776 Iso 27001 Jobs - Page 27

Intern, Data Privacy About Us Augnito is the next gen Voice AI powering the healthcare industry. Augnito empowers medical professionals and streamlined clinical workflows with cloud-based, AI speech recognition that offers ergonomic data entry with 99% accuracy, without the need for voice profile training, from any device, anywhere. From the outset, Augnito was built in close partnership with clinicians, using human-centered design, to create an AI natural language processing engine to fit your needs - not the other way around. As a result, Augnito offers excellent support for a wide variety of clinical vocabulary and workflows and can halve your clinical reporting and admin time, increase revenue, prevent physician burnout, eliminate transcription waiting delays, and enable you to focus your energy on patient care - not documentation. Augnito is currently deployed at 500+ hospitals and health systems and has a growing presence in 25+ countries, including UAE, Kingdom of Saudi Arabia, UK, US, India, Australia more. Position Overview We are looking for a highly motivated Information Security Data Privacy Intern with a keen interest in data privacy, information security, and regulatory compliance. This role offers a unique opportunity to work at the intersection of data privacy, technology, and law. You will be assisting our infosec team in ensuring compliance with information security standards, governance, risk compliance. Key Responsibilities Assist in legal research on Indian data privacy laws, including the Digital Personal Data Protection Act, 2023, IT Act, 2000, and other data privacy regulations. Draft and review privacy policies, data processing agreements, and other related legal documents. Support in assessing and mitigating legal risks associated with information security practices. Collaborate with the infosec team to ensure alignment between legal requirements and security frameworks. Monitor regulatory developments in data privacy within India and prepare internal reports. Assist in handling data subject requests and compliance documentation. Support in contract review and negotiations related to data protection clauses. Requirements Currently pursuing or recently completed a degree in law (LLB/LLM). Strong knowledge of Indian data privacy laws and regulations. Excellent legal research and analytical skills. Strong drafting and written communication skills. Interest in information security and emerging technology regulations. Ability to work independently and in a cross-functional environment. Attention to detail and ability to handle confidential information responsibly. Familiarity with ISO 27001, and other security standards is advantageous. Familiarity with regulatory frameworks such as GDPR ADHICS is advantageous. Prior internship experience in data privacy is a plus. Augnito is an equal opportunities employer. We are committed to providing equal opportunities throughout employment including in the recruitment, training, and development of employees (including promotion, transfers, assignments and beliefs). Augnito will not tolerate any act of discrimination in the workplace including but not limited to Gender, National or ethnic origins, Marital or Domestic Partnership status, Pregnancy Status, Carer s responsibilities, Race, Colour, Religious belief, Disability, Age, Any other grounds of discrimination. In order to provide equal employment and advancement opportunities to all individuals, employment decisions at Augnito will be based on merit, qualifications, and abilities. Our objective is to attract job applications and applications for development from the best possible candidates and to retain the best people.

About Parent Company: PrintStop India Pvt Ltd. At PrintStop, we have an 18-year legacy of transforming the printing and customised gifting procurement processes for small to large enterprises. Our commitment to quality and service is reflected in our average customer rating of 4.5 and ISO 9001:2015 and ISO 27001:2022 certifications. We are also certified as a Great Place to Work, with a focus on excellence and employee well-being. Printstop India Pvt Ltd has 2 divisions: For Small Medium Enterprises - PrintStop.co.in For Large Enterprises - Mandaala.com About Enterprise Solution Division: Mandaala.com Mandaala is a leading #MerchTech company that automates corporate merchandise programs for enterprises. We help organisations seamlessly execute onboarding kits, long service awards, rewards & recognition (R&R), birthdays, anniversaries, and sales incentive programs through a tech-driven platform. As we expand, we see significant opportunities in partnering with HRMS platforms, employee engagement companies, and HR Tech firms that cater to the same customer base but do not overlap with us. Additionally, we aim to collaborate with Big 4 consulting firms that offer digital transformation services to enterprises, enabling them to bundle our solution as part of their offerings. We are seeking a strategic and results-driven professional to lead these initiatives and drive business growth through partnerships. Why Join Mandaala? Lead High Impact Partnerships Play a crucial role in expanding Mandaala s footprint across India & APAC by building strategic alliances. Be Part of Something Bigger, The MerchTech Movement Join a fast-growing #MerchTech company that is transforming how global enterprises engage employees through merchandise. Drive Business Growth Your work will directly contribute to revenue generation, high-value partnerships, and business expansion. Work with Leading HR Tech & Consulting Firms Collaborate with the biggest players in HRMS, employee engagement, and digital transformation. Competitive Rewards & Performance-Based Growth Enjoy a lucrative compensation package with performance linked incentives. Your Role: Head of Partnerships & Alliances As the Head of Partnerships & Alliances, you will be responsible for identifying, developing, and managing strategic alliances with HR Tech firms, enterprise SaaS platforms, and consulting companies to expand Mandaala s footprint in India and APAC. Your goal will be to drive revenue growth by securing high-value partnerships and ensuring successful execution. What You ll Do? Identify & Develop Partnerships - Be the Connector Establish strategic alliances with HRMS platforms, employee engagement companies, and consulting firms to integrate Mandaala s offerings into their solutions. Drive Business Growth Secure at least 5-7 strategic partnership meetings per month and ensure a minimum closure of 2 new partnerships per quarter. Negotiate & Close Deals - Be the Closer Lead partnership discussions, structure agreements, and ensure successful deal closures. Collaborate Cross-Functionally Work closely with sales, marketing, and product teams to develop joint go-to-market strategies with partners. Represent the company at trade shows and events and try to find partnerships. Monitor & Optimise Performance Measure and report on partnership success, ensuring a tangible business impact. Location - Mumbai/ Remote. Type : Full-time Working days - Monday to Saturday (One saturday off per month) What Makes You a Great Fit? Experience - A Strategic Business Leader 6+ years in business development, strategic alliances, or partnerships, preferably in HR Tech, SaaS, or consulting. An Industry Expert Strong understanding of HRMS platforms, employee engagement solutions, and digital transformation services. A Network Builder Existing relationships within HR Tech companies or Big 4 consulting firms are a plus. Results-Oriented & Driven A track record of building and scaling partnerships with measurable outcomes. Excellent Communication & Negotiation Skills Strong negotiation, relationship management, and presentation skills. Ready to Lead Mandaala s Partnership Revolution? If you re a strategic business leader, deal-maker, and partnership builder who thrives on creating high-impact alliances, we want to hear from you! Love the idea of transforming corporate merchandise programs and driving growth through strategic partnerships? Then this role is for you! Just send us your resume and a brief intro on why you re the perfect fit.

We are looking for a highly motivated and detail-oriented individual with 0 to 3 years of experience to join our team as a Risk Consulting Associate in the IT SOX domain. The ideal candidate will have excellent analytical skills, strong knowledge of financial services, and a passion for delivering high-quality results. Roles and Responsibility Develop an understanding of RSM Technology Risk Consulting approach, methodology, and tools. Perform technology risk assessments and review control design and operating effectiveness. Conduct internal audit consulting activities, including audits over ERP systems, IT security, and other IT systems. Execute components of IT audits under offshore delivery models effectively and efficiently. Identify internal control deficiencies, evaluate their risk implications, and draw appropriate conclusions. Ensure documentation complies with quality standards. Collaborate with RSM consulting professionals, supervisors, and senior management in the U.S. daily. Manage multiple concurrent engagements and ensure service excellence through prompt responses to internal and external clients. Provide timely, high-quality client service, coordinating the development and execution of the consulting work plan and client deliverables. Understand RSM US and RSM Delivery Center's LOBs and work as a team in providing integrated service delivery. Ensure professional development through ongoing education. Job Requirements B.Tech/MCA/MBA with 0-3 years of relevant experience in Information Technology/Security Controls, SSAE18, SOC reports, IT Audits, IT General Controls, IT Application Controls, and ERP Audits. Intermediate knowledge of financials, operations, and technology and its related risks. Good knowledge of SOC 1, SOC 2, ICFR, IT General Controls, IT Application Controls, Information security, and risk management frameworks/standards (ISO 27001, NIST, COBIT, ITIL, PCI). Qualified to pursue a job-relevant certification (CISA, CISM, CRISC, CISSP). Strong Data Analytical skills including advanced Excel skills (VLOOKUP's, pivot tables, and basic formulas), Word, and PowerPoint. MS Visio skills to develop process and data flow diagrams. Strong multi-tasking and project management skills. Excellent verbal and written communication (English) as this is a client-facing role requiring frequent communications with RSM International clients.

We are looking for a skilled professional with 8 to 13 years of experience to join our team as an Associate Manager/Manager - RC TRC IT SOX Consulting in Bengaluru. The ideal candidate will have a strong background in Information Technology/Security Controls and experience in Risk Consulting. Roles and Responsibility Develop an understanding of the RSM Technology Risk Consulting approach, methodology, and tools. Perform technology risk assessments and review, document, evaluate control's design and operating effectiveness. Conduct internal audit consulting activities, including audits over ERP systems, IT security, and other IT systems. Execute components of IT audits under offshore delivery models effectively and efficiently. Identify internal control deficiencies, evaluate their risk implications, and draw appropriate conclusions to advise clients. Collaborate with the team to provide integrated service delivery and ensure professional development through ongoing education. Job Requirements B.Tech/MCA/MBA with 8+ years of relevant experience in Information Technology/Security Controls. Intermediate knowledge of financials, operations, and technology, along with its related risks. Good knowledge of SOC 1, SOC 2, ICFR, IT General Controls, IT Application Controls, Information security, and risk management frameworks/standards (ISO 27001, NIST, COBIT, ITIL, PCI). Qualified to pursue a job-relevant certification (CISA, CISM, CRISC, CISSP). Strong Data Analytical skills, including advanced Excel skills (VLOOKUP's, pivot tables, and basic formulas), Word, and PowerPoint. MS Visio skills to develop process and data flow diagrams. Excellent verbal and written communication skills, as this role requires frequent client interactions. Ability to manage multiple concurrent engagements and ensure service excellence through prompt responses to internal and external clients. Provide timely, high-quality client service that meets or exceeds expectations, including coordinating the development and execution of the consulting work plan and client deliverables. Understand RSM US and RSM Delivery Center's LOBs and work as a team in providing an integrated service delivery. Ensure professional development through ongoing education.

Key Responsibilities Identity and Access Management (IAM) Design, implement, and manage IAM frameworks, ensuring secure access control across on-premises and cloud environments. Administer user accounts, roles, and permissions following the principle of least privilege. Perform periodic access reviews and audits to ensure compliance with organizational policies. Manage single sign-on (SSO), multi-factor authentication (MFA), and identity federation solutions. Collaborate with application teams to implement secure authentication and authorization protocols. Vulnerability Management Conduct regular vulnerability scans across infrastructure, applications, and endpoints using tools such as Qualys, Nessus, or equivalent. Analyze vulnerability reports, prioritize risks, and coordinate remediation efforts with relevant teams. Maintain and improve patch management processes to address identified vulnerabilities. Monitor and track emerging threats, ensuring timely implementation of mitigation measures. Create and present vulnerability management dashboards and reports for stakeholders. Security Operations Monitor and respond to security incidents, ensuring quick containment and resolution. Configure and manage security tools such as firewalls, intrusion detection/prevention systems (IDS/IPS), and endpoint security solutions. Conduct root cause analysis for incidents and implement preventive measures. Ensure compliance with security standards such as ISO 27001, NIST, or CIS benchmarks. Develop and update runbooks and incident response procedures. and Governance Work closely with DevOps, infrastructure, and application teams to integrate security best practices. Participate in security assessments, audits, and risk analysis exercises. Support the development and enforcement of security policies and standards. Provide security awareness training to teams and stakeholders. Documentation and Reporting Maintain comprehensive documentation of IAM workflows, security processes, and vulnerability management activities. Provide periodic compliance and risk reports to management and relevant stakeholders. Qualifications and Skills Proven experience in IAM, vulnerability management, and security operations. Strong knowledge of identity management tools and vulnerability scanning tools (e.g., Qualys). Proficiency in configuring and managing security tools such as firewalls, IDS/IPS, and endpoint security solutions. Familiarity with cloud security practices across platforms like AWS, Azure, or Google Cloud. Strong analytical and problem-solving skills with attention to detail. Relevant certifications such as CISSP, CISM, CompTIA Security+, or GIAC are highly desirable. Key Responsibilities Identity and Access Management (IAM) Design, implement, and manage IAM frameworks, ensuring secure access control across on-premises and cloud environments. Administer user accounts, roles, and permissions following the principle of least privilege. Perform periodic access reviews and audits to ensure compliance with organizational policies. Manage single sign-on (SSO), multi-factor authentication (MFA), and identity federation solutions. Collaborate with application teams to implement secure authentication and authorization protocols. Vulnerability Management Conduct regular vulnerability scans across infrastructure, applications, and endpoints using tools such as Qualys, Nessus, or equivalent. Analyze vulnerability reports, prioritize risks, and coordinate remediation efforts with relevant teams. Maintain and improve patch management processes to address identified vulnerabilities. Monitor and track emerging threats, ensuring timely implementation of mitigation measures. Create and present vulnerability management dashboards and reports for stakeholders. Security Operations Monitor and respond to security incidents, ensuring quick containment and resolution. Configure and manage security tools such as firewalls, intrusion detection/prevention systems (IDS/IPS), and endpoint security solutions. Conduct root cause analysis for incidents and implement preventive measures. Ensure compliance with security standards such as ISO 27001, NIST, or CIS benchmarks. Develop and update runbooks and incident response procedures. and Governance Work closely with DevOps, infrastructure, and application teams to integrate security best practices. Participate in security assessments, audits, and risk analysis exercises. Support the development and enforcement of security policies and standards. Provide security awareness training to teams and stakeholders. Documentation and Reporting Maintain comprehensive documentation of IAM workflows, security processes, and vulnerability management activities. Provide periodic compliance and risk reports to management and relevant stakeholders. Qualifications and Skills Proven experience in IAM, vulnerability management, and security operations. Strong knowledge of identity management tools and vulnerability scanning tools (e.g., Qualys). Proficiency in configuring and managing security tools such as firewalls, IDS/IPS, and endpoint security solutions. Familiarity with cloud security practices across platforms like AWS, Azure, or Google Cloud. Strong analytical and problem-solving skills with attention to detail. Relevant certifications such as CISSP, CISM, CompTIA Security+, or GIAC are highly desirable.

Job Title: Data Privacy & Protection Specialist (Technical Compliance) Key Responsibilities: Ensure compliance with global data protection regulations including GDPR, CCPA, and other relevant frameworks . Design, implement, and maintain data privacy and protection policies , procedures, and controls. Evaluate and implement technical security controls such as: Encryption and Cryptography Data Loss Prevention (DLP) Endpoint Protection Platforms (EPP) Conduct privacy impact assessments (PIAs) and data protection impact assessments (DPIAs) . Provide guidance on data classification, retention, and secure data handling . Required Skills & Qualifications: Bachelors or masters degree in information security, Computer Science, Law, or a related field. 5+ years of experience in data privacy, protection, or compliance roles. Strong understanding of GDPR, CCPA, ISO 27001, NIST , and other data protection standards. Familiarity with SIEM, CASB, IAM, and other security technologies is a plus. Relevant certifications such as CIPM, CIPP/E, CISSP, CISM, or ISO 27001 Lead Implementer are highly desirable. Experience- 5 to 8 years Work location- Bangalore Shift- General Notice- 15 to 30 days.

So, what s the role all about Cloud Information Security Engineers maintain the security of operating systems, storage, public cloud environments and hardware. They maintain and monitor the security of NICE CXone s lab and production environments. Other responsibilities include identifying security requirements, owning projects related to audits and maintaining a secure systems environment. The Senior Cloud Information Security Engineer needs good communication skills and must be able to work collaboratively with other technical colleagues. They share their expertise and provide individual training and support. How will you make an impact Maintain, monitor, and support the security of a large, global infrastructure environment Performing Risk Assessment and Mitigation Following defined procedures to monitor systems security and resolving issues Security policy development and enforcement Participate in internal and external audits providing required evidence Identifying and Implementing remediation required by audits/assessments Maintain the security of lab and production storage Maintain the security and compliance of enterprise grade systems related hardware Cross-train and share knowledge with team Maintain documentation of security and remediation related processes Communicates events to stakeholders, teams, and leadership Works daily with EDR, NGAV and SIEM products Work with Change Management Have you got what it takes Must have good attention to detail, and the ability to make good, timely decisions Be a Team-player, have a positive attitude and able to work with a distributed team in multiple time zones Experience successfully working in fast paced, production environments Experience working within a team of IT professionals; taking and following direction and completing tasks and assignments in a timely manner with a positive attitude Be a self-starter who is proactive, motivated and can work independently Experience Leading Projects and Delivering Solutions Through Completion Knowledge of common security and compliance certifications and frameworks, such as ISO 27001, SOC 2 type 2, PCI DSS, FedRAMP, IRAP, GDPR etc. 2+ years working with EDR and/or SIEM products 2+ years working with Threat Detection and Incident Response 4+ years in Windows Server Administration 4+ years managing infrastructure security vulnerabilities 4+ years working in a PCI/FedRAMP/IRAP compliant environment 4+ years communicating in English in a technical field Experience working with change management processes Experience working in hybrid Cloud and On-Premise environments Experience working with and responding to security questionnaires Experience working with PowerShell and other scripting languages What s in it for you Enjoy NICE-FLEX! Requisition ID: 5962 Reporting into: Tech Manager Role Type: Individual Contributor About NICE

Understand and apply Technology Control Framework based on industry standards to establish, promote and manage governance, risk compliance. Implement security controls, risk assessment framework, and program that align to best practices and regulatory requirements. Ensure and monitor effective implementations of the policies and procedures. Inform and align decision making for information technology planning, policy and operations to meet business objectives. Communicate the governance activities, policies and decisions with the IT Management and Business Leadership and keep them informed of IT governance decisions that will affect IT services and projects. Work with different stakeholders to maintain up-to-date documentation for scoping, testing and remediation of technology controls Assess audit findings / gaps including control weaknesses in coordination with different stakeholders and assist with development of management action plans. Assess efficacy of security controls, document and report control failures and gaps to stakeholders. Provide remediation guidance and prepare management reports to track remediation activities. Ability to communicate a deep understanding of the business and a broad knowledge of existing risk evaluation practices is expected in this role. Carefully maintain complaint and nonconformance processing through records and tracking systems, including root cause and corrective actions. Execute strategy for dealing with increasing number of audits, compliance checks and internal assessment processes for Ameriprise standard compliance framework/practices. Lead the identification, assessment, and mitigation of risks across all operational, strategic, and regulatory domains. Oversee the governance controls across technology business units, ensuring effective governance structures, executive performance evaluations, and compliance with corporate governance codes. Work closely with senior management to define risk tolerance levels, ensuring that appropriate mitigation measures are in place. Maintain strong relationships with key internal and external stakeholders, including the Board, senior management, regulators, auditors, and business leaders. Provide regular updates to the Board and senior management on governance, risk, and assurance matters, including risk exposures, compliance status, and audit outcomes. Lead the preparation of comprehensive risk and governance reports, including annual governance reports, risk assessments, and assurance reviews for the Board and senior management. Job Responsibilities Understand and apply Technology Control Framework based on industry standards to establish, promote and manage governance, risk compliance. Implement security controls, risk assessment framework, and program that align to best practices and regulatory requirements. Ensure and monitor effective implementations of the policies and procedures. Inform and align decision making for information technology planning, policy and operations to meet business objectives. Communicate the governance activities, policies and decisions with the IT Management and Business Leadership and keep them informed of IT governance decisions that will affect IT services and projects. Work with different stakeholders to maintain up-to-date documentation for scoping, testing and remediation of technology controls Assess audit findings / gaps including control weaknesses in coordination with different stakeholders and assist with development of management action plans. Assess efficacy of security controls, document and report control failures and gaps to stakeholders. Provide remediation guidance and prepare management reports to track remediation activities. Ability to communicate a deep understanding of the business and a broad knowledge of existing risk evaluation practices is expected in this role. Carefully maintain complaint and nonconformance processing through records and tracking systems, including root cause and corrective actions. Execute strategy for dealing with increasing number of audits, compliance checks and internal assessment processes for Ameriprise standard compliance framework/practices. Lead the identification, assessment, and mitigation of risks across all operational, strategic, and regulatory domains. Oversee the governance controls across technology business units, ensuring effective governance structures, executive performance evaluations, and compliance with corporate governance codes. Work closely with senior management to define risk tolerance levels, ensuring that appropriate mitigation measures are in place. Maintain strong relationships with key internal and external stakeholders, including the Board, senior management, regulators, auditors, and business leaders. Provide regular updates to the Board and senior management on governance, risk, and assurance matters, including risk exposures, compliance status, and audit outcomes. Lead the preparation of comprehensive risk and governance reports, including annual governance reports, risk assessments, and assurance reviews for the Board and senior management. Preferred Key Skills Foundational knowledge of Cloud Computing Technologies (AWS, Microsoft Azure, GCP etc. ). Possess strong oral and written communication skills along with refined presentation skills and the ability to work with other departments and varying levels of management, including senior leadership. Be able to engage at all levels of the organization to organize, drive and communicate results. Good understanding of industry standards for compliance such as ISO 27001:2013, PCI DSS, and SSAE 18 SOC 1 / SOC 2 attestation standards. Defining problems, collecting, and analyzing data, establishing facts, and drawing valid conclusions Questions status quo and navigates through roadblocks. Ameriprise India LLP has been providing client based financial solutions to help clients plan and achieve their financial objectives for 125 years. We are a U. S. based financial planning company headquartered in Minneapolis with a global presence. The firm s focus areas include Asset Management and Advice, Retirement Planning and Insurance Protection. Be part of an inclusive, collaborative culture that rewards you for your contributions and work with other talented individuals who share your passion for doing great work. You ll also have plenty of opportunities to make your mark at the office and a difference in your community. So if youre talented, driven and want to work for a strong ethical company that cares, take the next step and create a career at Ameriprise India LLP. Full-Time/Part-Time Timings (2:00p-10:30p) India Business Unit AWMPO AWMPS Presidents Office Job Family Group Technology

Governance and Compliance,Risk Assessment and Management,Regulatory Compliance,Policy Development and Enforcement,Third-Party Risk,Data Security Metrics,Risk Reporting Framework Management,eDiscovery,Mitigation Strategies

ROLE & RESPONSIBILTY: Conduct thorough and detailed cyber risk assessments for our clients, analyzing their digital infrastructure, systems, and security controls. Collaborate with cross-functional teams to gather essential information and data required for comprehensive risk assessments. Evaluate and interpret assessment results to identify potential vulnerabilities and risks, and provide actionable recommendations for risk mitigation. Stay up-to-date with the latest cyber threats, attack vectors, and industry best practices to enhance the effectiveness of risk assessments. Prepare and deliver clear and concise reports summarizing the findings of risk assessments to clients and internal stakeholders. Provide expert advice and consultancy to clients, guiding them in implementing robust cybersecurity risk management strategies. Mentor and support junior team members to foster their professional growth and skills in cyber risk assessments. REQUIREMENTS: Bachelor's or Master's degree in Computer Science, Cybersecurity, Information Technology, or related fields. A minimum of 5+ years of hands-on experience in conducting cyber risk assessments and related security assessments. Industry certifications such as CISSP, CCSP, CISA, CISM, CRISC, ISO/IEC:27001/22301/20000 LI/LA or equivalent are highly valued. Profound knowledge of cybersecurity frameworks, industry standards, and best practices. Proficiency in using various security assessment and techniques. Strong analytical and problem-solving skills, with the ability to think critically and strategically. Excellent communication and presentation skills, capable of effectively communicating technical concepts to both technical and non-technical audiences. Demonstrated experience in project management and handling multiple assessments simultaneously. A proactive and self-motivated approach to work, with a commitment to continuous learning and professional development. Network Security, infrastructure assessment and network architecture design review. Conceptual knowledge of OT Security/ISA 62443 standard is preferable.

About the Role We are seeking a highly skilled and experienced Senior DevOps Engineer to join our growing technology team. This role requires deep technical expertise in managing and automating on-premises , cloud , and hybrid infrastructure deployments . The ideal candidate will also bring a strong understanding of infrastructure security , compliance , and DevSecOps practices , ensuring scalable, resilient, and secure environments. Key Responsibilities Design, build, and maintain scalable and resilient CI/CD pipelines for on-prem, cloud (AWS/Azure/GCP), and hybrid environments. Implement and manage infrastructure-as-code (IaC) using tools such as Terraform , Ansible , or Pulumi . Oversee container orchestration and deployment using Docker , Kubernetes , and other relevant platforms. Lead configuration and monitoring of infrastructure with Prometheus , Grafana , ELK Stack , or similar tools. Implement security best practices in infrastructure and deployment pipelines (DevSecOps). Conduct risk assessments and vulnerability remediation across all environments. Collaborate with security, development, and operations teams to enforce governance and compliance requirements. Automate system provisioning, monitoring, and scaling using modern DevOps tools. Assist in disaster recovery planning and business continuity architecture for hybrid infrastructure. Perform routine system audits and patch management. Qualifications Bachelors or Master s degree in Computer Science, Engineering, or a related field. Minimum 5 years of experience in DevOps, SRE, or infrastructure engineering. Proven experience with on-premise infrastructure management as well as public cloud platforms (AWS, GCP, Azure). Proficient in scripting languages like Bash , Python , or Go . Hands-on experience with CI/CD tools like Jenkins , GitLab CI/CD , ArgoCD , or CircleCI . Solid understanding of networking , firewalls , VPNs , and load balancing in both cloud and on-prem contexts. Deep understanding of security practices such as zero trust , IAM , encryption , auditing , and compliance frameworks (e.g., ISO 27001, SOC 2, HIPAA). Certifications like AWS Certified DevOps Engineer , Certified Kubernetes Administrator (CKA) , or Certified Information Systems Security Professional (CISSP) are a plus. Nice to Have Experience with hybrid workload orchestrators (e.g., Anthos, Azure Arc). Knowledge of observability best practices and tools like Open Telemetry. Familiarity with policy-as-code tools like OPA/Gatekeeper or HashiCorp Sentinel .

About the Role: Head of Devops Site Reliability will own the strategy, architecture, and execution for infrastructure, CI/CD, observability, cloud cost optimization, and site reliability of Liminal s infrastructure, ensuring secure, resilient, and scalable systems for managing digital assets. Responsible to lead a team that ensures our services are highly available, scalable, secure, and resilient. Responsibilities: Define and implement scalable infrastructure strategies using cloud-native technologies (AWS/GCP/Azure). Lead SRE practices - SLAs, SLOs, SLIs, incident response, root cause analysis. Drive automation across build, test, deployment, and monitoring pipelines. Develop best practices for IaC, and cloud-native application design. Build robust observability systems - logs, metrics, alerts, tracing. Continuously evaluate and optimize cloud spend while maintaining performance and scalability. Work closely with engineering, product, and security teams to align infra and reliability with business goals. Desired Candidate Profile: Bachelor s or Master s degree in Computer Science, Engineering, or a related field. 12+ years of experience in DevOps, SRE, or Infrastructure roles, with 3-5 years in a leadership capacity. , Extensive experience in designing and building secure, scalable custody platforms or financial technology systems. Deep understanding of Infrastructure as Code (e.g., Terraform, Cloudformation), CI/CD pipelines, observability tools (Datadog) and cloud platforms (AWS, GCP, or Azure) Deep knowledge of security protocols, encryption, and key management practices, with a strong understanding of compliance requirements. Experience building and managing 24/7 on-call systems, playbooks, and incident response frameworks.

Job Summary As the Manager, Security Assurance you will work in a fast-paced environment fostering teamwork and open communication to lead security assurance initiatives, drive compliance with various security frameworks, and ensure Foundevers data integrity. You will be responsible for facilitating external audits and collaborating with cross-functional teams to enhance Foundevers security posture. Primary Job Responsibilities Own Security Assurance programs, ensuring compliance with regulatory and internal standards (i.e. HIPAA, GDPR, EU AI Act, etc.) Own external audits (i.e., HITRUST, SOC 1 and 2, ISO 27001, NIST, PCI DSS) and collaborate with auditors to provide necessary documentation and responses Lead, mentor, and develop high-performing security assurance team members in alignment with organizational goals Assess and identify gaps in security controls and conduct risk assessments to evaluate the security posture and develop strategies for improvement Review change management requests and provide recommendations for mitigating potential risks Assist in the identification and documentation of security-related clauses in contracts Prepare and present regular updated to leadership on the status of security assurance initiatives and audit findings Stay informed of industry trends, threats, and regulatory changes affecting information security Skills and Qualifications 5+ years of experience in information security with a focus on security assurance and compliance In-depth knowledge of security frameworks and standards such as HITRUST, SOC 1/2, ISO 27001, NIST, PCI DSS, etc. Experience in project management Experience managing and leading external audit engagements as well as compliance software and external audit portals for evidence posting and collaboration Knowledge of audit cycles and certifications for cloud hosted applications Bachelors degree in Computer Science, Information Technology, Security Management, or a related field Preferred Skills and Qualifications HIPAA experience Relevant security and framework certifications (e.g., CCSFP, CISM, CISSP, CISA, CRISC, ISO Lead Auditor, PCIP) AI experience About Us Foundever is a global leader in the customer experience (CX) industry. With 170,000 associates across the globe, we re the team behind the best experiences for +750 of the world s leading and digital-first brands. Our innovative CX solutions, technology and expertise are designed to support operational needs for our clients and deliver a seamless experience to customers in the moments that matter #LI-MA1 #LI-Remote .

Job Summary As the Senior Analyst, Security Assurance you will work in a fast-paced environment fostering teamwork and open communication to focus on compliance with security standards and regulatory frameworks at Foundever. Your expertise will be vital in coordinating external audits, gathering evidence, validating compliance, and engaging stakeholders across the organization. Primary Job Responsibilities Maintain a comprehensive understanding of security compliance frameworks (HITRUST, PCI, DSS, SOC, ISO 27001, HIPAA, NIST) and their requirements Coordinate and support external IT audits, collecting, preparing and submitting necessary documentation and evidence in a timely manner Conduct regular risk assessments and gap analyses to identify areas of improvement Document compliance efforts and gaps, audit findings, and remediation plans, ensuring proper tracking and follow-through Prepare and present status updates, audit results, and risk assessments to leadership and stakeholders Utilize advanced data analytics techniques to assess compliance trends, identify potential risks, and uncover actionable insights that inform decision-making and strategic planning Develop and maintain interactive data visualization graphs and dashboards to effectively communicate compliance metrics, audit findings, and risk assessments to stakeholders Utilize Governance, Risk, and Compliance (GRC) tools to streamline compliance workflows and improve visibility Stay informed of industry trends, threats, and regulatory changes affecting information security Skills and Qualifications 5+ years of experience in information security with a focus on security assurance and compliance In-depth knowledge of security frameworks and standards such as HITRUST CSF, SOC 1/2, ISO 27001, NIST, PCI DSS, etc. Experience with data analytics and data visualization Experience with compliance software and external audit portals for evidence posting and collaboration Knowledge of audit cycles and certifications for cloud hosted applications Bachelors degree in Computer Science, Information Technology, Security Management, or a related field Preferred Skills and Qualifications HIPAA experience Relevant security and framework certifications (e.g., CCSFP, CISM, CISSP, CISA, PCIP) AI experience About Us Foundever is a global leader in the customer experience (CX) industry. With 170,000 associates across the globe, we re the team behind the best experiences for +750 of the world s leading and digital-first brands. Our innovative CX solutions, technology and expertise are designed to support operational needs for our clients and deliver a seamless experience to customers in the moments that matter. #LI-MA1 #LI-Remote .

Who are we FalconX is a pioneering team of operators, investors, and builders committed to revolutionizing institutional access to the crypto markets. Operating at the intersection of traditional finance and cutting-edge technology, FalconX addresses the industrys foremost challenges: Navigating the digital asset market can be complex and fragmented, with limited products and services that support trading strategies, structures, and liquidity found in conventional financial markets. As a comprehensive solution for all digital asset strategies from start to scale, FalconX operates as the connective tissue empowering clients with seamless navigation through the ever- evolving cryptocurrency landscape. We are seeking a highly skilled Senior DevSecOps Engineer to join our team. This role is responsible for embedding security at every stage of our cloud infrastructure lifecycle, with a strong focus on hands-on implementation, automation, and DevSecOps best practices. You will work closely with development, operations, and security teams to ensure our AWS-based environments are secure, compliant, and resilient. Key Responsibilities Cloud Infrastructure Security Design, implement, and maintain security controls within cloud-based systems, focusing on AWS technologies and best practices. Integrate security scanning and compliance checks into CI/CD pipelines to ensure continuous security throughout the development lifecycle. Conduct regular vulnerability assessments and patching of virtual instances using Ansible and other cloud-native tools. Develop and maintain Infrastructure as Code (IaC) using Terraform for IAM, Cloudflare, and AWS components, ensuring security by design. Collaborate with cross-functional teams to embed security controls into development and deployment workflows. Deploy and manage cloud security tools (e.g., AWS Security Hub, GuardDuty, Inspector) to enhance cloud security posture. Automation and Scripting Develop and maintain scripts, tools, and automation workflows to streamline security operations, incident response, and compliance checks. Create and update Ansible playbooks for consistent, automated security configurations across cloud resources. Kubernetes and Container Security Apply foundational knowledge of container security, including best practices for Kubernetes clusters and workloads. Support the secure deployment and management of containerized applications, ensuring Kubernetes environments adhere to security guidelines. Assist with vulnerability scanning, secrets management, and policy enforcement in Kubernetes as needed. Compliance and Best Practices Ensure cloud infrastructure adheres to industry security standards and compliance requirements (SOC 2, ISO 27001, PCI DSS, etc.). Stay up to date with the latest cloud and container security threats, vulnerabilities, and tools, implementing proactive measures to mitigate risk. Collaboration and Documentation Work closely with DevOps and development teams to integrate security practices into the CI/CD pipeline and SDLC. Educate and train teams on secure coding, DevSecOps, and Kubernetes/container security practices. Maintain comprehensive documentation of security processes, configurations, and incident response procedures. Qualifications Bachelor s degree in Computer Science, Information Security, or a related field. 6-8 years of experience in cloud engineering, DevOps, or security engineering, with a strong focus on AWS technologies. Hands-on experience with Terraform, Ansible, and AWS services (EC2, IAM, Cloudflare, Kubernetes, etc.). Proficiency in scripting languages such as Python or Bash for automation and security tooling. In-depth knowledge of cloud security best practices, threat modeling, and common vulnerabilities. Experience with cloud security tools and integrating security into CI/CD pipelines. Foundational knowledge of Kubernetes security and container security principles. Excellent problem-solving skills, attention to detail, and ability to collaborate across teams. Preferred Qualifications AWS Certified Security - Specialty or equivalent cloud security certifications. Experience with advanced Kubernetes security (e.g., network policies, RBAC, Pod Security Policies). Knowledge of compliance frameworks (SOC 2, ISO 27001, PCI DSS, etc.). Notice at Collection and Privacy Policy Applicants located in California and/or applying to a role based in California, please refer to our Notice at Collection and Privacy Policy here . Inclusivity Statement FalconX is committed to building a diverse, inclusive, equitable, and safe workspace for all people. Our roles are intended for people from all walks of life. We encourage all those interested in applying to our organization to submit an application regardless if you are missing some of the listed background requirements, skills, or experiences! As part of our commitment to inclusivity, FalconX would like to acknowledge that the EEOC survey has limited potential responses that you can select. For legal reasons, FalconX must use this language to align with federal requirements, however, we want to ensure that you are able to provide a response to our own voluntary survey questions about your identity that best aligns with your most true self. FalconX is an equal opportunity employer and will not discriminate against an applicant or employee based on race, color, religion, national origin, ancestry, ethnicity, sex (including gender, pregnancy, sexual orientation, and gender identity), age, physical or mental disability, veteran or military status, genetic information, citizenship, or any other legally-recognized protected basis under federal, state, or local law. Applicants with disabilities may be entitled to reasonable accommodation under the Americans with Disabilities Act and other applicable state or local laws. A reasonable accommodation is a change in the way things are normally done which will ensure an equal employment opportunity without imposing undue hardship on FalconX.

The Information Security Analyst will be responsible for the development, implementation, and maintenance of the FA s information security program. The successful candidate will have experience with all the information security domains of ISO 27001:2022 standard. Responsibilities will include: Assist in developing and implementing policies, procedures, and guidelines related to information security Assist in conducting periodic risk assessments and audits to identify potential vulnerabilities, threats, and risks. Assist in developing and implementing Business Continuity Plans (BCP) and Disaster Recovery Plans (DRP). Collaborate with other teams to ensure the security of our systems, applications, and data Work with infosec team in providing guidance and support to the organization on information security-related matters Stay up-to-date with the latest developments in information security and recommend improvements to the Information Security Program as necessary Qualification and experience: Bachelors degree in computer science, information technology, or related field Experience: Minimum 1-2 years (s) of experience in hands-on experience in managing information security Other Knowledge, Skills, Abilities or Certifications: (First list requirements, followed by preferences.) Experience with Business Continuity Planning (BCP). Basic knowledge of security frameworks, standards, and best practices (e.g., ISO 27001, NIST, CIS). Understanding about vulnerability management, risk assessments, and audits. Understanding incident response, disaster recovery, and business continuity planning. Basic understanding of network and system architecture. Excellent communication and collaboration skills. Relevant certifications (e.g., ISO 27001:2022) are a plus Work Location : Bangalore (Hybrid Model) (Only Bangalore based employees can apply) Shift timing : India business hours (should be flexible to work as per the modified business hours in case there is a need) Joining time: 2 nd June 2025 United States Equal Opportunity Employment: First Advantage is proud to be a global leader in removing barriers and supporting our community members to ensure the changing demographics of the workforce are reflected in our hiring and employment practices. We value all of our candidates, employees, and clients, and place great emphasis on hiring and supporting qualified individuals in each role. We are an equal opportunity employer. We do not discriminate on the basis of race, color, ethnicity, ancestry, religion, sex, national origin, sexual orientation, age, citizenship status, marital status, disability, gender identity, gender expression, veteran status, genetic information, or any other area protected by applicable law.

Job Description for a Cloud Security DevOps Engineer Job Title: Cloud Security DevOps Engineer Experience: 3 5 years Location: Bangalore Job Type: Full-Time Job Summary: We are looking for a Cloud Security DevOps Engineer to join our team and play a crucial role in securing cloud infrastructure, automating security controls, and integrating security into CI/CD pipelines. The ideal candidate will have hands-on experience with tools like Palo Alto (or equivalent) , strong knowledge of cloud security best practices , and proficiency in Infrastructure as Code (Terraform) . Key Responsibilities: Implement and manage cloud-native security tools and solutions (e.g., Palo Alto , SIEM/XSIEM, AWS/OCI security services). Automate infrastructure deployment and security policies using Terraform . Integrate security checks and controls into CI/CD pipelines (e.g., Jenkins, BitBucket GitHub Actions). Monitor cloud environments for misconfigurations, vulnerabilities, and threats. Work closely with development teams to ensure security is embedded from design to deployment. Perform regular security assessments, incident response support, and log analysis. Manage and optimize SIEM/SOAR tools and security dashboards for visibility and alerting. Stay updated on emerging cloud security trends and compliance requirements (e.g., ISO 27001, NIST, CIS Benchmarks). Required Skills Qualifications: 3 4 years of experience in cloud security, DevOps, or infrastructure security roles. Solid understanding of cloud platforms (AWS, OCI) and their security models. Proficiency in Terraform , scripting (Python/Bash), and configuration management. Hands-on experience with Palo Alto firewalls , or equivalent security tools. Familiarity with CI/CD tools like BitBucket, Jenkins. Strong grasp of cloud security best practices , IAM policies, encryption, and network security. Experience with container security and Kubernetes is a plus. Knowledge of compliance standards (e.g., SOC 2, HIPAA, GDPR) is preferred. Certifications (Preferred but not mandatory): AWS Certified Security Specialty Certified Kubernetes Security Specialist (CKS) HashiCorp Certified: Terraform Associate Certified Information Systems Security Professional (CISSP) GIAC Cloud Security Essentials (GCLD)

Who are we FalconX is a pioneering team of operators, investors, and builders committed to revolutionizing institutional access to the crypto markets. Operating at the intersection of traditional finance and cutting-edge technology, FalconX addresses the industrys foremost challenges: Navigating the digital asset market can be complex and fragmented, with limited products and services that support trading strategies, structures, and liquidity found in conventional financial markets. As a comprehensive solution for all digital asset strategies from start to scale, FalconX operates as the connective tissue empowering clients with seamless navigation through the ever- evolving cryptocurrency landscape. We are seeking a highly skilled Senior DevSecOps Engineer to join our team. This role is responsible for embedding security at every stage of our cloud infrastructure lifecycle, with a strong focus on hands-on implementation, automation, and DevSecOps best practices. You will work closely with development, operations, and security teams to ensure our AWS-based environments are secure, compliant, and resilient. Key Responsibilities Cloud Infrastructure Security Design, implement, and maintain security controls within cloud-based systems, focusing on AWS technologies and best practices. Integrate security scanning and compliance checks into CI/CD pipelines to ensure continuous security throughout the development lifecycle. Conduct regular vulnerability assessments and patching of virtual instances using Ansible and other cloud-native tools. Develop and maintain Infrastructure as Code (IaC) using Terraform for IAM, Cloudflare, and AWS components, ensuring security by design. Collaborate with cross-functional teams to embed security controls into development and deployment workflows. Deploy and manage cloud security tools (e.g., AWS Security Hub, GuardDuty, Inspector) to enhance cloud security posture. Automation and Scripting Develop and maintain scripts, tools, and automation workflows to streamline security operations, incident response, and compliance checks. Create and update Ansible playbooks for consistent, automated security configurations across cloud resources. Kubernetes and Container Security Apply foundational knowledge of container security, including best practices for Kubernetes clusters and workloads. Support the secure deployment and management of containerized applications, ensuring Kubernetes environments adhere to security guidelines. Assist with vulnerability scanning, secrets management, and policy enforcement in Kubernetes as needed. Compliance and Best Practices Ensure cloud infrastructure adheres to industry security standards and compliance requirements (SOC 2, ISO 27001, PCI DSS, etc.). Stay up to date with the latest cloud and container security threats, vulnerabilities, and tools, implementing proactive measures to mitigate risk. Collaboration and Documentation Work closely with DevOps and development teams to integrate security practices into the CI/CD pipeline and SDLC. Educate and train teams on secure coding, DevSecOps, and Kubernetes/container security practices. Maintain comprehensive documentation of security processes, configurations, and incident response procedures. Qualifications Bachelor s degree in Computer Science, Information Security, or a related field. 6-8 years of experience in cloud engineering, DevOps, or security engineering, with a strong focus on AWS technologies. Hands-on experience with Terraform, Ansible, and AWS services (EC2, IAM, Cloudflare, Kubernetes, etc.). Proficiency in scripting languages such as Python or Bash for automation and security tooling. In-depth knowledge of cloud security best practices, threat modeling, and common vulnerabilities. Experience with cloud security tools and integrating security into CI/CD pipelines. Foundational knowledge of Kubernetes security and container security principles. Excellent problem-solving skills, attention to detail, and ability to collaborate across teams. Preferred Qualifications AWS Certified Security - Specialty or equivalent cloud security certifications. Experience with advanced Kubernetes security (e.g., network policies, RBAC, Pod Security Policies). Knowledge of compliance frameworks (SOC 2, ISO 27001, PCI DSS, etc.). Notice at Collection and Privacy Policy Applicants located in California and/or applying to a role based in California, please refer to our Notice at Collection and Privacy Policy here . Inclusivity Statement FalconX is committed to building a diverse, inclusive, equitable, and safe workspace for all people. Our roles are intended for people from all walks of life. We encourage all those interested in applying to our organization to submit an application regardless if you are missing some of the listed background requirements, skills, or experiences! As part of our commitment to inclusivity, FalconX would like to acknowledge that the EEOC survey has limited potential responses that you can select. For legal reasons, FalconX must use this language to align with federal requirements, however, we want to ensure that you are able to provide a response to our own voluntary survey questions about your identity that best aligns with your most true self. FalconX is an equal opportunity employer and will not discriminate against an applicant or employee based on race, color, religion, national origin, ancestry, ethnicity, sex (including gender, pregnancy, sexual orientation, and gender identity), age, physical or mental disability, veteran or military status, genetic information, citizenship, or any other legally-recognized protected basis under federal, state, or local law. Applicants with disabilities may be entitled to reasonable accommodation under the Americans with Disabilities Act and other applicable state or local laws. A reasonable accommodation is a change in the way things are normally done which will ensure an equal employment opportunity without imposing undue hardship on FalconX.

Manage internal/external audits (ISO, SOC 2), handle client questionnaires, ensure security compliance (ISO 27001, NIST), coordinate audits via OneTrust, test controls, review policies, and support InfoSec risk, GRC, and compliance processes. Required Candidate profile Looking for 8–12 yrs exp in InfoSec audits, ISO 27001, NIST, client questionnaires, OneTrust GRC, control testing. Good to have CISSP/ISO certs. Shift: 2–11 PM,

Diversity hiring for Cyber Security Engineer - 5 to 10 Years at Bangalore. Position Cyber Security Engineer Experience – 5 to 10 Years Location – Bangalore Job Description: 5-8 years of experience in cybersecurity engineering, preferably in the manufacturing or industrial control systems (ICS) sectors. Strong knowledge of cybersecurity principles, risk management, and threat analysis. Proficiency with cybersecurity tools and technologies used for monitoring, detection, and incident response. Familiarity with cybersecurity standards and regulations such as IEC 62443, ISO 27001, NIST, etc. Relevant certifications such as CISSP, CISM, CEH, or GIAC are preferred. If interested, please share cv on omkar@hrworksindia.com Regards, Omkar 8208497043

What you'll do We are seeking a highly skilled and motivated Information Security Executive to join our team. The ideal candidate will have in-depth knowledge of ISO 27001, ISO 27701, ISO 27002, ISO 27005, GDPR 2016, and DPDP Act 2023. This role involves preparing and maintaining security policies, processes, and procedures, conducting internal audits, and leading monthly review meetings to ensure our organization remains compliant and secure. - Key Responsibilities Develop and Maintain Security Policies and Procedures: Create, update, and enforce information security policies, processes, and procedures in line with ISO 27001, ISO 27701, ISO 27002, and ISO 27005 standards. Ensure compliance with GDPR 2016 and DPDP Act 2023 regulations. Communicate and train staff on security policies and procedures. - Internal Audits: Plan, conduct, and document internal audits to ensure compliance with established security standards and regulations. Identify and address vulnerabilities and non-compliance issues. Work with relevant departments to implement corrective actions and continuous improvements. - Monthly Review Meetings: Organize and lead monthly security review meetings. Present audit findings, security incidents, and risk assessments to senior management. Monitor and report on the effectiveness of the security measures implemented. - Compliance and Governance: Ensure ongoing compliance with relevant data protection laws and regulations. Stay updated on changes in legislation and standards affecting information security. Liaise with regulatory bodies as needed. Qualifications Bachelor's degree in Information Security, Computer Science, or a related field. Professional certifications will be an added advantage. Proven experience in information security management, particularly in ISO 27001, ISO 27701, ISO 27002, and ISO 27005. Strong understanding of GDPR 2016 and DPDP Act 2023. Excellent communication and interpersonal skills. Strong analytical and problem-solving abilities. Ability to work independently and as part of a team. Skills and Competencies Technical Expertise: Deep knowledge of information security principles, standards, and frameworks. Policy Development: Proficiency in developing and implementing security policies, processes, and procedures. Audit and Compliance: Experience conducting internal audits and ensuring compliance with security standards and regulations. Risk Management: Ability to conduct risk assessments and develop risk mitigation strategies. Communication: Strong ability to communicate complex security concepts to non-technical stakeholders.

We are looking for a highly skilled Java to join our dynamic development team with 2+ years of experience. This role requires a problem-solving mindset and the ability to work in an agile environment. Responsibilities : Implement APIs and microservices in Java. Deploy serverless solutions using Azure Functions, Logic Apps and API Management. Document integration processes and provide technical support for deployed solutions. Collaborate with cross-functional teams to align technical solutions with business objectives. Monitor and optimize performance using Azure Monitor and Application Insights. Requirements : 2+ years of experience in backend engineering. Proficiency in Java, Spring boot and Azure. Expertise in Azure Functions, Azure Logic Apps or APIM will be a huge plus. Expertise of RESTful APIs, JSON, and XML. Excellent problem-solving and communication skills. Familiarity with cloud integration patterns and practices will be a plus. Knowledge of CI/CD pipelines

To drive and support the business change activities required to underpin Shell s Audit simplification agenda. Shell is focused on aligning and simplifying Internal audit to increase business value which will drive significant and ongoing change in all parts of the business, supporting the business growth agenda. The role is delivery focused and will lead Audit -driven business change in a programme or project environment. T he primary purpose of the role is to: Work on IT Audit and related services like control testing (ITGC / SOX) and SOP designing. Support in reviews of audit processes like IT Audit, ITGC, ISO27001 and SOX audit. Work on Change Management, Incident Management and user access control. Technical Skills Experience Individual contributor in an Audit team handling a project pertaining to a client. Able to understand procedures to be followe'd for execution documentation of below projects: o ITGC Audit. o SOX audit. o Change Management Soft Skills Experience High delivery impact in IT Audit activities Process knowledge of business functions Understanding of Audit approaches Proven track record of building strong stakeholder relationships at different organizational levels Able to produce high quality deliverables and activities Resilient and able to manage challenges in variety of work / sectors Results/outcomes-oriented way of working Confident and able to work in any type of work environment Excellent oral and written presentation skills Qualification: BTech, BCA Graduate or any computer science graduate with 1-3 years of ITGC experience. Certifications in IT audits and ISO27001 would be preferred Selection Process: 2 rounds of technical interview followe'd by business head and ICOE round for culture fitment.

Qualification: BTech, BCA Graduate or any computer science graduate with 1-3 years of ITGC experience. Certifications in IT audits and ISO27001 would be preferred Overview To drive and support the business change activities required to underpin Shell s Audit simplification agenda. Shell is focused on aligning and simplifying Internal audit to increase business value which will drive significant and ongoing change in all parts of the business, supporting the business growth agenda. The role is delivery focused and will lead Audit-driven business change in a programme or project environment. The primary purpose of the role is to: Work on IT Audit and related services like control testing (ITGC / SOX) and SOP designing. Support in reviews of audit processes like IT Audit, ITGC, ISO27001 and SOX audit. Work on Change Management, Incident Management and user access control. Technical Skills Experience Individual contributor in an Audit team handling a project pertaining to a client. Able to understand procedures to be followe'd for execution documentation of below projects: o ITGC Audit. o SOX audit. o Change Management Soft Skills Experience High delivery impact in IT Audit activities Process knowledge of business functions Understanding of Audit approaches Proven track record of building strong stakeholder relationships at different organizational levels Able to produce high quality deliverables and activities Resilient and able to manage challenges in variety of work / sectors Results/outcomes-oriented way of working Confident and able to work in any type of work environment Excellent oral and written presentation skills

We re on a mission to change the future of clinical research. At Perceptive, we help the biopharmaceutical industry bring medical treatments to the market, faster. Our mission is to change the world but to do this, we need people like you. Apart from job satisfaction, we can offer you: HEALTH: - Medical plan for you and your dependents. - Personal Accident Insurance - Life Insurance - Critical illness cover WEALTH: - Salary structure and Flexi basket - Provident fund of 12% - Gratuity scheme YOURSELF: Internal growth and development programs trainings Key Responsibilities Security Engineering Implementation Deploy, configure, and maintain security technologies, including firewalls, IDS/IPS, endpoint security, and XDR solutions. Work closely with IT and DevOps teams to integrate security into system and application architectures. Threat Detection Incident Response Monitor security alerts and investigate incidents to identify root causes and remediation actions. Support security operations teams in responding to threats and improving detection and response capabilities. Endpoint, Cloud, and Network Security Implement and manage security controls for endpoints, cloud environments, and networks. Work on securing hybrid cloud infrastructures and enforcing Zero Trust principles Vulnerability Patch Management Conduct security assessments and penetration tests to identify vulnerabilities. Work with IT teams to prioritize and apply security patches and remediations. Compliance Risk Management Assist in maintaining compliance with industry regulations (ISO 27001, GDPR, HIPAA). Participate in security audits, risk assessments, and policy development to strengthen the organization s security framework. Security Awareness Collaboration Work closely with internal teams to provide security guidance and training. Contribute to security awareness programs to enhance the organizations security culture. Functional Competencies (Technical knowledge/Skills) Strong knowledge of security frameworks (NIST, ISO 27001, CIS Controls). Hands-on experience with security tools such as firewalls, IDS/IPS, EDR, and XDR solutions. Understanding of cloud security in AWS, Azure, or GCP. Experience with vulnerability management and penetration testing. Knowledge of IAM, PAM, and Zero Trust security principles. Strong analytical skills and problem-solving capabilities. Effective communication skills to work with technical and non-technical teams. Experience, Education, and Certifications 9+ years of experience in cybersecurity, with hands-on expertise in security engineering. Bachelors degree in Computer Science, Cybersecurity, or a related field. Relevant certifications such as CISSP, CEH, OSCP, or equivalent are preferred. Experience in security operations, incident response, and vulnerability management. Strong understanding of regulatory and compliance requirements in cybersecurity. Come as you are. Were proud to be a Equal Employment Opportunity employer. We do not discriminate based upon race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics.