234 Isms Jobs - Page 9

Role & responsibilities General description of the role: Minimum 8 years of experience in managing security audits, such as, ISO 27001, HIPAA, SOC 1, SOC2, PCIDSS Including preparing control owners for audits, interpreting control requirements, reviewing control evidence for appropriateness, testing control effectiveness, presenting control evidence to external auditors, and audit planning with external auditors In-depth knowledge of security controls, interpreting control requirements for SOC 2, ISO, or HIPAA, PCIDSS audits, reviewing control evidence for completeness an accuracy, and ensuring evidence provided to auditors satisfies control requirements. Ability to of plan and lead meetings with control owners and external auditors. Ability to clearly define control requirements to control owners or explaining control evidence to external auditors. Supports the Security Audit function by reviewing evidence submissions for accuracy and completeness, following up on audit requests, and helping to establish a continuous monitoring function. Assist in testing and verification of all controls and formulating reports documenting findings. Recommends and assists in the definition and implementation of security controls in accordance with enterprise policies, standards, and procedures. Work closely with internal business teams to assist in the identification and assessment of potential security risks, and establish risk owners, ratings, and management action plans. Ensure continuity of compliance with ISO27001 and ISO 22301, PCI DSS, HIPAA, GDPR Analyse potential impact of new threats and communicates risks to relevant business units Manage security operations, analyse security exceptions, gather necessary background information, document exceptions and ensure that the risk is recognized and managed with compensating controls Provide orientation to Business Units on Risk Assessment, Business Continuity Plan and Business Impact Analysis Facilitate in preparation of Business continuity plan for each project and functions Conduct internal ISMS and BCMS audits and identify potential gaps in the system Prepare detailed and summary reports of assessments, remediation plans as needed and advise internal stakeholders Report the audit findings on the potential weakness in the system and areas of improvement Preferred candidate profile Top 5 Skill Set Hands-on experience with security technologies Experience in Information security and business continuity internal audits Strong Knowledge in risk management, ISO 27001, ISO 22301 PCI DSS, HIPAA, GDPR, SOC 2 Knowledgeable in security concepts, techniques, tools, methods, and practices Good technical in cyber security products Individually to perform the technical audits

To advance culture of need based propositions within LBS and our teams. Ensure skill and will based training. Training and on boarding of new staff. Implementing and rolling out the Training Workshops/ Initiatives for defined region. Train and Influence the CHL Sales Team and Partner Bank LBMs/LBEs & staff on the usages of Proposition Centric Conversation starters & Sales Tools, and promote usages in Customer Interactions, to ensure better Lead Generation and Sales Conversion ratio. Develop Conversational Selling skills of mapped LBS for generating positive business results Ensuring compliance with regards to defined Training Processes and identify sales issues across mapped branches / LBS Principal Accountabilities: Key activities and decision making areas Typical Targets and Measures Impact on the Business / Function [COMPLETE 3-4 AREAS] Complete the On boarding and development plan for the mapped roles Ensure all CHL Sales Team & Partner Bank LBMs/LBEs mapped are trained on Conversational Selling skills / Sales Training Tools as per the defined plans . Track impact of sales training and coaching initiatives across roles Monthly Activity Sheet for the month to be published before the 30th of the previous month. o New / Underperforming LBEs/LBMs/ISMs are supported through FTS/ CDS o Underperforming/ In active Branches to be focused during BTS Ensure utilization of Proposition Centric Conversation Starters & Sales tools across mapped branches / LBEs/LBMs / ISMs with impact measures o All new joinees LBMs/LBEs/ISMs to be inducted within 30 days of being nominated. Measure on a monthly basis the productivity of trained / coached LBMs/LBEs/ ISMs vis- -vis defined productivity measure

Not Applicable Specialism Risk Management Level Senior Associate & Summary A career within Cybersecurity and Privacy services, will provide you with the opportunity to help our clients implement an effective cybersecurity programme that protects against threats, propels transformation, and drives growth. As companies pivot toward a digital business model, exponentially more data is generated and shared among organisations, partners and customers. We play an integral role in helping our clients ensure they are protected by developing transformation strategies focused on security, efficiently integrate and manage new or existing technology systems to deliver continuous operational improvements and increase their cybersecurity investment, and detect, respond, and remediate threats. Why PWC Learn more about us . s Bachelors in computer science/Information Systems/Engineering or equivalent Minimum 3+ years of experience in IT C ybersecurity CISA (Certified Information Security Auditor) / ISO 27001 (LA/LI) / ISA/IEC 62443 Cybersecurity Fundamentals Specialist / ISA/IEC 62443 Cybersecurity Risk Able to perform the IT/OT cybersecurity assessment independently and determine the best method of protecting the network, systems, software, and information or operational systems from any potential attacks. Perform and Verification of vulnerabilities, threat analysis, and security checks. Conduct research on cyber security criteria, security systems, and validation procedures Use businessstandard analysis criteria, investigate, and provide security solutions. Provide technical reports and official papers based on test results. Provide professional guidance and supervision to security teams. OSCP / Cloud security (public & private cloud) / CISA (Certified Information Security Auditor) / ISO 27001 (LA/LI) / CEH / ISA/IEC 62443 Cybersecurity Fundamentals Specialist Able to perform the IT cybersecurity assessment independently (Application testing, Network VAPT, Configuration review, cloud assessment, etc ) To determine the best method of protecting the network, data, software, and information systems from any potential attacks. Mandatory Skill Sets OT Security Preferred Skills Sets OT Security Year of Experience required 4 Education Qualifications Any Graduate Education Degrees/Field of Study required Bachelor Degree Degrees/Field of Study preferred Required Skills Operational Technology (OT) Security Optional Skills Accepting Feedback, Accepting Feedback, Active Listening, Analytical Thinking, Azure Data Factory, Communication, Creativity, Cybersecurity, Cybersecurity Governance, Data Architecture, Data Archiving, Data Flow Mapping, Data Privacy Act, Embracing Change, Emotional Regulation, Empathy, Enterprise Content Management, Incident Response Plan, Inclusion, Information Rights Management (IRM), Information Security, Information Security Governance, Information Security Management System (ISMS), Intellectual Curiosity, IT Infrastructure {+ 11 more} No

Task - Testing protocols - Continuous improvement Dependencies Test environments, access to latest application builds Required Skills Knowledge of testing methodologies, experience with validated environments OS/Tools Environment Standard Operating Procedures for the specified environments Jobs Follow locally applicable QMS and ISMS policies and procedures Liase with business units to collect their testing procedures and prepare hand over to DI application testing methods Task - Testing protocols - Continuous improvement Dependencies Test environments, access to latest application builds Required Skills Knowledge of testing methodologies, experience with validated environments OS/Tools Environment Standard Operating Procedures for the specified environments Jobs Follow locally applicable QMS and ISMS policies and procedures Liase with business units to collect their testing procedures and prepare hand over to DI application testing methods

Kindly share your resume on sv12@svmanagement.com Key Responsibilities Ensure security manpower deployment is in alignment with approved organizational norms across designated locations. Oversee the operational health and efficiency of all security systems and equipment. Enforce adherence to site-specific Standard Operating Procedures (SOPs) for security and safety. Maintain plant discipline through consistent monitoring, engagement, and leadership. Ensure that all security personnel are trained and compliant with EMS (Environmental Management System), ISMS (Information Security Management System), and OH&SMS (Occupational Health & Safety Management System) guidelines. Develop, revise, and implement plant security SOPs with necessary management approvals, ensuring continuous alignment with operational needs. Monitor industrial relations (IR) and external threats by gathering intelligence; proactively escalate matters to senior management for timely mitigation. Lead investigations into incidents or breaches within the plant premises; ensure submission of comprehensive reports including root cause analysis and corrective/preventive actions. Experience & Functional Competencies Relevant professional experience in industrial/manufacturing security operations Ex-Serviceman background with exposure to industrial security management is highly desirable In-depth understanding of EMS, OH&SMS, and ISMS frameworks including documentation such as Environmental Aspect Impact Assessments and Hazard Identification & Risk Assessments (HIRA). Proven experience in designing, implementing, and auditing security systems, controls, and policies.

To Process India Payroll To process the payrolls and HRIS tasks/activities by meeting the obligations such as TAT accuracy levels as specified. To provide an effective and efficient payroll and/or HRIS service to customers, ensuring the accurate and timely payment of their employees salaries Respond to requests, queries and complaints from external customers in a friendly and efficient manner so as to enhance customer loyalty To proactively seek learning opportunities to develop and maintain good knowledge of Strada Solution s systems, clients and workflow and processing procedures. To take an active part in promoting your own training and development in all areas. To own and manage the quality and accuracy of operational task of the team. To support and help facilitate 100% SLA attainment for the team through effective WFM. Be a SPOC to the clients(Internal / External) Be the Innovation champion for the process and team. Main Responsibilities: Production Process India Payroll and HR Admin activities Responsible For Processing And Meeting Targets Given For The Sam Responsible For Second Level Verification Of Data If Required Providing Feedback On Quality Issues Found During Audits Responsible for timely escalation of production related issues Responsible For Maintaining Accuracy Prioritizes, allocates and actions daily tasks to be accomplished to meet SLA To build and nurture constructive relationships with the onshore team and internal colleagues from other business areas and to contribute to team efforts, team meetings etc Ensures that team members get data required, in right format and in time to complete payrolls to agreed deadlines Calculates, prepares and transmits manual payments and third-party disbursements Coaches and advises team members on Systems and PC usage Suggests ways in which systems and procedures can be improved to enhance the business. Updating Process Related Reports and Documents Compliances Ensuring ISMS Compliance Of The Team Adhering To Company Policies, Rules And Regulations Following Quality Processes Thoroughly - Checklists, Standards etc On Process Adhering to Work Timings, Leave Schedules Key experience 2 -5 years experience in India Payroll. PC Literacy - Word and Excel (Basic Level) Graduate from any stream / Diploma Holder PC Literacy - Word and Excel (Basic Level) Good technical knowledge of payroll and payroll systems Track record of face to face, telephone and written contact with customers Benefits We offer programs and plans for a healthy mind, body, wallet and life because it s important our benefits care for the whole person. Options include a variety of health coverage options, we'llbeing and support programs, retirement, vacation and sick leave, maternity, paternity adoption leave, continuing education and training as we'll as a number of voluntary benefit options.

. BASIC INFORMATION ON THE POSITION Position Name Trainee - ESGC Mandatory/Required Skills Location Location Mandatory/Required Skills PURPOSE OF THE ROLE To ensure Enterprise Risk management framework and Information Security Management System are effectively implemented in line with the business objectives KEY RESPONSIBILITIES AND ACCOUNTABILITIES 1. Extend support to Implement customer specific information security / enterprise risk related requirements 2. Coordinate and communicate with internal customers to ensure compliance of security / risk guidelines 3. Conduct audit to ensure compliance with customer risk / security requirements 4. Contribute towards customer audits ensuring successful completion 5. Participate in Customer calls when needed and understand customer expectations 6. Provide periodic updates on the implementation status 1. Document procedures and policies based on inputs provided 2. Support implement ISMS (Information Security Management System) framework. 3. Implement new security initiatives and improvements 4. Collect applicable measures and perform periodic analysis as per the measurement program 5. Provide updates periodically 6. Prepare Plan and conduct periodic internal audits 7. Track all internal/external audit findings to closure 8. Implement ERM and conduct risk based audit 9. Conduct surprise/ random audits and track findings to closure 10. Complete the assigned activities like Risk exception, reconciliation, VAPT, etc within the defined SLA 11. Participate in external audits by ensuring readiness of functions providing necessary support for successful completion 1. Understand, align with the goals, roles and responsibilities and provide updates about performance against the set goals 2. Train and mentor team members as appropriate 3. Upgrade competency (skills) in line with the current industry practices and business objectives EDUCATION QUALIFICATION BE/MBA ISO27001 lead auditor s certification CISA/ CISSP Certification (Preferred) PCI DSS Implementer certification MINIMUM EXPERIENCE REQUIRED 2-4 years relevant experience DOMAIN/ FUNCTIONAL SKILLS Knowledge of ISO27001 Standards ISO27005 Guidelines Knowledge of PCIDSS standard Knowledge of risk management (ISO31000) Understanding of organization s business and support processes Knowledge of IT Security, physical and environmental security and HR security controls Knowledge of regulatory requirements

We are looking for a highly skilled Java to join our dynamic development team with 2+ years of experience. This role requires a problem-solving mindset and the ability to work in an agile environment. Responsibilities : Implement APIs and microservices in Java. Deploy serverless solutions using Azure Functions, Logic Apps and API Management. Document integration processes and provide technical support for deployed solutions. Collaborate with cross-functional teams to align technical solutions with business objectives. Monitor and optimize performance using Azure Monitor and Application Insights. Requirements : 2+ years of experience in backend engineering. Proficiency in Java, Spring boot and Azure. Expertise in Azure Functions, Azure Logic Apps or APIM will be a huge plus. Expertise of RESTful APIs, JSON, and XML. Excellent problem-solving and communication skills. Familiarity with cloud integration patterns and practices will be a plus. Knowledge of CI/CD pipelines

Role Summary To Process India Payroll To process the payrolls and HRIS tasks/activities by meeting the obligations such as TAT & accuracy levels as specified. To provide an effective and efficient payroll and/or HRIS service to customers, ensuring the accurate and timely payment of their employees salaries Respond to requests, queries and complaints from external customers in a friendly and efficient manner so as to enhance customer loyalty To proactively seek learning opportunities to develop and maintain good knowledge of Strada Solution s systems, clients and workflow and processing procedures. To take an active part in promoting your own training and development in all areas. To own and manage the quality and accuracy of operational task of the team. To support and help facilitate 100% SLA attainment for the team through effective WFM. Be a SPOC to the clients(Internal / External) Be the Innovation champion for the process and team. Main Responsibilities: Production Process India Payroll and HR Admin activities Responsible For Processing And Meeting Targets Given For The Sam Responsible For Second Level Verification Of Data If Required Providing Feedback On Quality Issues Found During Audits Responsible for timely escalation of production related issues Responsible For Maintaining Accuracy Prioritizes, allocates and actions daily tasks to be accomplished to meet SLA To build and nurture constructive relationships with the onshore team and internal colleagues from other business areas and to contribute to team efforts, team meetings etc Ensures that team members get data required, in right format and in time to complete payrolls to agreed deadlines Calculates, prepares and transmits manual payments and third-party disbursements Coaches and advises team members on Systems and PC usage Suggests ways in which systems and procedures can be improved to enhance the business. Updating Process Related Reports and Documents Compliances Ensuring ISMS Compliance Of The Team Adhering To Company Policies, Rules And Regulations Following Quality Processes Thoroughly - Checklists, Standards Etc. On Process Adhering to Work Timings, Leave Schedules Key experience 2 -5 years experience in India Payroll. PC Literacy - Word and Excel (Basic Level) Graduate from any stream / Diploma Holder PC Literacy - Word and Excel (Basic Level) Good technical knowledge of payroll and payroll systems Track record of face to face, telephone and written contact with customers Benefits We offer programs and plans for a healthy mind, body, wallet and life because it s important our benefits care for the whole person. Options include a variety of health coverage options, wellbeing and support programs, retirement, vacation and sick leave, maternity, paternity & adoption leave, continuing education and training as well as a number of voluntary benefit options. By applying for a position with Strada, you understand that, should you be made an offer, it will be contingent on your undergoing and successfully completing a background check consistent with Strada s employment policies. Background checks may include some or all the following based on the nature of the position: SSN/SIN validation, education verification, employment verification, and criminal check, search against global sanctions and government watch lists, credit check, and/or drug test. You will be notified during the hiring process which checks are required by the position. Our commitment to Diversity and Inclusion Strada is committed to diversity, equity, and inclusion. We celebrate differences and believe in fostering an environment where everyone feels valued, respected, and supported. We know that diverse teams are stronger, more innovative, and more successful. At Strada, we welcome and embrace all individuals, regardless of their background, and are dedicated to creating a culture that enables every employee to thrive. Join us in building a brighter, more inclusive future. Diversity Policy Statement Authorization to work in the Employing Country Applicants for employment in the country in which they are applying (Employing Country) must have work authorization that does not now or in the future require sponsorship of a visa for employment authorization in the Employing Country and with Strada. Note, this job description does not restrict managements right to assign or reassign duties and responsibilities of this job to other entities; including but not limited to subsidiaries, partners, or purchasers of Strada business units. We offer you a competitive total rewards package, continuing education & training, and tremendous potential with a growing worldwide organization. DISCLAIMER: Nothing in this job description restricts managements right to assign or reassign duties and responsibilities of this job to other entities; including but not limited to subsidiaries, partners, or purchasers of Alight business units. .

ISO 27001 Compliance Auditor & Consultant Work from Office & Client Site (Mumbai & Beyond) We are looking for a detail-oriented professional with experience in ISO 27001 audits, risk assessment, and compliance management. The role involves audit execution, security documentation, client collaboration, and regulatory compliance. Strong communication & report-writing skills required. Frequent travel required. Skills : - IT Security Compliance,Risk Assessment,Compliance Auditor,Security Audit,Governance,Risk,Compliance,GRC,IT Risk Management,Audit,ISO 27001 Lead Auditor,Internal Audit,External Audit,Security Frameworks,GDPR,NIST,SOC 2

Immediate openings for the position of Senior Data Engineer / Technical Lead for one of the reputed company Mynd Integrated Solutions located in Gurgaon Sector 68 Key Skills: 68 years of experience in data engineering, analytics, or related fields . Hands-on expertise in SQL, Python , and modern ETL frameworks (Airflow, dbt, etc.). Proven experience with cloud data platforms like Snowflake, Redshift, or BigQuery. Strong understanding of data modeling, warehousing, and performance optimization . Familiarity with data governance , compliance frameworks (e.g., ISO 27701, GDPR). Experience in delivering dashboards via Power BI, Tableau, or Looker . Excellent communication and stakeholder management skills. Notice Period: Immediate joiners are preferred Experience: 6-8 Years Qualification: Any Graduation CTC that we can offer: As per the market standards, It is work from office from Day 1 (5 days working) Job Location: Gurgaon Sector 68 Interested and serious candidates can send me your updated CV on vishnu.peramsetty@myndsol.com Feel free to contact me for further clarifications if any -- Vishnu Vardhan - 8332951064 Job Title: Senior Data Engineer / Technical Lead Experience: 68 Years Location: Gurgaon Reporting To: Head of Data Business / Chief Data Officer (CDO) Role Overview: We are looking for a dynamic and experienced Senior Data Engineer / Technical Lead to spearhead our foundational data initiatives. This role combines hands-on engineering, strategic thinking, and team leadership to establish scalable infrastructure, implement robust data governance, and deliver actionable analytics for both internal operations and SaaS customers. Key Responsibilities: 1. Leadership & Strategy Define and drive the data engineering vision, architecture, and roadmap. Translate business needs into scalable and performant data infrastructure. Lead a small team (4-5 members) of junior data engineers/analysts. 2. Data Infrastructure & Integration Design, build, and maintain reliable data pipelines and ETL processes . Integrate multiple data sources into a unified data warehouse (e.g., Snowflake, Redshift, BigQuery). Ensure scalable and secure infrastructure for real-time and batch processing. 3. Analytics & Dashboard Delivery Collaborate with product and business stakeholders to identify key KPIs. Deliver initial and ongoing analytics dashboards for internal stakeholders and external SaaS clients. Support productization of analytics and insights in client-facing interfaces. 4. Data Governance & Compliance Implement and monitor data quality checks, access policies, and retention standards. Work closely with compliance teams to ensure alignment with ISMS/PIMS standards. Conduct periodic internal audits and support external compliance reviews. 5. Team Enablement & Mentorship Provide technical guidance, code reviews, and mentoring to junior team members. Foster a culture of continuous improvement, learning, and documentation. Required Skills & Qualifications: 6–8 years of experience in data engineering, analytics, or related fields . Hands-on expertise in SQL, Python , and modern ETL frameworks (Airflow, dbt, etc.). Proven experience with cloud data platforms like Snowflake, Redshift, or BigQuery. Strong understanding of data modeling, warehousing, and performance optimization . Familiarity with data governance , compliance frameworks (e.g., ISO 27701, GDPR). Experience in delivering dashboards via Power BI, Tableau, or Looker . Excellent communication and stakeholder management skills. Preferred: Experience in a SaaS or multi-tenant analytics environment. Exposure to DevOps for Data , CI/CD, and Infrastructure-as-Code tools. Certification in cloud platforms (AWS, GCP, or Azure) or data privacy standards.

Confiz is hiring: Engineer V - Java Confiz LLC is looking for Engineer V - Java in India with at least 10+ years professional experience in delivering quality software.You must have strong expertise in the domain and must be able to deliver well accordingly to the responsibilities. Responsibilities Responsible for feature design; evaluate designs and provide feedback Influence quality standards and understand, identify, measure across entire solution Identify performance issues and optimize solutions Demonstrate competence of engineering concepts and theories, combining them with business understanding to design, document and implement clean and robust solutions to complex business problems Collaborate with other engineering teams, business stakeholders, as well as program and product managers to define and implement technical solutions Demonstrate an ability to turn business needs into functional requirements, while also explaining technical details in ways the business can understand. Participate in defining, scoping, and estimating resulting stories Work closely with your peers and help the team achieve its goals Maintain a high bar for code quality, testing and automation while finding opportunities to continuously improve them Drive design and code reviews, ensuring the team ships high quality, scalable, maintainable, and well-tested code Maintain a DevOps mindset, promoting cloud-oriented solutions while implementing and supporting monitoring, alerting, CI/CD pipelines as well as the teams Cloud infrastructure Requirements: 10+ years of professional experience in delivering quality software, ideally across the full stack Excellent proficiency in an Object-Oriented language, such as Java Proficient with Java, Java Spring Boot Framework, Containerization(K8s/Docker) Test automation experience at all levels (Unit, Integration, Regression, Load) Familiarity with modern infrastructure tools and pipelines (Gitlab CI/CD, Terraform) Experience with RESTful architecture and micro services Experience with system design, architecture, scaling, and performance testing. Experience building services a plus Experience with Cloud technologies specially AWS Experience with databases like postgres. Experience with Cache based low latency system design Familiarity with CI/CD and testing tools. Strong understanding of computer science fundamentals Familiarity with ops tools, logging, and metrics (New Relic, Splunk) Experience with messaging technologies and patterns (Kafka/SQS)

Careers at A-LIGN | Compliance & Cybersecurity Careers Senior IT Auditor ISO 27001 About the Role A-LIGN employs a business model that builds on the best of what the largest corporate security firms have to offer, such as the ability to offer high quality professionals a variety of project experience with high profile clients. What sets us apart is that we have eliminated time reporting, chargeability goals, and sales pressure. As a Sr. IT Auditor specializing in ISO 27001, your primary responsibilities will include standard project execution and client service activities. Client engagements typically last two weeks, which allows our employees the opportunity to work on varied projects over the course of the year and gain varied, valuable experience. Responsibilities Gather evidence on site and review Provide draft reports to management, within defined timelines Provide detailed project status reports weekly to management Organize client information on A-LIGN s drive Plan and execute ISO 27001 engagements under the direction of a member of the management team Communicate effectively to the client, prior to, during, and post on-site visit Review manager s planning meeting minutes, and prepare as appropriate for meetings Prepare lead sheets throughout the project Minimum Qualifications Master s or bachelor s cybersecurity, management information systems, computer science, or relevant discipline At least 3 years of experience in the IT auditing field performing: ISO 27001 Internal Information system audits or information security reviews ISO 27001 Implementation within an organisation Implementation and management of the information security management system (ISMS) Supervision and support of information security audits ISO 27001 PREFERRED BUT NOT REQUIRED External audit experience performing information system audits or information security reviews at a QSAC, accredited ISO 27001 certification body, or accredited FedRAMP 3PAO Currently holds at least one of the following: ISO 27001 LA or LI, CCSK, CISA, QSA, CISSP, or other relevant certification SKILLS Ability to meet deadlines with a high degree of motivation Excellent communication skills Thrives in a fast-paced environment Ability to work individually as well as collaboratively A high degree of motivation About A-LIGN A-LIGN is the leading provider of high-quality, efficient cybersecurity compliance programs. Combining experienced auditors and audit management technology, A-LIGN provides the widest breadth and depth of services including SOC 2, ISO 27001, HITRUST, FedRAMP, and PCI. A-LIGN is the number one issuer of SOC 2 and HITRUST and a top three FedRAMP assessor. To learn more, visit a-lign.com.

5–8 yrs of experience in designing and developing integration solutions on Azure. Strong expertise in Azure Logic Apps, Azure Data Factory, and Azure Functions. Proficiency in REST/SOAP APIs, JSON, XML, and other integration protocols and formats. Required Candidate profile Exp. in cloud-based data transformation, orchestration, messaging patterns. Familiarity with Azure Service Bus, Event Grid, Key Vault, and Application Insights. Adhere to ISMS policy and procedures.

JOB DESCRIPTION: He will be responsible for a defined scope of the management system, location, engagement or specialty within Risk and Compliance and reports to the Location Risk and Compliance Manager. Mandatory Skill- ISO 27001 Certified and Knowledge of the Implementation. Note :- Only those candidates apply who is certified and working on The ISO 27001 Implementation. Responsibilities 1. Conduct periodic Risk Assessment, review the identified/open risk and guide the client engagements and support function to treat the risk through cost effective controls 2. Conduct Business Impact Analysis for client engagements and support function 3. Guide the client engagements and support function to draft Business Continuity Plan and test as per Operational Risk & Compliance Calendar 4. Conduct periodic Information Security, Quality and Business continuity awareness sessions for all new joiners 5. Develop and promote Information security, Quality and Business continuity awareness through various channels like email blasters, posters. 6. Frontend Security Incident Response and Management for Security and Business continuity incidents 7. Develop Information security procedures in line with Global ISMS and enforce the same 8. Hands on experience in Governance, Customer Satisfaction, Continual Improvement management +++ Experience in Information Security and Business Continuity Management. Good level of familiarity in ISO 27001, ISO 27701 and ISO 22301 Standards Strong background in one or more Management Systems. Able to demonstrate strong problem solving, communication and improvement skills.

About The Role With the unprecedented scale of recent Pandemic, organizations, Customers, and employees had to go through significant challenges and change over the past 24 plus months. Wipro with its employee centric culture and as a leader in the industry, led many changes in this critical time and supported employees and society at large. Our effort by Wipro and it’s not for profit initiatives during Pandemic is well recognized and acknowledged by the industry, customers, and society at large. Over the years, Business Continuity needs have significantly scaled up understandably. To further strengthen Business Continuity initiatives, we are looking for a Business Continuity Leader. Incumbent will be responsible for Business Continuity Initiatives in India for Wipro and will be reporting to General Manager Global Business Continuity initiatives as part of COO’s office. ? Key Responsibilities 1. Establish compliance to BCM Policy, objectives, strategy and execution for Wipro 2. Participate in all location crisis events and be complaint to all planned /calendarized activities 3. Work with Business teams to develop and implement Business Continuity plans for customers and test plans at a pre-determined periodicity 4. Regular communication and governance with business teams to complete all relevant BC activities Requisite skills/Experience Excellent communication skill Understanding and working knowledge of MS tools Open to work in shifts for global coverage Good analytical skills Reinvent your world. We are building a modern Wipro. We are an end-to-end digital transformation partner with the boldest ambitions. To realize them, we need people inspired by reinvention. Of yourself, your career, and your skills. We want to see the constant evolution of our business and our industry. It has always been in our DNA - as the world around us changes, so do we. Join a business powered by purpose and a place that empowers you to design your own reinvention. Come to Wipro. Realize your ambitions. Applications from people with disabilities are explicitly welcome.

About The Role We are seeking a highly skilled and experienced Business Continuity and Disaster Recovery (BCDR) Specialist to join our team. The ideal candidate will be responsible for developing; implementing; and maintaining business continuity and disaster recovery plans to ensure the organization's resilience in the face of disruptions. This role requires a strategic thinker with strong analytical skills and the ability to work collaboratively across departments. Key ResponsibilitiesDevelop and maintain comprehensive business continuity and disaster recovery plans. Conduct risk assessments and business impact analyses to identify critical business functions and processes. Collaborate with various departments to ensure BCD R plans are integrated and aligned with organizational goals. Coordinate and conduct regular BCDR training and awareness programs for employees. Lead and participate in BCDR testing and simulation exercises to evaluate the effectiveness of plans. Monitor and report on the status of BCDR plans and activities to senior management. Stay current with industry best practices and regulatory requirements related to business continuity and disaster recovery. Provide guidance and support during actual disaster recovery efforts. Primary Skills Business Continuity Disaster Recovery Monitor and report BCDR plans BCDR Testing Secondary Skills Ability to work under pressure and manage multiple projects simultaneously. Excellent communication and interpersonal skills, with the ability to influence and collaborate with cross-functional teams and senior executives.

Hello Talented Techie! We provide support in Project Services and Transformation, Digital Solutions and Delivery Management. We offer joint operations and digitalization services for Global Business Services and work closely alongside the entire Shared Services organization. We make efficient use of the possibilities of new technologies such as Business Process Management (BPM) and Robotics as enablers for efficient and effective implementations. We are looking for Information Security Professional (ISMS/InfoSec) Job Summary: We are seeking a dedicated Information Security Professional to join our team. The ideal candidate will focus on maintaining and managing our ISO27001 certification. This role involves handling the overall Information Security Management System (ISMS), managing internal stakeholders, conducting internal audits, facilitating external audits, and overseeing the information security program management. Key Responsibilities: Maintain and manage the ISO27001 certification and related processes. Oversee the Information Security Management System (ISMS) ensuring compliance with ISO27001 standards. Manage and coordinate internal audits, identifying areas for improvement and implementing necessary changes. Facilitate external audits, acting as the primary point of contact with external auditors. Engage with internal stakeholders to ensure information security policies and practices are effectively communicated and implemented. Develop, implement, and manage information security programs to enhance organizational security posture. Stay updated with the latest developments in information security standards and best practices. Qualifications: Bachelor"™s degree in Information Security, Computer Science, or a related field. 5-7 years of experience in information security with at least 5 years in direct ISMS. Strong knowledge of ISO27001 standards and requirements. Experience in managing and maintaining an Information Security Management System (ISMS). Excellent stakeholder management skills and the ability to communicate effectively with various levels of the organization. Strong organizational and program management skills. Certifications such as ISO27001 Lead Auditor (LA) and Certified Information Systems Auditor (CISA) are preferred. Preferred Certifications: ISO27001 Lead Auditor (LA) Certified Information Systems Auditor (CISA) Skills: Excellent analytical and problem-solving abilities. Strong communication and interpersonal skills. Ability to work independently and as part of a team. High attention to detail and a commitment to maintaining high standards of work. Create a better #TomorrowWithUs! This role, based in Bangalore, is an individual contributor position. You may be required to visit other locations within India and internationally. In return, you'll have the opportunity to work with teams shaping the future. At Siemens, we are a collection of over 312,000 minds building the future, one day at a time, worldwide. We value your unique identity and perspective and are fully committed to providing equitable opportunities and building a workplace that reflects the diversity of society. Come bring your authentic self and create a better tomorrow with us. Find out more about Siemens careers atwww.siemens.com/careers

Introduction Siemens Healthineers develops MedTech products that support better patient outcomes with greater efficiencies, giving providers confidence that they need to meet the clinical, operational, and financial challenges of a changing healthcare landscape. With 70,000+ employees Siemens Healthineers is one of the world"™s largest suppliers of technology to the healthcare industry. As a global leader in medical imaging, laboratory diagnostics, and healthcare information technology, we have a keen understanding of the entire patient care continuum"”from prevention and early detection to diagnosis and treatment. Brief Description: An Information Security Management system is maintained to address the complex challenges and threats in the rapidly evolving digital landscape and fulfill the organization"™s purpose and values. As an Information Security Professional, you will play an essential role in implementing and maintaining our Information Security requirements in accordance with ISO27001 and other relevant regulatory standards. You will gain expertise in driving implementation of various Information security topics in a cross-collaborative environment. What are my key Responsibilities? Assist the implementation and continuous improvement of the ISO27001 Information Security Management System (ISMS). Conduct regular risk assessments and internal audits to ensure compliance with ISO27001 standards. Ensure adherence to all relevant regulatory requirements as directed by the Global Cybersecurity Governance Organization and country specific cybersecurity requirements. Assist to Develop and maintain policies, procedures, and process documentation to meet the Information Security requirements. Work closely with various departments to collect and analyze operational security measures and help integrate measures into all aspects of operations without the need for follow-ups or reminders. Assist project teams for information security inquiries and incident response. Monitor and respond to security incidents and breaches, ensuring timely resolution and documentation of incidents. Assist with Planning, coordinating, conducting and preparing detailed audit reports for internal and external audits to assess the effectiveness of the information security program. Follow up on audit recommendations to ensure timely implementation of corrective actions. Maintain a comprehensive audit trail for all information security activities and initiatives. What do I need to qualify for this job? Bachelor"™s degree in engineering, Information Security, Computer Science, or a related field with 4-6 years of working experience. Minimum of 2-3 years of hands-on experience in information security, with a focus on implementing ISO27001. Strong understanding of ISO 27001 requirements, information security principles, risk management, IT infrastructure set up and regulatory requirements. Good understanding of ISO 27701 PIMS standards. Proven ability to work independently and collaboratively with cross-functional teams. Excellent communication, presentation and interpersonal skills. Self-directed with an ability to take ownership and accountability of assigned tasks. Familiarity with Software development best practices for ensuring security. Previous experience with Software quality assurance responsibilities will be preferred. Highly Recommended to have completed Lead Implementor certification in ISO 27001 standard . What else do I need to know? Siemens Healthineers is dedicated to equality and we welcome applications that reflect the diversity of the communities we work in. All employment decisions at Siemens Healthineers are based on qualifications, merit and business need. Bring your curiosity and imagination and help us shape tomorrow. We are looking forward to receiving your online application. Please ensure you complete all areas of the application form to the best of your ability as we will use the data to review your suitability for the role.

In this role, you will: Participate in less complex development and design of methodologies and standards for review activities companywide in alignment with the risk management framework Ensure effective and appropriate testing, validation, and documentation of review activities for risk programs, risks, and controls according to standards and other applicable policies within Independent Testing Support and implement less complex initiatives with low to moderate risk and exercise independent judgment to guide risk reporting, escalation, and resolution Present recommendations for resolving more complex situations and exercise independent judgment while developing expertise in risk management framework and the risk and control environment Collaborate and consult with colleagues, internal partners and management Required Qualifications: 2+ years of Independent Testing experience, or equivalent demonstrated through one or a combination of the following: work experience, training, military experience, education Desired Qualifications: University degree in Business or related discipline 2+ years of relevant experience in risk management (includes compliance, operational risk, issue identification and validation, internal audit, business process management), Technology Audit, Risk and Control Testing Knowledge and understanding of financial services industry: compliance, risk management, or audit operations Expert knowledge levels and understanding of Technology controls Good understanding of Technology domain and Infrastructure Experience in reviewing testing strategies and methodologies; evaluating the adequacy and effectiveness of policies, procedures, processes, initiatives, products, and internal controls; and identifying issues resulting from internal and/or external compliance examinations Experience in testing policy, procedures, control, and business process testing Experience in creating, executing, and documenting compliance, control, and business process testing Intermediate Microsoft Office (Word, Excel, Outlook, and PowerPoint) Ability to take on a high level of responsibility, initiative, and accountability Minimum 2+ years at Big Four/super regional public accounting firm with experience in Technology testing, regulatory, and/or business process, advisory/consulting service. Experience supporting SOX/SOC, Regulatory Exams (Domestic and Intl), Audits, or other technology control related assessments. Strong critical thinking skills with ability to credibly challenge status quo. Strong organization and prioritization skills. Strong relationship management skills: ability to negotiate difficult positions without harming relationships Strong team player and ability to work with minimum guidance Job Expectations: Responsibilities of the Specialist role include, but are not limited to: Completes review/testing activities on an accelerated schedule, raising schedule delays as needed while looking for opportunities to remediate schedule issues. Providing meaningful operational and compliance risks assessments of business processes. Strong analytical skills Supporting efforts to effectively challenge risks in processes and evaluate and/or test controls designed to mitigate those risks. Executing substantive and/or control testing with moderate supervision. Executing the test of design and operating effectiveness for RCSA (Risk & Compliance Self-Assessment) controls. Completes all testing and documentation under limited supervision and appropriately retains all work papers (testing schedule, templates, work-papers, deferrals, deviations, etc.). Providing consultation and subject matter expertise for process related matters including evaluating severity of control deficiencies and related remediation efforts. Documenting test results and any issues identified while also providing recommendations to management. Providing Credible Challenge to the First Line Units as needed. Acting as a change agent for continual improvement of the control environment Chartered Accountant Certified Management Accounting Certified Public Accountant (CPA) Certified Internal Auditor (CIA) MBA Finance/PGDBA Certified Regulatory Compliance Manager (CRCM) Cybersecurity and Infrastructure Security Agency (CISA) Certified Information Security Manager (CISM) Certified in Risk and Information System Control (CRISC) Information Security Management Systems (ISMS) Data Management information

To design the security infrastructure / policies for the organization, implement & monitor the same To ensure security compliance with respect to recommendations received from government agencies like CEA, NCIIPC Design, review, implement & monitor IT security related controls as part of Internet Controls, ITGC, IFC, ERM ISMS certification (ISO 27001 ) for IT systems; this will include preparation and periodic review of policies and SOPs, regular trainings and maintaining records in prescribed formats Conducting internal security audit and generating reports by deploying VA tools Periodic security/VAPT audits and implementation of the findings IT security related new initiatives like - Security Operations Centre (SOC), Security Information and Event Management (SIENA), c lou d security, EMM-enterprise mobility management Creating IT Security awareness within the organisation

to assist in catering to the needs of management and accounts function. The ideal candidate will play a key role in daily finance tasks and cross-functional coordination. Key Responsibilities: Manage customer invoicing and accounts receivable processes Handle customer correspondence related to invoicing, payments, and receipts Accurately input financial data into internal systems Perform ad-hoc finance and administrative tasks as required Assist with intercompany transaction management and account reconciliations Requirements: Atleast 6-12 months of relevant experience Bachelor s degree in accounting, Finance, BBA, or BSc in a related field Strong English language skills with excellent written and verbal communication High attention to detail and ability to work independently in a fast-paced environment We have an amazing team of 700+ individuals working on highly innovative enterprise projects & products. Our customer base includes Fortune 100 retail and CPG companies, leading store chains, fast-growth fintech, and multiple Silicon Valley startups.

Confiz is hiring: Software Engineer - .Net We are seeking a skilled .NET Backend Engineer to develop and maintain APIs and integration solutions on Azure. The ideal candidate will have expertise in .NET backend engineering, design patterns, databases, and services within the Azure ecosystem. Responsibilities: Implement APIs and microservices in .NET. Deploy serverless solutions using Azure Functions, Logic Apps and API Management. Document integration processes and provide technical support for deployed solutions. Collaborate with cross-functional teams to align technical solutions with business objectives. Monitor and optimize performance using Azure Monitor and Application Insights. Requirements: Proficiency in C#, .NET. Expertise of RESTful APIs, Excellent problem-solving and communication skills. Familiarity with cloud integration patterns and practices will be a plus. Good to have Azure Functions, Azure Logic Apps and APIM. We have an amazing team of 700+ individuals working on highly innovative enterprise projects & products. Our customer base includes Fortune 100 retail and CPG companies, leading store chains, fast-growth fintech, and multiple Silicon Valley startups.

Job Title: Senior GRC Specialist Location: Bangalore (On-site; full-time) About Locus : At Locus , we are redefining logistics decision-making with deep-tech solutions that drive efficiency, consistency, and transparency across industries like retail and FMCG/CPG. Founded in 2015 by Nishith Rastog i and Geet Garg , Locus has evolved from a women s safety geo-tracking app into a globally recognized logistics optimization platform . Our technology has empowered enterprises such as Unilever and Nestl to execute over a billion deliveries across 30+ countries. Guided by our commitment to innovation and sustainable growth, we transform complex supply chains into strategic growth enablers . Join us at Locus and be part of a team shaping the future of global logistics. About the role As a Senior GRC Specialist at Locus, you ll play a pivotal role in safeguarding the company s data and systems while enabling global logistics innovation. This role involves leading the implementation of robust security and privacy frameworks like ISO27001, ISO 27701, NIST, SOC2 Type II, etc., driving risk assessments, managing audits, and ensuring compliance across jurisdictions. Youll work closely with cross-functional teams to embed security into every layer of the organization people, processes, and technology. If youre passionate about security, privacy, and scalable compliance in a fast-paced tech environment, this is your opportunity to make a real impact. Key Responsibilities: Design, implement, and maintain the organization s Information Security Management System (ISMS) and Privacy Information Management System (PIMS) in alignment with ISO 27001, ISO 27701, and SOC2 Type II Drive end-to-end security and privacy compliance programs independently, ensuring alignment with business objectives and customer/regulatory expectations. Conduct periodic risk assessments , develop risk treatment plans, and work closely with business and technical stakeholders to ensure timely mitigation. Develop, review, and improve information security and privacy policies, processes, and controls based on changes in the business environment, emerging threats, and applicable legal and regulatory requirements. Ensure client contractual obligations (MSAs) and legal requirements (e.g., GDPR, CCPA) are consistently met. Track and report compliance status and risks through metrics, dashboards, and management reviews . Lead and coordinate internal and external audits (ISO 27001, SOC 2, etc.), including remediation and continual improvement efforts. Assess and onboard critical third-party vendors through structured third-party risk assessments . Coordinate and execute Business Continuity Planning (BCP) and Disaster Recovery (DR) tests. Set guidelines and review adherence to secure development practices , including secure coding standards . Champion and conduct employee awareness and training programs for security and privacy during onboarding and ongoing learning cycles. Oversee the incident response process , ensuring effective triage, containment, root cause analysis, and reporting of security and privacy incidents. Work closely with engineering/product teams to embed privacy and security-by-design principles into the product lifecycle. Liaise with vendors and partners to evaluate and deploy relevant security tools and solutions . Automate repetitive or redundant GRC tasks using scripting or low-code tools to improve efficiency. Key Requirements: 5-7 years of relevant experience in Governance, Risk & Compliance (GRC) roles in a product-based or technology-driven organization . Deep understanding of compliance frameworks : ISO 27001, SOC 2, CSA STAR, BS 10012, ISO 27701. Solid knowledge of global privacy regulations : GDPR, CCPA, and others. Proven experience leading audits and regulatory assessments , including stakeholder management and remediation. Hands-on experience implementing security/privacy controls in cloud environments (AWS preferred). Ability to translate compliance requirements into actionable security measures across tech, product, and operations. Ability to work independently and manage compliance responsibilities across multiple functions and geographies. Good to Have Certifications (At least one certification in GRC is mandatory): CISA/CISM (recommended) CISSP CIPM/CIPP-E ISO 27001 Lead Auditor (recommended) CRISC , CCSK , or other GRC/privacy-focused credentials What We Offer Join Locus and become part of a visionary team that is redefining logistics through innovation and smart distribution. We provide competitive compensation, comprehensive benefits, and a collaborative environment where your expertise will drive both your growth and that of the organization. Locus is an equal opportunity employer dedicated to creating a diverse and inclusive workplace.

1.Conduct information security management reviews and information security management system (ISMS) assessments 2.Must have knowledge of various compliances like ISO 27001, SOC 2, PCI DSS, GDPR etc. 3.Ensure technical implementation and business processes are aligned 4.Lead the design, implementation, operation and maintenance security management systems 4.Participate in the creation, review and update of information security policies 5.Provide complex technical advice, recommendations and consultancy on networks, infrastructure, products and services supplied 6.Provide or assist with implementation documentation Ongoing project management 7. Must be ISO 27001 LA certified.