92 Infosec Jobs

Sound Knowledge of platform and operations related to infosec domain. Should have good understanding of core EDR platform with threat hunting capabilities. Should have good understanding of Firewall, EDR,WAF & DNS Technologies.

- Information Security Manager shall be primarily responsible to : - Run and manage the BAU security infosec operations - Create and maintain ISMS Policy and Process documents - Ensure Infosec compliance with RBI and other regulatory agencies - Participate in IT Infosec Audits and ensure closure of observations within given timeliness - Conduct regular VAPT (Vulnerability Assessments) and track closure of open observations - Identifying and evaluating new IT security technologies and services and implementing it - Ensure cyber security related polices and technologies are in place - Conducting regular Inforsec Awareness within users in the organization - The person needs to work closely with the CISO and other stakeholders Risk, IT and Audit teams. - The position will based at CreditAccess Grameen HQ in Bangalore, and may require short term travel on need basis to other CAGL offices. Key Accountability: - Ensuring adequate security controls are in place & working effectively within the organization for information & cyber security - Ensuring effectiveness of all IT controls to prevent any unauthorized access or activities at a system administration level - Identify potential security weaknesses through vulnerability assessments and track them to closure within the timeliness -Tracking and reporting key risk indicators defined for IT processes - Create and maintain the documentation for information system audits in accordance with regulatory and compliance requirements - Create Review ISMS policy and process - Implement Strategic IT Infosec projects to strengthen the overall IT Security posture at CAGL Mandatory Key Skills Cyber Security,Infosec,It Security,Vulnerability Assessment,Isms,Information Security Management,Vapt,Security Controls,Penetration Testing,Owasp,Application Security,Ceh,Cissp,Pci Dss,Web Application Security,Siem,Information Security*

As a highly skilled Senior Scrum Master at our company, you will lead and mentor Agile teams in a SAFe environment. Your role will involve facilitating Agile ceremonies, removing impediments, and ensuring that the team adheres to agile best practices and SAFe principles. You will also partner with product owners, Release Train Engineers (RTE), and other Scrum Masters to deliver high-quality products across the Agile Release Train. Responsibilities: - Guide and coach multiple Scrum teams on Agile and SAFe practices - Facilitate Scrum events (Sprint planning, daily standup, sprint review, Retrospective) and SAFe ceremonies (PI Planning, System Demos, Inspect & Adapt workshops) - Serve as a servant leader and coach to Agile teams, fostering a culture of continuous improvement - Collaborate with product owners and stakeholders to ensure well-defined backlogs - Identify and resolve impediments that block team progress - Monitor Agile metrics - Champion Agile mindset and SAFe values throughout the organization - Mentor junior Scrum Masters and team members in Agile principles - Accountable for the planning, organization, execution, and delivery of projects from inception to completion related to a known technology, product, or program - Proactively manage the end-to-end delivery of engineering work through the Global Digital engineering organization and all dependent organizations; reporting out progress, ensuring dependencies are covered, overseeing the gaps between teams, processes, and systems, while removing all blocking issues leading to a successful delivery Qualifications: - 8-12 years of relevant experience as a Scrum Master - SAFe Scrum Master or SA Certified Scrum Master - Strong analytical and quantitative skills; Data-driven and results-oriented - Experience delivering with an agile methodology - Experience in affecting large culture change - Experience leading infrastructure programs - Skilled at working with third-party service providers - Excellent written and oral communication skills Education: - Bachelors/University degree or equivalent experience If you are a person with a disability and need a reasonable accommodation to use our search tools and/or apply for a career opportunity, please review Accessibility at Citi.,

SAARTH INFOSEC PRIVATE LIMITED is looking for Cyber Security Consultants to join our dynamic team and embark on a rewarding career journey Undertake short-term or long-term projects to address a variety of issues and needs Meet with management or appropriate staff to understand their requirements Use interviews, surveys etc. to collect necessary data Conduct situational and data analysis to identify and understand a problem or issue Present and explain findings to appropriate executives Provide advice or suggestions for improvement according to objectives Formulate plans to implement recommendations and overcome objections Arrange for or provide training to people affected by change Evaluate the situation periodically and make adjustments when needed Replenish knowledge of industry, products and field Disclaimer: This job description has been sourced from a public domain and may have been modified by Naukri.com to improve clarity for our users. We encourage job seekers to verify all details directly with the employer via their official channels before

SAARTH INFOSEC PRIVATE LIMITED is looking for Security Analysts to join our dynamic team and embark on a rewarding career journey Defining, planning, implementing, maintaining, and upgrading security measures, policies, and controls Assisting with the creation of updates and training programs to secure the network and train the employees Keeping the security systems up to date Monitoring security access and maintaining the relevant data Conducting vulnerability testing and risk analyses to assess security and performing internal and external security audits Analyzing security breaches to identify the cause and to update incidence responses and disaster recovery plans Disclaimer: This job description has been sourced from a public domain and may have been modified by Naukri.com to improve clarity for our users. We encourage job seekers to verify all details directly with the employer via their official channels before

Must have ISO 27001 Lead Implementer/Auditor and ISO 27701 Lead Implementer/Auditor certifications and knowledge. depth understanding of IT Act, DPDPA, Cert In regulations, CIS Controls, UK DPA, ISO 31000 E: etalenthire@gmail.com satish: 88O2749743

As a Risk and Compliance Specialist at Accenture, you will be part of the Risk and Compliance vertical, contributing to compliance reviews, report generation, and closure guidance as necessary. Your role will involve designing and recommending effective controls to mitigate risks and assisting the service delivery team in preparing for upcoming client and external audits. Working within the Risk & Compliance team, you will collaborate with clients and organizations to identify risks and develop mitigation strategies. Your responsibilities will include auditing and managing the implementation of functional processes in operations to minimize risks, such as policies related to Anticorruption, BCM, InfoSec, P104, Records Management, and Contractor controls. You will establish processes to assess and enhance the effectiveness of current controls, driving improvements where necessary. In this position, you will analyze and solve moderately complex problems, potentially creating new solutions by adapting existing methods and procedures. Understanding the strategic direction set by senior management and aligning team goals with it will be crucial. You will primarily interact with your direct supervisor and may engage with peers or management levels at clients or within Accenture. Guidance will be available when determining methods and procedures for new assignments. Your decisions will have an impact on the team you are part of, and if in an individual contributor role, you may manage small teams or work efforts. Please be aware that this role may involve working in rotational shifts. With a requirement of 7 to 11 years of experience and a qualification of any graduation, the Risk and Compliance Specialist role at Accenture offers an opportunity to contribute to risk mitigation, compliance management, and process improvement within operations. If you are someone who excels in problem-solving, strategic thinking, and effective communication, this position could be a perfect fit for you. Join our team to embrace change, create value, and drive shared success for our clients, people, shareholders, partners, and communities.,

As a Risk and Compliance Analyst at Accenture, your role will involve performing compliance reviews, publishing reports with actionable insights, and providing guidance for closure as necessary. Your responsibilities will include designing and recommending effective controls to mitigate risks, assisting service delivery teams in preparing for client audits, and collaborating with the Risk & Compliance team to identify risks and develop mitigation strategies. You will be tasked with auditing and managing the implementation of functional processes to minimize risk, such as policies related to Anticorruption, BCM, InfoSec, P104, Records Management, and Contractor controls. Additionally, you will establish processes to assess and enhance the effectiveness of current controls. To excel in this role, you should possess the ability to build strong client relationships, meet deadlines consistently, work effectively in a team setting, and demonstrate agility in acquiring new skills. Strong written and verbal communication skills are essential for effective collaboration within the organization. As a Risk and Compliance Analyst, you will primarily analyze and solve lower-complexity issues, interacting with peers at Accenture for updates before reporting to supervisors. While your exposure to clients and Accenture management may be limited, you will receive moderate-level instructions for daily tasks and detailed guidance for new assignments. The decisions you make will impact your own work and potentially that of others, as you work as an individual contributor within a team with a specific focus. Please be aware that this role may involve working in rotational shifts. If you have a BCom or CA Inter qualification and possess 3 to 5 years of relevant experience, this opportunity at Accenture could be the next step in your career progression. Join us in leveraging technology and human ingenuity to drive positive change and deliver value to our clients, people, partners, and communities around the globe.,

As a Risk and Compliance Associate Manager at Accenture, you will be a part of the Risk and Compliance vertical, assisting in compliance reviews, report generation, and closure guidance. Your responsibilities will include designing and recommending effective controls to mitigate risks, preparing service delivery teams for audits, and identifying risks for clients and organizations. You will be expected to audit and manage the implementation of functional processes to mitigate risks such as Policies, Anticorruption, BCM, InfoSec, P104, Records Management, and Contractor controls. Your role will involve establishing processes to validate control effectiveness and driving improvements as necessary. To excel in this role, you should possess strong analytical skills for solving moderately complex problems. You will be required to create new solutions by leveraging existing methods and procedures. Understanding the strategic direction set by senior management is crucial for aligning with team goals. Your primary interactions will be with your direct supervisor or team leads, as well as peers and management levels both within Accenture and clients. You should be able to work independently on new assignments with minimal guidance, making decisions that impact your team and potentially other teams. If in a managerial capacity, you may lead medium-small sized teams or work efforts. Please be aware that this role may involve working in rotational shifts. The ideal candidate for this position should hold a degree in any graduation discipline and possess 10 to 14 years of relevant experience in Risk and Compliance, particularly in Operational Audit and Compliance. By joining Accenture, you will be part of a global professional services company known for its expertise in digital, cloud, and security services. With a workforce of 699,000 individuals serving clients in over 120 countries, Accenture aims to deliver value and shared success through the power of technology and human ingenuity. For more information, visit www.accenture.com.,

Role Overview The Manager will be responsible for driving the organizations information security strategy, governance, and compliance programs. This role ensures that security policies, processes, and controls are in place to protect critical business systems, data, and infrastructure against evolving cyber threats. The incumbent will lead cross-functional teams, coordinate with business units, and collaborate with external partners to strengthen the overall security posture of the organization. Key Responsibilities Strategic Leadership Define and implement the organization’s Information Security strategy aligned with business objectives and regulatory requirements. Establish and maintain security governance, frameworks, and policies (ISO 27001, NIST, CIS, GDPR, etc.). Develop long-term security roadmaps covering risk management, compliance, and incident response. Risk & Compliance Management Conduct enterprise-wide risk assessments and drive mitigation measures. Ensure compliance with internal security standards and external audits (ISO, SOC2, GDPR, CERT-In, etc.). Manage ISMS implementation and periodic reviews. Security Operations Oversee Security Operations Center (SOC), endpoint security, network defense, data protection, and vulnerability management. Lead incident detection, response, and recovery activities. Implement and monitor Data Loss Prevention (DLP), Identity & Access Management (IAM), and Zero Trust models. Technology & Process Enablement Evaluate, implement, and optimize security tools (SIEM, SOAR, EDR/XDR, Cloud Security, IAM). Drive secure adoption of cloud, mobility, and digital platforms. Ensure secure software development lifecycle (DevSecOps). Awareness & Training Build security awareness programs for employees, contractors, and leadership. Conduct phishing simulations and regular cyber drills. Leadership & Stakeholder Management Lead and mentor a team of security professionals. Collaborate with IT, Legal, HR, and Business Leaders to embed security into business processes. Act as the primary contact for security incidents and regulatory interactions.

About The Role Skill required: Risk & Compliance - Operational Audit & Compliance Designation: Risk and Compliance Senior Analyst Qualifications: BCom,Master of Business Administration,Chartered Accountant Years of Experience: 5 to 8 Years Language - Ability: English(Domestic) - Proficient About Accenture Accenture is a global professional services company with leading capabilities in digital, cloud and security.Combining unmatched experience and specialized skills across more than 40 industries, we offer Strategy and Consulting, Technology and Operations services, and Accenture Song all powered by the worlds largest network of Advanced Technology and Intelligent Operations centers. Our 699,000 people deliver on the promise of technology and human ingenuity every day, serving clients in more than 120 countries. We embrace the power of change to create value and shared success for our clients, people, shareholders, partners and communities.Visit us at www.accenture.com What would you do? You will be aligned with our Risk and Compliance vertical and help us perform compliance reviews, publish reports with actions and provide closure guidance as needed. We design & recommend effective controls to mitigate risks and help service delivery team prepare for upcoming client / external audits.You will be working as a part of the Risk & compliance team which is responsible for helping clients and organizations identify risks and create mitigation plans.The Operational Audit & Compliance team focuses on auditing and managing effective implementation and delivery of functional processes within operations to mitigate risks. The role may require for you to have a good understanding of anti-corruption, BCM and infosec policies, records management and contractor controls. The team is responsible for establishing processes to validate the effectiveness and drive improvements wherever required. What are we looking for? Risk and Compliance Experience Knowledge of Finance & Accounting processAuditing experience Roles and Responsibilities: In this role you are required to do analysis and solving of increasingly complex problems Your day to day interactions are with peers within Accenture You are likely to have some interaction with clients and/or Accenture management You will be given minimal instruction on daily work/tasks and a moderate level of instruction on new assignments Decisions that are made by you impact your own work and may impact the work of others In this role you would be an individual contributor and/or oversee a small work effort and/or team Please note that this role may require you to work in rotational shifts Qualification BCom,Master of Business Administration,Chartered Accountant

Jeppesen is seeking an Lead Information Security (InfoSec) Risk Management and Compliance Specialist . This position will be based in Bangalore, India . The InfoSec Risk Management and Compliance Specialist role is a multifaceted role performing a host of risk management and compliance duties in support of the Jeppesen aviation software business. This role will focus on and specialize in risk management for product development risks, operational product risks, operations risks, and organizational risks to include, but not limited to, physical security and cross business function risks. Additionally, this role will work in support of compliance in a variety of national and international frameworks ensuring that Jeppesen meets and exceeds minimum risk and compliance with security controls supporting these frameworks. This role will supplement GRC Compliance Specialists, GRC Risk Management Specialists and ISMS owners. This role will focus on defining, quantitating, and developing materials such as Plan of Action & Milestone(s) (POA&M) to mitigate and resolve risks across Jeppesen. This role must see broader impacts of risks and be capable of relating risks to key stakeholders. This role will work with risks on different levels, from a technical product and vulnerability perspective to a more holistic organizational view. The role will also support compliance efforts by assisting in analyzing security practices and controls for the various frameworks, analyze Jeppesens current state, analyze the deficiencies between current Jeppesen state and implementation of controls, determine corrective measures to address deficiencies, plan appropriate steps to implement corrections, track the implementation of corrective actions, and provide internal self-audits of both processes and operational implementation of the controls. This role works across the organization and is expected to communicate effectively with leadership, operations, and development in ensuring that Jeppesen establishes and maintains a world-class compliance team. Domestic and international travel may be required to support audit and compliance efforts at Jeppesen locations in the US and worldwide. This is not estimated to be more than 15% of the employees time. Position Responsibilities Communicate with groups from C-Level Executives to operations and development Willingness to speak truth on security compliance regardless of audience; the role must be willing to express deficiencies when deficiencies exist Lead and support various risk management teams and boards across Jeppesen such as change control board(s) (CCB), vulnerability management, operational risk boards, business risk boards Will be an authority in identifying mitigations to risk including technical and operational Will prepare steps and efforts to mitigate and burn down risk across all levels of the business Work in GRC tools such as Vanta to track risk Will own and delegate risk ownership where appropriate Understand compliance frameworks and how they interrelate in terms of controls Decompose security practices and controls into actionable requirements Define, write, and formally document policies, standards, procedures, guidelines, and baselines Test policies, standards, procedures, guidelines, and baselines for compliance to security frameworks Determine non-compliance and/or deficiencies between control expectations and current implementation including ability to provide guidance to fully meet intention of the security control Analyze schedule and budgets to determine if tasks are achievable Understands risk management including business risk management, operational risk management, and development risk management Problem solver; a desire to see problems as challenges to be resolved Continue to learn and improve skills through both JEPPESEN provided training and self-training Basic Qualifications (Required Skills/Experience): A bachelors degree in Engineering or higher is REQUIRED. Minimum of 5 years working risk management or similar functions Minimum of 5 years working in security practices and controls Extensive understanding and ability of tracing products and operational risks to business risk Ability to supplement all areas of GRC at Jeppesen as schedule(s) dictate Ability to quickly change from one task to another Experience in at least one of the following security frameworks: NIST, ISO 27001, CMMC 2.0, COBIT, Cyber Essentials, etc. Preferred Qualifications: A bachelors degree or similar level of experience in a technical field A security or compliance certification such as CISSP, CRISC, CISA, CISM, CCP, CCA, ISO 27001 Auditor, etc. Ability to effectively discuss security frameworks in detail in how compliance works to shape a business and/or business unit Ability to take non-specific technical controls and data and relate them to technical implementations Experience working in Change Control Boards (CCBs) or other oversight groups Experience auditing businesses, business units, or teams for compliance to a security framework Experience in regulations such as GDPR, HIPAA, FISMA, etc. Experience in technical roles such as security operations, boundary defense, vulnerability management Typical Education & Experience: Bachelors degree or higher in Computer Science, Information Technology, or a related field, with 12+ years of relevant work experience. Master's degree with 11+ years' experience. Education Bachelor's Degree or Equivalent Required

In depth understanding of IT Act, DPDPA, Cert In regulations, CIS Controls as well as UK DPA and ISO 31000 ISO 27001 Lead Implementer/Auditor and ISO 27701 Lead Implementer/Auditor certifications mail resume email- etalenthire@gmail.com

Role & responsibilities:- We are searching for a seasoned and strategic IT leader to join our team as a Manager/Senior Manager, IT. In this role, you will be responsible for overseeing all aspects of IT Operations, Infra, Network, Helpdesk, and Compliance for our organization of approximately 900+ users. You will be a key member for the leadership team, providing expert guidance and ensuring the smooth operation and continuous improvement of our IT infrastructure. Develop and implement a comprehensive IT strategy aligned with the overall business goals and objectives. Manage and lead a high-performing IT team, including IT Operations, Network and Helpdesk. Oversee all IT operations, ensuring system uptime, performance, and efficiency. Implement and maintain robust IT security protocols set by the InfoSec team to safeguard the organization's data and assets. Manage the IT Helpdesk, ensuring timely and effective resolution of user issues and inquiries. Enforce IT policies and procedures to ensure compliance with industry regulations and best practices. Stay up-to-date on the latest IT trends and technologies, and recommend and implement solutions to improve efficiency and effectiveness. Manage the IT budget and resources effectively. Provide regular reports on IT activities, performance metrics, and key initiatives. Collaborate effectively with other departments to ensure seamless integration of technology into business processes. Qualifications Bachelor's degree in Computer Science, Information Technology, or a related field (Master's degree preferred). Minimum 15 years of experience in a senior role in IT, with experience in managing IT operations, security, Helpdesk, and compliance for large organizations (800+ users). Proven track record of developing and implementing successful IT strategies. Strong understanding of IT infrastructure, cloud computing, network security, and IT service management principles. Experience in managing and leading IT teams. Excellent communication, interpersonal, and problem-solving skills. Ability to prioritize effectively and manage multiple projects simultaneously. Strong analytical and decision-making skills.

Roles and Roles & Responsibilities: IT Infrastructure Management: Oversee IT infrastructure connectivity across India, ensuring seamless integration and high availability for the SAS-based application platform, including network management, cloud services, and hardware/software provisioning to support business operations in key regions like Andhra Pradesh, Telangana, and Karnataka, including new branch roll out with team and its connectivity needs with Cloud as well as central office. Creating DC and DR set up at appropriate time as per regulatory need. IT End-User Support: Manage team of IT support officers for end-user support services, including helpdesk operations, device management, troubleshooting, and training to ensure minimal downtime and enhanced productivity for employees across the organization. Do evaluation of Managed Service assignment vendor, Finalize the Total Cost of Ownership and transfer the same to identified vendor for better TAT on IT support services as per Service Level Agreement. Reduce the resources at Branches and replace them with Managed Service arrangements. Implement Peripheral IT Application Projects: Oversee and execute peripheral IT application projects, including implementation and integration of systems like HRMS, IT Ticketing System, IDAM, CRM Service, AML, ALM, Legal (Provakil) application and other business-supporting applications to enhance operational efficiency. Governance Framework: Establish and monitor an auditable IT governance framework, including assisting the CTO to set up / strengthen Change management process, Change Approval Board and Solution Architecture Board, cost approval process and be consistent with regulatory / RBI master directions. Work closely with Application Leads and CTO to set up processes for the same. Help CTO to Create of auditable Governance framework by creating a PMO office by aligning with application / project managers IT Policies & Compliance: Develop, implement, and update policies (e.g., IT Policy, IT outsourcing, IT change management process, data security, business continuity Management, digital lending, cybersecurity) aligned with RBI guidelines, adapting to regulatory changes and executing required updates. IT budget: Preparing and keeping a track of IT Budget consumption as per approved Budget visa vi Actual Consumption. Aligning with respective IT Application leads to ensure that compliance to Budget is tracked in detail. IT Infra & Peripheral Application Project Program Management: Implement various IT infrastructure related initiatives by having strong Governance around the same with vendor to CTO Ensure existing IT Infra Architecture and Product capabilities are used & enhanced as per available tools in the market and available Budget Be a mentor for IT Infra team and End user Support team and groom them To work closely with CTO to implement best practices, automate and digitize the Technology Stack Carry out various POCs and ensure that automation initiatives are successful before implementing the same. Carry out Peripheral Application implementation like CRM Customer Service, Feedback management, AML, ALM, Low Code Platform of Zoho etc. Collaborate with the CTO and cross-functional teams (e.g., Infosec, Risk, Compliance) to ensure compliance of various initiatives like DPDP, Aadhar masking, IDAM, AD, ZTN, infra security related initiatives Manage CAPEX/OPEX budgets for IT infrastructure & Governance, Peripheral Application projects, ensuring cost control and budget adherence. Stay abreast of industry trends in NBFC regulations, Define KPIs for IT Infra, Cloud related performance, user adoption, and system reliability, using data analytics to measure success and drive continuous improvement Track Cloud cost to ensure it is optimally used to ensure cost does not increase. Governance: Ensure that IT Governance to Sr Management is conducted while implementing IT Infrastructure, Security related initiatives Conduct regular Governance of IT Infra programs with vendors and measure KPI of the vendor Strategy and Planning Plan and implement, Revamp IREP IT Infrastructure in gradual manner to make compliant and robust from security perspective. Manage CAPEX/OPEX budgets for IT Infra related initiatives, ensuring cost control and ROI-driven decisions as per allocated Budget Stay abreast of industry trends in NBFC regulations Define KPIs for application performance, user adoption, and system reliability, using data analytics to measure success and drive continuous improvement. Evaluate vendor agreement and ensure IREP rights are protected by ensuring all clauses along with legal team Team Management and Leadership Lead and mentor a team of 5 (3 IT Infra members, 3 Peripheral Application team & 3 Zoho Team members) & Vendor Implementation team including Foster a collaborative environment, conducting agile ceremonies for Governance adherence Manage vendor relationships and external partners for outsourced development or integrations. Ensure compliance with internal audits, regulatory requirements (e.g., RBI guidelines for NBFCs), and data security & infra security standards. IT Infra Program Management and Solution Design: Oversee the implementation team for IT infra initiatives along with Solution Design as per security framework Development and Delivery Drive the end-to-end lifecycle of IT infra projects, from ideation to launch, including prototyping, POC, testing, and post-launch feedback loops. Monitor system health, troubleshoot issues, and coordinate via support teams for incident resolution and user support. Stakeholder Engagement Engage with Function Heads, C- Suite members, business heads, and external stakeholders to align applications with business needs and gather feedback. Present progress updates, roadmaps, and impact metrics in executive reviews. Collaborate with Data Science and Analytics teams to integrate insights into applications for better decision-making. Domain and Soft Skills: Domain Skills: Expertise in IT infra. Understanding of Lending Business and compliance, Security needs of an NBFC Familiarity with regulatory frameworks (RBI, Basel norms) is important Soft Skills: Strong leadership, communication, and stakeholder management skills, with experience engaging C-suite. Problem-solving aptitude, adaptability to fast-paced environments, and a customer-centric mindset. Ability to drive innovation while ensuring regulatory compliance and risk mitigation. Work Experience: 16+ years in IT, with proven expertise in building and managing IT Infra, End User Support, Cloud Initiatives, Migration to Cloud and Infosec compliance along with Governance set up for mid-size NBFC 8+ years in leadership roles, managing multi-disciplinary teams in NBFC/Banking environments. Hands-on experience in digital transformation, cloud migrations, and launching new IT Infra product from scratch. Managing various communication devices like meeting room Video Conferencing set Up, Branch roll out etc. Track record of delivering projects on time/budget, with quantifiable impacts like cost savings, TAT reductions Educational Qualification(s): Master's degree in computer science, MCA, BSC IT, B. Com with CDAC/ MBA IT, MBA IT / Systems with PMP, CISA, Agile scrum will be added advantage. Certifications in Banking/Financial Markets & Digital Transformation preferred along with Agile Scrum, PMP, DevOps framework and Cloud certifications will be added advantage. Preferred Certifications: ITIL V3 AWS, Azure related certification

Job summary: As Information Security Manager at one.com / group.one, you will serve as a critical link between global security functions and local business units, ensuring seamless adoption of group-provided security services while driving stakeholder alignment. This role requires an outgoing professional with exceptional coordination skills, a deep understanding of Indian business culture, and the ability to support group-wide security objectives. You will work closely with internal teams, external auditors, and leadership to maintain arobust internal control frameworkthat meets the regulatory requirements aligned with industrys best practices. Responsibilities: Stakeholder Management: Develop and maintain strong relationships with local business leaders, IT teams, and global stakeholders to align group security strategies with local business objectives. Security Governance: Support the implementation of group-provided security policies, standards, and frameworks, ensuring compliance with local regulations (e.g., DPDP Act) and global standards (e.g., ISO 27001, GDPR). Cultural Alignment: Leverage deep knowledge of Indian business culture to effectively communicate and integrate group security initiatives within local teams, fostering a collaborative group-wide security culture. Coordination: Facilitate coordination between group security teams and local business units, ensuring effective rollout of group-provided risk management, training & awareness, IT compliance, BCM, and incident management processes. Local Advocacy: Represent local business needs to group security teams, ensuring group-provided services are tailored to India-specific requirements. Incident Support: Support local incident response activities by adhering to group-aligned security incident management processes, ensuring effective communication and resolution. Reporting: Provide clear, concise updates to senior leadership on the adoption of group security initiatives, local compliance, incident status, and stakeholder feedback, bridging local and global perspectives. Skills requirements: Cultural Competence: Strong understanding of Indian business practices, communication styles, and workplace dynamics, with proven ability to navigate multicultural environments. Stakeholder Engagement: Outgoing personality with a demonstrated ability to influence stakeholders and foster collaboration across diverse teams. Security Knowledge: Familiarity with Application security, security governance, compliance frameworks, and group-aligned incident management processes, with awareness of local and global regulations. Coordination Skills: Proven ability to manage cross-functional coordination, align diverse teams, and execute initiatives in a fast-paced environment. Communication: Excellent verbal and written communication skills in English. Education and experience requirements: Bachelors degree in information security / computer science / information technology. 7-10 years in information security or related roles, with at least 3 years in a stakeholder-facing or coordination role. Experience in India with multinational organizations is highly desirable. Certifications (e.g., CISSP, CISM, CRISC) are preferred.

You will be working as a Senior Executive at Birlasoft, a global leader in Cloud, AI, and Digital technologies. Your responsibilities will include providing advisory services, reviewing and negotiating contracts, leading contract negotiations, performing due diligence, drafting SOPs and contract templates, training team members, coaching on Privacy and Data Protection Laws, managing a team, advising stakeholders, and participating in Dispute Resolution and Bankruptcy matters. To qualify for this role, you should have an LLB Hons. / LLM from a reputed university and possess 3-4 years of experience as an in-house counsel in the IT/manufacturing industry. Preferred candidates will have a solid understanding of procurement and customer contracts, including Master Services Agreements, Software Licensing Agreements, Service Level Agreements, and more. Additionally, experience in Privacy and Data Protection Laws across various jurisdictions such as Europe, US, India, and APAC region is highly desirable.,

1. Job Title: Security Manager (Cybersecurity & Infrastructure Security) ( CPass Audit Spoc for BFSI customers ) Location: [Nagpur] Department: IT Security & Compliance Reports To: Sr. Director IT Infrastructure Experience Required: 5 - 15 Role Overview: The Security & Compliance Manager will lead the organizations IT security and compliance initiatives, acting as the Single Point of Contact (SPOC) for all third-party audits, especially from BFSI clients. This role ensures adherence to regulatory, data protection, and industry standards. Key Responsibilities: 1. Act as the Single Point of Contact (SPOC) for all BFSI customer audits, third- party assessments, and compliance reviews. 2. Maintain and enforce security policies, risk registers, audit trails, and compliance documentation. 3. Ensure ongoing compliance with ISO 27001, SOC 2, RBI, GDPR, TRAI, and other applicable BFSI regulations. 4. Conduct internal audits, gap analyses, and drive remediation plans to closure. 5. Coordinate with legal, IT, DevOps, and business teams to ensure audit readiness and evidence collection. 6. Lead incident response planning, security drills, and business continuity testing. 7. Manage vendor risk assessments, NDAs, and third-party compliance documentation. 8. Perform regular risk assessments and maintain an up-to-date risk register. 9. Conduct vulnerability scans across infrastructure, APIs, applications, and endpoints. 10. Coordinate with external vendors for annual penetration testing and ensure timely remediation. 11. Track, prioritize, and patch vulnerabilities based on CVSS scores and business impact. 12. Develop and maintain a compliance calendar to track all audit and certification timelines. 13. Own and manage the Information Security Management System (ISMS) lifecycle. 14. Prepare and present audit reports, dashboards, and risk summaries to senior leadership. 15. Ensure data privacy and protection controls are implemented across all CPaaS services. 16. Conduct security awareness training and phishing simulations for employees. 17. Review and approve security controls for new projects, vendors, and cloud deployments. 18. Maintain incident logs, RCA reports, and ensure timely closure of security incidents. 19. Collaborate with product and engineering teams to embed security-by- design principles. 20. Stay updated with regulatory changes in the BFSI sector and translate them into actionable controls. 21. Lead external certification audits (e.g., ISO, SOC 2) and manage evidence collection and walkthroughs. Required Skills & Qualifications: • Bachelor’s degree in information security, IT, or related field. • 6+ years of experience in IT security, audit, and compliance. • Strong knowledge of BFSI regulatory frameworks and data privacy laws. • Experience with GRC tools, audit frameworks, and documentation. • Certifications: CISA, CISM, ISO 27001 Lead Auditor, or equivalent preferred. Excellent communication and stakeholder management skills.

You will be responsible for maintaining the global backup environment including NAS, SAN, VMware, local OS, and SQL backups. Additionally, you will assist in building and managing the disaster recovery environment. Your role will involve providing mentoring and support for the service desk team. Excellent communication skills are crucial as you will be working in a global enterprise environment with diverse team members. Your work experience should include a good knowledge of Microsoft Active Directory, MS Windows 2016/2019, VMWare, Linux (Redhat, Ubuntu), and experience in patch management, backup, archival, and restoration. You will collaborate with the Cloud development group to support their current and future needs. Defining and implementing the compliance roadmap based on organizational requirements and ensuring adherence to InfoSec and regulatory standards are key aspects of this role. You will be involved in Infrastructure Security Vulnerability Management Operations, incident handling, evidence acquisition, digital forensics, endpoint and network security, and Cybersecurity incident management. Experience with vulnerability management tools such as Qualys, Rapid7, and Tenable is desirable. A strong understanding of industry security best practices and standards is important. Knowledge of Azure sizing calculator, hands-on experience in Azure Cloud projects, Cloud Migration/Transformation, Active Directory migration, and Hybrid Cloud setup are also required skills. The ideal candidate should have a Bachelor's Degree in Computer Science, Information Technology Engineering, or a related field, with a minimum of 7-8 years of hands-on experience. Proficiency in backup environments, VMware administration, Windows and Linux technologies, and Azure Cloud infrastructure is necessary for this role.,

The key responsibilities of the IT Auditor role include conducting internal audits such as SOC 1 & SOC 2, ITGC, ITAC, and compliance assessments with ISO 27001:2022 standards. You will be responsible for testing and evaluating internal controls, identifying workflow gaps, and recommending appropriate remediation strategies. Additionally, auditing under frameworks such as ISMS, SOX, and Trust Services Criteria will be part of your role. Evaluating various IT processes including Identity & Access Management, Change Management, Backup/Recovery, QAR, Billing, and Procurement is also a key responsibility. Working with enterprise platforms like Okta, Workday, Salesforce, NetSuite, and others will be essential. Collaboration with QA, Ops, and Management to align controls with business risks is crucial. Drafting audit reports and assisting in statutory audits and regulatory filings will also be part of your duties. For this role, the mandatory qualifications include completion of DISA/CISA (Certified Information Systems Auditor) certification and a Bachelor's Degree in Commerce, Accounting, or IT. Preferred qualifications include FAFD (Forensic Accounting & Fraud Detection), ISO 27001 Lead Auditor certification, and a Master of Business Administration (MBA). The core skill areas required for this position are Audit & Controls (ITGC, ITAC, SOX, SOC 1/2, Internal Audits, ISMS), Compliance & Risk (ISO 27001:2022, Regulatory Reporting, Forensics), Process Understanding (IAM, Privileged Access, Data Security, QAR), Tools (Okta, Salesforce, Workday, NetSuite, Zendesk, JIRA, GitHub), Documentation & Reporting (SOPs, Risk Matrices, Control Narratives), and Collaboration (QA, DevOps, InfoSec, Client Management). The ideal candidate should have 1-3 years of relevant experience in IT auditing. To apply for this position, please email your CV to aparna.pandey@sbahl.in and hr@sbahl.com with the subject line "Application IT Auditor".,

You are a seasoned Application Development Lead with 10-12 years of experience, responsible for managing in-house .NET Core and Oracle-based development. Your role involves leading agile teams, overseeing the software development lifecycle, integrating APIs, managing databases, and delivering scalable, customer-focused solutions. You will lead end-to-end development using .NET Core and Oracle, following Agile/Scrum and Waterfall methodologies. You will translate business requirements into system designs and technical specifications, oversee data architecture including Data Lakes/Data Marts, and collaborate with stakeholders and vendors for successful API integrations and solution delivery. Ensuring code quality, integration, and deployment across systems, facilitating requirement documentation, testing, and release management, and guiding and mentoring a technical team to meet quality and timeline expectations are also key responsibilities. You should have a Bachelor's degree in Information Technology or a related field, along with 10-12 years of relevant experience with team leadership. Proficiency in C#.NET Core, Oracle programming, and Microservices architecture is required. A strong understanding of Infosec, RDBMS (Oracle, DB2, SQL Server), and enterprise integrations, as well as experience in database design, application architecture, and agile project management, are essential. Strong leadership, communication, and stakeholder management skills, a collaborative mindset with a focus on user-centric software delivery, and a hands-on approach to problem-solving and process improvement are key competencies for this role.,

As an Associate Audit and Infosec at Setu, you will play a crucial role in ensuring that the technical systems are secure and that the company maintains the highest standards in audit and preparedness. Setu aims to bridge the gap between regulated financial institutions and technology companies, allowing third-party developers to easily access the infrastructure to innovate new financial products. With asset partners such as India's top banks, maintaining security and compliance is paramount to uphold Setu's reputation as a reliable player in the industry. Reporting to the Audit & Compliance Lead, your responsibilities will include implementing and enhancing information security, risk & compliance management frameworks. This will involve ensuring security at both the company and product levels, collaborating with various teams to enhance security compliance, updating security policies to align with industry practices, and conducting internal and external audits. You will also work towards achieving and maintaining certifications like ISO 27001:2013, SOC2 Type 2, and others relevant to the business. The ideal candidate for this role should have 2-4 years of experience in audit and compliance within the fintech or regulated financial sector, with knowledge of frameworks such as ISO 27001:2013 and PCI DSS. You should be detail-oriented, patient in dealing with stakeholders, process-driven, and adept at creating accountability in processes. Proficiency in tools used in the domain and a focus on intelligent automation are also essential qualities. At Setu, you will have the opportunity to work closely with the founding team behind public infrastructure projects like UPI, GST, and Aadhaar. The company prioritizes employee growth by offering access to a fully stocked library, conference tickets, learning sessions with internal and external experts, and learning and development allowances. Additionally, Setu provides comprehensive health insurance, mental health support, and a vibrant office environment to foster a diverse and inclusive team culture. If you are passionate about making a direct impact on financial inclusion and improving lives through infrastructure development, and if you value craftsmanship and innovation in your work, Setu offers a challenging yet rewarding environment to grow and thrive.,

- Information Security Manager shall be primarily responsible to : - Run and manage the BAU security infosec operations - Create and maintain ISMS Policy and Process documents - Ensure Infosec compliance with RBI and other regulatory agencies - Participate in IT Infosec Audits and ensure closure of observations within given timeliness - Conduct regular VAPT (Vulnerability Assessments) and track closure of open observations - Identifying and evaluating new IT security technologies and services and implementing it - Ensure cyber security related polices and technologies are in place - Conducting regular Inforsec Awareness within users in the organization - The person needs to work closely with the CISO and other stakeholders Risk, IT and Audit teams. - The position will based at CreditAccess Grameen HQ in Bangalore, and may require short term travel on need basis to other CAGL offices. Key Accountability: - Ensuring adequate security controls are in place & working effectively within the organization for information & cyber security - Ensuring effectiveness of all IT controls to prevent any unauthorized access or activities at a system administration level - Identify potential security weaknesses through vulnerability assessments and track them to closure within the timeliness -Tracking and reporting key risk indicators defined for IT processes - Create and maintain the documentation for information system audits in accordance with regulatory and compliance requirements - Create Review ISMS policy and process - Implement Strategic IT Infosec projects to strengthen the overall IT Security posture at CAGL. Mandatory Key Skills Information Security Manager,Infosec Audit,VAPT,cyber security,IT security management,system administration,Information Security*

Information Security Manager shall be primarily responsible to : - Run and manage the BAU security infosec operations - Create and maintain ISMS Policy and Process documents - Ensure Infosec compliance with RBI and other regulatory agencies - Participate in IT Infosec Audits and ensure closure of observations within given timeliness - Conduct regular VAPT (Vulnerability Assessments) and track closure of open observations - Identifying and evaluating new IT security technologies and services and implementing it - Ensure cyber security related polices and technologies are in place - Conducting regular Inforsec Awareness within users in the organization The person needs to work closely with the CISO and other stakeholders Risk, IT and Audit teams. The position will based at CreditAccess Grameen HQ in Bangalore, and may require short term travel on need basis to other CAGL offices. Key Accountability: Ensuring adequate security controls are in place & working effectively within the organization for information & cyber security Ensuring effectiveness of all IT controls to prevent any unauthorized access or activities at a system administration level Identify potential security weaknesses through vulnerability assessments and track them to closure within the timeliness Tracking and reporting key risk indicators defined for IT processes Create and maintain the documentation for information system audits in accordance with regulatory and compliance requirements Create Review ISMS policy and process Implement Strategic IT Infosec projects to strengthen the overall IT Security posture at CAGL Mandatory Key Skills BAU,ISMS Policy,IT Infosec Audits,VAPT,cyber security,CISO,Risk,IT Audit,Information Security.

Key Experience and Responsibilities: Conduct comprehensive assessments of technology risks inherent in business processes and systems. Analyse and evaluate the impact of emerging technologies on risk profiles. Identify potential vulnerabilities and recommend effective risk mitigation strategies. Develop and implement technology risk management strategies aligned with organizational goals. Work closely with senior leadership to define risk appetite and tolerance levels. Provide insights into emerging trends and regulatory changes affecting technology risk. Stay abreast of relevant laws and regulations related to technology risk. Ensure that the organization and its clients are compliant with industry standards and regulatory requirements. Collaborate with cross-functional teams, including IT, cybersecurity, and audit teams, to integrate technology risk management into overall risk frameworks. Work closely with technology and business leaders to align risk management efforts with business objectives. Strategic Planning: Lead the development and execution of the overall technology risk strategy for the organization. Work closely with executive leadership to align technology risk management with long-term business objectives. Thought Leadership: Establish yourself as a thought leader in the technology risk management field. Contribute to industry publications, speak at conferences, and actively participate in professional organizations to enhance the organization's reputation. Innovation and Emerging Technologies: Drive innovation in technology risk management, keeping the organization at the forefront of industry best practices. Provide guidance on the impact of emerging technologies, such as AI, blockchain, and IoT, on the organization's risk landscape. Client Advisory: Serve as a trusted advisor to clients on technology risk-related matters. Collaborate with clients to understand their business objectives and tailor risk management solutions accordingly. Deliver clear and concise recommendations to enhance technology risk resilience. Engage with C-level executives and board members to provide insights into technology risk and its impact on business strategy. Communicate complex risk concepts in a clear and compelling manner to gain support for risk management initiatives. Team Leadership: Lead a team of technology risk professionals, providing guidance and mentorship. Foster a collaborative and innovative team culture. Oversee the development and execution of training programs for team members. Qualifications: Bachelors degree in B.Tech preferably; advanced degree (MBA, MS, etc.) preferred. Extensive experience (3-12 Years) in technology risk management, with a focus on assessing and mitigating risks associated with emerging technologies. Professional certifications such as CISA, CRISC, CISSP, or equivalent are highly desirable. Proven success in influencing and gaining support from executive stakeholders. Strong leadership and people management skills with a proven ability to lead and motivate a team. Excellent communication and interpersonal skills, with the ability to convey complex technical concepts to non-technical stakeholders. In-depth knowledge of industry standards, regulatory requirements, and best practices related to technology risk. Strategic thinking and the ability to develop and implement effective risk management strategies.