSS, GDPR, CCPA etc. . Proficiency in tools like Bis/CCM/CSCF/OWASP for conducting security tests. Certifications like CISSP/CISA/CEH are desirable.

Roles and Responsibilities : Conduct regular security testing and vulnerability assessments to identify potential risks and threats to the organization's IT systems. Develop and implement effective mitigation strategies to address identified vulnerabilities, ensuring compliance with relevant regulations such as SOX, PCI DSS, GDPR, CCPA, etc. Collaborate with cross-functional teams to ensure seamless integration of security controls into software development life cycles (SDLC) using tools like CCM/CSCF/BIS/SOC. Provide expert guidance on cybersecurity best practices to stakeholders across the organization. Job Requirements : 7-15 years of experience in IT services & consulting industry with a focus on cybersecurity testing and compliance. Strong understanding of regulatory frameworks such as SOX, PCI DSS, GDPR, CCPA etc. . Certifications like CISSP/CISA/CCM/CSCF are desirable but not mandatory.

Manage the US clients' post judgment collections/recovery efforts which includes preparation of legal documents Filing litigation - initiating a US lawsuit to resolve a legal dispute as per US bar guidelines Required Candidate profile Should have knowledge of USA collections laws Knowledge of US Debt recovery process is preferred Familiarity with the US Collections rules & regulations such as Fair Debt Collection Practice

Job Description/What You Will Do: Analyze technology (IT and Cybersecurity) implications for active M&A transactions. Review client investment thesis, company profile and information concerning the business technology environment including but not limited to business applications, IT infrastructure, cybersecurity controls, and privacy related regulatory compliance requirements. Research niche technologies, applicable regulatory obligations and latest technology trends to guide analysis. Participate in discussions with company executives to understand business processes, approach to leveraging technology and strategy to build resiliency against cybersecurity threats. Analyze commercial off the shelf and/or custom developed applications used by a business for sufficiency (e.g., license counts), scalability (e.g., version, implementation model), and maintainability (e.g., support model). Analyze a company's IT infrastructure to determine adequacy of hosting model, hardware inventory, network architecture and business continuity procedures. Analyse technology vendor contracts and compute IT spend through the review of contracts and other financial documents provided by the Company. Analyze the company's cybersecurity maturity through review of cybersecurity governance program/procedures, exposure to regulatory compliance requirements and preventative technical controls. Develop workbooks and reports to capture diligence observations/analysis. Manage and develop members of the RSM USI team. Who We Are Looking For: Ability to conceptualize and summarize key findings in a clear and meaningful way with expertise in drafting critical sections of the technology DD report. Expertise and working knowledge of infrastructure management, network architecture, virtualization, application and data hosting architectures (data center, on-premise, public cloud), and business continuity/disaster recovery (BCDR) best practices. Knowledge of and experience with key IT frameworks (e.g. CMMI, ITIL, ISO 27000, SSAE-18 SOC reporting, NIST Cybersecurity Framework). Knowledge of and experience with key cybersecurity frameworks (e.g. COBIT, ISO 27001, NIST). Exposure to various sectors such as financial services, healthcare, life sciences, power and utility, energy, retail and hospitality, business services and technology. An experience across a wide spectrum of IT and security pillars including IT Strategy, Infrastructure, Business Applications, Cybersecurity, Spend Analysis, etc. Highly proficient with Microsoft office Suite (e.g., PowerPoint, Excel, Word, Visio) Strong skills in critical thinking, problem solving, and process improvement. Excellent interpersonal and communication skills in order to interact effectively with internal team members and external clients of the firm. Demonstrates willingness to invest time in cross-time zone communication with U.S. based teams. Ability to be a self-starter and drive successful client delivery. Able to manage deadlines and take ownership of getting the job done in a timely manner. Evaluated as an exceptional performer in current position. Development Opportunity/What's in It for You: Opportunity to interface with US based private equity and executive level leadership. Develop expertise in technology related M&A disciplines. Grow a strategic mindset and develop executive level perspective on investment towards operational technology. Experience M&A across a variety of industries and option to develop specific industry expertise. Gain an understanding of the approach towards post-acquisition value creation, integration, separation and risk remediation. Minimum Qualifications: Academic Qualification: B.Tech. and MBA from leading technology/business schools. Relevant experience of 4-7 years at a Big 4 or equivalent Advisory Services practice. Knowledge of Microsoft powered AI products such as Microsoft CoPilot or any other GenAI tools is preferred. Preferred Qualifications: Deal experience with onshore team including data room management, document request list preparation, management meeting preparation, workbook analysis, quality of earnings, due diligence reports, client calls and engagement team calls. Experience with post-acquisition/carve-out integration and separation related engagements. Preferred industry experience in one or more of the following: manufacturing, distribution, consumer products, business services, healthcare, financial services, business services, or technology. Knowledge of US based regulatory and compliance frameworks such as FFIEC, NERC CIP, PCI DSS, HIPAA, GLBA, and HITECH is a plus. ERP or supply chain application implementation experience; functional expertise in IT and supporting front/back-office operations preferred IT and cyber related certifications (CISSP, CISM, HITECH, PCI DSS QSA, CEH, Azure, AWS)