174 Isms Jobs - Page 6

Global Digital Platform Architect Azure (F/M/D) arrow_drop_down Responsibilities arrow_right Responsible for the overall state of the art IT architecture of the FFT software development on Azure including all integrated business applications and their design, development as well as deployment Collaborate with the business responsible and digital product owners from FFT business units to understand strategic objectives and functional requirements and to translate them into technical requirements, concepts and applications Identify opportunities where data and new technologies like AI can drive business value and innovation to build an innovation funnel for the platform Ensure the platform and all applications are stable, scalable, secure (ISMS and IT security), and optimized for performance and user experience incl. monitoring and ensuring technical conformity with patch levels and maintenance of components Oversee the data chain from hardware (sensors and gateways), collecting and storage of data and usage of data in applications. Provide technical documentation of the platform, the applications and installation guides for hardware 3rd Level Support in collaboration with business and developers e.g. certificate management Ensure timely, cost efficient and high-quality delivery as well as availability of the platform and components in alignment with internal and external business partners Qualifications arrow_right Bachelor s or master s degree in computer science, Information Technology, Business Informatics, or a related field Several years of experience in IT architecture design with Azure DevOps / services and digital product development Overall IT architecture and concept of the data driven platform Experience in Azure DevOps, Azure services regarding functionality, security, scalability and uptime Experience in IoT scenarios including sensors and gateways Strong background in data management, AI, and machine learning Ability to translate business needs into technical solutions

What is special about Lighthouse Lighthouse is built on a foundation of unique, compassionate, highly driven individuals. We elevate the strengths and talents of those around us while leveraging opportunities for growth. We offer the experience of solving complex problems while continuing to grow multiple facets of your career. Lighthouse is where innovation meets support and where collaboration is the key ingredient to success. We grow together and are stronger together. What s unique about this role Manage a team of 5-6 Client Services Associates, Sr Associates and Project Managers involved in Client communication for Intake, processing, Hosting, Review Support within Nuix, Relativity platforms. What will this person do Manage a team of 5-10 members, handling wide range of e-discovery projects/Matters, including large and complex multi-jurisdictional matters, working closely with North America and other regions. Intuitive understanding of text and metadata extraction processes and Implementation of culling requirements such as deduplication, date restrictions, and search filtering, Exporting processed data in specified formats. Engage with Clients and Law Firms for questions, clarification and escalations related to their eDiscovery Matters. Daily/Weekly Resource and work planning, publishing rosters by closely working with Leads and Seniors in the team as per availability. Connect with the Leads, Managers in North America and other global Lighthouse offices, to get an understanding on priority projects and any actionable or upcoming changes within the processes. Work with the APAC leadership team in aligning the team with the Global Lighthouse standards, processes, and procedures. Conduct in 1-1 s with team members and provide timely feedback on performance and understand any concerns/issues raised by team members. Involved in Annual Review and Performance Rating activities. Assess strengths and weaknesses of individuals in the team and assist Leads for development of Individuals, including direct reports. Identify and build periodic KPI s to build better efficiency in the team. Publish periodic reports to Senior Managers Directors, that will help in keeping a check on the health of team based on Utilization, productivity, and Individual Contribution Encourage Cross skilling, Cross training to ensure individuals gradually have opportunities to take up different roles within the team and contribute to processes for better Client satisfaction factors. Drive team meetings with different teams within APAC to stay updated on product developments and Technology, infrastructural changes. Extensively audit Billable and non-billable entries at the end of the week and month and send Billing reports. Bring your passion and together we will shine. It would also be great if you have the following: Bachelor s degree Certifications on database and data handling, preferred but not a mandatory requirement. 8+ years of experience in eDiscovery Client services/Project Management or litigation/practice support department within a law firm. Managed a team of eDiscovery Client Services/Project Managers Confidently able to respond to Client queries, with a thorough understanding of internal processes and hands on experience of Relativity, Nuix and other eDiscovery platforms. Drive standup meetings and encourage participation from all levels within the team. Conduct Interviewing processes for new hiring and provide overall feedback of candidates, based on available roles and fitment within the Organization. Assess and guide colleagues to be able to communicate effectively and develop best practices for Client interactions and communication. Knowledge of ISMS and basics of Six Sigma is a plus, but not mandatory. Excellent written and verbal communication skills. Ability to work with Senior Managers and Directors in structuring and restructuring the team as per business needs. Engage across a range of backgrounds and levels of seniority with the ability to Escalate matters that might be impacting Business or Individuals. Work flexible hours or rotational shifts to help support the demands of our eDiscovery business. Travel domestically or Internationally for Business purposes as required. Preferred Skills Extensive experience utilizing eDiscovery technology platforms such as Relativity, Nuix, Brainspace, Concordance, Ringtail, Service Now (Project management tool) is a plus. Advanced understanding of Billable, Non-Billable Client tasks. Handled a team of Client Services consultants and Leads in the past for eDiscovery Matters. Relativity Certified Administrator (RCA) or any Relativity or eDiscovery Certifications is a plus. Familiarity with computer forensic tools is a good to have, but not required. (i.e., Encase, Forensic Tool Kit, MacQuisition, Cellebrite.). Strong understanding of proprietary software related to Data processing, Data Hosting and Time keeping. Develop or possess strong organizational skills and an extreme attention to detail. Proficiency with Windows and related software, such as Microsoft Excel, Power Point Lighthouse celebrates and thrives on diversity and is an Equal Opportunity Employer. We hire, train, and promote regardless of race, religion, color, national origin, sex, disability, age, veteran status, and other protected status as required by applicable law. We welcome any talents and contributions you can bring to the team and are deeply committed to growing an environment where everyone can feel safe, is respected, and can show up as themselves. Come as you are! As a trailblazer and catalyst for change, Lighthouse rises to each opportunity to help our clients and our people do what they do best shine. This position will work for and be employed by Lighthouses India subsidiary, which is an independent company located in India.

Position: Information Security Manager Job Shift: Night Education: We hire based on individual talent, skill and work ethic. Formal degrees are not a material in our hiring decision. Job Location: PAN India Key Responsibilities: Define the scope of the ISMS, identify relevant controls, and document justifications for control selection. Conduct ongoing risk assessments and manage the risk treatment plan, ensuring effective monitoring of control actions. Develop, review, and update all Information Security and IT policies to align with industry standards and regulations. Facilitate regular training sessions for all staff on ISMS requirements to promote a culture of security awareness. Plan and conduct internal audits of the ISMS and oversee vulnerability assessments and penetration testing. Ensure closure of audit findings by tracking actions and suggesting corrective measures. Compile inputs for management review meetings and report on ISMS objectives and progress. Coordinate with law enforcement, CERT-in, and other relevant agencies on ISMS implementation and audits. Plan security measures for special and high-risk events, ensuring proper risk assessments are conducted. Order and manage security-related supplies and equipment as necessary. Analyze and assess vulnerabilities in software, hardware, and networks, recommending countermeasures and best practices. Protect systems by defining access controls and resource management. Conduct audits to identify security violations and recommend improvements. Create, test, and implement network disaster recovery plans. Assist in emergency management and contingency planning. Stay abreast of changes in security technologies, legislative directives, and best practices through seminars and conferences. Note: Having done relevant security certifications such as CEH, ECSA, CISSP, CISA, etc. will be an added advantage. Candidates who have appeared for our recruitment process in the last 3 months are not eligible for this opening.

Job Title: Probationary Associate Work Locations: Coimbatore Process Details As a Probationary Associate, you will be at the forefront of our International voice process, engaging with professionals in the US Healthcare Industry, verifying Patient Information, Claim details and resolving queries. Eligibility Flexibility to work in shifts to accommodate our International operations. Proficiency in spoken English with a strong command and good comprehension skills. Any Diploma / Graduate with a strong verbal & written command of English.

Title: Information Security Lead Date: Mar 17, 2025 Location: Bangalore, KA, IN We are a technology-led healthcare solutions provider. We are driven by our purpose to enable healthcare organizations to be future-ready. We offer accelerated, global growth opportunities for talent that s bold, industrious, and nimble. With Indegene, you gain a unique career experience that celebrates entrepreneurship and is guided by passion, innovation, collaboration, and empathy. To explore exciting opportunities at the convergence of healthcare and technology, check out www.careers.indegene.com Looking to jump-start your career We understand how important the first few years of your career are, which create the foundation of your entire professional journey. At Indegene, we promise you a differentiated career experience. You will not only work at the exciting intersection of healthcare and technology but also will be mentored by some of the most brilliant minds in the industry. We are offering a global fast-track career where you can grow along with Indegene s high-speed growth. We are purpose-driven. We enable healthcare organizations to be future ready and our customer obsession is our driving force . We ensure that our customers achieve what they truly want. We are bold in our actions, nimble in our decision-making, and industrious in the way we work. Position Overview The Information Security lead, A5 position, plays a key role in supporting the organizations information security initiatives, ensuring compliance with security standards, protecting organizational assets, and mitigating risks. The individual will work closely with stakeholders to maintain and improve the organizations security posture. Key Responsibilities Information Security Management Implement and maintain the organizations Information Security Management System (ISMS) in alignment with ISO 27001 standards. Conduct periodic risk assessments and recommend measures to mitigate identified risks. Ensure security policies, processes, and procedures are up to date and adhered to across the organization. Participate in Audits, Phishing simulations and Information Security related activities. Incident Management and RedFlag Management Monitor, investigate, and respond to security incidents, ensuring prompt resolution and documentation. Conduct RCA and recommend measures to prevent recurrence. Compliance and Audits Ensure compliance with regulatory and client-specific security requirements (e.g., GDPR, ISO 27001). Support internal and external audits, preparing evidence and addressing non-conformities. Responding to client questionnaire, Cybersecurity vendor audits, and RFI/RFA related to Information Security requirements. Maintain regular update of ISMS policies and procedures as required. Awareness and Training Conduct security awareness programs to educate employees on information security best practices. Provide targeted training on security protocols to relevant teams. Information Security Metrics reporting Perform regular Information Security metrics assessments and coordinate remediation efforts for deviations from industry standards. Collaborate with IT teams to ensure timely reporting of metrics to higher management. Send out monthly reports of Incidents, Redflags, Infosec metrics and simulations. Access and Certification Management Oversee the implementation and maintenance of exception access for sensitive applications, systems and data. Manage the lifecycle of Information Security certifications, including tracking, and completion of audits like ISO, SOC2, CyberVadis etc. Risk Management Assess and monitor security risks associated with Information Security process and controls. Develop and enforce security requirements for emerging trends and regulatory obligations. Post-Incident Analysis Conduct post-incident reviews to evaluate the effectiveness of response efforts. Document CAPA, lessons learned, and update security protocols as required. Qualifications and Skills Bachelor s degree in Computer Science, or a related field. Professional certifications such as CISM, ISO 27001 Lead Implementer/Auditor, or equivalent are preferred. 5+ years of experience in information security, with at least 2 years in a team management role. Strong knowledge of information security frameworks, standards, and regulations (e.g., ISO 27001, GDPR). Hands-on experience with risk assessments, security audits, and incident management and response. Excellent communication and stakeholder management skills. Preferred Skills Experience in securing data within client-controlled environments. Knowledge of Cybersecurity tools, data protection and privacy laws. Familiarity with SIEM tools, endpoint protection, and network security practices. EQUAL OPPORTUNITY Indegene is proud to be an Equal Employment Employer and is committed to the culture of Inclusion and Diversity. We do not discriminate on the basis of race, religion, sex, colour, age, national origin, pregnancy, sexual orientation, physical ability, or any other characteristics. All employment decisions, from hiring to separation, will be based on business requirements, the candidate s merit and qualification. We are an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, colour, religion, sex, national origin, gender identity, sexual orientation, disability status, protected veteran status, or any other characteristics.

To process Australian payrolls and HRIS tasks/activities by meeting the obligations such as TAT & accuracy levels as specified To provide an effective and efficient Australian payroll and/or HRIS service to customers, ensuring the accurate and timely payment of their employees salaries Respond to requests, queries and complaints from external customers in a friendly and efficient manner to enhance customer loyalty To own and manage the quality and accuracy of operational tasks of the team To support and help facilitate 100% SLA attainment for the team through effective WFM Be a SPOC to the Clients (Internal / External) Be the Innovation champion for the process and team Main responsibilities-Production Responsible for processing Australian payrolls and HR tasks and Meeting Targets Providing Feedback on Quality Issues Found during Audits Responsible for timely escalation of production related issues Responsible for maintaining Accuracy for the team Prioritizes, allocates and actions daily tasks to be accomplished to meet SLA To build and nurture constructive relationships with the onshore team and internal colleagues from other business areas and to contribute to team efforts, team meetings etc. Ensures that team members get data required, in right format and in time to complete payrolls to agreed deadlines Calculates, prepares and transmits manual payments and third-party disbursements Coaches and advises team members on Systems and PC usage Suggests ways in which systems and procedures can be improved to enhance the business Responsible to track and manage SLAs Help TL manage escalations for the team including RCAs, tracking, data collation and analysis Main responsibilities-Compliances Following ISMS Compliance Of The Team Adhering To Company Policies, Rules And Regulations Following Quality Processes Thoroughly - Checklists, Standards Etc. On Process Adhering to Work Timings, Leave Schedules

Primary Responsibilities: To be an effective participant in Classroom training and clear the training assessments with 85% quality Consistently meet the targets set for MOCK charts Eligible employee will get confirmed as Junior Coder within a max of 6 months from the Joining Punctuality, Attendance and General Adherence to company policies, procedures and practices Strives to provide ideas to constantly improve the process Ensure adherence to external and internal quality and security standards (HIPPA/ISO/ISMS) Be an effective team player Eligibility To apply to an internal job, employees must meet the following criteria: SG 22 can apply will move laterally Performance rating in the last common review cycle of Meets Expectations or higher Not be on any active CAP (Corrective Action Plan) or active disciplinary action Time in Role Guidelines Should have been in your current position for a minimum of 12 months, if you have not met the recommended minimum time in role, discuss your career interest with your manager and gain alignment prior to applying. And share the alignment email with respective recruiter while applying Required Qualifications: Any degree in Life Science or Bio-Science Any degree in Pharmacy or Pharmaceutical Sciences Any degree in Nursing or Allied Health Any degree in Medicine

JOB DESCRIPTION POSITION TITLE Information & Cyber Security Lead DEPARTMENT Information Technology LOCATION Chennai KEY RESPONSIBILITIES • Bringing ISMS procedures into practice throughout the company. • Responsible for Identifying, analysing, and monitoring performance improvement opportunities in various ISMS areas. • Track and report security breaches to the information technology security officer; keep an eye on security tools to identify security events and incidents. • Serving as a point of contact or spokesperson for security for all technical deliveries, initiatives, and project executions. • Conducting reviews and ISMS audits as well as process health assessments. • To ensure compliance with the corporate security policy, improve the technical security processes and procedures. • Utilize compliance tools and vulnerability scanning to find system vulnerabilities, then communicate with other IT departments to arrange corrective measures. • Examine technical security threats for their potential to compromise system and service availability, confidentiality, and integrity. Report and escalate assessment findings. • Experience to ISO 27001:2022, OWASP, CIS, ITIL standards /Framework • Experience in reviewing technical Secure SDLC practices. • Conduct independent security audits as per audit calendar. • Drive awareness amongst all associates • Support certification audits and assessments • Participate Project Kick off meetings and identify the risks and report on time with respect to ISMS. COMPETENCIES/SKILLS • Performance and goal oriented and highly focused individual • Excellent communication skills in English • Good knowledge of conducng audits and process implementaon • Computer literate; skilled in use of MS office and Security Assessment tools QUALIFICATION Essential: Graduate / Diploma (Degree in IT, preferred) Certification ISO 27001 LA Mandatory ITIL V4 - Preferred Essential: 4 Yrs YEARS OF EXPERIENCE Desired : 4-7 Yrs NOTE : Immediate Joiners preferred ISO 27001 LA Mandatory ITI L V4 - Preferred Essential: 4 Yrs

Role- Data Protection Location: Bangalore, Hyderabad,Mumbai , Pune, kolkata, chennai and Gurgaon Exp- 3-9 yrs Qualifications and Experience Required: B.E. / B. Tech / MBA Demonstrated experience in designing and implementing technology and process solutions to reduce the potential risk of data compromise Understanding of the entire ecosystem of data protection including well-rounded understanding of the information security domains and their inter-relations across that ecosystem Minimum 5 years of relevant experience required on Data Protection technologies Strong domain expertise, implementation and/or integration skills in two to four or more (depending on years of experience) of following areas: Data classification and inventory programs including the use of data discovery tools Data Loss Prevention Database activity monitoring Data access governance Cloud Access Security Broker Securing credential repositories and authentication services Systems administration experience with various operating systems such as Windows Server, Unix, and Linux DBA experience with database technologies such as Oracle and Microsoft SQL Understanding of key industry and regulatory requirements such as PCI, HIPAA, NIST Cyber Security Framework, NERC, or FFIEC requirements Demonstrated ability to identify and address internal and external client needs, including: Demonstrated problem solving and critical thinking skills Working collaboratively with clients to design and implement process and technology solutions Able to build solid, trust - based relationships with stakeholders Excellent verbal and written communication Willingness to travel Preferred: • CISSP, or equivalent certification desired • Technical skills including scripting - Python/JAVA/ASP/C#, Coding frameworks • Data protection product certifications • Previous experience with cyber incident response

Ernst Young is looking for Senior Consultant to join our dynamic team and embark on a rewarding career journey Lead project teams and manage client relationshipsDevelop and implement project plans, schedules, and budgetsProvide expert advice and guidance to clients on a wide range of strategic and operational issuesConduct research and analyze data to support decision-makingDevelop and deliver presentations to senior management and stakeholdersBuild and maintain strong relationships with clients and stakeholdersMentor and train junior consultantsStay up-to-date with the latest industry developments and trendsRequirementsExperience in consulting or a related fieldStrong analytical and problem-solving skillsExcellent communication and interpersonal skillsStrong leadership and mentorship skillsDemonstrated ability to deliver high-quality work under tight deadlines

Hands on required skills- IT Audit Planning and Management, Conducting ISO27001 Audits, Reporting Corrective Actions and Follow-up Implementation of ISO27001 Team Leadership like ITGC, Cyber Security, SOC 2 Immediate candidates preferred.

Information Security Team Analyst is responsible for the day-to-day operation of the Information Security Management System (ISMS) across the Organization- for the assigned activities. Coordinates and executes the activities of the Information security management system (ISMS) to support the safety and security of Information assets and related process performance. Responsibilities include but not limited to aligning the ISMS team towards organizations Information security strategic direction and liaising closely with other organization units towards successful implementation of ISMS. He / She should also conduct ISMS internal audits and performs or provides consulting on risk assessments, support for development of policies and procedures, testing, and security reporting processes. Should support for any information security incidents reported and collaborate with cross functional teams to protect the organization from an imminent loss of information or value. He / She should have sufficient knowledge, background to organize ISMS training/awareness and ISMS implementation globally. Should also co-ordinate activities on customer security requirements and assessments.

Role: The Compliance, Quality & Data Fiduciary Manager is responsible for ensuring the organizations compliance with ISO 9001 (Quality Management System), ISO 27001 (Information Security Management System) standards, also fulfilling the duties of data fiduciary. This role involves managing the quality and information security frameworks, ensuring data protection & privacy compliance and overseeing all related processes to maintain the highest standards of integrity and trust. Responsibilities: A . ISO 9001Quality Management System (QMS) Design, Development and Implementation Design, implement and maintain QMS in accordance with ISO 9001 standards Develop and document quality policies, procedures and processes which are aligned with prevailing ISO 9001 standards. Monitoring and Auditing Conduct regular interval audits to ensure ISO 9001 Compliance Monitor key performance indicators (KPIs) to access and improve effectiveness of QMS Lead continuous improvement initiatives in quality management Training and Awareness Provide training on ISO 9001 standards and quality management best practices Ensure all employees understand their role within the QMS framework B. ISO 27001 Information Security Management System (ISMS) Development and Implementation Establish, implement the ISMS standards as per ISO 27001 Develop and maintain robust information security policies, procedures and controls. Risk Management Conduct risk assessments to identify potential threats to information security. Implement appropriate security measures to mitigate identified risks. Monitoring and Auditing Conduct regular interval audits to ensure ISO 27001 Compliance Address any non-conformities identified during audits and ensure continuous improvement Incident Management Develop and manage an incident response plan for handling security breaches. Lead investigation into security incidents and coordinate remedies efforts. C. ISO 27701 Privacy Information Management System (PIMS) Development and Implementation Establish, implement the PIMS standards as per ISO 27701 Develop and maintain robust personal data protection policies, procedures and controls Data security and Privacy Regularly review and update data protection policy to align with changing regulation Implement appropriate data protection measures, ensuring that personal data is secured and handled ethically. Monitoring and Auditing Conduct regular interval audits to ensure ISO 27701 Compliance Address any non-conformities identified during audits and ensure continuous improvement Transparency and Accountability Maintain transparent data practices, clearly communicating how personal data is used and stored. Ensure that the organization can demonstrate compliance with data protection principles and respond effectively to data principles request. D. Training and Awareness Provide training on ISO 27701 standards and train employees on data protection laws DPDP Act 2023, emphasizing their roles and responsibilities as data handlers Promote a culture of privacy and data protection within the organization E. Compliance Management Regulatory Compliance Ensure the organization complies with all relevant legal and regulatory requirements related to quality, privacy information and information security Keep up to date with changes in legislation and standards that impact ISO 9001, ISO 27001 and ISO 27701 Documentation and Reporting Maintain comprehensive record of compliance activity, include audit findings, corrective actions and management reviews Prepare and present compliance and quality reports to senior management F. Continuous Improvement Process Optimization Identify opportunities for process improvements for across quality, information security and data protection functions Lead initiatives to enhance organizational practices and promote a culture of continuous improvement G. Stakeholder Engagement Collaborate with internal and external stakeholders to ensure alignment with these ISO 90001, ISO 27001 and ISO 27701 requirements. Act as a primary contact for all compliance certification such as quality, information security and data protection related matters. Preferred candidate profile Key Competencies: Functional Strong knowledge of ISO 9001, ISO 27001 and ISO 27701 along with data protection regulations Excellent analytical, problem solving and decision-making skills Strong communication skills with ability to influence and lead cross functional teams Should have excellent presentation skills and should be able to present to senior management High attention to details and strong organizational skills Should be able to conduct and manage audits of different business units within the organization Should be able to manage vendors and possess good negotiation skills Experience: Proven experience in managing, implementing and getting certification on ISO 9001 and ISO 27001 for at least 9-11 years of experience Last experience along with ISO 9001 and ISO 27001, preferably in managing ISO 27701 for at least 2-3 years Experience in conducting audits, vendor assessments/ due diligence with respect to ISMS and data protection as requested by the clients. Leading all compliance initiatives Must possess strong technical knowledge and hands-on experience in cybersecurity and data security product lines. This includes expertise in implementing and managing security solutions to protect organizational assets and data

Role & responsibilities Managing the Quality and Information Security Management System and ensuring GMP compliance is incorporated. Agreeing standards and establishing clearly defined quality methods for staff to apply. Liaising with clients auditors and ensuring the execution of corrective action and compliance with clients specifications. Identifying relevant quality and GMP related training needs and delivering training. Guiding the relevant stakeholders on quality and regulatory requirements on innovation projects. Function as an internal auditor for QMS, ISMS, and BCP as required. Managing and developing the Document management system. Ensuring the CAPA system is managed with the objective of continuous improvement. Ensuring compliance with appropriate standards and regulation. Ensuring external audits for critical suppliers are attended to or led by a member of the quality department. Drive on-time closure of all observations, opportunities for improvement and NC’s (if any). Complying with SOPs (Standard Operating Procedures) and Work Instructions as detailed on Training Records and Training Matrixes. Effectively interact with the company departments to ensure the delivery of the product to specification and promote the improvement of the QMS. Updating of Quality Records, as detailed in the appropriate SOPs. Comply with Perigord centralised Global Quality and Information Security Management System. Provide daily / weekly update over email and review calls to the Quality Manager and Global Head of Quality Preferred candidate profile Bachelor’s degree qualification in a life science, technical or engineering discipline. 4+ years of relevant Quality Assurance or relevant experience in Life science and or Software services company Demonstrate excellent communication skills (oral as well as written) Ability to work with minimum supervision. Ability to work within a challenging environment with tight delivery timelines. Additional Desired Preferences: Knowledge of Computer System Development Life Cycle Good technical understanding of IT infrastructure Experience dealing with regulatory agencies and global audit teams.

Good verbal&written English communication skills Good Interpersonal Skills Email etiquettes &Telephone etiquettes Good Team Player & Team management skills Project Management Skills Excellent MS Office skills Risk identification assessment mitigation Required Candidate profile 12PM to 9PM (Flexible to work between 11AM to11PM) certification:ISO27001,ISO9001,PCI-DSS,SOC2,HIPAA,Conduct periodic &ad-hoc internal audits for scoped businesses Queries:8652547205/anisha@peshr.com

Job_Description":" About Us : Tsaaro isdedicated to Data Privacy and Security as its core focus. Our team comprises specializeddata privacy consultants, information security experts, and penetrationtesters, all working to empower our clients with seamless and highly efficientsecurity solutions. Our approach is centered around customization, understandingthe unique needs of each organization, and finding solutions that align withtheir budget and resource constraints. At Tsaaro, weadopt a pragmatic, risk-based strategy to deliver practical and effectiveadvice. By providing real-world guidance, support, and actionablerecommendations, we confidently equip our clients to address a broad spectrumof security and privacy challenges. Responsibilities : As a Senior DataPrivacy Consultant, you will be entrusted with the following keyresponsibilities: Design andimplement data protection and privacy programs that cater to our clientsspecific business needs, ensuring their sensitive information is wellsafeguarded. Evaluate andassess our clients data protection and privacy practices, offering valuableinsights and actionable recommendations for continual improvement. Demonstrateexpertise in various standards, such as ISO 27001/2, ISO 22301, ISO 27018, NISTstandards on Cyber Security, HITRUST, ISO 27701, etc., to assist clients incompliance and governance. Provideguidance and support to clients in adhering to a complex web of national andinternational laws and regulations, including the EU General Data ProtectionRegulation (GDPR) and other privacy laws. Assist inpreparing policies, reports, and schedules for clients and relevantstakeholders, ensuring clear communication and alignment with industry bestpractices. Conductthorough audits of Privacy controls to monitor program effectiveness andcompliance, ensuring data protection is at its optimal level. Utilize onlinetools to facilitate Incident Management and Data Subject Rights processes,ensuring efficient and timely responses to potential data incidents. Foster andmaintain productive working relationships with client personnel, promotingeffective collaboration and understanding of their specific needs. Demonstrate astrong commitment to adhering to workplace policies and procedures, maintainingthe highest standards of professionalism and confidentiality. Contribute tocybersecurity engagements, developing cybersecurity strategies, governance,risk, and compliance activities, and cybersecurity policies in line with ISO27001 and ISO 27701. Perform GapAssessments, Risk Assessments, ISMS Documentation, Internal Audits, and supportduring Certification Audits to strengthen overall security frameworks. Requirements To beconsidered for this role, the candidate must meet the following requirements: Possess asound knowledge of fundamentals of information security systems. Have 2-3 yearsof relevant experience in the field. Demonstrate proficiencyin standards such as ISO 27001/2, ISO 22301, ISO 27018, NIST standards on CyberSecurity, HITRUST, ISO 27701, etc. Exhibit a goodunderstanding of GDPR, CCPA, or other privacy laws. Displaycompetence in governance and reporting, as well as a strong grasp of cyber andprivacy risks. Hold relevantqualifications such as CIPM, CIPT, CIPP/E. Showcaseexcellent communication skills, both written and verbal. Benefits Competitive salary and performance-based bonuses. Professional development opportunities, including training and certifications. Flexible working hours. Collaborative and inclusive work environment. Opportunity to work with a passionate team dedicated to making a difference in data privacy and security. ","

Job_Description":" About Us Tsaaroprime focus is on Data Privacy and Security. Our team of specialist data privacy consultants, information security consultants, and penetration testers help and advise our clients to make running a secure business easier, with high efficiency. Everything we do is tailored to the individual organizational requirements, aligned with their budget and resource challenges. We take a pragmatic, risk-based approach to provide our clients with real-world, workable advice, guidance, and support that helps them to deal with a wide range of security and privacy-related challenges. Responsibilities As a Senior Data Privacy Consultant, you will be entrusted with the following key responsibilities: Design and implement data protection and privacy programs that cater to our clients specific business needs, ensuring their sensitive information is well safeguarded. Evaluate and assess our clients data protection and privacy practices, offering valuable insights and actionable recommendations for continual improvement. Demonstrate expertise in various standards, such as ISO 27001/2, ISO 22301, ISO 27018, NIST standards on Cyber Security, HITRUST, ISO 27701, etc., to assist clients in compliance and governance. Provide guidance and support to clients in adhering to a complex web of national and international laws and regulations, including the EU General Data Protection Regulation (GDPR) and other privacy laws. Assist in preparing policies, reports, and schedules for clients and relevant stakeholders, ensuring clear communication and alignment with industry best practices. Conduct thorough audits of Privacy controls to monitor program effectiveness and compliance, ensuring data protection is at its optimal level. Utilize online tools to facilitate Incident Management and Data Subject Rights processes, ensuring efficient and timely responses to potential data incidents. Foster and maintain productive working relationships with client personnel, promoting effective collaboration and understanding of their specific needs. Demonstrate a strong commitment to adhering to workplace policies and procedures, maintaining the highest standards of professionalism and confidentiality. Contribute to cybersecurity engagements, developing cybersecurity strategies, governance, risk, and compliance activities, and cybersecurity policies in line with ISO 27001 and ISO 27701. Perform Gap Assessments, Risk Assessments, ISMS Documentation, Internal Audits, and support during Certification Audits to strengthen overall security frameworks. Requirements Possess a sound knowledge of fundamentals of information security systems. Have 2-3 years of relevant experience in the field. Demonstrate proficiency in standards such as ISO 27001/2, ISO 22301, ISO 27018, NIST standards on Cyber Security, HITRUST, ISO 27701, etc. Exhibit a good understanding of GDPR, CCPA, or other privacy laws. Display competence in governance and reporting, as well as a strong grasp of cyber and privacy risks. Hold relevant qualifications such as CIPM, CIPT, CIPP/E. Showcase excellent communication skills, both written and verbal. Benefits Opportunity to work with a dynamic and innovative team. Career growth and development opportunities. Competitive salary and benefits package. A supportive work environment that values creativity and initiative. ","

Risk Assessment ( ISO 27001 , Risk & Compliance , PCI DSS, ISMS, HiPPA , NIST ,Information Security Assessment , ISMS , Regulatory Compliance ) Cloud Security + ISO 27001 ( 70% Cloud Security Experience ; 30% Risk & ISO 27001 )

Navi Mumbai Role Responsibilities: Candidate Skillset: QMS, MR, QMS coordinator, ISO 9001, 27001. Candidate must have experienced/attended the recertification audits, and Surveillance audits. Candidate should be from an IT service industry. Provide training and support to staff on QMS and ISMS processes. Lead and mentor junior team members. Proven leadership and team management experience. Strong analytical and problem-solving skills. Excellent communication and interpersonal skills. Qualifications: Bachelor s degree in IT/Computer Science/ Electrical / Electronic or a related field. Professional certifications such as ISO 9001, ISO 27001 Certification.

Roles and Responsibilities Develop and implement an Information Security Governance framework aligned with ISO standards. Lead risk management activities, including assessment, monitoring, and mitigation strategies. Design and maintain an ISMS (Information Security Management System) to ensure compliance with regulatory requirements. Collaborate with stakeholders to identify security risks and develop policies for their mitigation. Conduct regular audits to ensure adherence to established security protocols.

Role Description: This Role requires the candidate to develop, configure and maintain Archer application. Deliver development projects in time, provide timely and end to end resolution to incidents. Analyse requirements coming from Business for feasibility and work with requirement engineers to create user stories. Take ownership of assigned tasks. Key Accountabilities & Responsibilities: Implements and executes module/component tests and provides technical documentation Executes development, Testing and maintenance of Application Supports the deployment and training of the application into production environment Key Competencies & Skills required: Technical Skills: Very good experience in RSA Archer implementation and customization Good knowledge of SQL Scripts Subject matter expertise in at least ICS or/and ISMS topics Experience In datafeeds creation and maintenance Expertise in Advanced workflow Good Knowledge of calculated fields Hands on experience in Mail merge method Dashboards, views and reporting Experience in Questionnaires Good to have Custom Object creation experience Nice to have: ServiceNow, Jira and Confluence experience. Behavioral Skills: Excellent interpersonal and communication skills for working in a global environment Forward-thinking approach, ability to work in a team and high level of commitment. Experience working with technical support team(s). Being customer oriented. Very good English (speaking/writing) skills. Willingness to learn and quickly adapt to changing requirements Proactive approach to identifying issues and presenting solutions and options Prioritize business impact and urgency Ability to learn new technology and methodology quickly. Soft Skills: Very good knowledge to handle Application Support and Maintenance projects with different skill sets. Good analytic skills and problem solving skills in short span of time. Very good communication and presentation skills. Ability to work in a team Conflict skills Flexibility Initiative Resilience Previous Experience & Qualifications: Minimum Educational Qualification: Bachelor's or master's degree in computer science /engineering/information technology Candidate with non-computer science degree must have minimum 1 year of relevant experience MBA in IT / Insurance/Finance can also apply for Requirements Engineer and Test Engineer role. Years Experience & Knowledge: 2 -4 years of RSA Archer Development. IT technical background & client server programming experience

Oversee security, quality, privacy,, compliance ISO 27001, ISO 9001, PCI-DSS), conduct audits, manage risks, coordinate external reviews. Develop policies, ensure business continuity, change management report compliance, due diligence, IMS training,.

Key Responsibilities: Conduct cybersecurity assessments, including ISO Audit, CPM, IRDAI, RBI Regulatory audits, ITGC, TPRM etc., Develop cybersecurity frameworks, policies, and procedures tailored to clients' specific needs and requirements, in alignment with industry best practices and regulatory standards. Assist clients in designing and implementing robust cybersecurity controls and technologies, such as firewalls, intrusion detection/prevention systems, encryption, and endpoint security solutions. Provide guidance and support to clients in incident response planning and management, including the investigation, containment, and remediation of cybersecurity incidents and breaches. Collaborate with cross-functional teams, including IT, legal , and compliance , to integrate cybersecurity into clients' overall business strategies and operations. Deliver cybersecurity awareness training and education programs to clients' employees and stakeholders to promote a culture of cybersecurity awareness and compliance. Stay abreast of the latest cybersecurity threats, trends, and technologies, and provide proactive recommendations and insights to clients to enhance their cybersecurity posture. Engage with clients to understand their business objectives, challenges, and risk appetite, and develop customized cybersecurity solutions to address their specific needs. Assist in business development activities, including preparing proposals, conducting client presentations, and participating in client meetings to identify new opportunities and expand our cybersecurity advisory services. Qualifications: Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or a related field. Master's degree or relevant certifications (e.g., ISO, CISSP, CISM, CISA, CEH ) preferred. 2-3 years of experience in cybersecurity consulting, advisory , or related roles, preferably in a professional services environment or consulting firm. Deep understanding of cybersecurity principles, frameworks, standards, and regulations (e.g., NIST, ISO 27001, GDPR, PCI DSS ) and their application in diverse business environments. Strong analytical and problem-solving skills, with the ability to assess complex cybersecurity issues, evaluate risks, and develop practical solutions and recommendations. Excellent communication and interpersonal skills, with the ability to effectively interact with clients, stakeholders, and team members at all levels of the organization. Proven track record of successfully managing and delivering cybersecurity projects and initiatives on time and within budget. Ability to work independently and collaboratively in a fast-paced and dynamic environment, while demonstrating a commitment to excellence and client satisfaction. Flexibility to travel to client sites and work on-site as needed.

Good communication skills Strong knowledge in Anatomy and Physiology Clinical knowledge is an added advantage Pharmacy Graduate Disclaimer: GeBBS never charges fees or accepts payments for job applications. Any such requests should be reported immediately to reporthr@gebbs.com. To be an effective participant in Classroom training and clear the training assessments with 85% quality Consistently meet the targets set for MOCK charts. Eligible employee will get confirmed as Medical Coder within a max of 6 months from the date of joining Punctuality, Attendance and General Adherence to company policies, procedures and practices Ensure adherence to external and internal quality and security standards (HIPPA/ISO/ISMS) Be an effective team player.

Job Purpose Information security governance team member (with skip level reporting to CISO) who is proficient in information security risk assessments, understanding of regulatory requirements, drafting of ISMS and BCMS policies and procedures, monitoring Key Risk Indicators (KRIs) for information security governance across IT. Duties and Responsibilities A-Minimum required Accountabilities for this role ‚ Managing information security risk framework inline with ISO 31000 framework ‚ Discussion and follow up with risk owners to tracking risk mitigation actions. ‚ Identification of new risks across IT landscape including cloud environment, outsourced environment etc. ‚ Perform project specific risk assessment for IT projects. ‚ Perform risk assessment related to emerging technologies. ‚ Documentation and maintenance of policies and procedures as per ISMS and BCMS framework ‚ Updating policies and procedures in line with regulatory requirements ‚ Develop and monitor key risk indicators across IT environment in line with risk framework. ‚ Information security awareness among stakeholders in line with risks B-Additional Accountabilities pertaining to the role ‚ Participation in management reporting and governance committee presentations ‚ Assisting and co ordinating internal audits ‚ Prepare management reports by collecting, analyzing, and summarizing information. ‚ MOE (Measurement of Effectiveness):Collation of MOE data ‚ Perform trend analysis as compare to outcome of previous values of KRIs Key Decisions / Dimensions Identification of right contacts for get required data on time. Review the data and decide if the observations identified correct and complete. Review and decide if closure evidence shared are sufficient to close the audit observations. Decide if the policy and procedure documents need changes based on new regulations or audit outcomes. Major Challenges Handling of fast changing regulatory expectations Handling of compliance expectations in stringent timelines Handling multiple stakeholders at a time Coordination with third party consultants who assist in auditing and compliance initiatives Required Qualifications and Experience a)Qualifications Minimum qualification required is computer graduate with minimum of 4 Years of experience in information security b)Work Experience Knowledge & hands-on experience in information security risk assessments. Sound knowledge on ISMS & BCMS frameworks, regulatory guidelines related to IT and cyber for NBFCs Proficient in word, Excel, PowerPoint Experience in data analysis and report drafting. Experience in Project management. Positive attitude, Hard Worker and team player Excellent Communication and Leadership Skills Certifications like ISO 27001, CISA/CISM/CISSP would be an added advantage