508 Isms Jobs - Page 5

What You'll Do: Executes the end-to-end management of security & compliance projects: including resource management, change management, client and third-party audit coordination, communications, training requirements, and budget (if applicable). Estimate the resources and participants needed to achieve project goals. Reviews and recommends changes, reductions or additions to the overall project. Acts as the liaison between IT, Compliance team, and end-users & ZS Client teams Maintains the efficiency of the project coordination process such as planning, scheduling, and budget and risk assessment. Identifies and mitigates potential risks related to program and project management Work with cros...

The Senior Vulnerability Management Analyst will be part of the ZS Information Security team based in Pune. In this role, you will lead efforts to identify, analyze, and remediate security vulnerabilities across ZSs infrastructure. You will collaborate with cross-functional teams to drive mitigation strategies, improve vulnerability management processes, and ensure timely resolution of risks. Staying current with evolving threats, technologies, and cloud security trendsincluding CSPM and CNAPPis essential. You will also contribute to enhancing ZSs overall security posture through strategic recommendations, reporting, and process optimization. What you'll do : Analyze and prioritize vulnerabi...

Job description - Information Security Manager Role & responsibilities -Shall be accountable for interpreting the RFI/RFP, or Customer queries, and responding to them. -Review Contracts/MSA/DPA to ensure they include appropriate risk-related clauses, such as security controls, data privacy, liability, and business continuity terms. -Shall be accountable for assessing vendors or suppliers to identify potential risks in areas such as cybersecurity, data protection, regulatory compliance, and operational resilience. -Participate in meetings with customers, partners, and vendors and be accountable for handling security/privacy-related discussions. -Work closely with IT, HRD, L&D, and other teams...

Skills Required Cyber Security Duties Responsibilities Strong knowledge of cloud security (Azure, AWS. GCP) Ability to configure monitor for security devices E.g., firewalls, antivirus Strong knowledge of Incident log monitoring Good Knowledge on Server hardening Working experience on XDR/EDR solution Experience on phishing simulation and training Experience in VAPT and knowledge on tools such as Nessus, NMAP, burp suite Ability to threat analysis and investigation. Active threat hunting and adversary tracking. Strong knowledge of Network such as LAN, VLAN, WAN, SDWAN Strong knowledge of operating systems such as Windows, Linux, and MAC Identify and define system security requirements Prepar...

Third Party Risk Management Job Description: Conduct third party risk assessments in alignment with company security policies and industry standards Perform on site assessments of vendors to identify opportunities for improvement Provide input and aid in the development of policies focused on the security of third party business processes Foster relationships and influence the behavior internal teams and external parties Develop and maintain supplier risk and control monitoring plans, performing monitor activities and analysis of evidence to determine controls are operating effectively Complete monitor and control tasks triggered by supplier Tier and Third Party Interaction Model Collaborate...

1.Conduct information security management reviews and information security management system (ISMS) assessments 2.Must have knowledge of various compliances like ISO 27001, SOC 2, PCI DSS, GDPR etc. 3.Ensure technical implementation and business processes are aligned 4.Lead the design, implementation, operation and maintenance security management systems 4.Participate in the creation, review and update of information security policies 5.Provide complex technical advice, recommendations and consultancy on networks, infrastructure, products and services supplied 6.Provide or assist with implementation documentation Ongoing project management 7. Must be ISO 27001 LA certified

We are looking for a candidate with min 1 to 3 years experience as an Analyst for Threat and Vulnerablity Mangement, who can join at our Pune Location immediately. Role & responsibilities Key Responsibilities: Vulnerability Assessment & Analysis Review results from internal and external vulnerability scans, penetration tests, red team exercises, and threat intelligence sources. Correlate and analyze findings to identify trends, critical risks, and potential impact. Remediation & Mitigation Coordination Prioritize vulnerabilities based on risk, business impact, and exploitability. Coordinate remediation efforts across cross-functional teams and track progress to closure. Process Operationaliz...

We are looking for a candidate with min 1 to 3 years experience as an Analyst for Threat and Vulnerablity Mangement, who can join at our Pune Location immediately. Role & responsibilities Key Responsibilities: Vulnerability Assessment & Analysis Review results from internal and external vulnerability scans, penetration tests, red team exercises, and threat intelligence sources. Correlate and analyze findings to identify trends, critical risks, and potential impact. Remediation & Mitigation Coordination Prioritize vulnerabilities based on risk, business impact, and exploitability. Coordinate remediation efforts across cross-functional teams and track progress to closure. Process Operationaliz...

Position Purpose Information security is the protection of information (and associated assets). Information must therefore be protected continuously and appropriately against a wide range of threats by implementing a suitable set of controls, including policies, processes, procedures, organizational structures and software & hardware functions. Information Security is comprised of a number of domains of which Access Management is a major one. Access Management is about defining and implementing security requirements to control access to information and hence to prevent unauthorized access to them. The BNP Paribas Fortis Access Management Team aims at managing the accesses that users of BNP P...

Lead our Information Security Management Program Manage internal & external audits, assessments, and certifications, maintain ISO/IEC 42001 certification Manage security awareness trainings Coordinate with background verification team Provident fund

Objective Of This Role: (Brief description of the role, why are we hiring, and what will person in this role do) Responsible for ISMS implementation and monitoring of information security systems. Responsible for the System, Network and other Logical Security Infrastructure at Chennai Bureau. Good Understanding of Physical security Infrastructure & support Chennai Bureau Physical Security. Responsible for Internal, External audits on Physical and Information security. Leading a team of security staff (Internal and External) and personnel to maximize performance. Responsible to support, travel, movement to different site etc. to other sites of the Organization, whenever required. Tasks & Resp...

Hi, Greetings from Sun Technology Integrators!! This is regarding a job opening with Sun Technology Integrators, Bangalore. Please find below the job description for your reference. Kindly let me know your interest and share your updated CV to nandinis@suntechnologies.com ASAP. Please let me know, if any of your friends are looking for a job change. Kindly share the references. Please Note: WFO- Work From Office (No hybrid or Work From Home) Shift Details: IST Shift -Rotational Shift-2 ways free cab facility(Pickup+Drop) Years of Exp-4 to 10 years Interview Mode- 1st round Virtual interview followed by F2F interview Should have complete understanding of networking concepts & technologies Be ...

Role Overview: You will be joining the Digital Risk Consulting Team at EY as an IT-InfoSec Auditor. Your role will involve performing Information Security assessments, IT Infrastructure and IT Application control audits for various clients across the MENA region. Additionally, you will be conducting IT/IS Risk assessment, IT/IS Governance, ERP reviews, and evaluating the clients" current IT/IS posture. Key Responsibilities: - Work with multiple client engagements and teams at a Senior level within the MENA region. - Collaborate with high-level client personnel to address compliance, financial, and operational risks. - Perform IT/InfoSec internal control testing, develop audit plans, and prov...

Experience : 12-15 Years in the role of SQA, SEPG and Metrics Function Skills : Expert knowledge of CMMI SVC & DEV, ISO 20K and ISO 27K, ISMS, PIMS, HIPAA, Software Quality Assurance, Process Improvement & Definition, Data Privacy - GDPR & Six Sigma Green/Black belt would be added advantage. Expertise Skills: Experience in implementing various improvement standards like ISO, Models like CMMI SVC/DEV model till Maturity Level 5 Added advantage if performed ATM role in at least one CMMI Appraisal Experience in implementing ISO 20K & 27K, PIMS, Data Privacy standards and managing, conducting & reporting internal audits results Process definition Process implementation & facilitation Process Imp...

As an Assistant Manager in our Cyber Team you ll build and nurture positive working relationships with teams and clients with the intention to exceed client expectations: - As a part of our Risk Advisory team, you ll build and nurture positive working relationships with teams and clients with the intention to exceed client expectations. You ll: Role Description ISMS or Third-Party Risk Assessments Ability to effectively liaise with clients and manage stakeholder expectations Work with client teams from various depts. Such as compliance teams, auditing and regulators to identify and document various requirements/obligations Conducting risk assessments and audits with respect to people, proces...

As a professional Consultant in our Cyber Team, you ll build and nurture positive working relationships with teams and clients with the intention to exceed client expectations: - Location and way of working Base location: Bengaluru This profile involves frequent / occasional travelling to client locations OR this profile does not involve extensive travel for work. Hybrid is our default way of working. Each domain has customized the hybrid approach to their unique needs. Work you ll do: As a Consultant in our Third-Party Risk Management Team you ll build and nurture positive working relationships with teams and clients with the intention to exceed client expectations: - As a part of our Risk ...

Manage the organization s ISO/IEC 27001 certification process, including the development and maintenance of an Information Security Management System (ISMS), conducting internal audits, gap analyses, and preparing for external audits. Develop and manage a third-party risk management program, including due diligence, risk assessments, and collaboration with other departments to ensure vendors meet cybersecurity requirements and contracts include appropriate clauses. Oversee digital payment system security, ensuring compliance with industry standards like PCI-DSS, and collaborate with service providers and internal teams to protect against cybersecurity threats. Strong knowledge in cybersecuri...

As a practitioner in our Cyber Team, you ll build and nurture positive working relationships with teams and clients with the intention to exceed client expectations: - SOX,Cloud,Data Management IT/IS controls Testing and Assurance Design and execute controls testing strategies to evaluate the design adequacy and operating effectiveness of controls. Testing Approach Review and Process Documentation Develop methods to monitor and measure risk, compliance, and assurance efforts. Create test plan, test scripts etc. to support the delivery of controls assurance objectives. Prepare detailed testing documentation, workpapers and reports to highlight findings and recommendations. Collaborate with va...

Ideally, 5+ years of experience in a SCRUM delivery model within the financial sector. Strong knowledge and understanding of security services and solutions. Experience with Azure is highly desirable. A problem-solving attitude with the ability to drive change and propose robust solutions. Background in working on mock-ups or UX/UI aspects. Experience in project scope management, including definition and control. Inquisitive nature, able to challenge effectively and manage conflicting stakeholder needs. Excellent written and verbal communication skills. Education: B.Tech/BE / B.Sc / BCA / Master s degree in Computer Science, Engineering- Full time Your role as Associate Director We expect ou...

As an Assistant Manager in our Cyber Team you ll build and nurture positive working relationships with teams and clients with the intention to exceed client expectations: - As a part of our Cyber team, you ll build and nurture positive working relationships with teams and clients with the intention to exceed client expectations. You ll: Role Description ISMS or Third-Party Risk Assessments Ability to effectively liaise with clients and manage stakeholder expectations Work with client teams from various depts. Such as compliance teams, auditing and regulators to identify and document various requirements/obligations Conducting risk assessments and audits with respect to people, process and te...

About The Role : Job Title Business Continuity Management Location Mumbai, India Corporate TitleAVP Role Description This purpose of role is to support the Private Bank Business Continuity Management program. Which is led by the Centre of Competence team at Mumbai location. The team provides centralized and standardized business continuity management services to support global agenda on COO topics by consolidating BCM activities and supporting business. What well offer you As part of our flexible scheme, here are just some of the benefits that youll enjoy Best in class leave policy Gender neutral parental leaves 100% reimbursement under childcare assistance benefit (gender neutral) Sponsorsh...

Role Description: The Awareness & Training Manager, Information Security position will be an integral member of the Information Security and Risk Management team. This role will be responsible for organizing and managing internal and external audits. Work in Chief Information Security Officer (CISO) office under Director, Information Security Governance, Risk and Compliance. Successful candidate will have a good mix of security knowledge, understanding of industry best practice, and a demonstrated background in information security risk management. The Awareness & Training Manager for Information Security will be responsible for developing, implementing, and managing comprehensive security a...

1.Conduct information security management reviews and information security management system (ISMS) assessments 2.Must have knowledge of various compliances like ISO 27001, SOC 2, PCI DSS, GDPR etc. 3.Ensure technical implementation and business processes are aligned 4.Lead the design, implementation, operation and maintenance security management systems 5.Participate in the creation, review and update of information security policies 6.Provide complex technical advice, recommendations and consultancy on networks, infrastructure, products and services supplied 7.Provide or assist with implementation documentation Ongoing project management 8. Must be ISO 27001 LA certified

1.Conduct information security management reviews and information security management system (ISMS) assessments 2.Must have knowledge of various compliances like ISO 27001, SOC 2, PCI DSS, GDPR etc. 3.Ensure technical implementation and business processes are aligned 4.Lead the design, implementation, operation and maintenance security management systems 4.Participate in the creation, review and update of information security policies 5.Provide complex technical advice, recommendations and consultancy on networks, infrastructure, products and services supplied 6.Provide or assist with implementation documentation Ongoing project management 7. Must be ISO 27001 LA certified

Your future role Take on a new challenge and apply your engineering expertise in a new cutting-edge field. Youll work alongside passionate, motivated and dedicated teammates. You'll analyze Project / Program security needs (including laws and local regulations), determine security objectives and main security risks strategy. Day-to-day, youll work closely with teams across the business Cybersecurity Architecture definition and requirement allocation and much more. Youll specifically take care of cybersecurity context, and Cybersecurity Risk Analysis. Well look to you for: Lead & contribute technically to the architectural elements in the tender & project design phase Plan security activities...