1471 Iso 27001 Jobs - Page 21

Key Responsibilities: Plan, coordinate, and perform PCI DSS assessments. Work with stakeholders across departments to gather evidence and validate compliance. Identify areas of non-compliance and develop recommendations for remediation. Prepare formal audit reports Liaise with Qualified Security Assessors (QSAs) and support formal PCI DSS validation efforts. Maintain documentation of security policies, procedures, and controls as they relate to PCI DSS. Required Qualifications: Bachelor s degree in Information Security, Computer Science, Information Systems, or related field. Minimum of 1 3 years of experience in IT auditing, security assessment. Basic knowledge of PCI DSS v4.0 Familiarity w...

IAM PAM Specialist Experience: 6 to 12 years Location: Chennai Education: B. E. / B. Tech/ MCA Role Overview Responsible for designing, implementing, and managing enterprise Identity and Access Management (IAM) and Privileged Access Management (PAM) solutions across hybrid and multi-cloud environments. This role will focus on securing both user and privileged accounts, enforcing least privilege policies, integrating IAM/PAM platforms, and ensuring compliance with security governance frameworks and regulatory requirements. The ideal candidate will have deep hands-on expertise with CyberArk, HashiCorp Vault, SailPoint IdentityNow , and cloud IAM services in AWS or Azure . Key Responsibilities ...

This role is pivotal in shaping technical solutions for prospective clients, driving value-based conversations, and bridging the gap between customer needs and our cloud capabilities As a Presales Engineer at Comprinno, you will work closely with our sales, solution architecture, and delivery teams to understand customer challenges, design high-level solutions, and articulate how Comprinno s cloud offerings can accelerate their digital transformation journey This is a high-impact role that blends technical acumen, consultative selling, and cloud solutioning expertise **Key Responsibilities:*** Engage with prospective clients to understand their business objectives, technical challenges, and ...

": "**Role:** GTM Intern Integrated Marketing\**Department:** Marketing\**Reports To:** Head of Marketing\**Location:** Pune\**Experience:** 0 6 Months---### **About the Role**We re looking for a sharp and curious **GTM Intern** to join our Integrated Marketing team. If you enjoy storytelling, content, digital campaigns, or event execution and want to gain hands-on B2B marketing experience this is for you.Youll support multi-channel campaigns for **Comprinno** and **Tevico**, learning integrated marketing, demand generation, and content strategy along the way.---### **What You ll Do*** **Campaigns:**\ Support execution of brand and partner campaigns across email, social, and events. Assist i...

Perform user provisioning, de-provisioning, and access reviews on IAM platforms like Entra ID. Maintain and manage privileged account vaulting, session recording, and rotation policies using tools like Arcos. Coordinate with application and infrastructure teams for role mapping, entitlement matrix updates, and least privilege enforcement. Execute periodic certification campaigns and ensure compliance with internal and RBI/SEBI access control policies. Onboard new applications and systems to IAM/PAM platforms, ensuring secure access governance. Assist in responding to audit queries, compliance reviews, and regulatory inspections. Monitor privileged account activities, generate actionable repo...

>>Technical Skills Expertise in cyber security including standards such as ISO27001, PCI-DSS, ISO22301, Privacy etc. Knowledge of technical domains such as Cloud security, VAPT, Application security, Risk and control assessment, Technology risk assessments, IT or OT compliance, Data privacy, and Network security Knowledge of concepts such as Shadow IT, Vendor risk, Country specific legal and regulatory requirements, outsourcing/ technology regulations, OWASP top 10 vulnerabilities, review of reports such as SOC, Penetration Test, Code Scan and Cloud compliance Strong GRC and Gap Assessment / Auditing, VAPT skills are desirable >>Soft Skills Strong problem solving and logical approach skills ...

About Brillio: Brillio is the partner of choice for many Fortune 1000 companies seeking to turn disruption into a competitive advantage through innovative digital adoption. Backed by Bain Capital private equity, and growing at nearly 60% YoY since its inception, Brillio is one of the fastest growing digital technology service providers. We help clients harness the transformative potential of the four superpowers of technology cloud computing, internet of things (IoT), artificial intelligence (AI), and mobility. Born digital in 2014, we apply Customer Experience Solutions, Data Analytics and AI, Digital Infrastructure and Security, and Platform and Product Engineering expertise to help client...

: Security Architecture Review & Threat Modeling: Conduct security architecture reviews for applications, cloud environments, and IT systems to identify risks. Perform threat modeling (e.g., STRIDE, PASTA, MITRE ATT&CK, DREAD) to assess potential attack vectors and weaknesses. Analyze authentication, encryption, and access control mechanisms within application and system architectures. Review security controls against industry standards and organizational policies (e.g., NIST, ISO 27001, OWASP, CIS Controls, TISAX ). Provide secure design recommendations to mitigate identified risks. Application & Cloud Security Assessment: Assess web, mobile, and cloud-based applications for security risks ...

This role conducts independent comprehensive assessments and testing of the management, operational, and technical security controls and control enhancements employed within or inherited by an information technology and Infomation security (IT/IS) system to determine the overall effectiveness of the controls. Role includes and is not limited to: SOX, Key,Cloud, Data Management IT/IS controls Testing Design and execute controls testing strategies to evaluate the design adequacy and operating effectiveness of controls. Testing Approach Review and Process Documentation -Develop methods to monitor and measure risk, compliance efforts. Create test plan, test scripts etc. Prepare detailed testing ...

Support the content creation: topic selection in line with the cyber awareness strategy. Support the design and production of engaging and effective security awareness content to be delivered across various mediums Deliver Training and Education: Conducting training sessions, workshops, and presentations to educate employees on topics such as: Recognizing and preventing common cyber threats (phishing, malware, social engineering, ransomware). Understanding the importance of strong passwords and multi-factor authentication. Safe internet habits and secure use of company and personal devices (BYOD policies). Data protection guidelines and approved storage locations. Physical security measures ...

Develop, review, and enforce IT security policies and assurance controls. Ensure compliance with industry standards and regulatory requirements. Conduct risk assessments and security audits. Oversee SOC operations and manage incident response. Implement and monitor security solutions such as SIEM, EDR, WAF, and VA tools. Lead phishing awareness programs and implement email security measures. Secure cloud environments, including O365 and Azure Security. Implement security best practices for cloud technology platforms. Ensure effective Disaster Recovery (DR) planning. Manage and enhance PAM, IAM, and SSO security frameworks. Ensure effective data classification and DLP strategies.

Lead and execute HITRUST (e1, i1, r2) assessments and audits: Conduct control testing and evidence validation. Review client-prepared documentation for adequacy and effectiveness. Evaluate business processes and control requirements. Prepare and maintain HITRUST workpapers and related documentation in line with required methodologies. Create gap remediation action plans and provide consultative guidance to clients on addressing identified control weaknesses. Deliver SOC 2 assessments (readiness or attestation support), including testing of controls and preparing required documentation. Draft detailed reports, including assessment findings, observations, and recommendations; present results t...

Skills: ISO 27001, Information Security, Microsoft Tools The Senior Information Security Analyst within the Information Security division is responsible for identifying, analysing, managing risks and providing assurance to Allianz Technology services. The Security analyst will act as a contact person for the Service Managers/Third Party vendors and is working in close collaboration with them. University degree (preferably, in computer science), or equivalent professional experience; 4 to 7 years of experience in Information Security related fields Strong analytical skills and detail orientation, pragmatic approach to solving problems. Excellent self-organization, go-getter, ability to keep a...

The ISMS Governance and Audit Resource will play a role in the implementation and maintenance of our Information Security Management System (ISMS) in accordance with ISO 27001 standards, ISMS framework, conducting regular audits to ensure compliance Required Candidate profile 2–3 yrs of professional experience in ISMS governance, audit, or information security ISO 27001 LA or LI certification Information security governance, audits, risk management, and compliance Perks and benefits Group Medical Insurance Performance Bonus

Some careers shine brighter than others. If you re looking for a career that will help you stand out, join HSBC and fulfil your potential. Whether you want a career that could take you to the top, or simply take you in an exciting new direction, HSBC offers opportunities, support and rewards that will take you further. HSBC is one of the largest banking and financial services organisations in the world, with operations in 64 countries and territories. We aim to be where the growth is, enabling businesses to thrive and economies to prosper, and, ultimately, helping people to fulfil their hopes and realise their ambitions. We are currently seeking an experienced professional to join our team i...

Job Summary This role will be responsible for supporting the organizations security initiatives, ensuring compliance with industry standards, and maintaining a secure, risk-aware environment. The role will work closely with clients, understand their security and compliance requirements, plan engagements, and ensure high-quality delivery of services. The role will work closely with cross-functional teams to ensure successful delivery of client projects. The role demands technical expertise, deep regulatory knowledge, client management capabilities. Focus will be on delivering value through risk framework development, vendor risk assessments, compliance training, and tailored client advisory. ...

About the Role Join our security team to protect critical infrastructure and help clients defend against evolving cyber threats. Key Responsibilities Monitor and analyze security events using SIEM tools Conduct vulnerability assessments and penetration testing Respond to security incidents and perform forensic analysis Implement security controls and best practices Develop security policies and procedures Collaborate with clients on security assessments Stay updated with latest security threats and trends Requirements Bachelors degree in Computer Science, Cybersecurity or related field 3-5 years of experience in cybersecurity Experience with SIEM tools (Splunk, QRadar, Sentinel) Knowledge of...

Description Enphase Energy is a global energy technology company and a leading provider of solar, battery, and electric vehicle charging products. Founded in 2006, our innovative microinverter technology revolutionized solar power, making it a safer, more reliable, and scalable energy source. Today, the Enphase Energy System enables users to make, use, save, and sell their own power. Enphase is also one of the most successful and innovative clean energy companies in the world, with more than 80 million products shipped across 160 countries. Join our dynamic teams designing and developing next-gen energy technologies and help drive a sustainable future! This role at Enphase requires working o...

Job Summary AVP Digital Trust will be responsible for end-to-end ownership of all service engagements for Indian clients. This is a leadership role that will report to the VP Business Head, India, and work closely with global delivery leaders, senior practice heads, and cross-functional teams such as Sales, Pre-Sales, and Account Management. The AVP will lead a dedicated delivery team and will be instrumental in establishing a robust, scalable, and India-specific delivery framework aligned with the global standards. This includes implementing efficient processes, ensuring compliance with relevant regulatory frameworks, maintaining high service quality, and proactively identifying opportuniti...

Our world is transforming, and PTC is leading the way. Our software brings the physical and digital worlds together, enabling companies to improve operations, create better products, and empower people in all aspects of their business. Our people make all the difference in our success. Today, we are a global team of nearly 7,000 and our main objective is to create opportunities for our team members to explore, learn, and grow all while seeing their ideas come to life and celebrating the differences that make us who we are and the work we do possible. Key Responsibilities: Perform vulnerability assessments across on-premise and cloud platforms (AWS, Azure, GCP). Analyze scan results from tool...

Job Overview We are seeking a highly motivated and detail-oriented Technology Audit Lead to join our Internal Audit team. This role is ideal for someone with strong experience in auditing frameworks such as NIST, SOC 1 & SOC 2, and COBIT, and who possesses a deep understanding of technology controls. The successful candidate will assess the design and effectiveness of technology controls across various systems and processes, providing assurance to senior leadership on the organizations IT audit and risk posture. Key Responsibilities Plan, execute, and report on technology audits covering infrastructure, applications, cybersecurity, and cloud environments. Assess IT control frameworks includi...

The Senior Specialist, Technical Risk Assurance is responsible for leading security assessments, identifying vulnerabilities and ensuring the organizations IT infrastructure remains secure against evolving cyber threats. This role involves evaluating security risks, implementing control measures, and collaborating with IT and business units to enhance security frameworks. Your key responsibilities Conduct and lead security assessments to evaluate the effectiveness of existing security controls and identify potential vulnerabilities. Provide recommendations on security improvements, integration requirements and emerging security needs. Analyze and report on information security risks, collabo...

Position: Head IT & InfoSec Looking for a professional with proven credentials in managing IT systems delivery and information security to enhance the quality of our client deliveries and strengthen information security practices within the organization. Head IT & Infosec is required to have, Hands-on experience in network design Hands-on experience in policy design & deployment of firewall, antivirus, DLP, AD servers and other network perimeter devices Familiarity with industry standards and frameworks, especially ISO 27001, Personnel Privacy Data Protection regulations Strong Project Management and people management skills, with the ability to influence and collaborate across departments P...

Role & responsibilities Designs, implements, and deploys security cloud platforms to support and mitigate security threats, risks and technology vulnerabilities. Identifies and recommends opportunities for improvement and performance issue solutions. Provides advanced level technical support and monitors security technologies effciency through the use of monitoring tools and applications. Maintains comprehensive technical knowledge of cloud software and infrastructure platforms. Develops auditing methodologies and architecture to manage and protect data in cloud computing environments. Elevates code into the development, test, and cloud production environments on schedule. Provides follow up...

We are seeking a detail-oriented and proactive *Segregation of Duties (SOD) Compliance Analyst to join our Information Security team. The ideal candidate will have a strong background and deep understanding of SOD audit principles across applications Required Candidate profile Chartered Accountant with internal audit background 3+ years of experience in SOD analysis, audit, compliance or risk management within a regulated enterprise environment. preferred: CA, CISA Perks and benefits Group Medical Insurance Performance Bonus