508 Grc Jobs - Page 16

Please upload your resume to process your profile. --> https://www.jobs.global.fujitsu.com/job/ServiceNow-ITSM-Technical-Consultant-1550/1550-en_US/ Job Role: Technical Consultant Shift: 2pm to 11pm Work Mode: Hybrid Relevant Exp: 5 to 15 yrs Job Description: This will suit an experienced ServiceNow professional with a successful recent track record of implementing ServiceNow solutions specifically ITSM. The ideal candidate will want to prove themselves quickly to get a reputation for success in this large and passionate organization. Candidates will be experienced in leading ServiceNow engagements end to end, In addition, the successful candidate(s) will be responsible for, but not limited to, the following duties: •Providing hands-on ServiceNow related design and development expertise, supporting a range ServiceNow based consulting initiatives. •Work closely with a team of architects, SMEs, process consultants in end to end implementations •Configure and build integrations with SAP, Workday, etc. •Configure and develop enhancements on the ServiceNow platform to meet business needs for modules - ITSM •Define business problems/opportunities with constraints, goals, budgets and timelines. •Communicate technical problems and solutions to both technical and non-technical audiences. •Ability to convey complex technical concepts in understandable business terms. Consults with business analyst/project manager to develop appropriate technical solutions. •Document and gain acceptance / approvals of selected final solutions. •Execute technical solutions in capacity as a Sr. consultant. •Contribute to the development of Fujitsu IP solutions in ServiceNow. •Coach and advise other Developers. Skill Requirements: •Bachelor's degree with at least 5 years of ServiceNow design and development experience Development experience on the ServiceNow platform including customization of applications such as ITSM and custom apps. •Experience developing ServiceNow solutions and technical design documents from business requirements. •Experience with implementation of custom integrations (REST/SOAP, Flow Designer, Data Stream, Scripted REST API)•Experience developing, implementing, and maintaining large-scale applications and systems. •At least two full lifecycle ServiceNow implementations in the role of a lead consultant. •Must have strong requirements gathering experience. •Programming expertise in Java, JavaScript or other functional programming languages •Demonstrated understanding of ITIL practices •Excellent written and oral communication skills. Skills and Certifications •ServiceNow certifications - Service Now System Administrator, Certified Implementation Specialist is must and preferred in ITSM •ITIL v3 certification •Excellent analytical and problem-solving skills •Excellent verbal and written communication skills •Strong presentation development and Customer Presentation skills •Successful teamwork experience & demonstrated leadership abilities

Min 7 yrs in SAP GRC Access Control, Risk Mgmt, Process Control Skilled in config, support, SoD analysis, workflow setup integration with SAP/non-SAP, & compliance. Strong in troubleshooting, upgrades, audit readiness & performance optimization Required Candidate profile Self-driven, strong problem-solving, communication, Stakeholder mgmt skills Should works independently, adapts fast-paced setups & ensures compliance Team player Strong business-process understanding

Job Statement: NopalCyber makes cybersecurity manageable, affordable, reliable, and powerful for companies that need to be resilient and compliant. Managed extended detection and response (MXDR), attack surface management (ASM), breach and attack simulation (BAS), and advisory services fortify your cybersecurity across both offense and defense. AI-driven intelligence in our Nopal360 platform, our NopalGo mobile app, and our proprietary Cyber Intelligence Quotient (CIQ) lets anyone quantify, track, and visualize their cybersecurity posture in real-time. Our service packages, which are each tailored to a clients needs and budget, and external threat analysis, which provides critical intelligence at no-cost, help to democratize cybersecurity by making enterprise-grade defenses and security operations available to organizations of all sizes. NopalCyber lowers the barrier to entry while raising the bar for security and service. We are looking for a proven, high energy, results oriented GRC professional, where you will be a key advisor for our clients, analyzing business requirements to design and implement ideal security solutions for their needs. As an established GRC Professional, you will span operational, tactical, and strategic levels as well as tasks that tackle difficult problems that businesses are facing when building out and improving their security and compliance posture For attending the walk-in, please fill the form https://forms.gle/wLS8HtPyFZQKA4jf8 (Copy and paste in a browser) 1. SOC L3 Experience: 6+ years Skills: SIEM, IDS/IPS, EDR tools, log/packet analysis, TCP/IP, Linux/Windows, threat intelligence Tools: Splunk, QRadar, Crowdstrike, NetWitness Certifications (preferred): CISSP, CEH, CISM, GCIH 2. Offensive Security Specialist / Penetration Tester-L3 Experience: 6+ Skills: Web/API/Mobile Pentesting, Threat Modeling, Code Review, DAST, Cloud & Microservices security Tools: Burp Suite, Metasploit, Cobalt Strike, Nmap Languages: Python, Go, Java, JavaScript, C++ Certifications (preferred): OSCP, OSCE, OSWE, GPEN, CEH 3. GRC Security Consultant-L3 Experience: 8+ years Skills: Risk assessments, audits, ISO/NIST/PCI/GDPR frameworks, GRC tools, TPRM, vendor/client management Certifications: ISO 27001 LA/LI, CISSP, CISA, CIPP, CCSP, CCSK Note: Immediate to 30 days' notice preferred.

Position Overview: We are seeking a proactive IT GRC professional to strengthen our governance, risk, and compliance framework. This role involves ensuring regulatory compliance, conducting IT risk assessments, managing audits, and driving policy implementation across technology functions. Ideal candidates will have a strong understanding of SEBI, RBI, and other regulatory guidelines relevant to the broking industry, along with hands-on experience in IT controls, cyber risk, and compliance reporting. Role & responsibilities: Implement, and maintain IT GRC frameworks, policies, procedures, and controls. Tracking compliance / regulatory requirements and ensure on timely reporting and closure. Maintain and Update Technology activity tracker. Drafting of documentations likes policy, procedure and SOPs, reports. Co-ordinating with various teams for receipt of timely data/ information to various regulatory authorities. Managing IT/ Technology audit like System Audit, IT General Controls audit, and other technology compliances etc. Facilitates audits, coordinate with various internal and external stakeholders for audit related data. Liaising with auditors for any follow-up actions etc. Managing ISO 27001:2022, ISO 22301: 2019 internal and external audits, along with preparedness and review of relevant documentation. Knowledge of Application Security, Vulnerability Assessment and Penetration Testing. Co-ordinate with various technology teams for closure of observations. Evaluating the best industry practice followed and identify the various process improvements and implementations. Preferred candidate profile: 1) 6 to 10 years of experiences in Information Technology infrastructure, IT audits. 2) Experience in managing information technology management, GRC, System, ISO 27001:2022, ISO 22301: 2019, ITGC audit. 3) Candidate should have Good knowledge of SEBI, RBI, CERT- IN, and other regulatory guidelines and framework. 4) Good interpersonal, communication, documentation, presentation skills and problem solving skills.

Looking for a candidate with 5–8 years of experience in IT Audit, Risk Management, and Compliance within Banking/NBFCs. Must have expertise in COBIT, NIST, RBI guidelines, ISO standards, IT systems and risk assessments. CISA certification is must.

Position Overview: We are seeking an experienced ServiceNow GRC Developer with minimum 3-6 years of experience in the ServiceNow platform to join our team and play a key role in designing, developing, and maintaining ServiceNow Governance, Risk, and Compliance (GRC) solutions. The ideal candidate will have hands-on expertise in ServiceNow Workspace, scripting, integrations, and portal development to ensure seamless implementation and functionality of GRC modules and related solutions. Key Responsibilities: GRC Development & Configuration: Design and implement ServiceNow GRC solutions, including Policy and Compliance, Risk Management, Audit Management, and Vendor Risk Management modules. Configure and customize workflows, dashboards, and reports to meet organizational requirements. ServiceNow Workspace Development: Develop intuitive and user-friendly ServiceNow Workspaces tailored for GRC use cases, enabling efficient task management and visibility for end-users. Configuring the existing Workspaces while adding/removing widgets etc. Portal Design & Development: Create and enhance ServiceNow Service Portals with a focus on GRC functionalities, ensuring a seamless and engaging user experience. Catalog form creation and integrating those with other ServiceNow modules is key. Integration: Develop and maintain integrations between ServiceNow and other third-party systems (e.g., ERP, ITSM, risk platforms) using REST, SOAP APIs, and MID Servers. Troubleshoot and resolve integration issues effectively. Scripting & Customization: Develop and maintain custom scripts using JavaScript, Business Rules, Script Includes, and Client Scripts. Optimize scripts to ensure system performance and scalability. Process Optimization: Collaborate with stakeholders to identify and streamline GRC processes, ensuring alignment with industry best practices and regulatory requirements. System Administration & Support: Perform regular maintenance, upgrades, and troubleshooting of the ServiceNow platform to ensure smooth operations. Provide technical support and training to end-users and stakeholders. Required Skills & Experience: Proven experience in ServiceNow GRC module implementation and development. Hands-on experience with ServiceNow Workspace design and development. Proficiency in ServiceNow scripting, including Business Rules, Client Scripts, and Script Includes. Experience in developing and customizing ServiceNow Portals, widgets, and UI pages. Strong understanding of integration methods (REST/SOAP APIs) and troubleshooting integration issues. Familiarity with ServiceNow platform administration and performance optimization techniques. Ability to translate business requirements into technical solutions. Excellent communication and problem-solving skills. Kindly Acknowledge If you are interested for this position .

Role & responsibilities Works largely independently within defined projects/work streams and is checked on end results. Has an executional role in design and development projects or acts as an expert tester who designs test scripts and provides overall project guidance and planning support. Advises internally on solving functional and technical problems regarding the assigned applications and Infrastructure." Mention Skills: Software Design - Skill, Software Configuration Management - Knowledge, ServiceNow - Skill, ServiceNow and CMDB Experience of lifecycle implementation of at least 2 of ITSM, ITBM, GRC

The candidate will have a background in compliance frameworks such as SOC 2, GDPR, HIPAA, and GRC .You will play a role in conducting assessments, managing compliance programs, and ensuring our organization industry regulations and standards.

Governance: Develop, review, and update information security policies, procedures, and frameworks to align with industry best practices and regulatory requirements. Risk Management: Conduct comprehensive risk assessments, including identifying

Hi all, We are hiring for the role SAP Security and GRC Consultant Experience: 6 - 8 Years Location: Bangalore Notice Period: Immediate - 15 Days Skills: Mandatory Skills: S4 HANA, GRC, ChaRM, VIM, Power App & BTP Job Description: [Primary Skills]: Role design, configuration, testing, and deployment methodology within SAP application architecture SAP S/4 HANA Profile Generator (single roles, master / derived roles, composite roles) SAP GRC 12.0 configuration and administration SAP Security administrator with 6 to 8+ years of experience with the below: SAP Security administrator with 6 to 8+ years of experience with the below skillset. Work directly with clients at all different levels to guide complex projects and develop innovative solutions Successful completion of at least full life cycle implementations of SAP GRC, S4 Hana. Role design, configuration, testing, and deployment methodology within SAP application architecture Detailed knowledge of ABAP and Java based authorizations within SAP applications SAP S/4 HANA Profile Generator (single roles, master / derived roles, composite roles) Technical expertise in core skills of BTP, Power Apps, VIM, SAP BI 7.0 security & analysis authorization concept SAP GRC 12.0 configuration and administration SAP Cloud security Authorization [BTP] SAP Enterprise Portal UME administration Experience in CHARM Process and role build Strong communication skills to facilitate working in a dynamic project environment Provide leadership to junior systems analysts and client personnel assigned to projects Participate in 24x7 Operations and Maintenance call rotation support If you are interested drop your resume at mojesh.p@acesoftlabs.com Call: 9701971793

Role & responsibilities : Experience with the following Process and Control areas: Governance, controls and regulation Governance, Risk & Compliance Process and Control Process reviews Standard Operating Procedures Enterprise Risk Management Revenue Assurance SOX Internal Control over Financial Reporting (ICFR) Design and Implementation testing Process walkthroughs and testing effectiveness of controls Strong problem solving and analytical skills Good listening skills, inquisitive nature, intellectual curiosity and self-starter qualities

Location: Fort Roles & Responsibilities Governance Risk Management Compliance Incident Management Training and Awareness Reporting and Documentation Policy and Procedure Management: Audit Management:

Security Risk and Compliance Expert will be instrumental in shaping the global Information Security Management System (ISMS) within our Group Security team. This role involves engaging with various Business Groups and Corporate Functions to identify and manage information security risks, ensuring compliance and enhancing our security posture. Facilitate risk assessments, develop training, and contribute to the continuous improvement of security policies and tools. Enhance the overall security and compliance of services provided to our customers. You have: Master's or bachelor's degree in computer science, security engineering, or equivalent 5+ years of experience in information security in a multinational organization. Solid understanding of information security processes and technologies Practical knowledge of ISO/IEC 27001:2022 standard implementation Excellent documentation and communication skills It would be nice if you also had: Knowledge of security standards like CSA CCM, NIST CSF, NIS2, and SOC2 Experience delivering information security training Familiarity with RSA Archer and Microsoft Power BI or other GRC tools Certifications in information security (e.g., CRISC, CISSP and ISO 27001 LI/LA) Implement and operate the global Information Security Management System (ISMS) to enhance overall security and compliance Conduct risk assessments with global stakeholders to evaluate and report information security risks Develop and maintain the information security risk register, tracking mitigation progress and presenting reports to stakeholders Provide recommendations for security risk mitigation strategies tailored to different business groups Create, update, and maintain ISMS documentation and a repository of reports and audit records Facilitate training sessions to educate employees on ISMS practices and promote a strong security culture Collaborate with cross-functional teams to identify evolving security trends and compliance requirements Contribute to the continuous improvement of Nokia ISMS and related tools, utilizing KPIs to measure effectiveness

As a managing consultant, you will serve as a client-facing practitioner working collaboratively with clients to deliver high-quality solutions and be a trusted business advisor with deep understanding of SAP Accelerate delivery methodology or equivalent and associated work products. You will lead design workshops, support business development activities and mentor and coach team members to develop their skills and knowledge. There are opportunities for you to acquire new skills, work across different disciplines, take on new challenges, and develop a comprehensive understanding of various industries. There are opportunities for you to acquire new skills, work across different disciplines, take on new challenges, and develop a comprehensive understanding of various industries. Your primary responsibilities include: Strategic SAP Solution Leadership Leading the technical design, development, and implementation of SAP solutions for simplicity, amplification, and maintainability that meet client needs. Team Delivery leadership Lead and manage high performing team of SAP consultants to deliver work products on time, budget, and quality. Comprehensive Solution Delivery: Involvement in strategy development and solution implementation, leveraging your functional expertise of SAP with clients and team members and working with the latest technologies Required education Bachelor's Degree Preferred education Master's Degree Required technical and professional expertise Overall, 5 - 12 years of relevant experience in SAP BODS/BOIS/SDI/SDQ and 3+ Years of SAP functional experience specializing in design and configuration of SAP BODS/HANA SDI modules. Experience in gathering business requirements and should be able to create requirement specifications based on Architecture/Design/Detailing of Processes. ‘Should be able to prepare mapping sheet combining his/her Functional and technical expertise. All BODS Consultant should primarily have Data migration experience from Different Legacy Systems to SAP or Non-SAP systems. Data Migration experience from SAP ECC to S/4HANA using Migration Cockpit or any other methods. In addition to Data Migration experience, Consultant should have experience or Strong knowledge on BOIS (BO Information Steward) for data Profiling or Data Governance Preferred technical and professional experience Having BODS Admin experience/Knowledge. Having working or strong Knowledge of SAP DATA HUB. Experience/Strong knowledge of HANA SDI (Smart data Integration) to use this as an ETL and should be able to develop flow graphs to Validate/Transform data. Consultant should Develop Workflows, Data flows based on the specifications using various stages in BODS

As a senior SAP Consultant, you will serve as a client-facing practitioner working collaboratively with clients to deliver high-quality solutions and be a trusted business advisor with deep understanding of SAP Accelerate delivery methodology or equivalent and associated work products. You will work on projects that assist clients in integrating strategy, process, technology, and information to enhance effectiveness, reduce costs, and improve profit and shareholder value. There are opportunities for you to acquire new skills, work across different disciplines, take on new challenges, and develop a comprehensive understanding of various industries. Your primary responsibilities include Strategic SAP Solution FocusWorking across technical design, development, and implementation of SAP solutions for simplicity, amplification, and maintainability that meet client needs. Comprehensive Solution DeliveryInvolvement in strategy development and solution implementation, leveraging your knowledge of SAP and working with the latest technologies Required education Bachelor's Degree Preferred education Master's Degree Required technical and professional expertise Overall 5 - 12 years of relevant experience in SAP BODS/BOIS/SDI/SDQ and 3+ Years of SAP functional experience specializing in design and configuration of SAP BODS/HANA SDI modules. Experience in gathering business requirements and Should be able to create requirement specifications based on Architecture/Design/Detailing of Processes. Should be able to prepare mapping sheet combining his/her Functional and technical expertise. All BODS Consultant should primarily have Data migration experience from Different Legacy Systems to SAP or Non SAP systems. Data Migration experience from SAP ECC to S/4HANA using Migration Cockpit or any other methods. In addition to Data Migration experience, Consultant should have experience or Strong knowledge on BOIS( BO Information Steward) for data Profiling or Data Governance Preferred technical and professional experience Having BODS Admin experience/Knowledge. Having working or strong Knowledge of SAP DATA HUB. Experience/Strong knowledge of HANA SDI (Smart data Integration) to use this as an ETL and should be able to develop flow graphs to Validate/Transform data. Consultant should Develop Workflows, Data flows based on the specifications using various stages in BODS

ROLE & RESPONSIBILTY: Conduct thorough and detailed cyber risk assessments for our clients, analyzing their digital infrastructure, systems, and security controls. Collaborate with cross-functional teams to gather essential information and data required for comprehensive risk assessments. Evaluate and interpret assessment results to identify potential vulnerabilities and risks, and provide actionable recommendations for risk mitigation. Stay up-to-date with the latest cyber threats, attack vectors, and industry best practices to enhance the effectiveness of risk assessments. Prepare and deliver clear and concise reports summarizing the findings of risk assessments to clients and internal stakeholders. Provide expert advice and consultancy to clients, guiding them in implementing robust cybersecurity risk management strategies. Mentor and support junior team members to foster their professional growth and skills in cyber risk assessments. REQUIREMENTS: Bachelor's or Master's degree in Computer Science, Cybersecurity, Information Technology, or related fields. A minimum of 5+ years of hands-on experience in conducting cyber risk assessments and related security assessments. Industry certifications such as CISSP, CCSP, CISA, CISM, CRISC, ISO/IEC:27001/22301/20000 LI/LA or equivalent are highly valued. Profound knowledge of cybersecurity frameworks, industry standards, and best practices. Proficiency in using various security assessment and techniques. Strong analytical and problem-solving skills, with the ability to think critically and strategically. Excellent communication and presentation skills, capable of effectively communicating technical concepts to both technical and non-technical audiences. Demonstrated experience in project management and handling multiple assessments simultaneously. A proactive and self-motivated approach to work, with a commitment to continuous learning and professional development. Network Security, infrastructure assessment and network architecture design review. Conceptual knowledge of OT Security/ISA 62443 standard is preferable.

Role & responsibilities The ServiceNow GDN Consultant is responsible for developing technical solutions on the ServiceNow platform to satisfy the business needs of the IT department and beyond. Development of ITSM & other modules (GRC, SECOPS, HRSD, CSM, ITBM) in ServiceNow Platform. Always follow best development practices during implementation. Support other developers in their work to integrate existing systems with Service Now. Strong hands-on ServiceNow implementation or development experience with minimum 3 full cycle implementation of any ServiceNow module. Creating technical design document and writing Unit test cases. Knowledge in Web Technologies (XML, HTML, JAVA Script, etc.) Will be essential. ServiceNow upgrade hands-on. Very good knowledge of the ITSM/GRC/SECOPS/HRSD/CSM/ITBM process. Work with global ServiceNow team to implement the ServiceNow ( all the modules ) across all global locations of client. Exceptional Interpersonal Skills & Ability to work Independently and with a team.

Job Title: L2 Security Specialist Job Summary: The L2 Security Specialist will take a proactive role in threat hunting, security assessments, and improving defensive measures. This role involves deeper technical analysis, security tool management, and incident response. Key Responsibilities: Perform Data Discovery & Classification to enforce data protection policies. Manage File Upload Security Solutions to prevent malware and data leaks. Conduct Attack Surface Management (ASM) to reduce exposure to threats. Execute Breach & Attack Simulation (BAS) and assist Red Team operations. and analyze Phishing Simulation campaigns to improve security awareness. Implement and audit Active Directory (AD) Security controls. Lead IT Governance, Risk & Compliance (GRC) initiatives (e.g., ISO 27001, NIST). Deploy and analyze Decoy (Honeypot) systems to detect advanced threats. Administer Mobile Device Management (MDM) security policies. Ensure Secure Data Backup & Recovery (Ransomware Protection) effectiveness. Configure and maintain Network Access Control (NAC) solutions. Required Skills & Qualifications: 35 years of experience in cybersecurity operations. Hands-on experience with SIEM, BAS, ASM, and NAC tools. Strong knowledge of phishing, ransomware defense, and AD security. Experience in GRC frameworks (ISO 27001, NIST, GDPR). Familiarity with honeypots, incident response, and threat intelligence. Certifications like CISSP, CISM, OSCP, or CASP+ preferred.

Hiring for SAP GRC Security with HANA. Must have End to End Implementations. Mode: Hybrid Location: Pan India

Job Title: ITGC and SAP Security Consultant Location: Pune / Nagpur Job Type: Full-Time Work Hours: US EST Business Hours Availability : Immediate joiners preferred (within 12 weeks). About the Role: We are seeking a skilled and experienced ITGC and SAP Security Consultant to join our team in Pune or Nagpur . This full-time position requires supporting US EST business hours and is ideal for professionals with a strong foundation in IT General Controls (ITGC) and SAP Security. Key Responsibilities: Implement and manage IT General Controls (ITGC) to ensure compliance with internal and external audit requirements. Design, implement, and maintain SAP security roles and authorizations. Work closely with audit teams to support ITGC testing and remediation activities. Monitor and respond to SAP security incidents and perform regular access reviews. Conduct risk assessments, identify control gaps, and implement remediation strategies. Collaborate with cross-functional teams to improve SAP security controls and compliance. Requirements: Experience: 6 to 8 years in ITGC and SAP Security. Certification: CISP certified (Mandatory). Availability: Immediate joiners preferred (within 12 weeks). Proven experience in managing SOX compliance and SAP security audits. Strong understanding of SAP GRC, SAP roles, profiles, authorization objects, and user management. Familiarity with audit tools and methodologies. Preferred Attributes: Excellent analytical and problem-solving skills. Strong verbal and written communication skills. Ability to work independently with minimal supervision. Experience in supporting clients from the US or working in EST time zones is a plus. Why Join Us? Opportunity to work on global projects with a talented team. Competitive compensation and benefits. Flexible work environment with a focus on continuous learning and development. Interested candidates are encouraged to apply immediately. Please ensure your availability aligns with US EST business hours before applying. Interested candidates can share updated resume to Jagannath.Gaddam@quantumintegrators.com

Role & responsibilities : Solid ServiceNow GRC Development experience Good to have knowledge on following ServiceNow applications. Discovery On-Premises & Off- Premises ServiceNow Orchestration ITOM - IT Operations Management GRC Governance Risk & Compliance ServiceNow Event Management Preferred candidate profile : Bachelor (4-year) degree in Cybersecurity, Information Security, Computer Science, Information Systems 5 years of direct development experience with the ServiceNow platform - UI Actions, UI Policies, Business Rules, Client Scripts, Script Includes, Catalog Client Scripts, Catalog UI Policies, Email Scripts, Roles / Groups. Experience with importing and exporting data to ServiceNow using data loads, transform maps and transform scripts. Experience developing ServiceNow GRC/IRM (Governance Risk and Compliance / Integrated Risk Management) modules including good understanding of Authority Documents, Citations, Policies, Control Objectives, Acknowledgment Campaigns, Entity Types, Risk and Audit processes in ServiceNow. Experience in a variety of programming languages and Scripting: Jave/J2EE, Python, Jelly Script, JQuery, ASP.net, Perl, Ajax Database and SQL experience: Oracle and MS SQL 3-6 years of experience in Cybersecurity or Information Technology

Role Purpose The purpose of this role is to analyse, identify, rectify & recommend specific improvement measures that help in the security posture of the organization by protecting the sensitive information Do Ensuring customer centricity by providing apt cybersecurity Monitoring and safeguarding the log sources and security access Planning for disaster recovery in the event of any security breaches Monitor for attacks, intrusions and unusual, unauthorized or illegal activity Performs moderately complex log reviews and forensic analysis to identify unauthorized or unacceptable access to data or systems Conduct security assessments, risk analysis and root cause analysis of security incidents Handling incidents escalated by the L1 team in 24x7 rotational shifts Use advanced analytics tools to determine emerging threat patterns and vulnerabilities Completing all tactical security operations tasks associated with this engagement. Analyses all the attacks and come up with remedial attack analysis Conduct detailed analysis of incidents and create reports and dashboards Stakeholder coordination & audit assistance Liaise with stakeholders in relation to cyber security issues and provide future recommendations Maintain an information security risk register and assist with internal and external audits relating to information security Assist with the creation, maintenance and delivery of cyber security awareness training for colleagues Advice and guidance to employees on issues such as spam and unwanted or malicious emails Deliver No. Performance Parameter Measure 1. Customer centricity Timely security breach solutioning to end users, Internal stakeholders & external customers experience 2. Process Adherence Adherence to SLA’s (90-95%), response time and resolution time TAT Mandatory Skills: ServiceNow - GRC. Experience3-5 Years.

Role Purpose The purpose of this role is to design the organisation’s computer and network security infrastructure and protect its systems and sensitive information from cyber threats Do 1. Design and develop enterprise cyber security strategy and architecture a. Understand security requirements by evaluating business strategies and conducting system security vulnerability and risk analyses b. Identify risks associated with business processes, operations, information security programs and technology projects c. Identify and communicate current and emerging security threats and design security architecture elements to mitigate threats as they emerge d. Identify security design gaps in existing and proposed architectures and recommend changes or enhancements e. Provide product best fit analysis to ensure end to end security covering different faucets of architecture e.g. Layered security, Zoning, Integration aspects, API, Endpoint security, Data security, Compliance and regulations f. Demonstrate experience in doing security assessment against NIST Frameworks, SANS, CIS, etc. g. Provide support during technical deployment, configuration, integration and administration of security technologies h. Demonstrate experience around ITIL or Key process-oriented domains like incident management, configuration management, change management, problem management etc. i. Provide assistance for disaster recovery in the event of any security breaches, attacks, intrusions and unusual, unauthorized or illegal activity j. Provide solution of RFP’s received from clients and ensure overall design assurance i. Develop a direction to manage the portfolio of to-be-solutions including systems, shared infrastructure services, applications, hardware related to cyber risk security in order to better match business outcome objectives ii. Analyse technology environment, enterprise specifics, client requirements to set a collaboration design framework/ architecture iii. Depending on the client’s need with particular standards and technology stacks create complete RFPs iv. Provide technical leadership to the design, development and implementation of custom solutions through thoughtful use of modern technology v. Define and understand current state solutions and identify improvements, options & tradeoffs to define target state solutions vi. Clearly articulate and sell architectural targets, recommendations and reusable patterns and accordingly propose investment roadmaps vii. Evaluate and recommend solutions to integrate with overall technology ecosystem viii. Tracks industry and application trends and relates these to planning current and future IT needs 2. Stakeholder coordination & audit assistance a. Liaise with stakeholders in relation to cyber security issues and provide timely support and future recommendations b. Provide assistance in maintaining an information security risk register and help with internal and external audits relating to information security c. Support audit of security best practices and implementation of security principles across the organization, to meet business goals along with customer and regulatory requirements d. Assist with the creation, maintenance and delivery of cyber security awareness training to team members and customers e. Provide training to employees on issues such as spam and unwanted or malicious emails Deliver No Performance Parameter Measure 1 Customer centricity Timely security breach solutioning to end users, Internal stakeholders & external customers experience, CSAT, educating and suggesting right control to the customers. 2 Support sales team to create wins % of proposals with Quality Index 7, timely support of the proposals, identifying opportunities/ leads to sell services within/ outside account (lead generation), no. of proposals led Mandatory Skills: GRC Technology. Experience8-10 Years.

Role Purpose The purpose of this role is to analyse, identify, rectify & recommend specific improvement measures that help in the security posture of the organization by protecting the sensitive information Do Ensuring customer centricity by providing apt cybersecurity Monitoring and safeguarding the log sources and security access Planning for disaster recovery in the event of any security breaches Monitor for attacks, intrusions and unusual, unauthorized or illegal activity Performs moderately complex log reviews and forensic analysis to identify unauthorized or unacceptable access to data or systems Conduct security assessments, risk analysis and root cause analysis of security incidents Handling incidents escalated by the L1 team in 24x7 rotational shifts Use advanced analytics tools to determine emerging threat patterns and vulnerabilities Completing all tactical security operations tasks associated with this engagement. Analyses all the attacks and come up with remedial attack analysis Conduct detailed analysis of incidents and create reports and dashboards Stakeholder coordination & audit assistance Liaise with stakeholders in relation to cyber security issues and provide future recommendations Maintain an information security risk register and assist with internal and external audits relating to information security Assist with the creation, maintenance and delivery of cyber security awareness training for colleagues Advice and guidance to employees on issues such as spam and unwanted or malicious emails Deliver No. Performance Parameter Measure 1. Customer centricity Timely security breach solutioning to end users, Internal stakeholders & external customers experience 2. Process Adherence Adherence to SLAs (90-95%), response time and resolution time TAT Mandatory Skills: GRC Process. Experience5-8 Years.

Role Purpose The purpose of this role is to analyse, identify, rectify & recommend specific improvement measures that help in the security posture of the organization by protecting the sensitive information Do Ensuring customer centricity by providing apt cybersecurity Monitoring and safeguarding the log sources and security access Planning for disaster recovery in the event of any security breaches Monitor for attacks, intrusions and unusual, unauthorized or illegal activity Performs moderately complex log reviews and forensic analysis to identify unauthorized or unacceptable access to data or systems Conduct security assessments, risk analysis and root cause analysis of security incidents Handling incidents escalated by the L1 team in 24x7 rotational shifts Use advanced analytics tools to determine emerging threat patterns and vulnerabilities Completing all tactical security operations tasks associated with this engagement. Analyses all the attacks and come up with remedial attack analysis Conduct detailed analysis of incidents and create reports and dashboards Stakeholder coordination & audit assistance Liaise with stakeholders in relation to cyber security issues and provide future recommendations Maintain an information security risk register and assist with internal and external audits relating to information security Assist with the creation, maintenance and delivery of cyber security awareness training for colleagues Advice and guidance to employees on issues such as spam and unwanted or malicious emails Deliver No. Performance Parameter Measure 1. Customer centricity Timely security breach solutioning to end users, Internal stakeholders & external customers experience 2. Process Adherence Adherence to SLAs (90-95%), response time and resolution time TAT Mandatory Skills: GRC Consulting. Experience5-8 Years.