173 Isms Jobs - Page 4

We are looking to add a new member to Nokia DA Security Team to identify and manage information security risks across all departments involved in providing our service. Our NDAC and MXIE platforms are used to provide a service for private mobile 4G/5G networks, WiFi networks, and relevant applications. They are built on top of cutting-edge technologies, Linux containers, Kubernetes (K8s), and a huge variety of various contemporary infrastructure applications and services. You Have: A Bachelor s degree and 5+ years of relevant experience in information security. Knowledge of GRC tools, processes, and techniques. Familiarity with SOC 2, NIST RMF, Cloud Security Alliance, and other cybersecurity standards. Experience with 3GPP communication networks and cloud operations. Proficiency in IT and customer service tools (e.g., Zendesk, Service NOW). Expertise in risk assessment and treatment within the scope of an ISMS (ISO 27001, ISO 27002, ISO 27005). It would be nice if you also had: Strong communication and stakeholder management skills. Security or other professional certifications (e.g., CISSP, CISM, ITIL). Provide expertise for information security risk management and compliance standards such as ISO 27k and SOC2. Identify Information Security assets across in all departments of an organization providing a SaaS service from a cloud including e.g. care, R&D, operations, business IT functions. Conduct information security risk assessments and efficiently communicate identified risks to relevant stakeholders. Facilitate risk treatment planning, follow-up on implementation, prepare and communicate KPIs to management. Lead continuously improvement of security risk management tools and techniques used in our organization, in close collaboration with other cybersecurity experts in our team and Nokia Group Security. Collaborate with Nokia Group Security to efficiently integrate our Risk Management efforts into the corporate ISMS framework.

We are looking for a dynamic Group Manager-Information Security to join our team in Mumbai/Pune/Delhi/NCR. As a Group Manager-Information Security, you will be responsible for providing leadership and strategic direction to the information security teams, ensuring the confidentiality, integrity, and availability of our organization's data and information systems. If you are a skilled professional with strong analytical abilities and a passion for cybersecurity, we would love to hear from you. Location- Mumbai/Pune/Delhi/NCR Your Future Employer You will be joining a leading organization in the (mention industry) industry, known for its commitment to diversity, equality, and inclusion. The company values its employees and provides a collaborative and innovative work environment where your skills and expertise will be recognized and rewarded. Responsibilities Provide leadership and direction to the information security teams Develop and implement information security policies, procedures, and guidelines Conduct risk assessments and vulnerability scans to identify security threats Lead incident response and security breach investigations Stay updated with the latest cybersecurity trends and technologies Requirements 7+ years of experience in information security Proven leadership skills and experience managing a team Strong analytical and problem-solving abilities In-depth knowledge of cybersecurity best practices and standards Relevant certifications such as CISSP, CISM, or CISA would be a plus What's in It for You Competitive compensation package Opportunity to work with a collaborative and diverse team Professional development and career growth opportunities Reach Us If you feel this opportunity is well aligned with your career progression plans, please feel free to reach me with your updated profile at isha.joshi@crescendogroup.in Disclaimer Crescendo Global specializes in Senior to C-level niche recruitment. We are passionate about empowering job seekers and employers with an engaging memorable job search and leadership hiring experience. Crescendo Global does not discriminate on the basis of race, religion, color, origin, gender, sexual orientation, age, marital status, veteran status, or disability status. Note We receive a lot of applications on a daily basis, so it becomes a bit difficult for us to get back to each candidate. Please assume that your profile has not been shortlisted in case you don't hear back from us in 1 week. Your patience is highly appreciated. Profile Keywords Group Manager, Information Security, Leadership, Cybersecurity, CISSP, CISM, CISA, Mumbai, Pune, Delhi/NCR, Analytics

Information Security Manager: Job Title: Information Security Manager Work from Office Location: Bangalore/Chennai/Hyderabad Experience:9 + years No.of Positions: #womenhiring #womenintech #womendiversity this role is exclusive for female candidates. Required Skills: Hands-on experience with security technologies Experience in Information security and business continuity internal audits Strong Knowledge in risk management, ISO 27001, ISO 22301 PCI DSS, HIPAA, GDPR, SOC 2 Knowledgeable in security concepts, techniques, tools, methods, and practices Good technical in cyber security products Individually to perform the technical audits Roles and Responsibilities: Minimum 8 years of experience in managing security audits, such as, ISO 27001, HIPAA, SOC 1, SOC2, PCIDSS Including preparing control owners for audits, interpreting control requirements, reviewing control evidence for appropriateness, testing control effectiveness, presenting control evidence to external auditors, and audit planning with external auditors In-depth knowledge of security controls, interpreting control requirements for SOC 2, ISO, HIPAA, PCIDSS audits, reviewing control evidence for completeness an accuracy, and ensuring evidence provided to auditors satisfies control requirements. Ability to of plan and lead meetings with control owners and external auditors. Ability to clearly define control requirements to control owners or explaining control evidence to external auditors. Supports the Security Audit function by reviewing evidence submissions for accuracy and completeness, following up on audit requests, and helping to establish a continuous monitoring function. Assist in testing and verification of all controls and formulating reports documenting findings. Recommends and assists in the definition and implementation of security controls in accordance with enterprise policies, standards, and procedures. Work closely with internal business teams to assist in the identification and assessment of potential security risks, and establish risk owners, ratings, and management action plans. Ensure continuity of compliance with ISO27001 and ISO 22301, PCI DSS, HIPAA, GDPR Analyse the potential impact of new threats and communicate risks to relevant business units Manage security operations, analyze security exceptions, gather necessary background information, document exceptions and ensurethat the risk is recognized and managed with compensating controls Provide orientation to Business Units on Risk Assessment, Business Continuity Plan and Business Impact Analysis Facilitate in preparation of a Business continuity plan for each project and functions Conduct internal ISMS and BCMS audits and identify potential gaps in the system Prepare detailed and summary reports of assessments, and remediation plans as needed and advise internal stakeholders Report the audit findings on the potential weakness in the system and areas of improvement

Position: GRC Auditor - Experienced Job ID: GRC_002 Location: Dombivli, Thane Your responsibilities as a GRC Auditor - Experienced: Design Policy & Procedure Documents as per client s domains and regulatory requirement. Review existing cyber security controls and guide the customer for implementing missing controls. Perform Risk Assessment and prepare Risk Treatment plan for the client. Design and implement ISO 27001 ISMS for clients in various domains. Perform gap assessment and audits for clients as per RBI, SEBI, IRDAI, UIDAI, etc. regulatory compliances. Prepare Standard Operating Procedures for various types of audit and implementation projects. Train freshers with Cyber Security concepts along with ISO 27001 and various regulatory compliances. Review deliverables of junior team members before releasing to the clients. Handle client communications and provide monthly/weekly MIS presentations for progress of the project. Skill sets we require: ISO 27001 Implementation. Policy & Procedure Designing. Risk Assessment and Risk Treatment. Vendor Risk Assessment. RBI Compliance Audit (Good to Have). PCI Compliance (Good to Have). Data Localization Audit (Good to Have). Secure Network Architecture Review (Good to Have). Pedigree and Experience: Graduate from any field/stream. Proven experience of 3 - 6 years into Consulting Audit.

Roles and Responsibilities: The GRC Analyst assesses and prioritizes information security and cybersecurity risk across the organization, facilitates compliance with regulatory requirements and information security policies, and develops and reports on information security metrics. • A Lead implementer and internal auditor who is responsible for supporting the ISMS & Information Security audit team in the organization. • Candidate must have implemented ISO policies and procedures across a corporate company. • Must handle Client compliance and Security Assessment, Client Security control implementation in the facility, ISO/IEC 27001:2013, SOC 1 Type 2, SOC 2 TYPE 2. • Preparing the organization for ISO certification, delivering meetings and submits audit report at the end of quarter or year and prepares the audit plan. • Conducting regular internal audits on Information Security Management System (ISMS), SOC and support the team on tracking the NCs to closure effectively is the main responsibility of a lead auditor and that needs to be done daily. • Hands-on experience in preparing Information Security awareness, Incident prevention. • Report Review knowledge on VAPT Assessments. • Evaluating the Business Continuity Plan (BCP) test results based on the test objectives. • Responsible for standard upgradation from ISO 27001:2013 to ISO 27001:2022 and coordinating with internal and external stakeholders during audits. • Participating in the project team for information security requirements. • Conduct monthly assessments for security policies for all employees. • Real-time experience with leading external audits. Job Title: GRC Analyst Location: Tiruchirappalli (Onsite) Shift: 06:30 PM IST TO 03:30 AM IST Qualifications: • Bachelor's degree in information technology or other related field. • Minimum of 2+ years of experience • Skills in documenting risk and compliance activities. • Information security related training or certifications such as CISSP or CRISC.

Task - Testing protocols - Continuous improvement Dependencies Test environments, access to latest application builds Required Skills Knowledge of testing methodologies, experience with validated environments OS/Tools Environment Standard Operating Procedures for the specified environments Jobs Follow locally applicable QMS and ISMS policies and procedures Liase with business units to collect their testing procedures and prepare hand over to DI application testing methods

Job Title: Application Security SME Location: Bangalore, India (Mandatory) Best fit Roles: Web Application Penetration Testing, API Testing, Network Penetration Testing Mobile Application Penetration Testing, Source Code Review, Thick Client Application Testing Certifications: Certified Ethical Hacker (CEH), Certified Red Team Professional (CRTP), Certified AppSec Pentester (CAPen), Certified API Security Analyst (CASA), OffSec Certified Professional (OSCP) Job Title: SDLC SUPPORT SME Location: Pune, India Best fit Roles: SAST SME, DAST SME , DevSecOps Integration specialist, SDLC Secure Developer, Automated Scripting Knowledge The Key Skills Proficient in SDLC Security with experience in both Agile and Waterfall Software Development Life Cycles. Understanding of integration & automation of various security technologies including SAST, DAST, MAST, IAST, container security tools within DevOps tooling pipeline (Jenkins, GitHub, Chef, Ansible, Nexus, etc). Understanding of platform-specific security risks, common vulnerabilities for web and architectures that are commonly used by mobile application. (HTML, XML, JavaScript, JSON, REST, Microservices etc.). Tools Proficiency in one or more tools like Checkmarx, Invicti(Netsparker), Quokka(Kryptowire), IriusRisk, Aquasec, etc. Job Title: Vulnerability Management SME Location: Hyderabad, India (Preferred) || Pune, India Requirement: CISA, CRISC, CISM, CISSP, CGEIT The Key Skills In-Depth knowledge of Vulnerabilities, Threat, Risk, Vulnerabilities Identification and Remediation. Must have knowledge of Security Testing and good exposure of vulnerabilities listed in OWASP Top 10/SANS 25. Cultivate a culture of continuous self-improvement, professional development, and self-directed learning, encouraging team members to maintain subject matter expertise in both their specific areas and the broader cybersecurity domain. Expertise in Risk and Compliance Management, Vulnerability Management, and Security Testing. Job Title: CyberArk Engineer Location: Mumbai The Key Skills: Proven experience working as a CyberArk Engineer, CyberArk Administrator, or similar role, with at least 2+ years of experience in designing, implementing, and supporting CyberArk solutions. Expertise in CyberArk PAS Suite components, including EPV, PSM, CPM, PVWA, and AIM, and proficiency in CyberArk REST API, PACLI, and scripting languages (PowerShell, Python, etc.). Strong understanding of privileged access management (PAM) concepts, principles, and best practices, including privileged account discovery, rotation, and monitoring. Experience with integrating CyberArk with identity governance, ticketing, SIEM, and other security and IT systems using APIs, connectors, and integration frameworks. Familiarity with regulatory compliance standards, such as NIST, PCI DSS, GDPR, HIPAA, and SOX, and experience with compliance assessments and audits. Job Title: SailPoint IIQ Developer Location: Mumbai The Key Skills: 3+ years of experience working as a SailPoint IIQ Developer or similar role in Identity and Access Management. In-depth knowledge of SailPoint IIQ architecture, components, and capabilities. Strong proficiency in scripting and programming languages such as Java, BeanShell, PowerShell, or Python. Experience with IAM concepts and technologies, including RBAC, SSO, LDAP, OAuth, and SAML. Hands-on experience with integration technologies such as REST APIs, SOAP, JDBC, and SCIM. Familiarity with cloud platforms (e.g., AWS, Azure, GCP) and their IAM services is a plus.. Preferred (Good-to-Have) Credentials: SailPoint Certified IdentityIQ Associate or Professional certification. Relevant certifications such as CISSP, CISM, or IAM certifications (e.g., CIAM, CIMP) are a plus. Job Title: IBM Verify Governance Location: Pune Job Title: Saviynt Location: Pune Desired qualifications 2 to 4 years of experience working in Identity-IGA Domain with minimum 2 years of experience in Saviynt Identity Platform. Strong understanding of identity and access management principles. Proficiency in programming languages such as Java, Python, or PowerShell. Experience in working with cloud platforms such as AWS, Azure, or GCP. Saviynt certification(s) preferred. Job Title: Incident Response Location: Bangalore The Key Skills: Experience on EDR tools for Incident response and threat hunting (Crowdstrike, MS Defender, Sentinel One) Certifications like ECIH v2, CHFI, GCIH or GCIA is preferred Job Title: ISMS Location: Delhi The key skills required are as follows: Responsible for ISO 27001 based Information Security Management System implementation and sustenance Responsible for advising clients on Business Continuity Planning, IT Disaster Recovery planning Assess client information security posture, identify the gaps/risks in the existing environment and develop solutions to mitigate the identified gaps/risk Responsible to assist client in review / implement Information Security controls in areas as mentioned, but not limited to: Change management process, Incident management process, Backup process, User identity and access management, Antivirus management, SLA performance and monitoring, Media handling & Exchange of information, Physical and environmental Security, and Media & Information Handling Job Title: PCI DSS Location: Mumbai Job Title: SIEM/Sentinle/Chronicle Location: Bangalore The Key Skills: Proven experience working with QRadar SIEM and other security tools. Ability to drive call and summarizing it post discussion. Deep understanding on Windows, DB, Mail cluster, VM and Linux commands. Good Understanding of Firewall, IDP/IPS, SIEM functioning Strong understanding of network protocols, TCP/IP, and security technologies. Familiarity with log analysis and correlation techniques. Knowledge of security incident response methodologies and best practices. Understanding of common security frameworks (e.g., NIST, ISO 27001). Job Title: Forescout Location: Bangalore The Key Skills: Proven experience in configuring and designing Forescout solutions. In-depth knowledge of network security principles and practices. Familiarity with cybersecurity frameworks and compliance standards (e.g., NIST, ISO 27001). Strong analytical and problem-solving skills. Excellent communication and interpersonal skills. Relevant certifications (e.g., Forescout Certified Administrator/Engineer) are a plus. Experience with scripting languages (e.g., Python) for automation is desirable.

Job Title: Application Security SME Location: Bangalore, India (Mandatory) Best fit Roles: Web Application Penetration Testing, API Testing, Network Penetration Testing Mobile Application Penetration Testing, Source Code Review, Thick Client Application Testing Certifications: Certified Ethical Hacker (CEH), Certified Red Team Professional (CRTP), Certified AppSec Pentester (CAPen), Certified API Security Analyst (CASA), OffSec Certified Professional (OSCP) Job Title: SDLC SUPPORT SME Location: Pune, India Best fit Roles: SAST SME, DAST SME , DevSecOps Integration specialist, SDLC Secure Developer, Automated Scripting Knowledge The Key Skills Proficient in SDLC Security with experience in both Agile and Waterfall Software Development Life Cycles. Understanding of integration & automation of various security technologies including SAST, DAST, MAST, IAST, container security tools within DevOps tooling pipeline (Jenkins, GitHub, Chef, Ansible, Nexus, etc). Understanding of platform-specific security risks, common vulnerabilities for web and architectures that are commonly used by mobile application. (HTML, XML, JavaScript, JSON, REST, Microservices etc.). Tools Proficiency in one or more tools like Checkmarx, Invicti(Netsparker), Quokka(Kryptowire), IriusRisk, Aquasec, etc. Job Title: Vulnerability Management SME Location: Hyderabad, India (Preferred) || Pune, India Requirement: CISA, CRISC, CISM, CISSP, CGEIT The Key Skills In-Depth knowledge of Vulnerabilities, Threat, Risk, Vulnerabilities Identification and Remediation. Must have knowledge of Security Testing and good exposure of vulnerabilities listed in OWASP Top 10/SANS 25. Cultivate a culture of continuous self-improvement, professional development, and self-directed learning, encouraging team members to maintain subject matter expertise in both their specific areas and the broader cybersecurity domain. Expertise in Risk and Compliance Management, Vulnerability Management, and Security Testing. Job Title: CyberArk Engineer Location: Mumbai The Key Skills: Proven experience working as a CyberArk Engineer, CyberArk Administrator, or similar role, with at least 2+ years of experience in designing, implementing, and supporting CyberArk solutions. Expertise in CyberArk PAS Suite components, including EPV, PSM, CPM, PVWA, and AIM, and proficiency in CyberArk REST API, PACLI, and scripting languages (PowerShell, Python, etc.). Strong understanding of privileged access management (PAM) concepts, principles, and best practices, including privileged account discovery, rotation, and monitoring. Experience with integrating CyberArk with identity governance, ticketing, SIEM, and other security and IT systems using APIs, connectors, and integration frameworks. Familiarity with regulatory compliance standards, such as NIST, PCI DSS, GDPR, HIPAA, and SOX, and experience with compliance assessments and audits. Job Title: SailPoint IIQ Developer Location: Mumbai The Key Skills: 3+ years of experience working as a SailPoint IIQ Developer or similar role in Identity and Access Management. In-depth knowledge of SailPoint IIQ architecture, components, and capabilities. Strong proficiency in scripting and programming languages such as Java, BeanShell, PowerShell, or Python. Experience with IAM concepts and technologies, including RBAC, SSO, LDAP, OAuth, and SAML. Hands-on experience with integration technologies such as REST APIs, SOAP, JDBC, and SCIM. Familiarity with cloud platforms (e.g., AWS, Azure, GCP) and their IAM services is a plus.. Preferred (Good-to-Have) Credentials: SailPoint Certified IdentityIQ Associate or Professional certification. Relevant certifications such as CISSP, CISM, or IAM certifications (e.g., CIAM, CIMP) are a plus. Job Title: IBM Verify Governance Location: Pune Job Title: Saviynt Location: Pune Desired qualifications 2 to 4 years of experience working in Identity-IGA Domain with minimum 2 years of experience in Saviynt Identity Platform. Strong understanding of identity and access management principles. Proficiency in programming languages such as Java, Python, or PowerShell. Experience in working with cloud platforms such as AWS, Azure, or GCP. Saviynt certification(s) preferred. Job Title: Incident Response Location: Bangalore The Key Skills: Experience on EDR tools for Incident response and threat hunting (Crowdstrike, MS Defender, Sentinel One) Certifications like ECIH v2, CHFI, GCIH or GCIA is preferred Job Title: ISMS Location: Delhi The key skills required are as follows: Responsible for ISO 27001 based Information Security Management System implementation and sustenance Responsible for advising clients on Business Continuity Planning, IT Disaster Recovery planning Assess client information security posture, identify the gaps/risks in the existing environment and develop solutions to mitigate the identified gaps/risk Responsible to assist client in review / implement Information Security controls in areas as mentioned, but not limited to: Change management process, Incident management process, Backup process, User identity and access management, Antivirus management, SLA performance and monitoring, Media handling & Exchange of information, Physical and environmental Security, and Media & Information Handling Job Title: PCI DSS Location: Mumbai Job Title: SIEM/Sentinle/Chronicle Location: Bangalore The Key Skills: Proven experience working with QRadar SIEM and other security tools. Ability to drive call and summarizing it post discussion. Deep understanding on Windows, DB, Mail cluster, VM and Linux commands. Good Understanding of Firewall, IDP/IPS, SIEM functioning Strong understanding of network protocols, TCP/IP, and security technologies. Familiarity with log analysis and correlation techniques. Knowledge of security incident response methodologies and best practices. Understanding of common security frameworks (e.g., NIST, ISO 27001). Job Title: Forescout Location: Bangalore The Key Skills: Proven experience in configuring and designing Forescout solutions. In-depth knowledge of network security principles and practices. Familiarity with cybersecurity frameworks and compliance standards (e.g., NIST, ISO 27001). Strong analytical and problem-solving skills. Excellent communication and interpersonal skills. Relevant certifications (e.g., Forescout Certified Administrator/Engineer) are a plus. Experience with scripting languages (e.g., Python) for automation is desirable.

Experience Range- 2 to 12 years Location- Hyderabad / Delhi Interview Mode- F2F The key skills required are as follows: Responsible for ISO 27001 based implementation and sustenance Responsible for advising clients on Business Continuity Planning, IT Disaster Recovery planning Assess client information security posture, identify the gaps/risks in the existing environment and develop solutions to mitigate the identified gaps/risk Responsible to assist client in review / implement Information Security controls in areas as mentioned, but not limited to: Change management process, Incident management process, Backup process, User identity and access management, Antivirus management, SLA performance and monitoring, Media handling & Exchange of information, Physical and environmental Security, and Media & Information Handling Responsible to assist client in developing information assets inventory and classification Responsible for conducting clients vendors risk assessment and providing a holistic view of clients risk exposure due to outsourcing Responsible for advising and assisting clients to develop and implement Information classification framework Conduct Information Systems audits covering IT infrastructure assets Advice clients on data privacy, data leakage prevention, identity and access management Serves as technical lead or subject matter specialist on security and privacy implementation Desired qualifications B.E / B.Tech (Tier 1/2) in Computer Science, Information Technology or related fields ISO 27001 LA/LI, ISO 31000 LA/LI, ISO 22301 LA/LI, CISA, ITIL, or equivalent certification preferred CISSP, GSEC, GCIH, CEH, LPT, CCSK, eGRC tools like Archer, OpenPages or functional certifications would be preferred

Experience Range- 2 to 12 years Location- Hyderabad / Delhi Interview Mode- F2F The key skills required are as follows: Responsible for ISO 27001 based implementation and sustenance Responsible for advising clients on Business Continuity Planning, IT Disaster Recovery planning Assess client information security posture, identify the gaps/risks in the existing environment and develop solutions to mitigate the identified gaps/risk Responsible to assist client in review / implement Information Security controls in areas as mentioned, but not limited to: Change management process, Incident management process, Backup process, User identity and access management, Antivirus management, SLA performance and monitoring, Media handling & Exchange of information, Physical and environmental Security, and Media & Information Handling Responsible to assist client in developing information assets inventory and classification Responsible for conducting clients vendors risk assessment and providing a holistic view of clients risk exposure due to outsourcing Responsible for advising and assisting clients to develop and implement Information classification framework Conduct Information Systems audits covering IT infrastructure assets Advice clients on data privacy, data leakage prevention, identity and access management Serves as technical lead or subject matter specialist on security and privacy implementation Desired qualifications B.E / B.Tech (Tier 1/2) in Computer Science, Information Technology or related fields ISO 27001 LA/LI, ISO 31000 LA/LI, ISO 22301 LA/LI, CISA, ITIL, or equivalent certification preferred CISSP, GSEC, GCIH, CEH, LPT, CCSK, eGRC tools like Archer, OpenPages or functional certifications would be preferred

Experience Range- 2 to 12 years Location- Hyderabad / Delhi Interview Mode- F2F The key skills required are as follows: Responsible for ISO 27001 based implementation and sustenance Responsible for advising clients on Business Continuity Planning, IT Disaster Recovery planning Assess client information security posture, identify the gaps/risks in the existing environment and develop solutions to mitigate the identified gaps/risk Responsible to assist client in review / implement Information Security controls in areas as mentioned, but not limited to: Change management process, Incident management process, Backup process, User identity and access management, Antivirus management, SLA performance and monitoring, Media handling & Exchange of information, Physical and environmental Security, and Media & Information Handling Responsible to assist client in developing information assets inventory and classification Responsible for conducting clients vendors risk assessment and providing a holistic view of clients risk exposure due to outsourcing Responsible for advising and assisting clients to develop and implement Information classification framework Conduct Information Systems audits covering IT infrastructure assets Advice clients on data privacy, data leakage prevention, identity and access management Serves as technical lead or subject matter specialist on security and privacy implementation Desired qualifications B.E / B.Tech (Tier 1/2) in Computer Science, Information Technology or related fields ISO 27001 LA/LI, ISO 31000 LA/LI, ISO 22301 LA/LI, CISA, ITIL, or equivalent certification preferred CISSP, GSEC, GCIH, CEH, LPT, CCSK, eGRC tools like Archer, OpenPages or functional certifications would be preferred

The Cloud Governance Manager - IT Risk role at IndusInd Bank involves overseeing key operations, ensuring compliance, and driving business growth. Responsibilities include managing customer interactions, improving service efficiency, and coordinating with various teams to achieve operational excellence. The ideal candidate should possess strong analytical skills, excellent communication, and a proactive approach to problem-solving. Prior experience in a similar role is preferred. Candidates must demonstrate leadership qualities and adaptability to dynamic banking environments. This position offers a great opportunity to grow within the banking sector.

The IS Auditor role at IndusInd Bank involves overseeing key operations, ensuring compliance, and driving business growth. Responsibilities include managing customer interactions, improving service efficiency, and coordinating with various teams to achieve operational excellence. The ideal candidate should possess strong analytical skills, excellent communication, and a proactive approach to problem-solving. Prior experience in a similar role is preferred. Candidates must demonstrate leadership qualities and adaptability to dynamic banking environments. This position offers a great opportunity to grow within the banking sector.

Minimum 10 year of work experience in a Domestic/International Premium segment Voice/Email/Chat/ORM Program, with minimum of 2+ year as an Operation Manager Experience required with inbound/outbound contacts and back office preferred Required Candidate profile Demonstrated ability to understand staffing, process efficiencies, and goal achievement while managing contact center cost Responsible for complying with all QMS and ISMS Policies and procedures.

ISO 27001 Compliance Auditor & Consultant Work from Office & Client Site (Mumbai & Beyond) We are looking for a detail-oriented professional with experience in ISO 27001 audits, risk assessment, and compliance management. The role involves audit execution, security documentation, client collaboration, and regulatory compliance. Strong communication & report-writing skills required. Frequent travel required. Skills : - IT Security Compliance,Risk Assessment,Compliance Auditor,Security Audit,Governance,Risk,Compliance,GRC,IT Risk Management,Audit,ISO 27001 Lead Auditor,Internal Audit,External Audit,Security Frameworks,GDPR,NIST,SOC 2

Job Description: Our company Fidel Softech is an publicly listed ISO 9001 and ISMS 27001 certified leading LangTech services provider of Localization, IT Consulting enabled services across multiple domains. At Fidel we work closely with Fortune 500 companies as well as SMEs. To be part of the fun filled fast paced environment at Fidel, you need to be a motivated individual with keen interest to take on the next challenge. We create digital experiences that help our customers connect with their audience in local languages leveraging diverse technologies. We provide localization translation services and solutions in over 100+ languages globally as well as support diverse technologies. We do it with energy, passion, and curiosity, and we re backed by our rich heritage and culture of innovation. We re looking for exceptional talent to join us. Experience: 8+ years Location: Marisoft IT park III, Kalyani Nagar, Pune Roles and Responsibilities Fidel Softech is looking for IT Sales Business development, having experience in direct sales to USA, EU, APAC regions from India. The position is based in Pune. Candidate with experience of hands-on selling to CIOs, IT managers, CMOs, Delivery managers of enterprises, product firms, system integration firms for application development, product development support, testing services and enterprise solution implementation services. Measures of success include pipeline generation, new customer development, revenue delivered vs. targets, up-sell and optimization effectiveness, client satisfaction and retention levels, and contribution to overall sales and business unit. Requirements Introduce and sell Fidel s competency areas such as Cloud infra managed services. ServiceNow customization implementation services, Data analytics AI-ML services Testing services, to clients. Develop new business by cold calls, emails, working with lead gen teams and develop healthy pipeline. Understand the client requirement and work with delivery teams to propose clients with services and solutions thereby building strong and lasting relationships. Create collaterals and propose the clients of new services and solutions. Make effective usage of CRM tools and ensure all leads and communication is entered into the CRM. Maintain an active pipeline of forecasted sales to meet monthly, quarterly and annual quota objectives. Documentation, Weekly and quarterly reports, monitoring and reporting sales related activity and performance. Client Engagement: Arrange business meetings with prospective clients. Promote the company s services, addressing or predicting clients objectives. Prepare sales contracts adhering to legal guidelines. Maintain records of sales, revenue, and invoices. Provide trustworthy feedback and after-sales support. Building Relationships. Cultivate long-term relationships with new and existing customers. Develop entry-level staff into valuable salespeople. Proven Track record selling IT or localization services to product firms or system integration firms or IT services firm required. Solid sales skills in finding prospective customers and helping with their retention.

Trigyn has a contractual opportunity for a .Net Developer. This resource will work remotely for our client. Job Responsibilities: 1.Review the ICT standards and policies provided by the client for the applicable software such as Microsoft Azure Cloud, Internet Information Services, .Net and SQL in order to develop a compatible client Public Service Awards web platform. 2.Review, cleanse, and integrate client data from 2003-2015 and 2017-2022, stored in SQL databases, along with data from 2023-2025 in Excel. Convert the Excel files into dataflows or load them into a SQL database as needed to create unified datasets optimized for visualization and analysis. 3.Revamp the Public Service Innovation Hub that highlights client Public Service Awards initiatives and use PowerBI to connect the unique datasets to the Public Service Innovation Hub and enable informative interactive reporting of the client data. 4.Incorporate filter and search functionality into the Public Service Innovation Hub to highlight how client initiatives link to the Sustainable Development Goals (SDGs) and other client classifications i.e. regional grouping, economic grouping, and other topics that will be useful for research and analysis, 5.Incorporate a mechanism in the Public Service Innovation platform to ensure data is accessible, embeddable, and can be extracted by the user and downloaded in Excel or CSV, for research and analysis. 6.Demonstrate the revamped Public Service Innovation Hub to client and once accepted deploy to client servers on self-managed Microsoft Azure Cloud. 7.Conduct web application testing once deployed to client servers to ensure functionality including testing cross browser compatibility, testing for responsiveness, functionality testing, check for broken links, ensure security, cookie testing etc. 8.Work with guidance from Strategic Planning and Communication Services (SPCS), to conduct a user acceptance test, client can conduct the security test and the Department of Global Communications (DGC) can conduct the review of the look and feel of the site to make sure it conforms to client web standards; Ensure correct implementation of client information security standards and procedures, including client security testing and review of the development site, and remediation of any issues found. client IT security procedures must be followed, and code deliverable acceptance is subject to passing the client security tests. Any issues pertaining to the consultant s work which are identified by the client security test and DGC s branding test must be resolved by the developer. 9.Conduct complete hand-over and user training sessions to relevant staff members on how to manage the Public Service Innovation Hub. 10.Draft a how-to-guide manual, detailing the steps on how to manage the Public Service Innovation Hub to ensure continuity following the conclusion of the assignment. Expected outputs and delivery dates 1.A Proposal of a design solution for the new Public Service Innovation Hub based on the User Requirements and Specifications agreed in consultation with client ICT standards and policies. 2.A new database with integrated client data from 2017 - 2024 as well as unique datasets for visualization and analysis. 3.A mock-up design of the Public Service Innovation Hub in line with the user requirements and specifications agreed in consultation with client and in line with work assignment 3 - 5. 4.A new responsive, user-friendly, informative and interactive Public Service Innovation Hub that incorporates interactive data visualizations, filter and search functionality as mentioned in work assignment 4 and a mechanism on the Public Service Innovation Hub that ensures datasets are accessible, embeddable, and downloadable in Excel, CSV, and PDF formats for research and analysis, in line with work assignment 4 - 6. 5.A demonstration of the newly revamped Public Service Innovation Hub and once accepted deployment to the client servers on Microsoft Azure Cloud. 6.User acceptance testing that ensures functionality including cross browser compatibility, responsiveness and functionality, checking for broken links, ensuring security, cookie testing, etc. 7.A newly revamped Public Service Innovation Hub approved by client as meeting all necessary web and security standards. 8.Hand-over and user training sessions to relevant staff members on how to manage the Public Service Innovation Hub. 9.A how-to-guide manual, detailing the steps on how to manage the Public Service Innovation Hub to ensure continuity following the conclusion of the assignment. Performance indicators The performance of the consultant will be measured by the following indicators: Quality and comprehensiveness of the deliverables Timeliness of submissions of the expected outputs in line with the substantive requirements of the present TOR and in line with requests from the immediate supervisor Quality of analysis, recommendations, or conclusions in reports Comprehensiveness and clarity of briefing and materials Regular and predictable information sharing and updates on progress shared with the supervisor and other relevant parties Compliance with client style guidelines and accessibility standards Receptive/responsive to feedback from client and key stakeholders. Qualifications Bachelor s degree in information systems, Computer Science, SQL Development, Web Development or a related field is required. At least 7 years of professional experience professional experience in the field of information technology or related area, including SQL development, web development, optimising database performance, relational databases and interaction data visualizations. At least 7 years of C# experience is required. Extensive professional experience in developing interactive visualizations and dashboards (using complex SQL queries or related skills) is required. Proven experience with linking Power BI to databases is required. Experience working with an international organization. Strong communication skills in English (verbal and written) are essential.

About Us: Founded with the vision of becoming the largest e-commerce aggregator in India, over the years, eTrade has successfully established itself as a market leader in the industry and has carved a niche for itself in the e-commerce space. eTrade is the leader in six categories on Amazon.in ecosystem including some key categories like Home, Auto, LG, Pets, Amazon Devices and Private Labels (Solimo Basics). We have over 500 partners including large conglomerates like Bosch, Stanley Black Decker, Philips, PG, Godrej, Mars, Drools, Reckitt Benckiser, Wipro, Eicher many more. The companys core business revolves around technology, logistics, inventory management, and brand nurturing thereby elevating consumer-leading brands to their full potential. We aim to be the preferred partner for an Indian customer looking for the highest quality products and be available at every consumer touch-point making us their most recognized trusted e-commerce aggregator partner in India with ambitious plans to enter international markets. JD - IN-Stock Operations Associate What does an In-stock Associate do The In-stock Associate will be responsible for all tactical and operational aspects of the In-stock role, that support in-stock, inventory planning and other inventory operations. Additionally, the ISA will drive rigor, process-centricity to vendor operations such as Appointments at Fulfilment Centres, regular vendor communication for inventory, inbound and Returns operations. The ideal candidate will excel in scalable process improvement, excel-driven analysis, written/verbal communication and be customer vendor obsessed. The candidate will have worked in a setup where he constantly interacts with external and internal partners, drive processes that are scalable in nature. The ISA will work with ISM (In-Stock Manager) on a day-to-day basis to drive excel analytics internal / external to the category that drives all core operational metrics and take guidance / provide recommendations to ensure a high-bar on inbound utilization, smooth return operations and clear and concise communication to all partner teams. Key responsibilities include: Driving all inventory-led operations such as: inbound execution, appointment planning and prioritization, returns operations on a day-to-day basis and raising high bar on the core P0 metrics of the ISA charter Work with cross-functional stakeholders (internal / external) as well as ISM on a daily basis to ensure both ISM and ISA goals work hand-in glove ensure category health Enable smooth Return to vendor operations and play a role in streamlining the returns processes by reducing unhealthy and unsellable inventory Identify areas for providing Category ISMs / Leadership visibility on operational health of the Category; drive improvements internally on Fill-rates and other vendor experience inventory health metrics Desired Qualification: Graduate - Supply Chain/Finance Preferable 1-4 years of relevant experience in Retail, FMCG, E-commerce; have an process-driven mind-set, ability drive rigorous execution Someone who can zoom in and out of operational and Category level perspectives to drive improvements in ISA P0 metrics Comfortable in execution, handling data, talking to partner teams and requiring to support at odd-hours in events of any disruptions / blockages in inbounds at Fulfilment Centres Mandatory: Proficient in Excel, MS Access Preferred: Working knowledge of SQL Excellent Communication skills Preferred Industry: E-Commerce

Summary: The Sr. Executive Audit and Compliance is responsible for leading and managing the implementation of ISO 27001 and SOC2 Type2 across the organization. This includes developing and implementing an Information Security Management System (ISMS), conducting risk assessments, conducting internal audits, compliance monitoring, policy development, incident response and supporting and managing the certification process, BCP and DR activities Essential Duties and Responsibilities: Lead the implementation of Information and Cyber Security Framework and SOC2 Type2 compliance Conduct risk assessments to identify and prioritize information security risks and prepare gap analysis report Develop and implement security controls to mitigate identified risks Plan and execute internal audits Conduct vendor assessment audits Manage and support in internal / external audit for the certification process for information and Cybersecurity and SOC2 Type2 compliance Perform risk assessments, compliance monitoring, policy development, and incident response Monitor and maintain the cybersecurity compliance to ensure that it is effective and compliant Investigate and respond to information security incidents and plan mitigation actions Qualifications and Requirements: Bachelor's degree in computer science, information security, or a related field 2 - 4 years of experience in information security, with a focus on ISO 27001 and SOC2 Type2 Certified ISO 27001 Lead Implementer and/or Lead Auditor Experience in Information Security and SOC2 Type2 audits Strong understanding of information security best practices and standards Excellent communication and interpersonal skills Ability to work independently and as part of a team

In-Solutions Global is a leading payment solutions provider, with operations across India, Africa, the Middle East, APAC and South-East Asia. Founded in 2004, ISG provides modern, integrated, experience-driven payment solutions to Banks, Networks, Fintechs, Aggregators & Merchants globally. Over 19 years, ISG has built a robust business model with marquee clientele across the globe. Experience - 6 months to 4 years Location - Noida, Sector 58. Work from office. Manage all audit related responsibilities on behalf of ISG Noida branch. • Prepare, review and maintain all documentation viz. policy, procedures, SOPs etc as necessary for all implemented compliances at ISG. • Conduct process compliance and security audits on a bimonthly basis focusing on PCI DSS and ISO 27001:2013 • Conduct Security Awareness training at all levels across the Organisation. • Assist the other functions in conducting Risk Assessment, Change Management, Incident Management and reporting. • Maintain the annual compliance calendar for all compliance and client audits • Maintain the records as required by various compliance implemented at ISG. • Ensure documentation and closure of audit findings including details of causes, actions taken, tangible and non-tangible impacts of the incident and overall effectiveness • Incorporate key learnings from each incident and from feedback into the plan to ensure continuous improvement of the Information Security. • End to end documentation of security incidents and breaches, the correction and corrective actions and identification of RCA. • Responsible for MIS/Reporting on established security metrics on a regular basis. • Knowledge of Regulatory bodies (RBI, NPCI etc) guidelines AddOns - Experience of conducting and facing vendor audits, Certification audits, regulatory audits. ISO 27001 LA. Perks and benefits Salary + PF + ESIC + Medical Benefits Please share the CV - shashankj@insolutionsglobal.com WhatsApp the CV with details - 8860445340

About The Role ::Cyber Security Analyst A Cyber Security Analyst is responsible for identifying, assessing, and managing security vulnerabilities within an organization''s IT systems and infrastructure. This role involves conducting vulnerability assessments, analyzing security risks, and providing recommendations to mitigate potential threats. The analyst uses tools like Qualys to perform these assessments and ensure the security of servers and other critical assets. Key Responsibilities: Conducting regular and comprehensive vulnerability assessments of networks, systems, and applications using the Qualys tool. Prioritize remediation of discovered vulnerabilities and coordinate mitigation efforts across all teams and systems. Collaborate with team members and help operationalize defined vulnerability management processes. Coordinate with respective teams to ensure timely update and configuration of software and operating systems with the latest patches and security settings to ensure the proper defences are present. Contribute to defining, reviewing, and enacting security policies and practices. Stay apprised of the threat landscape, vulnerabilities, and industry best practices, and make recommendations to improve Wipros security posture. Review and create SOPs & technical documents/runbooks to support team processes and ISMS requirements. Work closely with other information security teams to ensure operational efficiency and stay apprised of overall Wipro security posture and capabilities. Qualifications: Bachelors degree in information security, Information Technology, or a related field. 5+ years of experience in Threat and Vulnerability Management or equivalent knowledge. Proficiency in using the Qualys VMDR tool for vulnerability assessments. Hands-on experience with Qualys reports and Excel representation with various dashboards. Good understanding of CIS benchmarks and Qualys Policy Compliance module. Familiarity with the ServiceNow tool will be advantageous. Must be a team player, dedicated, and proactive. Must possess good communication, problem-solving, critical thinking, and organizational skills. Must have good presentation skills. Ability to clearly present technical approaches or findings in oral and written format. Ability to present ideas in business-friendly and user-friendly language. Highly self-motivated and directed.

Aspire Systems is currently seeking young and dynamic candidates to join our Process / Quality Assurance Team at Kochi. Designation : Associate / Executive Work Location : Kochi Education : BE / B.Tech Required Experience: 1 to 2+ Years of relavant experience in Quality Assurance in the IT Services Industry. Roles & Responsibiities: Responsible for conducting quality audits, Process health check-ups for and reviews Responsible for guiding the project teams in process compliance Knowledge of lifecycle models and development/ Testing/ Support processes and lifecycle models such as Waterfall, Iterative, Agile To work towards the corporate initiative certification for ISO, ISMS, PMS. Responsible for Consolidation of defects and conduct defect analysis. Responsible for Identifying, analysing, and monitoring performance improvement opportunities/ project pipeline in process areas Participate Project Kick off meetings Responsible Identification of Process & check points for the project.

governance policies and procedures, risk management, compliance, access control, network security, security architecture, security incident response, disaster recovery, business continuity management, privacy and data protection Experience in leveraging industry standards and frameworks such as ISO/IEC 17799, ISO/IEC 27001, COBIT, ITIL, etc. Demonstrates in-depth knowledge of security and privacy controls and risk management process Experience in data protection technologies such as encryption, data discovery, data masking, data redaction, etc. Possesses certifications such as ISO27001 LA/ LI, ISO22301 LA/LI, CISSP, CISA, CISM certification- preferred The key skills required are as follows: Responsible for ISO 27001 based Information Security Management System implementation and sustenance Responsible for advising clients on Business Continuity Planning, IT Disaster Recovery planningRole & responsibilities Preferred candidate profile Perks and benefits

KRA1 Accommodation and Furniture : Assist superior in smooth allotment of accommodation and distribution of furniture at offices and residential blocks of township. Telephone and Mobile : Assist superior in effective usage of company Telephone and Mobiles Entertainment through DTH Services: Assist superior in providing entertainment through DTH facility to township residents. Assist Superior in : Allotment of accommodation at Staff. Co-ordinate maintenance activities and prepare and issue allotment letters to the allottees. Planning, Budgeting and distribution of furniture at offices and township quarters. Raising PR, outside furniture inspection visit at vendors site. Distribution of furniture items. Completion of discard formalities to dispose off condemn furniture. Assist superior in : Monthly billing process of existing BSNL Telephone Lines, PRI, Mobiles and Data Cards. Authorized signatory for arranging all type of SIMs ie IDEA, BSNL, Vodafone, Airtel etc connections. Distribution of mobile Sims to respective employees. Maintain online bill verification system. Liaison and necessary correspondence for smooth functioning. Attend all type problem of mobile and Telephone. Assist Superior in : Installation of Tata Sky in township (Staff Colony). Monitoring of services rendering through Tata Sky. Approval of packages and necessary recharging. Verification and process the payment. KRA2 Event Management : Assist superior in organizing event management in plant, mines and township. Other Administrative tasks : Assist superior in managing various administrative tasks Safety compliance Ensure Safety compliance while discharging duties and tasks. System Implementation : Organize and implement ISO, EMS, OHSAS, SA 8000 and WCM systems in own area of operation through the involvement of people for the improvement of quality standards and productivity Assist superior in : Company tenting arrangement. Assist to various agencies ie Temple, School and Ladies club. Assist superior in : Electricity deductions of Staff Colony. Prepare agreement and invoices of shop keepers pertain to Shopping Complex. Conduction of various company programme. Prepare and regularly review personal safety action plan (PSAP) Ensure safety in own area of operation and by others. Ensure safety by direct reports while completing the assigned tasks. Adhere to safety guidelines circulated by the management time to time. Assist Superior in : Identifying and execute improvement study and kaizen. Identifying get rectified. 1. Abnormalities. Spillage/leakages. 2. Unsafe conditions/practices 3. Points emerged in campaigns. Execution of 5S activities. Executing implementation plan for Strategic quality projects. Quality improvement objectives. Improvement of WCM criteria score. Internal customer rating improvement. ISO system improvement. Statutory compliance. Elimination of Muda. Does why why analysis. Prepare monthly WCM presentation. Develop one point lesson. Update WCM activities boards. Develop Model area. Create awareness in team members. Develop visual controls. KRA3 Information Security Compliance of Information Security as per Corporate ISMS guideline. Follow various ISMS policies such as Password policy, clear desk policy, Internet and E mail policy, Disposal policy, Software compliance policy Qualifications: Graduate

Job_Description":" About Us : Tsaaro isdedicated to Data Privacy and Security as its core focus. Our team comprises specializeddata privacy consultants, information security experts, and penetrationtesters, all working to empower our clients with seamless and highly efficientsecurity solutions. Our approach is centered around customization, understandingthe unique needs of each organization, and finding solutions that align withtheir budget and resource constraints. At Tsaaro, weadopt a pragmatic, risk-based strategy to deliver practical and effectiveadvice. By providing real-world guidance, support, and actionablerecommendations, we confidently equip our clients to address a broad spectrumof security and privacy challenges. Responsibilities : As a Senior DataPrivacy Consultant, you will be entrusted with the following keyresponsibilities: Design andimplement data protection and privacy programs that cater to our clientsspecific business needs, ensuring their sensitive information is wellsafeguarded. Evaluate andassess our clients data protection and privacy practices, offering valuableinsights and actionable recommendations for continual improvement. Demonstrateexpertise in various standards, such as ISO 27001/2, ISO 22301, ISO 27018, NISTstandards on Cyber Security, HITRUST, ISO 27701, etc., to assist clients incompliance and governance. Provideguidance and support to clients in adhering to a complex web of national andinternational laws and regulations, including the EU General Data ProtectionRegulation (GDPR) and other privacy laws. Assist inpreparing policies, reports, and schedules for clients and relevantstakeholders, ensuring clear communication and alignment with industry bestpractices. Conductthorough audits of Privacy controls to monitor program effectiveness andcompliance, ensuring data protection is at its optimal level. Utilize onlinetools to facilitate Incident Management and Data Subject Rights processes,ensuring efficient and timely responses to potential data incidents. Foster andmaintain productive working relationships with client personnel, promotingeffective collaboration and understanding of their specific needs. Demonstrate astrong commitment to adhering to workplace policies and procedures, maintainingthe highest standards of professionalism and confidentiality. Contribute tocybersecurity engagements, developing cybersecurity strategies, governance,risk, and compliance activities, and cybersecurity policies in line with ISO27001 and ISO 27701. Perform GapAssessments, Risk Assessments, ISMS Documentation, Internal Audits, and supportduring Certification Audits to strengthen overall security frameworks. Requirements To beconsidered for this role, the candidate must meet the following requirements: Possess asound knowledge of fundamentals of information security systems. Have 2-3 yearsof relevant experience in the field. Demonstrate proficiencyin standards such as ISO 27001/2, ISO 22301, ISO 27018, NIST standards on CyberSecurity, HITRUST, ISO 27701, etc. Exhibit a goodunderstanding of GDPR, CCPA, or other privacy laws. Displaycompetence in governance and reporting, as well as a strong grasp of cyber andprivacy risks. Hold relevantqualifications such as CIPM, CIPT, CIPP/E. Showcaseexcellent communication skills, both written and verbal. Benefits Competitive salary and performance-based bonuses. Professional development opportunities, including training and certifications. Flexible working hours. Collaborative and inclusive work environment. Opportunity to work with a passionate team dedicated to making a difference in data privacy and security. ","