173 Isms Jobs - Page 5

Job_Description":" About Us Tsaaroprime focus is on Data Privacy and Security. Our team of specialist data privacy consultants, information security consultants, and penetration testers help and advise our clients to make running a secure business easier, with high efficiency. Everything we do is tailored to the individual organizational requirements, aligned with their budget and resource challenges. We take a pragmatic, risk-based approach to provide our clients with real-world, workable advice, guidance, and support that helps them to deal with a wide range of security and privacy-related challenges. Responsibilities: As a Data Protection Consultant, you will be entrusted with the following key responsibilities: Design and implement data protection and privacy programs that cater to our clients specific business needs, ensuring their sensitive information is well safeguarded. Evaluate and assess our clients data protection and privacy practices, offering valuable insights and actionable recommendations for continual improvement. Demonstrate expertise in various standards, such as ISO 27001/2, ISO 22301, ISO 27018, NIST standards on Cyber Security, HITRUST, ISO 27701, etc., to assist clients in compliance and governance. Provide guidance and support to clients in adhering to a complex web of national and international laws and regulations, including the EU General Data Protection Regulation (GDPR) and other privacy laws. Assist in preparing policies, reports, and schedules for clients and relevant stakeholders, ensuring clear communication and alignment with industry best practices. Conduct thorough audits of Privacy controls to monitor program effectiveness and compliance, ensuring data protection is at its optimal level. Utilize online tools to facilitate Incident Management and Data Subject Rights processes, ensuring efficient and timely responses to potential data incidents. Foster and maintain productive working relationships with client personnel, promoting effective collaboration and understanding of their specific needs. Demonstrate a strong commitment to adhering to workplace policies and procedures, maintaining the highest standards of professionalism and confidentiality. Contribute to cybersecurity engagements, developing cybersecurity strategies, governance, risk, and compliance activities, and cybersecurity policies in line with ISO 27001 and ISO 27701. Perform Gap Assessments, Risk Assessments, ISMS Documentation, Internal Audits, and support during Certification Audits to strengthen overall security frameworks. Requirements To be considered for this role, the candidate must meet the following requirements: Possess a sound knowledge of fundamentals of information security systems. Have 1-2 years of relevant experience in the field. Demonstrate proficiency in standards such as ISO 27001/2, ISO 22301, ISO 27018, NIST standards on Cyber Security, HITRUST, ISO 27701, etc. Exhibit a good understanding of GDPR, CCPA, or other privacy laws. Display competence in governance and reporting, as well as a strong grasp of cyber and privacy risks. Hold relevant qualifications such as CIPM, CIPT, CIPP/E. Showcase excellent communication skills, both written and verbal. Benefits Competitive salary and performance-based bonuses. Professional development opportunities, including training and certifications. Flexible working hours. Collaborative and inclusive work environment. Opportunity to work with a passionate team dedicated to making a difference in data privacy and security. Join and hustle with the Indias fastest privacy and information security consulting company. ","

Description **Cyber Security Compliance officer C2 8 to 10 years Primary Skills (Must Have)-Must have very strong technical expertise around Cyber Security -Must have experience in Cyber Security Risk, Compliance and Data privacy -Understanding on ISO 27001:2013 Audit -Third party risk management (TPRM) - Secondary Skills (Nice to have)-CIS Benchmark hardening (Knowledge in Unix, Windows, Active Directory, networking principles including TCP/IP) -Knowledge of Security tools for Vulnerability Management, Privilege Identity management Personal Qualities-Excellent written and verbal communication skills -Self-driven and able to work single handedly -Ability to multi-task, prioritize, coordinate, work well under pressure and meet deadlines -Analytical and methodical approach to problem solving -Good in stakeholder management - Key Responsibilities-Play a role in the delivery of GRC consultancy services, customer facing -Support customer to deliver IT Security Governance to attend Security Working Groups with customer -Develop risk management controls and systems -Vendor Risk assessment -Oversee and manage the GRC risk assessment and security exception process -Evaluate moderate to complex business and technical requirements, and communicate inherent security risks and provide recommendations for mitigating controls to technical and non-technical stakeholders -Provide potential security related Service improvements -Review potential remediation options to address vulnerabilities discovered by scanning and provide input into recommendations -Support investigations into abnormal User activity as a result of a security investigation -Review changes to the ISMS proposed by customer and provide appropriate documented updates to the processes, roles and responsibilities -Provide security risks related to the Cyber Services -Ability to adhere to strict quality and change management process Additional Remarks for considerationInvolves researching, developing, innovating and delivering effective and consistent solutions to support the infrastructure systems ensuring the application of current and emerging technologies. Education / Certifications / TrainingsDegree in Computer Science, Information Technology, Information Services, or similar Shift Timing (9x5,24x7)Europe time, one shift Job Location (Bangalore/Pune /Mumbai)Mumbai, Bangalore Named Job Posting? (if Yes - needs to be approved by SCSC) Additional Details Global Grade C Level To Be Defined Named Job Posting? (if Yes - needs to be approved by SCSC) No Remote work possibility Yes Global Role Family To be defined Local Role Name To be defined Local Skills risk analysis;security risks Languages RequiredENGLISH Role Rarity To Be Defined

About The Role ::Cyber Security Analyst A Cyber Security Analyst is responsible for identifying, assessing, and managing security vulnerabilities within an organization''s IT systems and infrastructure. This role involves conducting vulnerability assessments, analyzing security risks, and providing recommendations to mitigate potential threats. The analyst uses tools like Qualys to perform these assessments and ensure the security of servers and other critical assets. Key Responsibilities: Conducting regular and comprehensive vulnerability assessments of networks, systems, and applications using the Qualys tool. Prioritize remediation of discovered vulnerabilities and coordinate mitigation efforts across all teams and systems. Collaborate with team members and help operationalize defined vulnerability management processes. Coordinate with respective teams to ensure timely update and configuration of software and operating systems with the latest patches and security settings to ensure the proper defences are present. Contribute to defining, reviewing, and enacting security policies and practices. Stay apprised of the threat landscape, vulnerabilities, and industry best practices, and make recommendations to improve Wipros security posture. Review and create SOPs & technical documents/runbooks to support team processes and ISMS requirements. Work closely with other information security teams to ensure operational efficiency and stay apprised of overall Wipro security posture and capabilities. Qualifications: Bachelors degree in information security, Information Technology, or a related field. 5+ years of experience in Threat and Vulnerability Management or equivalent knowledge. Proficiency in using the Qualys VMDR tool for vulnerability assessments. Hands-on experience with Qualys reports and Excel representation with various dashboards. Good understanding of CIS benchmarks and Qualys Policy Compliance module. Familiarity with the ServiceNow tool will be advantageous. Must be a team player, dedicated, and proactive. Must possess good communication, problem-solving, critical thinking, and organizational skills. Must have good presentation skills. Ability to clearly present technical approaches or findings in oral and written format. Ability to present ideas in business-friendly and user-friendly language. Highly self-motivated and directed.

Design and Develop scalable, secure, and reliable cloud-based infrastructure, product and solutions Build and maintain cloud services, ensuring (CI/CD) practices are followed Develop automated solutions using industry standard tools to manage infrastructure as code. Implement and enforce security best practices with ISMS/QMS compliance Setup monitoring, logging, and alerting mechanisms to ensure system health. Troubleshoot and resolve performance, security, and operational issues. Maintain clear documentation of cloud systems and procedures. Complexities of the job: Translates the organizations business goals, customer/ market needs into technical implementation Focuses on customers by understanding their needs to design and implement solutions Consistently delivers high quality software at a sustainable speed, maintaining an advanced level of software craftmanship Ensures adherence to all applicable development processes, legal, quality, security and regulatory requirements Stays up-to-date on the relevant technology domain and enjoys self-learning to bring new technical practices and innovations to the team Executes on continuous improvement in processes and ways of working to achieve technical and operational excellence Youre the right fit if: Bachelors degree in an engineering discipline with 5-8 years of work experience Proven technical expertise in cloud technologies with strong understanding of microservices, RESTful APIs, CI/CD pipelines and containerization Proficiency in languages like Python and Java along with knowledge of infrastructure as code using Terraform or CloudFormation Experience in development and deployment of BizDevSecOps cloud solutions on AWS Background in healthcare imaging technologies, standards, workflows and regulations (DICOM, HL7, FHIR, PACS etc.) is desirable Experience with CI/CD pipelines and DevOps practices for faster releases and improved developer productivity Experience in delivering healthcare SW using agile WoW, optimized for compliance (ISMS QMS) Excellent communicator, able to accurately and succinctly communicate technical status to stakeholders at different levels

Job Description: Implement ISO 27001 framework and Information Security Management System (ISMS) Develop corporate Information Security policies and standards and continually monitoring the information security controls, KRIs/KPIs and technical landscape. Compliance reviews Certifications, accreditations (e.g. ISO27001, GDPR, HITRUST etc.) and customer audits Providing ISMS awareness trainings Conducting Internal audits Tracking closure of NCRs Risk Assessment Work with business, internal IT and 3rd party vendor teams to promote and adopt security best practices Responding to the Client SIG questionnaires They will also be trained in QMS, ESG, and VAPT based on the need.

Plans to increase business and revenue growth with your allocated clients-researching, planning, and implementing new target market initiatives Researching prospective accounts. Must have worked with Bank, NDFC and financial institution. Required Candidate profile NeSL services are used by financial and operational creditors. Implementation of services provide by NeSL and its group (digital, financial creditor, Homebuyer and Operational creditor services)

Why Gainsight?. We are ranked #1 on Glassdoors 2023 Best Place to Work List. Heres why. At Gainsight, our mission is to be living proof you can win in business while being human-first. Our industry-leading platform helps companies of all sizes and industries build durable businesses. Gainsight offers a powerful set of customer success, product, and community engagement solutions that enable businesses to scale efficiently, create alignment, and have a holistic view of their customers"”all of which help increase product adoption, prevent churn, and grow renewals and expansions. Our software is used by hundreds of companies, including nearly 200 publicly traded organizations and industry leaders such as GE Digital, SAP Concur, and Box. We have offices in the US, UK, Netherlands, Israel, Japan, and India. Gainsight joined the Vista Equity Partners portfolio in 2020. In 2021, we won their Excellence in Engineering award in recognition of our product and engineering advancements. Gainsight has also been named one of the top 100 private cloud companies in the world by Forbes, one of the fastest-growing private companies in America by Inc. Magazine, and one of 20 Great Workplaces in Tech by Fortune Magazine. With diversity and inclusion at the forefront of our values, we promote a culture that celebrates diversity and inclusiveness regardless of, but not limited to, race, gender, sexual orientation, family status, religion, ethnicity, national origin, physical disability, veteran status, or age. Job Responsibilities. Maintain and execute the compliance programs of the company (ISMS, BCMS, SOC2, HIPPA etc). Spearhead and drive internal consolidated audit to fulfil all the certifications and attestations requirements. Completes audit work papers by documenting audit tests and findings appropriately. Must translate compliance requirements to our business processes and help deploy relevant controls to fulfil the regulatory needs. Liaise with stakeholders(Business, IT, HR, Legal, Development, Engineering, Security & Privacy etc) during audit readiness, execution and findings remediation. Must validate all the audit artefacts thoroughly and vet before presenting to external auditors. Partner with external auditors and drive the audit life cycle end to end smoothly and successfully with no or minimal leadership involvement. Collaborate with Governance team, to develop policies that adhere to the laws and regulations. Maintain and execute the compliance trainings and awareness program. Monitor the applicable laws, stay on top of the dynamic laws and regulations and propose plan of action to leadership. Qualification And Skills. Bachelor's degree or equivalent educational qualification. 8 to 12 years of relevant experience. Experience in audit and compliance areas. Strong knowledge and thorough understanding of ISO27001, ISO22301, SOC2, HIPPA etc. Knowledge of security frameworks like NIST CSF. Strong communication and interpersonal skills, with the ability to effectively communicate with all internal stakeholders. Ability to communicate with external auditors professionally and with no conflicts. Strong analytical and problem-solving skills. Experience working in a SaaS environment or with cloud-based technologies is preferred. Relevant certifications ISMS lead auditor/implementor is a must. Relevant certifications like CISA is a plus. Why Youll Love It Here. Your job shouldnt stand in the way of your happiness"”it should be a path to achieve it. At Gainsight, were passionate about achieving our goals"”at the office and everywhere"”and we work every day to create an environment that nurtures our best selves. Gainsters love working here for several reasons. Here are a few:. Our Core Values:We are guided by our values on our mission to be living proof you can win in business while being human-first. Learn more here. Our CEO:With a 99% approval rating on Glassdoor, Nick Mehta is one of the most beloved CEOs in Silicon Valley. Our Growth Opportunities:From mentoring to career development opportunities, were passionate about helping our Gainsters learn, grow and thrive. Our Teammate Resource Groups:A huge source of pride for Gainsight, these groups are on a mission to put our values into action and make Gainsight a great place to work for all. Our Wellness Priorities:Monthly Recharge Days that re-energize us. Our Parody Videos:No explanation needed. Just watch them here!. About The Role : Summary. By joining the Gainsight team, youll have a unique opportunity to make your mark at a truly human-first company and have loads of fun doing it. Come join us!. Show more Show less

As a Probationary Associate, you will be at the forefront of our International voice process, engaging with professionals in the US Healthcare Industry, verifying Patient Information, Claim details and resolving queries. Eligibility Flexibility to work in shifts to accommodate our International operations. Proficiency in spoken English with a strong command and good comprehension skills. Any Diploma / Graduate with a strong verbal & written command of English.

Design and Develop scalable, secure, and reliable cloud-based infrastructure, product and solutions Build and maintain cloud services, ensuring (CI/CD) practices are followed Develop automated solutions using industry standard tools to manage infrastructure as code. Implement and enforce security best practices with ISMS/QMS compliance Setup monitoring, logging, and alerting mechanisms to ensure system health. Troubleshoot and resolve performance, security, and operational issues. Maintain clear documentation of cloud systems and procedures. Complexities of the job: Translates the organizations business goals, customer/ market needs into technical implementation Focuses on customers by understanding their needs to design and implement solutions Consistently delivers high quality software at a sustainable speed, maintaining an advanced level of software craftmanship Ensures adherence to all applicable development processes, legal, quality, security and regulatory requirements Stays up-to-date on the relevant technology domain and enjoys self-learning to bring new technical practices and innovations to the team Executes on continuous improvement in processes and ways of working to achieve technical and operational excellence you're the right fit if: Bachelors degree in an engineering discipline with 5-8 years of work experience Proven technical expertise in cloud technologies with strong understanding of microservices, RESTful APIs, CI/CD pipelines and containerization Proficiency in languages like Python and Java along with knowledge of infrastructure as code using Terraform or CloudFormation Experience in development and deployment of BizDevSecOps cloud solutions on AWS Background in healthcare imaging technologies, standards, workflows and regulations (DICOM, HL7, FHIR, PACS etc) is desirable Experience with CI/CD pipelines and DevOps practices for faster releases and improved developer productivity Experience in delivering healthcare SW using agile WoW, optimized for compliance (ISMS & QMS) Excellent communicator, able to accurately and succinctly communicate technical status to stakeholders at different levels

Global Digital Platform Architect Azure (F/M/D) arrow_drop_down Responsibilities arrow_right Responsible for the overall state of the art IT architecture of the FFT software development on Azure including all integrated business applications and their design, development as well as deployment Collaborate with the business responsible and digital product owners from FFT business units to understand strategic objectives and functional requirements and to translate them into technical requirements, concepts and applications Identify opportunities where data and new technologies like AI can drive business value and innovation to build an innovation funnel for the platform Ensure the platform and all applications are stable, scalable, secure (ISMS and IT security), and optimized for performance and user experience incl. monitoring and ensuring technical conformity with patch levels and maintenance of components Oversee the data chain from hardware (sensors and gateways), collecting and storage of data and usage of data in applications. Provide technical documentation of the platform, the applications and installation guides for hardware 3rd Level Support in collaboration with business and developers e.g. certificate management Ensure timely, cost efficient and high-quality delivery as well as availability of the platform and components in alignment with internal and external business partners Qualifications arrow_right Bachelor s or master s degree in computer science, Information Technology, Business Informatics, or a related field Several years of experience in IT architecture design with Azure DevOps / services and digital product development Overall IT architecture and concept of the data driven platform Experience in Azure DevOps, Azure services regarding functionality, security, scalability and uptime Experience in IoT scenarios including sensors and gateways Strong background in data management, AI, and machine learning Ability to translate business needs into technical solutions

What is special about Lighthouse Lighthouse is built on a foundation of unique, compassionate, highly driven individuals. We elevate the strengths and talents of those around us while leveraging opportunities for growth. We offer the experience of solving complex problems while continuing to grow multiple facets of your career. Lighthouse is where innovation meets support and where collaboration is the key ingredient to success. We grow together and are stronger together. What s unique about this role Manage a team of 5-6 Client Services Associates, Sr Associates and Project Managers involved in Client communication for Intake, processing, Hosting, Review Support within Nuix, Relativity platforms. What will this person do Manage a team of 5-10 members, handling wide range of e-discovery projects/Matters, including large and complex multi-jurisdictional matters, working closely with North America and other regions. Intuitive understanding of text and metadata extraction processes and Implementation of culling requirements such as deduplication, date restrictions, and search filtering, Exporting processed data in specified formats. Engage with Clients and Law Firms for questions, clarification and escalations related to their eDiscovery Matters. Daily/Weekly Resource and work planning, publishing rosters by closely working with Leads and Seniors in the team as per availability. Connect with the Leads, Managers in North America and other global Lighthouse offices, to get an understanding on priority projects and any actionable or upcoming changes within the processes. Work with the APAC leadership team in aligning the team with the Global Lighthouse standards, processes, and procedures. Conduct in 1-1 s with team members and provide timely feedback on performance and understand any concerns/issues raised by team members. Involved in Annual Review and Performance Rating activities. Assess strengths and weaknesses of individuals in the team and assist Leads for development of Individuals, including direct reports. Identify and build periodic KPI s to build better efficiency in the team. Publish periodic reports to Senior Managers Directors, that will help in keeping a check on the health of team based on Utilization, productivity, and Individual Contribution Encourage Cross skilling, Cross training to ensure individuals gradually have opportunities to take up different roles within the team and contribute to processes for better Client satisfaction factors. Drive team meetings with different teams within APAC to stay updated on product developments and Technology, infrastructural changes. Extensively audit Billable and non-billable entries at the end of the week and month and send Billing reports. Bring your passion and together we will shine. It would also be great if you have the following: Bachelor s degree Certifications on database and data handling, preferred but not a mandatory requirement. 8+ years of experience in eDiscovery Client services/Project Management or litigation/practice support department within a law firm. Managed a team of eDiscovery Client Services/Project Managers Confidently able to respond to Client queries, with a thorough understanding of internal processes and hands on experience of Relativity, Nuix and other eDiscovery platforms. Drive standup meetings and encourage participation from all levels within the team. Conduct Interviewing processes for new hiring and provide overall feedback of candidates, based on available roles and fitment within the Organization. Assess and guide colleagues to be able to communicate effectively and develop best practices for Client interactions and communication. Knowledge of ISMS and basics of Six Sigma is a plus, but not mandatory. Excellent written and verbal communication skills. Ability to work with Senior Managers and Directors in structuring and restructuring the team as per business needs. Engage across a range of backgrounds and levels of seniority with the ability to Escalate matters that might be impacting Business or Individuals. Work flexible hours or rotational shifts to help support the demands of our eDiscovery business. Travel domestically or Internationally for Business purposes as required. Preferred Skills Extensive experience utilizing eDiscovery technology platforms such as Relativity, Nuix, Brainspace, Concordance, Ringtail, Service Now (Project management tool) is a plus. Advanced understanding of Billable, Non-Billable Client tasks. Handled a team of Client Services consultants and Leads in the past for eDiscovery Matters. Relativity Certified Administrator (RCA) or any Relativity or eDiscovery Certifications is a plus. Familiarity with computer forensic tools is a good to have, but not required. (i.e., Encase, Forensic Tool Kit, MacQuisition, Cellebrite.). Strong understanding of proprietary software related to Data processing, Data Hosting and Time keeping. Develop or possess strong organizational skills and an extreme attention to detail. Proficiency with Windows and related software, such as Microsoft Excel, Power Point Lighthouse celebrates and thrives on diversity and is an Equal Opportunity Employer. We hire, train, and promote regardless of race, religion, color, national origin, sex, disability, age, veteran status, and other protected status as required by applicable law. We welcome any talents and contributions you can bring to the team and are deeply committed to growing an environment where everyone can feel safe, is respected, and can show up as themselves. Come as you are! As a trailblazer and catalyst for change, Lighthouse rises to each opportunity to help our clients and our people do what they do best shine. This position will work for and be employed by Lighthouses India subsidiary, which is an independent company located in India.

Position: Information Security Manager Job Shift: Night Education: We hire based on individual talent, skill and work ethic. Formal degrees are not a material in our hiring decision. Job Location: PAN India Key Responsibilities: Define the scope of the ISMS, identify relevant controls, and document justifications for control selection. Conduct ongoing risk assessments and manage the risk treatment plan, ensuring effective monitoring of control actions. Develop, review, and update all Information Security and IT policies to align with industry standards and regulations. Facilitate regular training sessions for all staff on ISMS requirements to promote a culture of security awareness. Plan and conduct internal audits of the ISMS and oversee vulnerability assessments and penetration testing. Ensure closure of audit findings by tracking actions and suggesting corrective measures. Compile inputs for management review meetings and report on ISMS objectives and progress. Coordinate with law enforcement, CERT-in, and other relevant agencies on ISMS implementation and audits. Plan security measures for special and high-risk events, ensuring proper risk assessments are conducted. Order and manage security-related supplies and equipment as necessary. Analyze and assess vulnerabilities in software, hardware, and networks, recommending countermeasures and best practices. Protect systems by defining access controls and resource management. Conduct audits to identify security violations and recommend improvements. Create, test, and implement network disaster recovery plans. Assist in emergency management and contingency planning. Stay abreast of changes in security technologies, legislative directives, and best practices through seminars and conferences. Note: Having done relevant security certifications such as CEH, ECSA, CISSP, CISA, etc. will be an added advantage. Candidates who have appeared for our recruitment process in the last 3 months are not eligible for this opening.

Job Title: Probationary Associate Work Locations: Coimbatore Process Details As a Probationary Associate, you will be at the forefront of our International voice process, engaging with professionals in the US Healthcare Industry, verifying Patient Information, Claim details and resolving queries. Eligibility Flexibility to work in shifts to accommodate our International operations. Proficiency in spoken English with a strong command and good comprehension skills. Any Diploma / Graduate with a strong verbal & written command of English.

Title: Information Security Lead Date: Mar 17, 2025 Location: Bangalore, KA, IN We are a technology-led healthcare solutions provider. We are driven by our purpose to enable healthcare organizations to be future-ready. We offer accelerated, global growth opportunities for talent that s bold, industrious, and nimble. With Indegene, you gain a unique career experience that celebrates entrepreneurship and is guided by passion, innovation, collaboration, and empathy. To explore exciting opportunities at the convergence of healthcare and technology, check out www.careers.indegene.com Looking to jump-start your career We understand how important the first few years of your career are, which create the foundation of your entire professional journey. At Indegene, we promise you a differentiated career experience. You will not only work at the exciting intersection of healthcare and technology but also will be mentored by some of the most brilliant minds in the industry. We are offering a global fast-track career where you can grow along with Indegene s high-speed growth. We are purpose-driven. We enable healthcare organizations to be future ready and our customer obsession is our driving force . We ensure that our customers achieve what they truly want. We are bold in our actions, nimble in our decision-making, and industrious in the way we work. Position Overview The Information Security lead, A5 position, plays a key role in supporting the organizations information security initiatives, ensuring compliance with security standards, protecting organizational assets, and mitigating risks. The individual will work closely with stakeholders to maintain and improve the organizations security posture. Key Responsibilities Information Security Management Implement and maintain the organizations Information Security Management System (ISMS) in alignment with ISO 27001 standards. Conduct periodic risk assessments and recommend measures to mitigate identified risks. Ensure security policies, processes, and procedures are up to date and adhered to across the organization. Participate in Audits, Phishing simulations and Information Security related activities. Incident Management and RedFlag Management Monitor, investigate, and respond to security incidents, ensuring prompt resolution and documentation. Conduct RCA and recommend measures to prevent recurrence. Compliance and Audits Ensure compliance with regulatory and client-specific security requirements (e.g., GDPR, ISO 27001). Support internal and external audits, preparing evidence and addressing non-conformities. Responding to client questionnaire, Cybersecurity vendor audits, and RFI/RFA related to Information Security requirements. Maintain regular update of ISMS policies and procedures as required. Awareness and Training Conduct security awareness programs to educate employees on information security best practices. Provide targeted training on security protocols to relevant teams. Information Security Metrics reporting Perform regular Information Security metrics assessments and coordinate remediation efforts for deviations from industry standards. Collaborate with IT teams to ensure timely reporting of metrics to higher management. Send out monthly reports of Incidents, Redflags, Infosec metrics and simulations. Access and Certification Management Oversee the implementation and maintenance of exception access for sensitive applications, systems and data. Manage the lifecycle of Information Security certifications, including tracking, and completion of audits like ISO, SOC2, CyberVadis etc. Risk Management Assess and monitor security risks associated with Information Security process and controls. Develop and enforce security requirements for emerging trends and regulatory obligations. Post-Incident Analysis Conduct post-incident reviews to evaluate the effectiveness of response efforts. Document CAPA, lessons learned, and update security protocols as required. Qualifications and Skills Bachelor s degree in Computer Science, or a related field. Professional certifications such as CISM, ISO 27001 Lead Implementer/Auditor, or equivalent are preferred. 5+ years of experience in information security, with at least 2 years in a team management role. Strong knowledge of information security frameworks, standards, and regulations (e.g., ISO 27001, GDPR). Hands-on experience with risk assessments, security audits, and incident management and response. Excellent communication and stakeholder management skills. Preferred Skills Experience in securing data within client-controlled environments. Knowledge of Cybersecurity tools, data protection and privacy laws. Familiarity with SIEM tools, endpoint protection, and network security practices. EQUAL OPPORTUNITY Indegene is proud to be an Equal Employment Employer and is committed to the culture of Inclusion and Diversity. We do not discriminate on the basis of race, religion, sex, colour, age, national origin, pregnancy, sexual orientation, physical ability, or any other characteristics. All employment decisions, from hiring to separation, will be based on business requirements, the candidate s merit and qualification. We are an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, colour, religion, sex, national origin, gender identity, sexual orientation, disability status, protected veteran status, or any other characteristics.

To process Australian payrolls and HRIS tasks/activities by meeting the obligations such as TAT & accuracy levels as specified To provide an effective and efficient Australian payroll and/or HRIS service to customers, ensuring the accurate and timely payment of their employees salaries Respond to requests, queries and complaints from external customers in a friendly and efficient manner to enhance customer loyalty To own and manage the quality and accuracy of operational tasks of the team To support and help facilitate 100% SLA attainment for the team through effective WFM Be a SPOC to the Clients (Internal / External) Be the Innovation champion for the process and team Main responsibilities-Production Responsible for processing Australian payrolls and HR tasks and Meeting Targets Providing Feedback on Quality Issues Found during Audits Responsible for timely escalation of production related issues Responsible for maintaining Accuracy for the team Prioritizes, allocates and actions daily tasks to be accomplished to meet SLA To build and nurture constructive relationships with the onshore team and internal colleagues from other business areas and to contribute to team efforts, team meetings etc. Ensures that team members get data required, in right format and in time to complete payrolls to agreed deadlines Calculates, prepares and transmits manual payments and third-party disbursements Coaches and advises team members on Systems and PC usage Suggests ways in which systems and procedures can be improved to enhance the business Responsible to track and manage SLAs Help TL manage escalations for the team including RCAs, tracking, data collation and analysis Main responsibilities-Compliances Following ISMS Compliance Of The Team Adhering To Company Policies, Rules And Regulations Following Quality Processes Thoroughly - Checklists, Standards Etc. On Process Adhering to Work Timings, Leave Schedules

Primary Responsibilities: To be an effective participant in Classroom training and clear the training assessments with 85% quality Consistently meet the targets set for MOCK charts Eligible employee will get confirmed as Junior Coder within a max of 6 months from the Joining Punctuality, Attendance and General Adherence to company policies, procedures and practices Strives to provide ideas to constantly improve the process Ensure adherence to external and internal quality and security standards (HIPPA/ISO/ISMS) Be an effective team player Eligibility To apply to an internal job, employees must meet the following criteria: SG 22 can apply will move laterally Performance rating in the last common review cycle of Meets Expectations or higher Not be on any active CAP (Corrective Action Plan) or active disciplinary action Time in Role Guidelines Should have been in your current position for a minimum of 12 months, if you have not met the recommended minimum time in role, discuss your career interest with your manager and gain alignment prior to applying. And share the alignment email with respective recruiter while applying Required Qualifications: Any degree in Life Science or Bio-Science Any degree in Pharmacy or Pharmaceutical Sciences Any degree in Nursing or Allied Health Any degree in Medicine

JOB DESCRIPTION POSITION TITLE Information & Cyber Security Lead DEPARTMENT Information Technology LOCATION Chennai KEY RESPONSIBILITIES • Bringing ISMS procedures into practice throughout the company. • Responsible for Identifying, analysing, and monitoring performance improvement opportunities in various ISMS areas. • Track and report security breaches to the information technology security officer; keep an eye on security tools to identify security events and incidents. • Serving as a point of contact or spokesperson for security for all technical deliveries, initiatives, and project executions. • Conducting reviews and ISMS audits as well as process health assessments. • To ensure compliance with the corporate security policy, improve the technical security processes and procedures. • Utilize compliance tools and vulnerability scanning to find system vulnerabilities, then communicate with other IT departments to arrange corrective measures. • Examine technical security threats for their potential to compromise system and service availability, confidentiality, and integrity. Report and escalate assessment findings. • Experience to ISO 27001:2022, OWASP, CIS, ITIL standards /Framework • Experience in reviewing technical Secure SDLC practices. • Conduct independent security audits as per audit calendar. • Drive awareness amongst all associates • Support certification audits and assessments • Participate Project Kick off meetings and identify the risks and report on time with respect to ISMS. COMPETENCIES/SKILLS • Performance and goal oriented and highly focused individual • Excellent communication skills in English • Good knowledge of conducng audits and process implementaon • Computer literate; skilled in use of MS office and Security Assessment tools QUALIFICATION Essential: Graduate / Diploma (Degree in IT, preferred) Certification ISO 27001 LA Mandatory ITIL V4 - Preferred Essential: 4 Yrs YEARS OF EXPERIENCE Desired : 4-7 Yrs NOTE : Immediate Joiners preferred ISO 27001 LA Mandatory ITI L V4 - Preferred Essential: 4 Yrs

Role- Data Protection Location: Bangalore, Hyderabad,Mumbai , Pune, kolkata, chennai and Gurgaon Exp- 3-9 yrs Qualifications and Experience Required: B.E. / B. Tech / MBA Demonstrated experience in designing and implementing technology and process solutions to reduce the potential risk of data compromise Understanding of the entire ecosystem of data protection including well-rounded understanding of the information security domains and their inter-relations across that ecosystem Minimum 5 years of relevant experience required on Data Protection technologies Strong domain expertise, implementation and/or integration skills in two to four or more (depending on years of experience) of following areas: Data classification and inventory programs including the use of data discovery tools Data Loss Prevention Database activity monitoring Data access governance Cloud Access Security Broker Securing credential repositories and authentication services Systems administration experience with various operating systems such as Windows Server, Unix, and Linux DBA experience with database technologies such as Oracle and Microsoft SQL Understanding of key industry and regulatory requirements such as PCI, HIPAA, NIST Cyber Security Framework, NERC, or FFIEC requirements Demonstrated ability to identify and address internal and external client needs, including: Demonstrated problem solving and critical thinking skills Working collaboratively with clients to design and implement process and technology solutions Able to build solid, trust - based relationships with stakeholders Excellent verbal and written communication Willingness to travel Preferred: • CISSP, or equivalent certification desired • Technical skills including scripting - Python/JAVA/ASP/C#, Coding frameworks • Data protection product certifications • Previous experience with cyber incident response

Ernst Young is looking for Senior Consultant to join our dynamic team and embark on a rewarding career journey Lead project teams and manage client relationshipsDevelop and implement project plans, schedules, and budgetsProvide expert advice and guidance to clients on a wide range of strategic and operational issuesConduct research and analyze data to support decision-makingDevelop and deliver presentations to senior management and stakeholdersBuild and maintain strong relationships with clients and stakeholdersMentor and train junior consultantsStay up-to-date with the latest industry developments and trendsRequirementsExperience in consulting or a related fieldStrong analytical and problem-solving skillsExcellent communication and interpersonal skillsStrong leadership and mentorship skillsDemonstrated ability to deliver high-quality work under tight deadlines

Hands on required skills- IT Audit Planning and Management, Conducting ISO27001 Audits, Reporting Corrective Actions and Follow-up Implementation of ISO27001 Team Leadership like ITGC, Cyber Security, SOC 2 Immediate candidates preferred.

Information Security Team Analyst is responsible for the day-to-day operation of the Information Security Management System (ISMS) across the Organization- for the assigned activities. Coordinates and executes the activities of the Information security management system (ISMS) to support the safety and security of Information assets and related process performance. Responsibilities include but not limited to aligning the ISMS team towards organizations Information security strategic direction and liaising closely with other organization units towards successful implementation of ISMS. He / She should also conduct ISMS internal audits and performs or provides consulting on risk assessments, support for development of policies and procedures, testing, and security reporting processes. Should support for any information security incidents reported and collaborate with cross functional teams to protect the organization from an imminent loss of information or value. He / She should have sufficient knowledge, background to organize ISMS training/awareness and ISMS implementation globally. Should also co-ordinate activities on customer security requirements and assessments.

Role: The Compliance, Quality & Data Fiduciary Manager is responsible for ensuring the organizations compliance with ISO 9001 (Quality Management System), ISO 27001 (Information Security Management System) standards, also fulfilling the duties of data fiduciary. This role involves managing the quality and information security frameworks, ensuring data protection & privacy compliance and overseeing all related processes to maintain the highest standards of integrity and trust. Responsibilities: A . ISO 9001Quality Management System (QMS) Design, Development and Implementation Design, implement and maintain QMS in accordance with ISO 9001 standards Develop and document quality policies, procedures and processes which are aligned with prevailing ISO 9001 standards. Monitoring and Auditing Conduct regular interval audits to ensure ISO 9001 Compliance Monitor key performance indicators (KPIs) to access and improve effectiveness of QMS Lead continuous improvement initiatives in quality management Training and Awareness Provide training on ISO 9001 standards and quality management best practices Ensure all employees understand their role within the QMS framework B. ISO 27001 Information Security Management System (ISMS) Development and Implementation Establish, implement the ISMS standards as per ISO 27001 Develop and maintain robust information security policies, procedures and controls. Risk Management Conduct risk assessments to identify potential threats to information security. Implement appropriate security measures to mitigate identified risks. Monitoring and Auditing Conduct regular interval audits to ensure ISO 27001 Compliance Address any non-conformities identified during audits and ensure continuous improvement Incident Management Develop and manage an incident response plan for handling security breaches. Lead investigation into security incidents and coordinate remedies efforts. C. ISO 27701 Privacy Information Management System (PIMS) Development and Implementation Establish, implement the PIMS standards as per ISO 27701 Develop and maintain robust personal data protection policies, procedures and controls Data security and Privacy Regularly review and update data protection policy to align with changing regulation Implement appropriate data protection measures, ensuring that personal data is secured and handled ethically. Monitoring and Auditing Conduct regular interval audits to ensure ISO 27701 Compliance Address any non-conformities identified during audits and ensure continuous improvement Transparency and Accountability Maintain transparent data practices, clearly communicating how personal data is used and stored. Ensure that the organization can demonstrate compliance with data protection principles and respond effectively to data principles request. D. Training and Awareness Provide training on ISO 27701 standards and train employees on data protection laws DPDP Act 2023, emphasizing their roles and responsibilities as data handlers Promote a culture of privacy and data protection within the organization E. Compliance Management Regulatory Compliance Ensure the organization complies with all relevant legal and regulatory requirements related to quality, privacy information and information security Keep up to date with changes in legislation and standards that impact ISO 9001, ISO 27001 and ISO 27701 Documentation and Reporting Maintain comprehensive record of compliance activity, include audit findings, corrective actions and management reviews Prepare and present compliance and quality reports to senior management F. Continuous Improvement Process Optimization Identify opportunities for process improvements for across quality, information security and data protection functions Lead initiatives to enhance organizational practices and promote a culture of continuous improvement G. Stakeholder Engagement Collaborate with internal and external stakeholders to ensure alignment with these ISO 90001, ISO 27001 and ISO 27701 requirements. Act as a primary contact for all compliance certification such as quality, information security and data protection related matters. Preferred candidate profile Key Competencies: Functional Strong knowledge of ISO 9001, ISO 27001 and ISO 27701 along with data protection regulations Excellent analytical, problem solving and decision-making skills Strong communication skills with ability to influence and lead cross functional teams Should have excellent presentation skills and should be able to present to senior management High attention to details and strong organizational skills Should be able to conduct and manage audits of different business units within the organization Should be able to manage vendors and possess good negotiation skills Experience: Proven experience in managing, implementing and getting certification on ISO 9001 and ISO 27001 for at least 9-11 years of experience Last experience along with ISO 9001 and ISO 27001, preferably in managing ISO 27701 for at least 2-3 years Experience in conducting audits, vendor assessments/ due diligence with respect to ISMS and data protection as requested by the clients. Leading all compliance initiatives Must possess strong technical knowledge and hands-on experience in cybersecurity and data security product lines. This includes expertise in implementing and managing security solutions to protect organizational assets and data

Role & responsibilities Managing the Quality and Information Security Management System and ensuring GMP compliance is incorporated. Agreeing standards and establishing clearly defined quality methods for staff to apply. Liaising with clients auditors and ensuring the execution of corrective action and compliance with clients specifications. Identifying relevant quality and GMP related training needs and delivering training. Guiding the relevant stakeholders on quality and regulatory requirements on innovation projects. Function as an internal auditor for QMS, ISMS, and BCP as required. Managing and developing the Document management system. Ensuring the CAPA system is managed with the objective of continuous improvement. Ensuring compliance with appropriate standards and regulation. Ensuring external audits for critical suppliers are attended to or led by a member of the quality department. Drive on-time closure of all observations, opportunities for improvement and NC’s (if any). Complying with SOPs (Standard Operating Procedures) and Work Instructions as detailed on Training Records and Training Matrixes. Effectively interact with the company departments to ensure the delivery of the product to specification and promote the improvement of the QMS. Updating of Quality Records, as detailed in the appropriate SOPs. Comply with Perigord centralised Global Quality and Information Security Management System. Provide daily / weekly update over email and review calls to the Quality Manager and Global Head of Quality Preferred candidate profile Bachelor’s degree qualification in a life science, technical or engineering discipline. 4+ years of relevant Quality Assurance or relevant experience in Life science and or Software services company Demonstrate excellent communication skills (oral as well as written) Ability to work with minimum supervision. Ability to work within a challenging environment with tight delivery timelines. Additional Desired Preferences: Knowledge of Computer System Development Life Cycle Good technical understanding of IT infrastructure Experience dealing with regulatory agencies and global audit teams.

Good verbal&written English communication skills Good Interpersonal Skills Email etiquettes &Telephone etiquettes Good Team Player & Team management skills Project Management Skills Excellent MS Office skills Risk identification assessment mitigation Required Candidate profile 12PM to 9PM (Flexible to work between 11AM to11PM) certification:ISO27001,ISO9001,PCI-DSS,SOC2,HIPAA,Conduct periodic &ad-hoc internal audits for scoped businesses Queries:8652547205/anisha@peshr.com

Job_Description":" About Us : Tsaaro isdedicated to Data Privacy and Security as its core focus. Our team comprises specializeddata privacy consultants, information security experts, and penetrationtesters, all working to empower our clients with seamless and highly efficientsecurity solutions. Our approach is centered around customization, understandingthe unique needs of each organization, and finding solutions that align withtheir budget and resource constraints. At Tsaaro, weadopt a pragmatic, risk-based strategy to deliver practical and effectiveadvice. By providing real-world guidance, support, and actionablerecommendations, we confidently equip our clients to address a broad spectrumof security and privacy challenges. Responsibilities : As a Senior DataPrivacy Consultant, you will be entrusted with the following keyresponsibilities: Design andimplement data protection and privacy programs that cater to our clientsspecific business needs, ensuring their sensitive information is wellsafeguarded. Evaluate andassess our clients data protection and privacy practices, offering valuableinsights and actionable recommendations for continual improvement. Demonstrateexpertise in various standards, such as ISO 27001/2, ISO 22301, ISO 27018, NISTstandards on Cyber Security, HITRUST, ISO 27701, etc., to assist clients incompliance and governance. Provideguidance and support to clients in adhering to a complex web of national andinternational laws and regulations, including the EU General Data ProtectionRegulation (GDPR) and other privacy laws. Assist inpreparing policies, reports, and schedules for clients and relevantstakeholders, ensuring clear communication and alignment with industry bestpractices. Conductthorough audits of Privacy controls to monitor program effectiveness andcompliance, ensuring data protection is at its optimal level. Utilize onlinetools to facilitate Incident Management and Data Subject Rights processes,ensuring efficient and timely responses to potential data incidents. Foster andmaintain productive working relationships with client personnel, promotingeffective collaboration and understanding of their specific needs. Demonstrate astrong commitment to adhering to workplace policies and procedures, maintainingthe highest standards of professionalism and confidentiality. Contribute tocybersecurity engagements, developing cybersecurity strategies, governance,risk, and compliance activities, and cybersecurity policies in line with ISO27001 and ISO 27701. Perform GapAssessments, Risk Assessments, ISMS Documentation, Internal Audits, and supportduring Certification Audits to strengthen overall security frameworks. Requirements To beconsidered for this role, the candidate must meet the following requirements: Possess asound knowledge of fundamentals of information security systems. Have 2-3 yearsof relevant experience in the field. Demonstrate proficiencyin standards such as ISO 27001/2, ISO 22301, ISO 27018, NIST standards on CyberSecurity, HITRUST, ISO 27701, etc. Exhibit a goodunderstanding of GDPR, CCPA, or other privacy laws. Displaycompetence in governance and reporting, as well as a strong grasp of cyber andprivacy risks. Hold relevantqualifications such as CIPM, CIPT, CIPP/E. Showcaseexcellent communication skills, both written and verbal. Benefits Competitive salary and performance-based bonuses. Professional development opportunities, including training and certifications. Flexible working hours. Collaborative and inclusive work environment. Opportunity to work with a passionate team dedicated to making a difference in data privacy and security. ","