788 Grc Jobs

As a Security Testing professional with 3-10 years of experience in SAST/DAST/API, Network, Mobile Security, DevSecOps, Cloud Security, Threat Modelling, Vulnerability Management, Logging & Audit, GRC, Security Operations, and IAM, your role as a part of the Infosys delivery team will encompass various responsibilities. Your main responsibility will be to ensure effective Design, Development, Validation, and Support activities to meet and exceed client expectations in the technology domain. This will involve gathering requirements and specifications to deeply understand client needs and translating them into system requirements. Additionally, you will be pivotal in estimating work requirements accurately to provide vital input on project estimations to Technology Leads and Project Managers. Your contribution will be essential in the creation of efficient programs and systems that align with client requirements and industry best practices. If you are passionate about aiding clients in their digital transformation journey and possess the required expertise, then this opportunity is tailored for you! This job opening is available in multiple locations including Bangalore, Hyderabad, Trivandrum, Chennai, and Pune.,

The position based in Mumbai at Felix Advisory is a Full-Time opportunity where your high integrity, continuous eagerness to learn, and focus on creating value for clients are essential for success. At Felix Advisory, we prioritize supporting our team members in achieving their career goals and celebrating collective accomplishments. As part of this role, you will collaborate with a team of dedicated problem solvers to develop solutions that align with our clients" objectives. Joining our experienced team will give you the chance to work on a variety of high-quality projects involving multinational corporations, Indian conglomerates, and fast-growing startups across diverse industries. You will gain exposure to a wide range of Business and Risk advisory services, such as risk-based internal audits, compliance support for Clause 49 and Sarbanes-Oxley (SOX) requirements, implementation of risk assessment frameworks (ERMs/COSO/COBIT), development of SOPs/Policies/Processes, fraud investigations, special management audits, and information security reviews. As a valuable member of our team, your responsibilities will include effectively leading and motivating multiple client engagement teams simultaneously, providing constructive feedback and coaching to team members, identifying new business opportunities, cultivating relationships with clients, overseeing large-scale projects, ensuring high-quality deliverables within set timeframes and budgets, monitoring progress, managing risks, and keeping key stakeholders informed of project status and expected outcomes. To excel in this role, you should possess certifications such as CPA/CA, CIA, CFE, or other relevant qualifications, along with approximately 6 years of related work experience. Knowledge of Enterprise Risk Management (ERM), Governance, Risk, and Compliance (GRC) concepts, risk management frameworks (e.g., COSO, ISO, OCEG), and experience in designing and implementing risk management/compliance programs are essential. A willingness to travel up to 30-40% is also required. We are seeking motivated professionals with strong leadership skills, problem-solving abilities, and a collaborative approach to teamwork. If you thrive on tackling challenges, questioning the status quo, and being part of a culture that values teamwork and innovative problem-solving, we encourage you to apply for this role. If you are interested in this opportunity, please email your resume to infomumbai@felixadvisory.com.,

As a SAP Security and GRC Consultant at Birlasoft, you will be responsible for SAP role design, administration, and analysis on SAP implementation & maintenance projects. Your main responsibilities will include but not limited to: - Experience in GRC access control, RAR (Risk Analysis and Remediation), SOD (segregation of duty), mitigation, and remediation. - Experience in BW authorization and access. - Performing high-level support including problem determination for all SAP security needs within Development, QA, and Production SAP clients and the WebSphere application. - Designing and implementing new authorization concepts in collaboration with business departments and IT stakeholders. - SAP role design, administration, and analysis including profiles, user IDs, and custom authorization objects. - Managing transports. - SAP user administration following approved procedures. - Responsible for the integration of SoD conform processes and authorization validation. - Meeting or exceeding all task deadlines assigned. - Obtaining clear and concise requirements from senior management user community. - Incident Management. - Performing and managing tasks independently or as part of an international or local operations team. - Comfortable working in US shift. - SAP security troubleshooting and end-user support. - Supporting SAP security in different project stages (blueprint, QA, Go-live) and upgrades. - Understanding critical access restrictions and audit compliance requirements for tables and reports. Desirable skills for this role include: - GRC Access Control. - Application security and infrastructure security. - Fiori Artifacts. - Exposure to SAP ERP and SAP Activate methodology and accelerators. - SAP GRC Security. - SAP GRC suite. - Exposure to ECC/S4 HANA system. - SAP Certification. - 5-8 years of relevant experience. Join us at Birlasoft, where you will be part of a global leader driving innovation in Cloud, AI, and Digital technologies, committed to building sustainable communities and empowering societies worldwide.,

You will be responsible for developing and supporting software by writing clean, high-quality, high-performance, and maintainable code. This includes working on applications, database integration, interfaces, and new functionality enhancements. You will need to coordinate cross-functionally to ensure that projects meet business objectives and compliance standards. Additionally, you will be supporting the testing and deployment of new products and features, as well as participating in code reviews. To qualify for this role, you should have a Bachelor's degree in Computer Science or a related field, along with at least 3 years of relevant work experience. You should have expertise in Object-Oriented Design, Database Design, and XML Schema. Experience with Agile or Scrum software development methodologies is required, and you should have the ability to multi-task, organize, and prioritize work effectively.,

As a Cloud Environment Engineer, your responsibilities will include designing, developing, implementing, operating, improving, and debugging cloud environments in Google Cloud Platform (GCP) and Cloud Management Platform, as well as orchestration tools. You will be involved in engineering design evaluations for new environment builds and architecting, implementing, and enhancing possible automations for cloud environments. Your role will also entail recommending alterations to development and design to enhance the quality of products and procedures. It will be your responsibility to implement industry-standard security practices during implementation and maintain them throughout the lifecycle. Additionally, you will focus on process analysis and design to identify technology-driven improvements in core enterprise processes. Keeping abreast of the market for cloud services, enterprise applications, business process management, advanced analytics, and integration software will be crucial. You will play a significant role in estimating work requirements to provide accurate information on project estimations to Technology Leads and Project Managers. Your contributions will be essential in building efficient programs and systems to assist clients in their digital transformation journey. In terms of technical requirements, you should have expertise in Cloud technologies such as Google Cloud Practice, GCP Administration, DevOps, Terraform, and Kubernetes. Understanding container technology and container orchestration platforms like Docker and Kubernetes will be an added advantage. Moreover, you are expected to have knowledge of best practices and market trends related to Cloud and the overall industry. Providing thought leadership through seminars, whitepapers, and mentoring the team to enhance competency will be part of your additional responsibilities. You will also be required to advise customer executives on their cloud strategy, roadmap improvements, alignment, and further enhancements. If you are passionate about leveraging your skills to help clients navigate their digital transformation journey effectively, this role is the perfect fit for you.,

As a Cybersecurity Analyst II - GRC at AGCO, you will play a crucial role in addressing some of the world's most pressing challenges related to cybersecurity. Your primary responsibilities will involve developing and maintaining relationships with various teams within the enterprise to influence and achieve cybersecurity objectives related to governance, risk, and compliance. By leveraging best practices, you will lead risk activities across product, enterprise, and manufacturing teams, ensuring compliance with policies and standards while staying informed about the latest regulatory trends. Your expertise will be pivotal in serving as a subject-matter expert in governance, risk, and compliance, guiding teams through threat modeling exercises and risk analysis using industry-leading practices. Key Responsibilities: - Maintain an active crosswalk mapping between all policies and standards and cybersecurity frameworks like NIST CSF and ISO 21434. - Define threat modeling strategies and lead teams in executing them across different sectors within the enterprise. - Act as an independent voice for the GRC team, contributing to innovative risk analysis efforts across projects. - Conduct regular risk register reviews, follow up on identified risks, and escalate high-risk areas appropriately. - Assist in defining the annual program calendar for all GRC activities, including compliance audits and risk reviews. - Develop standards and control checks to ensure compliance with policies and standards across teams and projects. Qualifications: - Bachelor's degree with at least 7 years of industry experience in information technology or GRC roles, with a minimum of 5 years of relevant experience. - Experience in developing or maintaining cybersecurity policies, risk management frameworks, and working in enterprise, cloud computing, product security, or manufacturing security. - Familiarity with cybersecurity frameworks such as NIST, ISO standards, and various risk methodologies. - Ability to evaluate cybersecurity risk and business value across different scenarios, with a willingness to learn new technologies quickly. - Comfortable working in a fast-paced, global organization with dispersed teams. Preferred Qualifications: - Experience in Agile, Scrum, or SAFe environments. - Relevant cybersecurity or risk management certifications like CRISC, CISSP, GTSRT. - Proficiency in working with GRC tools, managing policy documentation, and assessing cybersecurity risk. - Familiarity with the agriculture or manufacturing industry. At AGCO, we value diversity, inclusion, and innovation, and we are committed to providing a positive workplace culture where every individual can thrive. Join us in shaping the future of agriculture and contribute to making a positive impact on the world. Apply now and be part of our dynamic team! Please note that this job description may not encompass all duties, responsibilities, or benefits associated with the role and is subject to change as needed. AGCO is an Equal Opportunity Employer.,

Job Title: Deputy Manager - IT Governance Location : Mumbai (Work from Office only). Candidates looking for Remote/Hybrid work opportunities need not apply. Responsibilities: As GRC (Governance, Risk, and Compliance) Manager is responsible for overseeing and managing the risk assessment, remediation, and monitoring of information and technology process risks. This role involves ensuring that all risk and compliance activities are performed effectively by various control functions. The GRC Manager also serves as an internal consultant, providing guidance to operating functions and business lines on risk-related matters. Additionally, they are tasked with identifying, assessing, quantifying, reporting, communicating, mitigating, and monitoring process risks to ensure the organization's overall security and compliance posture. Ensure strong governance on risk and compliance performed by various control functions. Manage risk assessment, remediation, and monitoring of information and technology • Identify, assess, quantify, report, communicate, mitigate, and monitor process risks. Support the implementation of information security policies. Discuss risk closure, mitigation, and acceptance with stakeholders. Ensure periodic entitlement reviews are completed, and risks are managed to an acceptable level. Collaborate with control functions to track and mitigate identified risks. Work with technology leaders to identify control gaps. Act as a subject matter expert for risk and controls related to operations. Maintain strong working relationships with stakeholders. Review and refine policies and processes based on industry best practices. Track identified risks and ensured their closure within defined timelines. Prepare and maintain risk heat maps and risk registers. Framework Implementation of IT Governance: Assist in Implementing a comprehensive IT governance framework for the IFTAS, policies, and procedures aligned with industry best practices (e.g., COBIT, ITIL) and organizational goals. Assist in establishing clear roles, responsibilities, and accountability for IT decision-making processes across the organization. Assist in developing and managing the IT policy lifecycle, including creation, review, approval, and communication. Strategic Alignment & Planning: Assist in ensuring IT strategies, initiatives, and investments are directly aligned with the overall business strategy and objectives. Facilitate the IT strategic planning process, translating business needs into actionable IT priorities. Assist in developing and track key performance indicators (KPIs) and metrics to measure the effectiveness of IT governance and overall IT performance. Risk Management & Compliance: Identify, assess, and monitor IT-related risks, including cybersecurity, data privacy, and operational risks. Ensure IT compliance with relevant internal policies, external regulations (e.g., GDPR, RBI guidelines, SEBI regulations if applicable), and industry standards. Manage IT audits (internal and external), facilitate responses, and track remediation efforts. Assist in financial , corporate governance, HR,Admin audits in line with CAG and other statutory requirements under the companies act 2013 and other relevant acts as applicable. Performance & Value Management: Establish processes for IT performance management, ensuring efficient and effective delivery of IT services and projects. Assist in development of mechanisms to measure and report on the business value delivered by IT investments. Drive continuous improvement initiatives within the IT organization based on governance insights. Stakeholder Engagement & Communication: Help in liaising between IT and business stakeholders to ensure clear communication and shared understanding of IT governance principles and outcomes. Facilitate governance committees and working groups, preparing agendas, minutes, and tracking action items. Educate and advocate for IT governance best practices across the organization. Education: Bachelor's degree in any stream Experience: - 6 years of experience in auditing domain within both government and public sector undertakings is preferable. - Expertise in compliance audit and MIS reporting required for Governance is mandatory. Knowledge : - 6+ years of progressive experience in IT, with at least 3+ years specifically in IT Governance, Risk Management, Compliance, or IT Audit. - Demonstrated experience in developing and implementing IT governance frameworks (e.g., COBIT, ITIL). - Proven ability to manage complex projects and drive organizational change. Skills: Strong communication, presentation, and interpersonal skills, with the ability to influence stakeholders at all levels. Strong working relationships with team members and the ability to motivate them. Knowledge in areas such as Application Security, Data Security, Identity Access Management, Information, Infrastructure Technology, GDPR, and ISO Audits. Solid understanding of Risk Management Lifecycle and exposure to standards like SOX, COBIT, PCI-DSS, NIST Control, etc. Understanding of Security incident response aspects is desirable. Good analytical, problem-solving, and interpersonal skills. Proficiency in risk assessment methodologies and compliance frameworks. Ability to work independently and as part of a cross-functional team.

Must have experience in handling SAP Security - Access management. Able to independently handle new user creation, SAP role modifications, user validity extensions, Password resets, New SAP role creation and audit support. Must be able to analyze issues related to access and provide suitable solution to address user requirement. Ensure adherence to agreed SLAs. Must have good communication skills (Oral and written). . Experience in support project is desired. Skills Mandatory Skills : SAP Security Support (ECC-BI-HR-CRM-S/4Hana)

DNEGs expanding Information Security (InfoSec), Governance, Risk and Compliance (GRC) and Data Privacy programs have the requirement to add an experienced InfoSec Governance, Risk and Compliance (GRC) Lead to the expanding global team. The role will be responsible for successfully managing and steering the Information Security GRC and Privacy function within DNEG. The InfoSec team are responsible for ensuring that the confidentiality, integrity, and availability (CIA) of its, and clients, confidential data, PII and systems and services are always maintained. Its for this reason that an experienced InfoSec GRC function is required to work collaboratively with the team, peers, and business stakeholders to ensure that all the InfoSec GRC initiatives/projects are aligned, maintained, and managed effectively to meet the requirements of both tactical roadmap requirements and to the overall successful delivery of the wider InfoSec strategy. 1. Mandatory Requirements and Expectations An experienced individual that works in a methodical and concise manner is required to successfully manage the InfoSec GRC and Privacy function at DNEG. Experience of working within a highly technical and multi-faceted InfoSec security program. Have excellent interpersonal, analytical, assessment and documentation skills which can be effectively utilized to develop and deliver against highly critical and GRC and Privacy assurance requirements. Working closely with the Information Security Program Manager (ISPM) to successfully prioritize, steer and deliver the GRC and privacy facets of the InfoSec program. Experience of working within multi-faceted audit environment. Demonstrable experience of delivering, maintaining, managing, and maturing a global GRC program to meet the requirements of a highly complex environment. Excellent track record of working with both internal and client driven auditable environments and ensure that control areas are effectively managed from a risk-based methodology. 2. Duties and Operational Responsibilities Manage, maintain, and mature the GRC and function within DNEG. Work proactively with the wider InfoSec team to ensure that all GRC and audit deliverables are suitably communicated and documented. Be able to work effectively in an independent capacity and as part of the InfoSec team. Utilize effective task management, communication, and leadership skills. Work in close partnership and collaborate with peers and internal technical teams. 3. Job Requirements 3.1 Mandatory Job Requirements A successful candidate will meet the majority of the requirements listed below and will be able demonstrate suitable experience in competencies in each of the following: Five to Ten years, plus/minus, of working within, or leading, a GRC, Data Privacy and audit function. Have demonstrable experience with all the following key areas: Lead and mature the existing GRC program to ensure that identified CRM and InfoSec risks are suitably kept within DNEGs risk tolerance level. Highly proficient with Risk Management methodologies and suitable application. Lead the assessment, evaluation and define risk mitigation solutions across the business and technical environments and identify areas of improvement. Take ownership of the ISMS policy framework and ensure that the control framework is suitable and meets requirements as set forth by industry and client driven audit requirements. Conduct onsite security audits and gap analyses across DNEG facilities to assess alignment with security frameworks. Mature and further develop the audit program and work collaboratively with peers and stakeholders to ensure that control deficiencies are suitably tracked and ultimately either mitigated or accepted. Demonstrable working knowledge of data privacy legislations, e.g., GDPR, and the applicability of applying mandated controls to minimize risk associated with privacy breaches etc. Highly motivated and bring a progressive and highly collaborative approach to the InfoSec GRC function. Knowledge of Information/Cyber Security processes and methodologies, e.g., ISO27001, CSA CCM etc. Experience of working collaboratively and effectively with a PMO function. Document and create qualitative and quantitative reporting relating to the GRC / Data Privacy roadmap. 3.2 Desired Job Requirements A successful candidate will have experience with the desired requirements listed below and will be able demonstrate suitable experience in competencies in each of the following: Experience of working with and customizing automated risk management platforms and services. Prior experience working within either the film or media industry sector. Experience and demonstrable, high-level knowledge, of the following: Working within either a hybrid or cloud native environment and their associated risks that are applicable within this type of environment. 3.3 Education A bachelors degree in IT or Computer Science is desirable, but not essential. Any of the following Risk Management certifications, e.g., CISSP, CISM, CISA, CRISC, ISO 27001 Lead Implementer/Auditor etc.

Job Role-IT/IS Governance & Compliance Manager Job Summary 1. Responsible for Information Technology (IT)/Information Security (IS) Governance, IT risk management and compliance in the organization. 2. Create and maintain the documentation for Information System governance and audits in accordance with regulatory & compliance requirements. 3. Develop, review and update policies and standards as appropriate to align to the changing needs. 4. Support in the interpretation of policies, standards, and guidelines to ensure consistency and compliance. 5. Monitoring and ensuring the policy / Standard Operating Procedures adherence across different IT functions. 6. The person needs to work closely with the CISO, CTO and other stakeholders in Risk, IT and Audit functions.Role & responsibilities

Experience: 711 Years Location: Bengaluru Type: Permanent Job Summary We are seeking an experienced CSM Architect & Employee Center Service Portal Engineer to join our ServiceNow team This dual-role position will focus on leading the architecture and implementation of Customer Service Management (CSM) modules and designing user-centric portals based on Employee Center Youll collaborate with cross-functional teams to deliver scalable, aligned, and maintainable solutions across our ServiceNow ecosystem, Key Responsibilities CSM Architect Define target architecture and data models for CSM, including best practices on case types, application scopes, and structuring customer data, Act as a CSM subject matter expert (SME) and support internal engineering teams in implementing scalable CSM solutions, Lead setup and optimization of Agent Workspaces for long-term usability and scalability, Employee Center / Service Portal Engineer Design and implement a modern Employee Center-based portal specifically tailored for CSM use cases, Ensure close alignment with out-of-the-box (OOB) capabilities for ease of future upgrades and portal consolidation, Provide ad hoc expertise across the broader ServiceNow portfolio, particularly where Service Portal and Employee Center capabilities are lacking, Required Skills & Technologies Mandatory Experience in ServiceNow Modules: CSM, HRSD, FSM, FSO, ITSM, ITOM (Discovery, Service Mapping, Cloud Insights, Governance) CMDB, ITAM (HAM & SAM), Event Management, Integration Hub, GRC/IRM, DevOps, SecOps, SPM, TSM Workplace, Healthcare & LS, Legal, Public Sector, RPA, Cloud Observability, Custom App Development Technical Proficiency Strong understanding of ServiceNow architecture, workflows, and platform configuration, Experience with Agent Workspace, Service Portal, and Employee Center development and implementation, Familiarity with case management, customer data structures, and scalable service delivery frameworks, Soft Skills Excellent communication and stakeholder engagement, Strong analytical and architectural planning skills, Collaborative mindset with the ability to drive cross-functional initiatives, Show

We are seeking a highly skilled and experienced SAP Security and GRC (Governance, Risk, and Compliance) Consultant to join our team in Indore. As a SAP Security and GRC Consultant, you will design, implement, and manage security and compliance solutions within SAP environments. You will play a critical role in ensuring our SAP systems" confidentiality, integrity, and availability while also ensuring compliance with relevant regulations and policies. Your responsibilities will include SAP Security Design and Implementation, GRC Implementation and Management, Security Auditing and Compliance, Security Incident Response, Documentation and Training, Security Enhancement and Optimization, as well as Collaboration and Communication. To be successful in this role, you should hold a Bachelor's degree in Computer Science and possess at least 10 years of experience with 2 implementations in SAP security and GRC consulting. You must have a strong knowledge of SAP security concepts, roles, authorizations, and GRC solutions, along with familiarity with SAP S/4HANA and other SAP modules. Experience with SAP GRC Access Control, Process Control, and Risk Management is required. Relevant SAP certifications (e.g., SAP Certified Security Consultant) are a plus. Strong analytical and problem-solving skills are essential, as well as excellent communication and interpersonal skills. You should also demonstrate the ability to work independently and as part of a team. This position is based in Indore, India. If you meet the qualifications and are interested in joining our team, please mail your resume to info@surteltechnologies.com.,

Job Description: EY is seeking a seasoned Control & Risk Assessment Leader to join our global Information Security function. This role is a strategic leadership position within the Technology Assurance, Risk, and Policy (TARP) team, responsible for designing and managing control testing and risk assessment programs to enhance EYs cybersecurity posture. Key Responsibilities: Design, implement, and manage a global control testing and risk assessment program Develop frameworks for 1st and 2nd line control testing Build and lead a team of senior analysts and risk professionals Collaborate with internal stakeholders including Information Security, Risk Management, and Audit teams Identify risk exposure, control gaps, and suggest mitigation strategies Develop awareness and training around control frameworks across the organization Maintain alignment with global compliance standards (ISO 27001, NIST, COBIT, SOX, GDPR) Desired Skills & Experience: 12+ years of experience in Information Security, Risk Management, or IT Audit 5+ years of team leadership experience Strong understanding of GRC frameworks and IT risk assessment methodologies Hands-on experience with control testing, internal audits, or compliance assessments Knowledge of tools such as RSA Archer, PowerBI, PowerApps, Excel Excellent stakeholder management and communication skills Preferred certifications: CISSP, CISA, CISM, CRISC, CIA Qualifications: Bachelor's or Master’s degree in Computer Science, Information Security, or related field Industry certifications in risk, audit, or cybersecurity preferred Work Mode: Hybrid

Responsibilities: Hands-on experience in SAP Basis/HANA Lead SAP Basis, ECC migrations & security implementations SAP security (GRC) experience Worked on various cloud migrations Experience in managing various SAP Applications

Minimum 3+yrs experience in Information Technology Infrastructure, Information Security, IT Audits etc Experience in managing Information Security Management, GRC, Cyber, System & ISO Audits. Good knowledge of SEBI Cyber Security & NCIIPC guidelines. Required Candidate profile Exposure on ISO 27001, ISO 22301, ISO 9001, NIST framework. Good interpersonal,communication, documentation & presentation skills. Track compliance /regulatory requirements & ensure on time reporting. Perks and benefits To be disclosed post interview

Project Role : Application Developer Project Role Description : Design, build and configure applications to meet business process and application requirements. Must have skills : ServiceNow Governance, Risk, and Compliance (GRC) Good to have skills : NA Educational Qualification : 15 years full time education Summary :As an Application Developer, you will design, build, and configure applications to meet business process and application requirements. A typical day involves collaborating with team members to understand project needs, developing application features, and ensuring that the applications align with business objectives. You will also engage in testing and troubleshooting to enhance application performance and user experience, while continuously seeking opportunities for improvement and innovation in application development processes. Roles & Responsibilities:- Expected to perform independently and become an SME.- Required active participation/contribution in team discussions.- Contribute in providing solutions to work related problems.- Assist in the documentation of application processes and workflows.- Engage in code reviews to ensure quality and adherence to best practices. Professional & Technical Skills: - Must To Have Skills: Proficiency in ServiceNow Governance, Risk, and Compliance (GRC).- Strong understanding of application development methodologies.- Experience with integration of applications and data sources.- Familiarity with user interface design principles and best practices.- Ability to troubleshoot and resolve application issues effectively. Additional Information:- The candidate should have minimum 2 years of experience in ServiceNow Governance, Risk, and Compliance (GRC).- This position is based at our Pune office.- A 15 years full time education is required. Qualification 15 years full time education

Project Role : Security Architect Project Role Description : Define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. Document the implementation of the cloud security controls and transition to cloud security-managed operations. Must have skills : ServiceNow Governance, Risk, and Compliance (GRC) Good to have skills : Security Architecture DesignMinimum 7.5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Architect, you will define the cloud security framework and architecture, ensuring it meets the business requirements and performance goals. You will document the implementation of the cloud security controls and transition to cloud security-managed operations. Your typical day will involve designing and implementing security solutions, collaborating with cross-functional teams, and ensuring compliance with governance and risk management standards. Roles & Responsibilities:- Expected to be an SME, collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Provide solutions to problems for their immediate team and across multiple teams.- Design and implement security solutions to protect the organization's cloud infrastructure.- Collaborate with cross-functional teams to ensure the security architecture meets business requirements.- Ensure compliance with governance and risk management standards.- Conduct risk assessments and develop mitigation strategies.- Stay up-to-date with the latest security trends and technologies.- Provide guidance and support to junior security professionals. Professional & Technical Skills: - Must To Have Skills: Proficiency in ServiceNow Governance, Risk, and Compliance (GRC).- Good To Have Skills: Experience with Security Architecture Design.- Strong understanding of cloud security principles and best practices.- Experience in designing and implementing security controls for cloud environments.- Knowledge of industry standards and regulations related to cloud security.- Familiarity with security frameworks such as ISO 27001 and NIST.- Excellent problem-solving and analytical skills.- Strong communication and collaboration abilities. Additional Information:- The candidate should have a minimum of 7.5 years of experience in ServiceNow Governance, Risk, and Compliance (GRC).- This position is based at our Pune office.- A 15 years full time education is required. Qualification 15 years full time education

Project Role : Application Lead Project Role Description : Lead the effort to design, build and configure applications, acting as the primary point of contact. Must have skills : SAP Security Good to have skills : NAMinimum 7.5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As an Application Lead, you will lead the effort to design, build, and configure applications, acting as the primary point of contact. Your typical day will involve collaborating with various teams to ensure that application requirements are met, overseeing the development process, and providing guidance to team members. You will also engage in problem-solving activities, ensuring that the applications are aligned with business objectives and user needs. Your role will require you to facilitate communication between stakeholders and the development team, ensuring that all parties are informed and engaged throughout the project lifecycle. Roles & Responsibilities:- Expected to be an SME.- Collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Provide solutions to problems for their immediate team and across multiple teams.- Facilitate training and knowledge sharing sessions to enhance team capabilities.- Monitor project progress and ensure timely delivery of application components. Professional & Technical Skills: - Must To Have Skills: Proficiency in SAP Security.- Strong understanding of access control and authorization concepts within SAP environments.- Experience with SAP GRC (Governance, Risk, and Compliance) solutions.- Familiarity with SAP role design and user provisioning processes.- Ability to conduct security audits and risk assessments. Additional Information:- The candidate should have minimum 7.5 years of experience in SAP Security.- This position is based at our Bengaluru office.- A 15 years full time education is required. Qualification 15 years full time education

Highest Qualification: Any Full Time Graduate Note: Hands on experience in ISO 27001 Implementation is mandatory for this role Experienced in managing cyber security services like Cyber Risk & Compliance consulting. Experience in setting up end to end Cyber Security frameworks, Compliance Standard implementation, including knowledge in testing (VAPT, Web & mobiles appsec, secure code review) Should be adept at conducting gap analysis, risk assessments, Impact assessments, governance and strategy development, Have worked with organizations to develop and implement various industry security standards like, IS0 27001, ISO 20000, PCI DSS, SOC2, GDPR, Privacy standards etc... Should be able to understand and explain technical vulnerabilities Basic knowledge on Active directory, firewalls, SCCM, MacAfee security products, DLP, Secure coding practices and product security Specific Duties and Responsibilities Include: To manage cyber security projects across EMEA region for cyber security services like Cyber security testing & cyber consulting Maintaining margins Business development like having presales discussions with various teams Assist in Business development of various security standards Must Have Skills: Excellent communication and presentation skills. Able to effectively interact with various clients/sales teams and manage clients Good to have Skills / Certification: ISO27001:2013 Lead Auditor CISSP, CISA, CISM, ISO22301, OSCP, CEH, SANS, Cloud certifications, Privacy certifications like CIPP/E, CIPM Qualification: BE/ BTech, MCA, MBA with specialization in Information Security

As a ServiceNow Developer specializing in Governance, Risk, and Compliance (GRC), you will be responsible for utilizing your 5+ years of experience in ServiceNow to design, develop, and deploy solutions on the ServiceNow platform. Your role will involve working with GRC and IRM in an enterprise production environment, implementing configurations and customizations for all components of the ServiceNow GRC product and Audit Management. You should possess a strong knowledge of ServiceNow Fundamental in ITSM modules such as Incident, Problem, Change, CMDB, Asset, and Service Catalog. Additionally, you will be required to assess vendor security within Compliance and Risk applications, and leverage ServiceNow GRC tools to track, monitor, report, and remediate findings. Proficiency in Java Script and ServiceNow Java script APIs is essential for this role, along with experience working with Agile teams, methodologies, and tools in a virtual environment. Holding an ITIL Foundation certification is also a key requirement. Your responsibilities will include advising and guiding customers on maximizing the product's potential, creating custom business rules, client scripts, UI policies, ACLs, and troubleshooting basic configuration script issues. The ability to manage multiple complex tasks simultaneously, work independently, and collaborate effectively with customers and delivery teams is crucial. Strong communication, presentation, and writing skills are necessary for this role, along with punctual and attentive attendance at all project meetings, including requirements review, validation sessions, and SCRUM ceremonies. If you are passionate about ServiceNow and possess the necessary skills and experience, we encourage you to share your resume with us at namrata.gawade@ltimindtree.com.,

You should have formal training or certification on the ServiceNow platform concepts and possess proficient applied experience. Demonstrated expertise in at least two ServiceNow Modules such as ITSM, ITOM, SecOps, GRC, etc., is required. It is essential to have knowledge of the automation/orchestration functionalities of ServiceNow. Strong analysis, problem-solving, and decision-making skills are necessary to debug issues and find proactive monitoring solutions for ensuring platform stability. Additionally, you should have the ability to mentor junior developers, fostering a collaborative and innovative team environment. Strong communication skills are also crucial to clarify requirements with stakeholders and work collaboratively with the team. The ideal candidate should have 5-9 years of experience and hold a qualification of BE in Computer Science, MCA, or MSc in Computer Science. In terms of technical skills, you must have experience in ServiceNow development and implementation on ITSM, ITOM, SecOps, or GRC modules. Proficiency in working with Business Rules, Client Scripts, UI Policies, UI Scripts, UI Actions, UI Pages, Script Includes, and Access Control Lists is required. Experience in the creation and customization of complex workflows and custom workflow activities is necessary. Hands-on experience in Glide and Jelly Scripting, Java Script, HTML, XML, AJAX, JSON, and CSS is essential. Additionally, experience in Webservices, SOAP, email, and other integrations is expected. Knowledge of Performance Analytics, email notifications, inbound actions, reports, gauges, and home pages is crucial. Familiarity with AngularJS, Bootstrap, and service mapping would be an added advantage. Expertise in API integrations with other systems, flow designer, instance upgrade, and execution of test plans is required. You should also be able to create test cases, test data, and contribute to the software development life cycle methodology. Resolving technical issues of projects, exploring alternate designs, fostering teamwork, collaborating with stakeholders, and ensuring client satisfaction are key responsibilities. The certifications needed for this role include CSA and CIS (ITSM)/CAD, as well as ITIL V4 certification. About Mphasis: Mphasis applies next-generation technology to help enterprises transform businesses globally. Customer centricity is foundational to Mphasis and is reflected in the Mphasis Front2Back Transformation approach. Front2Back leverages the power of cloud and cognitive technologies to provide hyper-personalized digital experiences to clients and their end customers. The Mphasis Service Transformation approach helps shrink the core through the application of digital technologies across legacy environments within an enterprise, enabling businesses to stay ahead in a changing world. Mphasis's core reference architectures, tools, speed, innovation, domain expertise, and specialization play a pivotal role in building strong relationships with marquee clients.,

The SAP BTP Administrator consultant will play a crucial role in global digitalization and optimization projects related to the SAP Business Technology Platform (BTP). With a minimum of 6+ years of experience and at least 2+ years of relevant skill experience, you will be responsible for various key tasks and responsibilities. You should possess a strong and practical knowledge of SAP technology and SAP BTP architecture. Specifically, you must have expertise in areas such as GRC, Hybrid cloud security, BTP, IAS, IPS, IAG, IDM, Fiori administration, and C4HANA. Your role will involve working closely with these technologies to ensure the smooth operation and optimization of the SAP BTP landscape. As a SAP BTP Administrator consultant, you will be expected to adhere to Governance, Risk, and Compliance (GRC) standards within the organization. This includes collaborating with the audit team to produce necessary artifacts and documentation. Additionally, you will be responsible for coordinating with both internal and external stakeholders on a global scale to ensure the alignment of the SAP BTP landscape with business and technical requirements. Your communication skills, both verbal and written in English, should be exceptional. You should have a service and solution-oriented work attitude, along with high analytical capabilities. Furthermore, you should be eager to learn and adapt to new technologies quickly, with a willingness to share knowledge and insights with others in the team. Overall, the SAP BTP Administrator consultant role requires a proactive approach to driving innovation, managing stakeholder relationships, and contributing to the overall demand management process. By adhering to guidelines and quality standards, you will play a vital role in the successful implementation and management of the SAP BTP landscape.,

6+ years of IT Business Analyst experience with sound Risk and Compliance Good working knowledge in RCSA, OpRisk, ERM etc . Should have been part of any GRC implementation for any banks GRC concepts and BRD Share Your CV at tanya@praxists.co.in

IT Business Analyst GRC/RCSA/OPS RISK Good domain knowledge on banking processes Experience in Agile methodology , User story writing , Sprint delivery, Jira, confluence etc GRC concepts and BRD / FSD for the project deliverables.

Role & responsibilities GRC Manager, inter alia, be responsible for the following: Plan and establish organization-wide Information security Management System (ISMS) in accordance with ISO/IEC 27001 Standard, and other relevant security standards, Evaluate compliance with respect to legal and regulatory requirement for information security. Perform information security audit at least annually or whenever significant changes have been made in IT systems/ Infrastructure. Prepare information security audit report along with recommendations for improving information security. Monitor and manage information security risks and highlight them to various stakeholder Monitor information security measurement metrics and other key performance / risk indicators on regular basis Review information security / IT polices, standards, procedures, guidelines and processes. Review products / application for various information security risks and suggest control measure to mitigate them Help in defining / documenting information security presentation to various stakeholders Giving information security awareness training to employees and third parties Help in defining and monitoring cloud security controls Enforce and Monitor implementation of approved information security policies, procedures, guideline and ISMS etc. Design and Issue alerts and advisories with respect to new vulnerabilities / threats to all concerned. Continuous monitoring of security incidents. Take remedial action to reduce the same. Cyber Security Incident Response and Recovery Management. Competencies: Good communication and writing skills. High energy professional. Technical & functional expertise Familiarization with emerging technology Knowledge of relevant legislative or regulatory requirements such as IT Act and associated Rules, Privacy legislations etc