173 Isms Jobs

Skills Skill Business Analysis Project Management SDLC CRM Vendor Management Business Development Business Process Business Strategy MIS Testing Education Qualification No data available CERTIFICATION No data available : Oversee the daily operations of the team Responsible for coaching and supporting Leads and Assistant Managers and ensures that the team meets or exceeds their performance. responsible for revenue generation, client engagement; maintain client quality and ensure service levels are met on a consistent basis. Monitor key performance indicators (KPIs) and productivity metrics to ensure departmental goals are met or exceeded. Showcase the achieved productivity and quality scores to the client in the WBR, MBR & QBR as necessary. Create business review decks on different parameters including but not limited to showcasing the GCR, NCR, Ageing details to showcase the clinic/ Practice performance. Work with support departments to ensure staffing strategies are effectively executed. Hold team meetings on a regular basis with direct reports. Communicate all process and client updates to direct reports within specific timelines and keep record for such updates. Responsible for day-to-day functional supervision of each team, including productivity of the team, quality %, track absenteeism of the team and encourage team managers to complete performance appraisal of work group(s) in accordance with the organization’s policies and applicable legal requirements. Ensure that the team’s adherence to QMS and ISMS standards. Job specifications: Minimum 10+ years’ experience in UShealthcare Strong knowledge in concepts ofAR Good People ManagementSkills Good Business Analytical & reporting skills Good InterpersonalSkills Good LeadershipSkills Should have good client managementSkills. Graduation is Mandatory

We have a team of security compliance leaders overseeing solutions for this complex environment, collaborating with security architects and Cloud DevOps teams internally and around IBM. The security compliance leader’s role is to determine the secure operation of the all computer systems, servers, and network connections in accordance with our policies, procedures, and compliance requirements. A security compliance leader in our team will participate in some or all of the following: Providing subject matter expertise in the creation, implementation, and maintenance of appropriate enterprise programs, policies, and procedures to be compliant with all applicable regulations including ISO, SOC, HIPAA, PCI, FedRAMP/FISMA Having the ability to utilize working knowledge of information security best practices such asNIST 800 series, ISO 27000 series, GDPR, etc Interpreting standards, requirements, and their application to the enterprise Cloud environment in the most reasonable and cost-effective manner Developing, implementing, maintaining, and overseeing enforcement of security policies Collaborating with security architects and technical security teams to define and implement security processes and procedures based on industry-standard best practices and compliance requirements. Defining the requirements and validating the procedures and audit testing methodology Conducting regularly scheduled audits on systems and hosting third-party audits as required in order to maintain certifications and compliance certificates. Working with the DevOps teams to prepare ongoing client reporting, information for prospective clients, and marketing materials Providing training to teams as needed Assisting team members and internal clients in addressing highly complex security issues applicable to enterprise environment Required education Bachelor's Degree Preferred education Bachelor's Degree Required technical and professional expertise Minimum of 12 years of relevant compliance experience and cybersecurity knowledge Compliance leaders do not require dev experience, but it is an advantage. 10+ years of security compliance audit experience is a must Ability to utilize working knowledge of information security best practices such asNIST 800 series, ISO 27000 series, GDPR, etc Experience with compliance programs such as FFIEC or FedRAMP/ FISMA, HIPAA, GDPR, SOC 2, or PCI Experience in risk assessment processes, policy development, proposals, work statements, product evaluations, and delivery of technology Ability to understand enterprise business computing operations/requirements, and in particular, Cloud Ability to stand firm on issues yet be flexible and creative when working with customers to find effective solutions Ability to understand and interpret laws and regulatory requirements related to information protection, and develop and implement appropriate processes to achieve and maintain compliance and reduce risk

Job Title - Information Security Management System (ISMS) domains + 9/10 + CF Management Level: 09 or 10 Location: Bangalore Must have skills: Information Security Management System (ISMS) domains Good to have skills: Software/Application Development, Cloud /infrastructure concepts Must have skills: Excellent English communication skills both in speaking and writing Knowledge of Information Security concepts and Information Security Management System (ISMS) domains Information security risk analysis Able to confidently present and assert findings with global counterparts Able to handle and balance time when working on multiple tasks Good attention to details Experienced in auditing/assessment Willing to continuously learn Microsoft Office (Excel, Word, Outlook, MS Teams) Good to have skills: Basic knowledge or familiarity with Software/Application Development, Cloud /infrastructure concepts Knowledge on various data privacy regulations such as GDPR, PCI and HIPAA Job Summary : A Client Data Protection (CDP) assessment is a review of a client accounts CDP plan and implemented controls to ensure that the clients sensitive business and personnel data is safeguarded. The assessment is intended to address data protection issues related to applications, systems, and business processes. The CDP Assessor will: Gather relevant information via interviews, meetings with account teams, review of supporting artifacts, about the client account and their processes Identify by conducting Risk Analysis all areas or processes that are vulnerable and where client sensitive data may be compromised Identify, rate and document risks found in the assessment Recommend security measures to remediate assessment findings Follow-up with the account team to review progress for closing findings Learn and apply new data privacy regulations, risk on emerging technologies etc. Roles & Responsibilities: The CDP Assessor will: Gather relevant information via interviews, meetings with account teams, review of supporting artifacts, about the client account and their processes Identify by conducting Risk Analysis all areas or processes that are vulnerable and where client sensitive data may be compromised Identify, rate and document risks found in the assessment Recommend security measures to remediate assessment findings Follow-up with the account team to review progress for closing findings Learn and apply new data privacy regulations, risk on emerging technologies etc. Complete and submit timely required assessment deliverables Professional & Technical Skills: Holder of any of the following Certifications is preferred but not required: Certified Information Systems Security Professional (CISSP) Certified Information Systems Auditor (CISA) Information Security Management System (ISMS) 27001 Lead Auditor Additional Information: Work involves virtually meeting with teams from various Accenture locations around the world so there is a need from time to time to find an overlapping time with those teams that may be outside of the home location time-zone. About Our Company | AccentureQualification Experience: Minimum 2 year(s) of experience on Information Security-related work is required Educational Qualification: Bachelors degree in any Information Technology or Information Security course

ANZEN Technologies Private Limited. stands as an unparalleled powerhouse, empowering organizations across industries with our visionary services, cutting-edge solutions, and ground-breaking services in the realm of Cyber Security, IT Governance, Risk Management, and Compliance. As your trusted partner, we offer a comprehensive suite of End-to-End security services and consultancy, tailored to safeguard critical infrastructure installations, elevate the standards of BFSI, eCommerce, IT/ITES, Pharmaceuticals, and an array of other sectors. Qualifications: 1. B.E / MSc in Information Technology, Computer Science or related field. 2. Basics understanding of fundamental concepts in GRC, Cybersecurity, Networking and Information Security. 3. Good communication & documentation skills. Candidate should possess basic knowledge of following standards: 1. ISO 27001:2022 (ISMS) 2. DPDP Act. 2023 Certification: (Optional): 1. ISO 27001 LA or LI 2. Any course/training related to cybersecurity Internship Experience of 3-6 months is must. Office Address : ANZEN Technologies Private Limited Akshar Business Park, H - 3025, 3rd Floor, Plot No. 3, Sector-25, Vashi, Navi Mumbai 400703 https://anzentech.com Immediate Joiner may apply and come for Interview

Position: Deputy Manager/Manager- IT Responsibilities and Duties: Cybersecurity and Compliance: • Implement and enforce security measures to protect organizational data and systems. • Ensure compliance with applicable data protection laws, standards, and regulations. • Conduct regular audits of IT systems and processes to identify vulnerabilities. Team Leadership and Development: • Lead, mentor, and evaluate the IT team to ensure efficient operation and professional growth. • Coordinate with internal departments to understand IT needs and deliver timely solutions. • Drive a culture of innovation and continuous improvement within the IT team. Vendor and Stakeholder Management: • Manage relationships with IT service providers and vendors. • Negotiate contracts and service level agreements (SLAs) to ensure value for money. • Liaise with stakeholders to communicate IT strategies, challenges, and achievements. Project Management: • Oversee the planning, execution, and delivery of IT projects. • Monitor project timelines, budgets, and resources to ensure successful completion. • Document project progress and provide regular updates to leadership. Requirements and skills: Technical Expertise & Hands on experience in: • MS Exchange, O365, Azure • Active Directory, Domain controllers, DNS, DHCP, Group Policy • ADFS • Backup Solutions (Veeam/Commvault) • BCP & DR • ISMS best practices and ISO 27001 • Qualification : B Tech/BE in CS/Electrical or Electronics • Experience : Experience in IT infra support & IT Ops with 9-10 years with at least 3 years in a managerial role. • Location : Bangalore

At Arctic Wolf, were redefining the cybersecurity landscape. With our employee Pack members, spread out globally, committed to setting new industry standards. Our accomplishments speak for themselves, from our recognition in the Forbes Cloud 100 , CNBC Disruptor 50 , Fortune Future 50 , and Fortune Cyber 60 to winning the 2024 CRN Products of the Year award. We re proud to be named a Leader in the IDC MarketScape for Worldwide Managed Detection and Response Services and earning a Customers Choice distinction from Gartner Peer Insights . Our Aurora Platform also received CRN s Products of the Year award in the inaugural Security Operations Platform category. Join a company that s not only leading, but also shaping, the future of security operations. Our mission is simple: End Cyber Risk. We re looking for a Developer to be part of making this happen. Overview A Manager - R&D plans and directs all aspects of development activities within their teams. This means that they ensure all engineering projects, initiatives, and processes are in conformance with the organizations established policies and objectives. They report into a Senior Manager or a Director of R&D or in some cases the VP of R&D. They work closely with R&D Leadership, Product Management and Security Services (S2) to ensure their teams are building what our customers and users need in a timely fashion. A Manager can have multiple team and technical leads reporting to them. Scope of Role Generates and manages day to day work for team(s). Works with Product Team to define and deliver on the 3 month roadmap. A Manager of Infrastructure team members in India will bring a broad skillset of Infrastructure and DevOps skills, as they will be the supporting manager delivering a variety of independent projects across SRE, Observability, Compute, DevOps, CI and CD. You will be building a system where Follow the sun operations are possible, and Infrastructure can operate across timezones. Responsibilities Manage team(s) that will deliver high quality, innovative software solutions, in collaboration with stakeholders such as architects, developers, product managers, CSEs and Global Technical Operations team members. Support the team by providing direction, clarity and removing obstacles. Instil Foundations of R&D in their teams by living them on a daily basis. Execute the Product roadmap Ensure teams are highly motivated, performing well, and delivering work on time. Remove any blockers preventing teams from getting their work done. Make sure each team is clear on the objectives and goals they are striving to achieve. Work with team members to deliver the key features. Work with Architects to define and execute on the companys technical roadmap. Implement the R&D Department and Team Responsibilities . Oversee the full software development life cycle. Ensure the team is following ISMS regulations Secure Coding Practices Acceptable Use Develop careers of team members Regular One on Ones Career and personal development coaching Execute administrative responsibilities Manage employee compensation and vacation time Manage and approve conference and training budgets Recruitment Lead recruitment efforts for their team(s) for both full-time and co-op employees. Mentor each team member; help them grow their technical and leadership skills. Establish career development plans and achievable goals for your reports and support their ongoing growth. Drive continuous development process improvements. Build collaborative relationships with other teams and stakeholders within the organization. Additional Technologies Experience with these technologies and concepts will help the successful candidate best integrate with the team, and provide an additional level of insight when prioritizing and communicating: Prometheus, AlertManager, Cloudwatch, Grafana AWS CloudWatch (metrics, logs, alarms) Git, GitHub, Jenkins, Buildkite IAC tooling like CloudFormation or Terraform Kubernetes / EKS Understanding of SRE based patterns like error budgets and SLOs Security Requirements Conducts duties and responsibilities in accordance with AW s Information Security policies, standards, processes, and controls to protect the confidentiality, integrity, and availability of AW business information assets. Must pass a criminal background check and an employment verification as a condition of employment. Why Arctic Wolf? At Arctic Wolf, we foster a collaborative and inclusive work environment that thrives on diversity of thought, background, and culture. This is reflected in our multiple awards, including Top Workplace USA (2021-2024), Best Places to Work - USA (2021-2024), Great Place to Work - Canada (2021-2024), Great Place to Work - UK (2024), and Kununu Top Company - Germany (2024). Our commitment to bold growth and shaping the future of security operations is matched by our dedication to customer satisfaction, with over 7,000 customers worldwide and more than 2,000 channel partners globally. As we continue to expand globally and enhance our technology, Arctic Wolf remains the most trusted name in the industry. Our Values Arctic Wolf recognizes that success comes from delighting our customers, so we work together to ensure that happens every day. We believe in diversity and inclusion, and truly value the unique qualities and unique perspectives all employees bring to the organization. And we appreciate that by protecting people s and organizations sensitive data and seeking to end cyber risk we get to work in an industry that is fundamental to the greater good. We celebrate unique perspectives by creating a platform for all voices to be heard through our Pack Unity program. We encourage all employees to join or create a new alliance. See more about our Pack Unity here . We also believe and practice corporate responsibility, and have recently joined the Pledge 1% Movement, ensuring that we continue to give back to our community. We know that through our mission to End Cyber Risk we will continue to engage and give back to our communities. All wolves receive compelling compensation and benefits packages, including: Equity for all employees Flexible annual leave, paid holidays and volunteer days Training and career development programs Comprehensive private benefits plan including medical insurance for you and your family, life insurance (3x compensation), and personal accident insurance. Fertility support and paid parental leave Arctic Wolf is an Equal Opportunity Employer and considers applicants for employment without regard to race, colour, religion, sex, orientation, national origin, age, disability, genetics, or any other basis forbidden under federal, provincial, or local law. Arctic Wolf is committed to fostering a welcoming, accessible, respectful, and inclusive environment ensuring equal access and participation for people with disabilities. As such, we strive to make our entire employee experience as accessible as possible and provide accommodations as required for candidates and employees with disabilities and/or other specific needs where possible. Please let us know if you require any accommodations by emailing recruiting@arcticwolf.com.

Job_Description":" About Us Tsaaro Consultings prime focus is on Data Privacy and Security. Our team of specialist Data Privacy Consultants, Information Security Consultants, and penetration testers help and advise our Clients to make running a secure business easier with high efficiency. Everything We do is tailored to the individual, and organizational requirements, aligned with their budget and resource challenges. We take a pragmatic, risk-based approach to provide our clients with real-world, workable advice, guidance, and support That helps them to deal with a wide range of security and privacy-related challenges. At Tsaaro, we adopt a pragmatic, risk-based strategy to deliver practical and effective advice. By providing real-world guidance, support, and actionable recommendations, we confidently equip our clients to address a broad spectrum of security and privacy challenges. Looking to take your career in a new, high-impact direction? Tsaaro Consulting is seeking for a highly skilled and experienced GRC Analyst , this role is for those eager to transition into data privacy and information security, with hands-on experience and mentorship from industry experts. Responsibilities: Assist in the development, implementation, and continuous improvement of the Information Security Management System (ISMS) in accordance with ISO 27001 standards. Monitor and ensure compliance with ISO 27001, making sure controls are in place and effectively operating across the organization. Conduct regular assessments to ensure adherence to regulatory, contractual, and internal security requirements. Coordinate internal audits and provide support for external ISO 27001 audits. Prepare documentation, assist with gathering evidence, and address findings to ensure timely closure of audit actions. Maintain and update ISMS documentation, policies, and procedures. Ensure that security controls, risk assessments, and audit records are accurately documented and up to date. Support the delivery of security awareness and training programs related to ISO 27001 standards. Foster a culture of security awareness across the organization. Support incident response processes and prepare crisis management plans, ensuring incidents are logged, analyzed, and resolved. Participate in root cause analysis and implement corrective actions to prevent recurrence. Collaborate with cross-functional teams to identify, assess, and prioritize security risks. Assist in developing risk mitigation strategies and track the progress of risk treatment plans. Proactively identify opportunities to enhance the ISMS framework, suggesting improvements to policies, processes, and tools to ensure they are efficient and effective. Requirements Minimum of 2 years in Governance, Risk, and Compliance (GRC) roles, with a focus on ISMS and ISO 27001. Bachelors degree in Information Security, Computer Science, Business Administration, or a related field (preferred). Excellent analytical and problem-solving skills. Strong understanding of regulatory requirements and industry standards related to information security. Proficiency in risk assessment methodologies and risk management practices. Strong communication and interpersonal skills. Ability to work effectively both independently and as part of a team. Experience with security incident response and crisis management. Familiarity with data protection regulations and privacy laws. Certification in ISO 27001 Lead Auditor or Lead Implementer (preferred). Experience in developing and delivering security awareness training programs. Benefits Competitive salary and performance-based bonuses. Professional development opportunities, including training and certifications. Flexible working hours. Collaborative and inclusive work environment. Opportunity to work with a passionate team dedicated to making a difference in data privacy and security. ","

1.Governance and Policy Development oDevelop and implement governance frameworks, policies, and procedures to ensure alignment with industry standards and organizational objectives. oRegularly review and update GRC policies based on regulatory changes, client requirements, and industry best practices. oCreate and maintain documentation for governance, risk, and compliance initiatives, ensuring accessibility and adherence across the organization. 2.Client Due Diligence and Risk Assessment oManage and respond to client due diligence and security assessments, providing accurate, timely information about the organization's risk management, security posture, and compliance practices. oCoordinate with relevant teams to compile necessary documentation and evidence to address client inquiries regarding data protection, privacy practices, and information security controls. oConduct risk assessments based on client requirements, identifying and addressing potential gaps to ensure continued alignment with client security expectations. 3.Vendor Risk Assessment and Management oConduct thorough vendor risk assessments to evaluate the security posture and compliance of third-party vendors. oCollaborate with the procurement and legal teams to review vendor agreements, ensuring they meet the organizations GRC and security standards. oMonitor and maintain the vendor risk register, tracking vendor compliance, and conducting periodic reassessments for critical vendors. 4.Risk Assessment and Mitigation oLead and conduct internal risk assessments, identifying and analysing potential risks to the organizations assets and operations. oDevelop and implement risk treatment plans in collaboration with stakeholders, tracking and reporting on risk mitigation efforts. oMaintain the organizational risk register and work with cross-functional teams to ensure continuous monitoring and timely response to emerging risks. 5.Compliance Management and Regulatory Oversight oEnsure compliance with relevant standards and regulations, such as ISO 27001 (ISMS), ISO 27701 (PIMS), ISO 27017, ISO 27018, ISO 42001 (AI oManagement Framework), CCPA, NIST, GDPR, PCI-DSS, CIS Benchmarks. oSupport internal and external compliance audits, control testing, and regulatory assessments, and coordinate with departments to gather required documentation. oStay updated on regulatory requirements and communicate changes in compliance obligations to relevant stakeholders. 6.Control Implementation and Monitoring oDesign, implement, and assess controls to ensure they align with GRC policies and regulatory requirements. oConduct regular control testing and monitor control effectiveness, identifying and remediating any deficiencies. oCollaborate with teams to improve and strengthen internal controls across the organization. 7.Incident Response and Analysis oSupport the incident response process by providing guidance during incidents and conducting post-incident reviews to ensure alignment with GRC frameworks. oRegularly review and update incident response plans and playbooks, incorporating lessons learned from security incidents to enhance future response efforts. 8.Training, Awareness, and Stakeholder Engagement oDevelop and deliver training sessions on GRC-related topics, increasing organizational awareness of risk, compliance, and security responsibilities. oCollaborate with Legal, IT, HR, and other departments to ensure integrated and effective GRC practices. oCommunicate risk assessment results, policy updates, and compliance requirements to stakeholders and senior management. 9.Documentation, Reporting, and Metrics oMaintain comprehensive documentation for all GRC activities, including client and vendor assessments, internal audits, risk assessments, and compliance reviews. oCreate and present reports, metrics, and dashboards to communicate GRC status, control effectiveness, and compliance progress to senior management. oDocument and track risk assessment outcomes, client inquiries, and remediation actions to ensure transparent and effective risk management practices.

Assist in the development, review, and maintenance of IT security policies, procedures, and documentation. Support internal audits and assessments aligned with frameworks such as ISO 27001, NIST, SOC 2, and GDPR. Participate in risk assessments to identify and track remediation efforts for security and compliance risks. Help maintain compliance registers, risk logs, and GRC tools. Work with cross-functional teams to collect evidence for compliance and audit activities. Monitor changes in regulatory and compliance requirements relevant to the organization. Assist with third-party vendor risk management and due diligence reviews. Contribute to awareness programs to promote a culture of compliance and security.

Install, configure, and maintain physical and virtual servers (Windows/Linux). Patch systems and apply updates regularly to minimise vulnerabilities, backup, and integrity. Track and manage hardware/software inventory and asset life cycle. Required Candidate profile Proficiency with Windows & Linux server administration Knowledge of firewalls, routers, and switches (Cisco, etc) IT infrastructure control implementation related to information security procedures.

Develop transformation strategies and high-level business cases, clearly communicatingthe value of transformational change to IT executive leadership within customerorganizations Leadtransformation solutions by assessing the current state, including datamanagement, dependencies, compliance, security, application portability, ITdelivery models, and consolidation technologies like cloud automation,virtualization, containers, high availability and Disaster Recovery and new agesolutions around GPUs and AI Gaincustomer confidence on scoping and deliverables. Document and share intellectual propertysuch as processes, tools, deliverables, methodologies,and approachesthat further differentiate our solution propositions. JobResponsibilities: PresalesBusiness Pursuit of services like colocation, compute and GPU cloud(private, public, hybrid, hyperscaler), managed services, security services,network services and application services (Oracle, SAP, etc.). Lead thecreation of a high-level roadmaps, defining requirements, sizing estimates,design, specifications, and migration strategies with supporting ROI and TCOmodels Guide SEsto identify and plan for specific domain solutions that form part of theoverall landscape or independently work on solution creation depending on thescale and complexity of the solution Performcustomer assessments and recommend upgrades based on roadmap and capacity needs Oversee thedevelopment of detailed designs, project plans, migration strategies, andacceptance test plans Leaddiscussions around transformation and consolidation plans, project management,implementation Provide comprehensive solutions for third-party RFPs or customer requirements. Identifyand collaborate with third-party vendors for services Yotta cannot deliver Ensuresmooth solution transitions to delivery teams Follow andcommit with Yottas Policy statements (eg. QMS/EMS/OHS/ISMS/PIMS/ITSM etc) Undertake applicable trainings as communicated from time to time Participationin risk assessment process, contribute in achieving departmental management system objectives assist in maintaining PIMS controlsthroughout personal data lifecycle. Cross-functionalstakeholder management Additional activities: Create RFPsfor consulting opportunities and oversee the response lifecycle Develop newsolution consulting frameworks for transformation and integration projects Collaboratewith bid management teams to prepare standardized contractual documents Must have Skill: In depthunderstanding of the following domains colocation, compute and GPU cloud( private, public, hybrid, hyperscaler), managed services, security services,network services and application services (Oracle, SAP, etc.) and at leastexpert level knowledge of three of these domains Experiencedin technical solutioning and pursuit management for large enterprise customers Excellentcommunication and presentation skills Provenleadership and interpersonal skills Good toHave Skill: Eye todetail Proactiveand aptitude for technical Presales Persuasiveand Assertive Flair fortechnical writing Fairnegotiation skills Customer Focus Dealing with ambiguity Listening, Sensing Observing Building Trust Art of Skillful Conversation Creativity Problem Solving Intellectual Horsepower Prioritizing, Planning Organizing Action Orientation Accountability Process-Quality Excellence Building Collaborative Relationships Learning on the fly Qualificationand Experience: Bachelor's/ Masters Degree in Engineering / Technology / Computer Science FrameworkCertifications like ITIL / TOGAF / Zachman Framework TechnicalCertifications Minimum 12years of work experience

Manage audits - plan to finish Background 3 yrs in either Telecom software/Protocol, Embedded systems, Mobile Device & Mobile Applications, IOT Blockchain, Artificial Intelligence, UAS software systems, applications /IT system /Software product test Provident fund Annual bonus

1) Convert Treatment Procedures & Diagnoses from medical records into numeric or alpha-numeric codes. 2) Meet production & quality goals as per process requirements. Key Technical Skills and Knowledge : Good communication skills Strong knowledge in Anatomy and Physiology Clinical knowledge is an added advantage Qualification Pharmacy Graduate Disclaimer: GeBBS never charges fees or accepts payments for job applications. Any such requests should be reported immediately to reporthr@gebbs.com. Roles & Responsibilities To be an effective participant in Classroom training and clear the training assessments with 85% quality Consistently meet the targets set for MOCK charts. Eligible employee will get confirmed as Medical Coder within a max of 6 months from the date of joining Punctuality, Attendance and General Adherence to company policies, procedures and practices Ensure adherence to external and internal quality and security standards (HIPPA/ISO/ISMS) Be an effective team player.

Strada is a technology-enabled, people powered company committed to delivering world-class payroll, human capital management, and financial management solutions to organizations globally. With a team of more than 8,000 experts, Strada blends leading-edge technology with human ingenuity to help businesses across the globe design and deliver at scale. Supporting over 30 years to 1,400 customers in 33 countries, Strada partners with customers at every stage of their journey, to help drive their vision forward. It s why we re so driven to connect passion with purpose. Our team s expertise in human insights and cloud technology gives companies and employees around the world the ability to power confident decisions, for life. With a comprehensive total rewards package, continuing education and training, and tremendous potential with a growing global organization, Strada is the perfect place to put your passion to work. To learn more about us, pls visit Strada Global Page Role summary To process the payrolls by meeting the obligations such as TAT & accuracy levels as specified. To provide an effective and efficient payroll service to customers, ensuring the accurate and timely payment of their employees salaries Respond to requests, queries and complaints from external customers in a friendly and efficient manner so as to enhance customer loyalty To proactively seek learning opportunities to develop and maintain good knowledge of NGAs systems, clients and workflow and processing procedures. To take an active part in promoting your own training and development in all areas. Main responsibilities Production Responsible For Processing And Meeting Targets Given For The Same Responsible For Second Level Verification Of Data If Required Providing Feedback On Quality Issues Found During Audits Responsible for timely escalation of production related issues Responsible For Maintaining Accuracy Prioritises, allocates and actions daily tasks to be accomplished to meet SLA To build and nurture constructive relationships with the onshore team and internal colleagues from other business areas and to contribute to team efforts, team meetings etc Ensures that team members get data required, in right format and in time to complete payrolls to agreed deadlines Calculates, prepares and transmits manual payments and third party disbursements Coaches and advises team members on Systems and PC usage Suggests ways in which systems and procedures can be improved to enhance the business. Updating Process Related Reports and Documents Compliances Ensuring ISMS Compliance Of The Team Adhering To Company Policies, Rules And Regulations Following Quality Processes Thoroughly - Checklists, Standards Etc. On Process Adhering to Work Timings, Leave Schedules Key experience 2 years experience would be preferred PC Literacy - Word and Excel (Basic Level) Skills Good communication skills Commitment to achieve deadlines Learning Attitude

Ensuring the Product/Solution is compliant to the process SDLC reviews Conformance to the documented procedures Conducting Work Product Audit Facilitating Internal Audit Preparing Compliance Summary Report Assisting Senior/Lead Certification/recertification preparation and documented procedures

Drafting, Reviewing, Updating, and Enforcing Information Security Policies: Responsible for the formulation, periodic review, update, and organization-wide enforcement of information security policies and procedures in line with regulatory and industry standards. Implementing IS Related Controls as per Regulatory Requirements and Industry Best Practices: Ensures timely implementation and tracking of security controls as mandated by regulators and aligned with globally accepted standards such as ISO 27001, NIST, and PCI DSS. Coordinating Security Audits as per Regulatory Requirements: Acts as the central coordinator for internal, external, and regulatory audits, ensuring availability of evidence, responses, and closure of observations. Conducting Training and Awareness (Phishing and Quiz): Plans and executes regular security awareness programs, phishing simulations, and quizzes to build a security-conscious culture among employees. Performing IS Risk Assessment / GAP Assessment: Conducts periodic risk and gap assessments to identify, evaluate, and mitigate security weaknesses across systems, processes, and third parties. M aintenance of ISO 27001:2022 and PCI-DSS Certification: Manages and coordinates activities necessary to maintain ISO 27001:2022 and PCI DSS certification status, including audits, documentation, and corrective actions. Monitoring Ongoing IS Compliances through Compliance Calendar : Acts as a checker by maintaining a compliance calendar and tracking entity-wise and function-wise adherence to security compliance requirements. Policy, Process, and Other IS-Related Audits : Conducts independent assessments of IS policies, procedures, and control effectiveness to ensure compliance and identify opportunities for improvement. Participating in Regulatory Inspections: Supports regulatory inspections related to information security by providing necessary documentation, system access, and clarifications. Incident Management: Reviews information security incidents to find trends, causes, impact, and check how well responses worked; ensures incidents are reported to regulators on time as per rules; and regularly updates senior management or the board on security status, key risks, incidents, and compliance

Overview Omnicom Global Solutions is an integral part of Omnicom Group, a leading global marketing and corporate communications company. Omnicom’s branded networks and numerous specialty firms provide advertising, strategic media planning and buying, digital and interactive marketing, direct and promotional marketing, public relations, and other specialty communications services to over 5,000 clients in more than 70 countries. OGS India plays a critical role for our group companies and global agencies by providing stellar products, solutions, and services across Creative Services, Technology, Marketing Science (Data & Analytics), Advanced Analytics, Market Research, Business Support Services, Media Services, and Project Management. With over 4000 talented colleagues in India, we are growing rapidly and are looking for professionals like you to help build the next chapter of our journey. Responsibilities Conduct cybersecurity and privacy risk assessments in alignment with internal frameworks and regulatory requirements. Engage with risk owners and business stakeholders to manage and mitigate identified risks. Develop and present risk reports to senior leaders and governance forums. Advise on cybersecurity architecture and leading practices to strengthen the enterprise risk posture. Assist global agency teams and networks with compliance to cybersecurity regulations and requirements. Monitor the global threat landscape and identify emerging risks; implement proactive control measures. Contribute to the maintenance and effectiveness of the Information Security Management System (ISMS). Participate in risk governance, compliance programs, and strategic risk reduction initiatives. Qualifications 3–5 years of experience in information risk management, cybersecurity, or GRC domains. Proficiency in risk assessment methodologies, threat modelling, and risk mitigation practices. Strong knowledge of cybersecurity frameworks and standards (e.g., ISO 27001, NIST, CIS, GDPR). Experience preparing risk reports and dashboards for leadership audiences. Excellent collaboration and stakeholder engagement skills across global teams. Analytical mindset with the ability to evaluate and prioritize risks effectively. Preferred Qualifications Industry certifications such as CRISC, CISM, CISSP, ISO 27001 Lead Implementer, or similar. Exposure to cloud security risk and compliance monitoring tools. Experience working within enterprise ISMS or regulatory compliance programs .

Aspire Systems is currently seeking Process Assurance specialist with expertise in handling ISO audits for QMS and ISMS. Work Location : Chennai What we expect: Minimum 6 years of experience in Process Assurance role within the IT Services Industry. Hands on experience in QMS ISO 9001, ISO27001 standards, SOC 2 audit and CMMI framework Knowledge in Data privacy and related standards. Working experience in handling ISO audit internally and with external audit partners. Roles & Responsibiities: Responsible for Process definition, Implementation and maintenance of : QMS , ISMS and Privacy standards Audit Development of Metrics Periodical Reviews Responsible for process implementation within the Service Line for the accounts / projects assigned Conduct audits / facilitation and report Risks and issues at account/project level Facilitate Project status reviews Identify and report Engagement specific risks, facilitate engagement team to mitigate the risks, within the BU. Responsible for Consolidation of defects and conduct defect analysis. Perform root cause analysis on repeated Issues, NCs, etc. also responsible for best practice harvesting and adoption based on the reports sent by the QA team/Delivery team . Perform SOW reviews and provide suggestion regarding the appropriate life cyle to be selected, Metrics to be defined and follow the client demands. Provide RFP support pertaining to the information security, Privacy and QMS process. To manage the QA team and provide necessary guidance and support . Coordinate with various stakeholders and to enhance the process and tools. Define engagement specific process for relevant accounts. To communicate effectively in every situation with different stake holders like vendors, team members, manager etc. Develop Training materials and conduct / arrange for the BU level process / tools training for delivery Responsible for managing and mentoring the QA team Support the QA activities o Handle high end facilitations o Mentor the QA team Interface with external agencies / trainers, etc. Amend the process based on the organization change as and when required Prepare KT plan for new joinees in QA team and induct them in the job. Ensure complete security of company confidential information.

Designation: Information Security Consultant Job Code: JD2208396 Location: Bangalore Number of Vacancies: 1 Total Experience: minimum 1 year Shift: General Reports to: CTO Qualification: BE/B.tech/Bsc/BCA/M.Tech/ME Certification: ISO 27001:2013 Lead Implementer (preferable) Job Description: IT Security Consultant , with overall 3+ years of professional experience with areas of expertise in Governance Risk & Compliance (GRC), Third Party Risk Management (TPRM), Information Systems Audits including ISO 27001, Data privacy, GDPR, ITGC Assessments, Control testing, Information Security, ISO 27001 Implementation, SOX and SOC 2, IT Risk assessments on application and infrastructure. Information Technology and Information Security Governance and Risk Compliance Implementation across various industries including Banking, Retail, Insurance, Energy, and e-commerce. Expertise in Vendor Management, Issue Management, Compliance Management, Policy Management, Business Continuity and Disaster Recovery& Risk management modules/solutions. Detailed knowledge of international regulations and best practices covering ITIL, COBIT, ISO 27000, SOX, COSO, PCI, HIPAA and NIST 800. Have experience in core ISMS, services focused on SOX, ITGC, COBIT, COSO, ISO 270001, specialized in Governance & Compliance and Internal Audits. Good experience in client interaction with global leaders during requirement specifications and project implementation phases. Performed risk assessments based on industry standards, provided recommendations to management on results of analysis and work closely with other team- members to refine and enhance security controls and reduce organizational risk. Managing GRC and Third-Party Risk Management related engagements. Conducting audit to check the security posture of critical vendors. Performing quality checks for third party risk assessment. Facilitating External and Internal audits for ISO 27001. Identify and assessing areas of significant business risk. Plan and evaluate IT-related technical and organizational measures. Managing and reporting compliance breaches and exposures. Conducting Compliance audits by reviewing SOC2 Type II, Hi-Trust, ISO27001, PCI-DSS reports. Supporting various departments by collecting and coordinating internal compliance data with auditors and various departments. Ensuring complete, accurate, and timely audit information is reported to Management and/or Risk Committees. Qualification Bachelor's degree in computer science (B. Tech, BE, BCA, or MCA), ISO 27001 :2013 LA Preferred, Experience in Audits and Assessments preferably covering ISO 27001, SOC 2 Type 2, GDPR, Client Audit and Privacy Regulations (GDPR) Experience in identifying and remediating threat & vulnerabilities. ***the candidate must have a very good communication skill

At Bravura Solutions, collaboration, diversity and excellence matter. We value your ideas, giving you room to be curious and innovate in an exciting, fast-paced, and flexible environment. We look for many different skills and abilities, as well as how you can add value to Bravura and our culture. As a Global FinTech market leader and ASX listed company, Bravura is a trusted partner to over 350 leading financial services clients, delivering wealth management technology and products. We invest significantly in our technology hubs and innovation labs, which inspire and drive our creative, future-focused mindset. We take pride in developing cutting-edge, digital first technology solutions that support our clients to achieve financial security and prosperity for their customers. The Senior Information Security Officer is responsible for supporting the implementation and operation of the organisations Information Security Management System (ISMS) within their region. This role will drive security risk management, policy compliance, audits (internal, external and client), training and awareness, supply chain risk, and support security operations in incident management. As a Managed Service Provider (MSP) and data processor for clients, the ISO will ensure that security controls align with client contractual obligations, regulatory requirements, and industry best practices. The ISO will work closely with global security leadership, regional stakeholders and clients to address both internal and client-specific security challenges. The position is within the Information Security team. Main activities will include but are not limited to: Oversee the implementation and operations of the ISMS within the region. Ensure and support alignment with global security policies and regulatory requirements including ISO27001, SOC2 type II and PCI-DSS. Continuously assess and improve security controls and processes. Identify, assess, and mitigate security risks. Maintain the risk register and track remediation activities. Provide risk-based guidance to business units, IT teams, and client-facing operations. Ensure compliance with corporate security policies, frameworks, and client-specific security mandates. Develop and enforce security standards and client requirements. Input into periodic reviews and updates to security policies to align with evolving requirements. Lead and support internal and external security audits, ensuring timely remediation of findings. Provide security assurance to clients by responding to security questionnaires and participating in client audits. Coordinate with service delivery teams to meet client-specific obligations. Monitor and report on security posture, client security commitments, and compliance status. Information Security Training & Awareness Develop, support deliver security awareness programs Support phishing exercises and other training initiatives to enhance security culture. Collaborate with HR and other departments to ensure security education is embedded in employee onboarding and ongoing training. Assess and manage security risks associated with third-party vendors and suppliers. Ensure that security requirements are included in vendor contracts and SLAs. Perform regular security assessments of critical suppliers, considering the impact on client services. Security Operations & Incident Management Support Assist in managing and responding to security incidents within the region, to ensure rapid containment and remediation. Work with the Security Operations team to protect both internal and client environments. Support post-incident reviews and contribute to continuous improvement in incident handling, including lessons learned for client operations. In addition to the above position-specific responsibilities, all employees are required to undertake any other reasonable duties and responsibilities within your capability and skills, when requested to do so. Qualifications and Experience Bachelor s degree in Information Security, Computer Science, or related field (or equivalent experience). 5+ years of experience in an information security role, preferably with regional oversight in an MSP or data processing environment. Strong understanding of ISO27001, NIST, GDPR, and other security and data protection frameworks. Experience in security risk management, audits, compliance, and client security assurance. Knowledge of security operations, incident response, and managed security services. Familiarity with supply chain security and third-party risk management. Excellent communication and stakeholder management skills, with experience working with clients on security matters. Security certifications such as CISSP, CISM, or CRISC are preferred. Our people are the heart of our business. We work hard to provide a rich employee experience and a robust framework for ongoing career development. Competitive salary and employee benefits scheme 2 paid volunteering days and a range of community-based initiatives to get involved in Parental (including secondary) leave policy Free meals and transport We make hiring decisions based on your experience, skills and passion so even if you don t match every listed skill or tick all the boxes, we d still love to hear from you. Please note that interviews are primarily conducted virtually and if you require any reasonable adjustments or would like to note which pronouns you use, please let us know. All final applicants for this position will be asked to consent to a criminal record and background check. Please note that people with criminal records are not automatically barred from applying for this position. Each application will be considered on its merits.

We are looking for self-driven professionals interested in a career in Oracle. The position will independently program manage the ISO 27001 ISMS implementation for OFSS Ltd. In addition will also perform project review activities. Working at Oracle & in this team provides you an opportunity to make a difference to overall business, continuous learning opportunities with access to best tools & courses and a fulfilling & inclusive environment. As an Individual Contributor, perform the role of an Information Security Management System Implementation Lead Work with senior management, various stakeholders from business, support function teams to implement the processes, controls and schedules of the extant standards the organization adhers to. Program manage the ISO 27001 certification program by ensuring compliance to the various Oracle policies, ISMS procedures, ISO standards including front-ending the internal & external audits Successfully transition the organization towards the new standards as and when new standards are applicable. (As an example: Transitioning from ISO 27001| 2013 to 2022 standards by adjusting processes, controls & ISMS activities ). Train ISMS members towards changes in standards and their impact on ISMS activities. Additionally perform the role of a Senior Partner advisor who performs management oversight to partner projects that involves implementation of Oracle s Banking & OFSAA Products. Perform audit on identified Oracle product implementation projects to measure project quality & execution effectiveness. Continuously source, maintain, enrich evaluation of projects from various sources as determined by the management to build a repository of program successes, lessons learnt, corrective actions needed. Build an objective evaluation score for projects / programs SKILLS NEEDED A Bachelor or Masters degree in Sciences, Engineering, Technology or accounting. 20 plus years of experience with demonstrable experience in audit / process quality management. With specific focus on Information security. Must have led multiple ISO 27001 implementations or led audits. Information Technology industry processes Must have a thorough understanding of various standards, Practices & legislations in the field of information security. Certifications ISO 27001 Lead Auditor Project Management Professional / Program Management Professional Experience in Waterfall / Agile project methodologies. Experience in project execution in IT industry. Experience in performing project reviews of third-party projects, with a view to identifying strengths & opportunities for improvements in the project management process, project execution, resource skills, customer satisfaction & measurable project outcomes. Excellent communication skills (written & verbal) at various hierarchy levels. Excellent documentation skills with a varied audience - executive summaries for senior management, detailed reports for project team with actionable insights. Although the job does not currently envisage any travel, willingness to travel Onsite to Customer location if required. Should be able to join in 4-6 weeks of offer.

Hi All, We are hiring for Lead Auditor profile for Chennai location for various domain. JOB TITLE : Auditor / Lead Auditor LOCATION : Chennai QUALIFICATION : Graduate (Degree/Diploma) in Engineering (e.g. Chemical, Civil, Automobile, etc), Technology (e.g. Food, Chemical, Pharmaceutical, IT, Power, Energy, etc), Pure Sciences or equivalent. Min. ISO 9001 LA training/qualification is required. Role & responsibilities Preparation of Audit Plan as per schedule Auditing as per applicable accreditation rules, scheme-owner requirements & KPIs (where applicable) and TUV India/TNCERT procedures (as relevant) Timely Audit Reporting, including closure of nonconformities within defined time frames Ensure audit workflow completion (incl. OPE workflow) within the specified timelines and within the Excellence tool. Address technical review comments on priority to facilitate efficient & timely certificate issuance to the clients. Attend Exchange of Experience/Calibration meet and ensure CPD compliance as required by the respective schemes, including ensuring the timely renewal of qualifications Develop and enhance competence over a period in various sectors. Support in Key Account Management for the clients assigned for value added services Preferred candidate profile

Role & responsibilities Coordinate with Internal and External Auditors for providing inputs required and liaison with other sub-functions of IT Review IT Policies and SOPs. Prepare modifications and maintain change history for wherever applicable Prepare documentation for ISMS implementation and coordinate with all stakeholders for driving implementation and renewals Ensure compliance to SOPs. Follow-up with relevant stakeholders and maintain documentation. Conduct software quality checks before go-live. Ensure proper change management is followed. Ensure version control and report gaps if any. Conduct periodic internal Audits for as per ISMS norms Create awareness on policies and SOPs through proper communication Preferred candidate profile Qualification – B Tech/BE/MCA/Computer Science Graduate 4-5 years of experience. Hands-on experience of implementing ISMS:ISO 27001 Knowledge of IT systems, databases and software change management processes. Experience of basic software quality testing will be an added advantage. Good communication, organization, project and time management skills

Job Title: Information Security Risk Management (IRM) Location: Remote Experience: 15 -20 Years Job Description: This role is responsible for developing, managing, and executing the Information Security Risk Management program . The incumbent will play a critical role in ensuring the banks resilience by effectively identifying, assessing, and mitigating information security risks, both internally and from external parties. Main responsibilities are to: Contribute to the cybersecurity strategy of the bank to expand with secure and reliable service offerings. Improve the bank s ability to identify, assess, and mitigate risks within our environment, and risk posed by external suppliers who access the bank environment and data. Drive operational resilience through visibility on third party resiliency measures. Ensure an in-built approach to build a resilient security posture. Establish a well-structured third-party risk management program that adheres to best practices. Key Responsibilites: A mid senior level officer with sound knowledge and expertise in information security risk management with experience of managing enterprise projects and of direct and in-direct relationship with senior and executive management. Strong experience and knowledge across the Information Security and Cyber Security domains including governance, policy procedures, compliance management, risk management and security incident response etc. Strong interpersonal, analytical, and technical skills with strong decision making and prioritization skills. Sound knowledge and expertise in conducting risk assessment. Minimum 12+ years of experience in Information Security domain with expertise in TPRM, Supplier risk assessment, Risk management, ISMS etc. Minimum 4+ years of experience in Project management of complex engagements with multiple stakeholder interaction and advisory support to the clients. Experience of working in the banking domain or with banking/payment industry clients.

Responsibilities Key Deliverables Understand the necessity and contribution of process for Die Manufacturing.Knowledge of required Quality parameters for Die Mfg.Knowledge of sequence of operations in Die Mfg process. Various inputs and expected outputs for the process.Knowledge of Work Estimations,5S requirements etc.Knowledge of ISO 9001 standards.Knowledge of various audit systems like ISO, 5S , ISMS, OHSAS and other system audits.Knowledge of latest trends in Die Mfg techniques.Knowledge on required SAP Applications.Knowledge on debottlenecking the process.Awareness of more productive and less fatiguing work environment.Knowledge of Various equipments in Die Mfg.Knowledge of Cutting tools and CNC machining Preferred Industries Engine Engineering Automobile Education Qualification Diploma in Engineering; Diploma; Diploma in Engineering in Mechanical; Diploma in Tool and Die Making General Experience 1-2 yrs Critical Experience System Generated Core Skills System Generated Secondary Skills Tooling