776 Iso 27001 Jobs - Page 28

We re on a mission to change the future of clinical research. At Perceptive, we help the biopharmaceutical industry bring medical treatments to the market, faster. Our mission is to change the world but to do this, we need people like you. Apart from job satisfaction, we can offer you: HEALTH: - Medical plan for you and your dependents. - Personal Accident Insurance - Life Insurance - Critical illness cover WEALTH: - Salary structure and Flexi basket - Provident fund of 12% - Gratuity scheme YOURSELF: Internal growth and development programs trainings Key Responsibilities Information Security Operations Incident Response Monitor information security alerts and logs using XDR and other security tools. Investigate potential information security incidents, escalate critical issues, and support information security incident response processes. Endpoint, Cloud, and Network Security Assist in managing security controls for endpoints, cloud services, and network environments. Support security hardening initiatives to reduce risks. Email Security Gateway Anti-Phishing Manage and optimize email security solutions to prevent phishing, malware, and spam attacks. Work on email filtering policies, domain security (DMARC, DKIM, SPF), and respond to email-based threats. Vulnerability Patch Management Perform routine security assessments to identify vulnerabilities and misconfigurations. Work with IT teams to prioritize and implement security patches and updates. Threat Intelligence Risk Mitigation Analyze emerging threats and recommend proactive security measures. Assist in conducting risk assessments and security reviews of new technologies and processes. Compliance Security Governance Assist in maintaining security policies and ensuring compliance with contractual regulatory requirements (ISO 27001, GDPR, HIPAA, etc.). Support audits and security assessments. Security Awareness Training Promote cybersecurity awareness by assisting with security training sessions and phishing simulations. Support internal teams with security best practices. Functional Competencies (Technical knowledge/Skills) Strong understanding of cybersecurity frameworks (ISO 27001, NIST, CIS Controls). Experience with XDR, firewalls, endpoint security, and cloud security solutions. Familiarity with Email Security Gateways (Proofpoint, Mimecast, etc.) and anti-phishing technologies. Basic knowledge of penetration testing and vulnerability scanning tools. Hands-on experience with IAM and access control mechanisms. Understanding of regulatory and compliance requirements in cybersecurity. Strong analytical skills with attention to detail. Good communication and collaboration skills to work across teams. Behaviour Competencies Mandatory Success Factors: Accountability Adaptability Customer Focus Optional Success Factors: Willingness to Learn Time Management Analytical Thinking Results Orientation Experience, Education, and Certifications 5+ years of experience in cybersecurity operations or security administration. Bachelor s degree in Cybersecurity, Information Technology, or a related field. Certifications such as CompTIA Security+, CEH, or equivalent preferred. Experience working with email security solutions and incident response processes. Knowledge of cloud security in AWS, Azure, or GCP is an advantage. Come as you are. Were proud to be a Equal Employment Opportunity employer. We do not discriminate based upon race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics.

Work with the company s external auditor in leading walkthroughs, test of design and operational effectiveness of IT general controls; Coordinate and perform SOX program testing/auditing of IT General Controls with control owners and management; Evaluate IT General Control deficiencies for impact and perform risk assessments and root cause analysis to determine appropriate management actions. Monitor management s associated remediation efforts to closure, including review of supporting evidence; Create and maintain supporting documentation for SOX compliance testing; Engage and deliver appropriate workpapers timely to external auditors; Engag e , develop relationships and maintain open communication with a wide variety of cross functional internal resources and management as appropriate; Assess new products, systems, databases or changes to existing processes to identify and evaluate financial risks; Recommend process efficiencies to drive effective SOX IT compliance; Assist second line of defense organizations in ensuring that approved IT General controls are embedded in current processes; Support development and delivery of training programs to educate development teams and other stakeholders on compliance requirements, best practices, and policies; Foster a culture of compliance awareness and accountability within the organization. Qualifications: CISA, CISSP, CISM, ISO 27001, and other security certifications preferred; 5 years relevant experience; Graduate Degree in Computer Science, Information Technology, or any other related discipline or commensurate work experience or demonstrated competence; Strong IT SOX audit experience, particularly IT controls; Demonstrated understanding of information management systems and infrastructure including IT processes, tools, controls; Technical acumen and the ability to understand and interpret technical specifications; Ability to meet stringent deadlines in a fast-paced environment, deliver quality product and work well in a dynamic team environment; Exceptional written and verbal skills.

Who we are About the role: We are seeking an experienced Assistant Manager, Technology Internal Audit to be part of our growing Internal Audit (IA) team based in Bengaluru, India. This person should have a motivated and agile mindset, with experience performing technology-risk based audits and SOX ITGCs. The broader Internal Audit & Risk Governance team focuses on providing risk assurance and business insights through audit and operational projects that identify opportunities for management to enhance risk management, controls posture, and improve business operations. We strive to provide value to our stakeholders, insights to the Audit Committee/Board and help management to achieve their strategic goals while mitigating risks and maximizing opportunities. Focus areas include enterprise risk, internal controls, financial reporting, risk governance, business processes, and technology related risks. The Assistant Manager, Technology Internal Audit, will play a key role in executing technology internal audits and SOX ITGC testing, communicating results and identifying pragmatic observations and recommendations to make Samsara s technology related processes and controls more effective. The scope includes working closely with business stakeholders across the company (in key technology-focused areas) to provide independent insights to address risk gaps and improve maturing areas in Samsara s technology, cybersecurity, and compliance risk areas. You should apply if: You want to impact the industries that run our world: Your efforts will result in real-world impact helping to keep the lights on, get food into grocery stores, reduce emissions, and most importantly, ensure workers return home safely. You are the architect of your own career: If you put in the work, this role won t be your last at Samsara. We set up our employees for success and have built a culture that encourages rapid career development, countless opportunities to experiment and master your craft in a hyper growth environment. You re energized by our opportunity: The vision we have to digitize large sectors of the global economy requires your full focus and best efforts to bring forth creative, ambitious ideas for our customers. You want to be with the best: At Samsara, we win together, celebrate together and support each other. You will be surrounded by a high-calibre team that will encourage you to do your best. In this role, you will: Develop, execute, and lead internal audit projects that provide effective coverage over technology, security, compliance, and other relevant risks and controls (e.g. enterprise security, IT strategy & operations, SaaS secure development lifecycle) Manage the execution of technology risk-focused IA projects, including identification of observations, communication to key stakeholders, and formal reporting of results to IA leadership and management Own and drive the SOX IT General Controls testing effort including coordinating and overseeing activities of the SOX ITGC testers, including outsourced vendor, and manage their delivery schedule including quality review of all their testing work-papers. Drive improvements in the SOX process, including implementing best practices, improving documentation, and driving consistency across the business Build and maintain relationships with key partners and collaborators across the business in technology-risk relevant teams (e.g. IT , Security, R&D functions) Champion, role model, and embed Samsara s cultural principles (Focus on Customer Success, Build for the Long Term, Adopt a Growth Mindset, Be Inclusive, Win as a Team) as we scale globally and across new offices Minimum requirements for the role: 6+ years of relevant IT audit / risk / security / compliance (SOX) experience in an internal role or consulting, including experience leading others in these areas Working experience leveraging SOX ITGC, cloud security, and IT governance frameworks (e.g. COBIT, NIST, ISO 27001, SOC 2 etc.) Strong verbal and written communication skills, with the ability to effectively communicate to senior executives Working experience leveraging AI tools in audit or risk-related processes (such as testing, automating workflows, etc). Strong project management skills with the ability to juggle multiple work efforts, be agile and adapt quickly to changing needs An ideal candidate also has: A bachelor s degree or equivalent in relevant fields of study - Information Systems, Computer Science, Engineering/Technology, Accounting, or other related fields is desirable Relevant professional certification(s) such as Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Chartered Accountant (CA) or other technology / audit-related certifications Working experience executing technology risk-related security assessments and/or advisory engagements, including delivery of results to management and monitoring progress/completion of management action plans #LI-Onsite .

Job Description : Job Title: Cyber Risk & Strategy Manager About the Function: Our Digital and Technology (D&T) team are innovators, delivering ground-breaking solutions that will help craft the future of our iconic brands. Technology touches every part of our business, from the sourcing of balanced ingredients to marketing and development of our online platforms. We utilise data insights to build competitive advantage, supporting our people to deliver value faster. Our D&T team includes some of the most hard-working digital professionals in the industry. Every day, we come together to push boundaries and innovate, crafting the digital solutions of tomorrow. Whatever your passion, we ll help you become the best you can be, crafting career-defining work and delivering breakthrough thinking. Role Responsibilities: Job Purpose: The Cyber Risk & Strategy Manager will support the cyber risk team in identifying, assessing, and mitigating information security risks & will support cyber strategy team on security projects. This role involves assisting in the development of risk management strategies and projects. Key Responsibilities: Assist in identifying, assessing, and detailing cybersecurity risks across IT, cloud, and OT environments. Support the implementation of cyber risk mitigation strategies using technical expertise and hands-on work on projects. Support the development of risk dashboards using BI tools (e.g., Power BI, Tableau). Participate in incident response activities including detection, containment, eradication, recovery, and post-mortem analysis. Maintain up-to-date knowledge on emerging cyber threats and industry standard methodologies. Assist in preparing reports on identified risks and mitigation efforts for review by senior management. Maintain the cyber risk register and update risk metrics regularly. Work with IT, cloud, OT, and business units to understand workflows and risk exposure. Gather evidence for audits and regulatory compliance reviews (e.g., ISO 27001, NIST, GDPR). Qualifications: Bachelor s degree in computer science, Information Security, or related field. 7+ years of experience in cybersecurity or related fields. Relevant certifications such as CISSP, SANS or Cloud Security certifications. Basic understanding of cyber risk management principles and methodologies. Basic understanding of cloud platforms (Azure, AWS, GCP), IT & OT security environments and their risk profiles. Hands-on experience with Cloud platforms & BI Tools (Power BI, Tableau). Familiarity with industry standards like ISO 27001 is a plus but not required initially; willingness to learn is important. Strong analytical skills with attention to detail. Good communication skills both written & verbal. Ability to work cross-functionally within a team environment. Flexible Working Statement: Flexibility is key to our success. From part-time and compressed hours to different locations, our people work flexibly in ways to suit them. Talk to us about what flexibility means to you so that you re supported from day one. Diversity statement: Our purpose is to celebrate life, every day, everywhere. And crafting an inclusive culture, where everyone feels valued and that they can belong, is a crucial part of this. We embrace diversity in the broadest possible sense. This means that you ll be encouraged and celebrated for who you are just by being you. You ll be part of and help build and champion an inclusive culture that celebrates people of different gender, ethnicity, ability, age, sexual orientation, social class, educational backgrounds, experiences, approaches, and more. Our ambition is to create the best performing, most trusted and respected consumer products companies in the world. Join us and help transform our business as we take our brands to the next level and build new ones as part of shaping the next generation of celebrations for consumers around the world. Feel inspired? Then this may be the opportunity for you. If you require a reasonable adjustment, please ensure that you gather this information when you submit your application. Worker Type : Regular Primary Location: Bangalore Karle Town SEZ Additional Locations : 2025-05-14

About AlphaSense: The world s most sophisticated companies rely on AlphaSense to remove uncertainty from decision-making. With market intelligence and search built on proven AI, AlphaSense delivers insights that matter from content you can trust. Our universe of public and private content includes equity research, company filings, event transcripts, expert calls, news, trade journals, and clients own research content. The acquisition of Tegus by AlphaSense in 2024 advances our shared mission to empower professionals to make smarter decisions through AI-driven market intelligence. Together, AlphaSense and Tegus will accelerate growth, innovation, and content expansion, with complementary product and content capabilities that enable users to unearth even more comprehensive insights from thousands of content sets. Our platform is trusted by over 4,000 enterprise customers, including a majority of the S&P 500. Founded in 2011, AlphaSense is headquartered in New York City with more than 2,000 employees across the globe and offices in the U.S., U.K., Finland, India, Singapore, Canada, and Ireland. Come join us! About the Role As a Sr. Cloud Security Engineer you ll be working to improve the security of AlphaSense s cloud environments as part of the cloud security team. The team has strong independence to plan, drive and develop security improvements and controls. You will have room to select your focus within the responsibilities of the team. To be successful in this role you should have solid experience on containerised environments, infrastructure as a code and kubernetes. You will have autonomy and are expected to think independently and take ownership of your work. Ideal candidate has strong cloud security background with ability to work hands on with the infrastructure. We also welcome applicants with devops/infrastructure engineering background and keen interest in developing their skills in cloud security space. Responsibilities Develop and automate security controls for cloud infrastructure. Maintain, integrate and scale cloud security tooling. Investigate and remediate security vulnerabilities in cloud infrastructure. Building access controls across the cloud infrastructure. Partner with incident response teams to build detections for cloud infrastructure. Analyze and mitigate security incidents affecting products. Develop security standards for other engineering teams. Work with compliance teams to ensure adherence to frameworks such as ISO 27001, SOC 2, and GDPR. Conduct architecture reviews, threat modeling, and code reviews to identify security risks. Collaborate with engineering and product teams. Qualifications Required 5+ years experience in cloud security 3+ years hand-on experience working with containerized environments Excellent understanding of AWS, k8s and IaC solutions Proficiency in one or more programming language Experience working with cloud security posture management tooling Nice to have Experience with Azure and GCP Experience in integrating security into CI/CD pipelines and DevOps workflows. Hands-on experience on threat modeling and security architecture reviews. Hands-on experience of working with compliance requirements and turning them to technical controls. Contributions to security communities, open-source projects, or security research. Relevant security certifications (e.g., CKS). Why Join Us? Work on cutting-edge security challenges in a fast-growing company. Opportunity to shape and drive product security strategy. Collaborative and security-minded engineering culture. Competitive compensation, benefits, and career growth opportunities. If youre a hands-on security leader passionate about building secure products, we d love to hear from you! In addition, it is the policy of AlphaSense to provide reasonable accommodation to qualified employees who have protected disabilities to the extent required by applicable laws, regulations, and ordinances where a particular employee works. Recruiting Scams and Fraud We at AlphaSense have been made aware of fraudulent job postings and individuals impersonating AlphaSense recruiters. These scams may involve fake job offers, requests for sensitive personal information, or demands for payment. Please note: AlphaSense never asks candidates to pay for job applications, equipment, or training. All official communications will come from an @ alpha-sense.com email address. If you re unsure about a job posting or recruiter, verify it on our Careers page . If you believe you ve been targeted by a scam or have any doubts regarding the authenticity of any job listing purportedly from or on behalf of AlphaSense please contact us. Your security and trust matter to us.

About AlphaSense: The world s most sophisticated companies rely on AlphaSense to remove uncertainty from decision-making. With market intelligence and search built on proven AI, AlphaSense delivers insights that matter from content you can trust. Our universe of public and private content includes equity research, company filings, event transcripts, expert calls, news, trade journals, and clients own research content. The acquisition of Tegus by AlphaSense in 2024 advances our shared mission to empower professionals to make smarter decisions through AI-driven market intelligence. Together, AlphaSense and Tegus will accelerate growth, innovation, and content expansion, with complementary product and content capabilities that enable users to unearth even more comprehensive insights from thousands of content sets. Our platform is trusted by over 4,000 enterprise customers, including a majority of the S&P 500. Founded in 2011, AlphaSense is headquartered in New York City with more than 2,000 employees across the globe and offices in the U.S., U.K., Finland, India, Singapore, Canada, and Ireland. Come join us! About the Role As a Sr. Cloud Security Engineer you ll be working to improve the security of AlphaSense s cloud environments as part of the cloud security team. The team has strong independence to plan, drive and develop security improvements and controls. You will have room to select your focus within the responsibilities of the team. To be successful in this role you should have solid experience on containerised environments, infrastructure as a code and kubernetes. You will have autonomy and are expected to think independently and take ownership of your work. Ideal candidate has strong cloud security background with ability to work hands on with the infrastructure. We also welcome applicants with devops/infrastructure engineering background and keen interest in developing their skills in cloud security space. Responsibilities Develop and automate security controls for cloud infrastructure. Maintain, integrate and scale cloud security tooling. Investigate and remediate security vulnerabilities in cloud infrastructure. Building access controls across the cloud infrastructure. Partner with incident response teams to build detections for cloud infrastructure. Analyze and mitigate security incidents affecting products. Develop security standards for other engineering teams. Work with compliance teams to ensure adherence to frameworks such as ISO 27001, SOC 2, and GDPR. Conduct architecture reviews, threat modeling, and code reviews to identify security risks. Collaborate with engineering and product teams. Qualifications Required 5+ years experience in cloud security 3+ years hand-on experience working with containerized environments Excellent understanding of AWS, k8s and IaC solutions Proficiency in one or more programming language Experience working with cloud security posture management tooling Nice to have Experience with Azure and GCP Experience in integrating security into CI/CD pipelines and DevOps workflows. Hands-on experience on threat modeling and security architecture reviews. Hands-on experience of working with compliance requirements and turning them to technical controls. Contributions to security communities, open-source projects, or security research. Relevant security certifications (e.g., CKS). Why Join Us? Work on cutting-edge security challenges in a fast-growing company. Opportunity to shape and drive product security strategy. Collaborative and security-minded engineering culture. Competitive compensation, benefits, and career growth opportunities. If youre a hands-on security leader passionate about building secure products, we d love to hear from you! In addition, it is the policy of AlphaSense to provide reasonable accommodation to qualified employees who have protected disabilities to the extent required by applicable laws, regulations, and ordinances where a particular employee works. Recruiting Scams and Fraud We at AlphaSense have been made aware of fraudulent job postings and individuals impersonating AlphaSense recruiters. These scams may involve fake job offers, requests for sensitive personal information, or demands for payment. Please note: AlphaSense never asks candidates to pay for job applications, equipment, or training. All official communications will come from an @ alpha-sense.com email address. If you re unsure about a job posting or recruiter, verify it on our Careers page . If you believe you ve been targeted by a scam or have any doubts regarding the authenticity of any job listing purportedly from or on behalf of AlphaSense please contact us. Your security and trust matter to us.

About AlphaSense: The world s most sophisticated companies rely on AlphaSense to remove uncertainty from decision-making. With market intelligence and search built on proven AI, AlphaSense delivers insights that matter from content you can trust. Our universe of public and private content includes equity research, company filings, event transcripts, expert calls, news, trade journals, and clients own research content. The acquisition of Tegus by AlphaSense in 2024 advances our shared mission to empower professionals to make smarter decisions through AI-driven market intelligence. Together, AlphaSense and Tegus will accelerate growth, innovation, and content expansion, with complementary product and content capabilities that enable users to unearth even more comprehensive insights from thousands of content sets. Our platform is trusted by over 4,000 enterprise customers, including a majority of the S&P 500. Founded in 2011, AlphaSense is headquartered in New York City with more than 2,000 employees across the globe and offices in the U.S., U.K., Finland, India, Singapore, Canada, and Ireland. Come join us! About the Role As a Sr. Cloud Security Engineer you ll be working to improve the security of AlphaSense s cloud environments as part of the cloud security team. The team has strong independence to plan, drive and develop security improvements and controls. You will have room to select your focus within the responsibilities of the team. To be successful in this role you should have solid experience on containerised environments, infrastructure as a code and kubernetes. You will have autonomy and are expected to think independently and take ownership of your work. Ideal candidate has strong cloud security background with ability to work hands on with the infrastructure. We also welcome applicants with devops/infrastructure engineering background and keen interest in developing their skills in cloud security space. Responsibilities Develop and automate security controls for cloud infrastructure. Maintain, integrate and scale cloud security tooling. Investigate and remediate security vulnerabilities in cloud infrastructure. Building access controls across the cloud infrastructure. Partner with incident response teams to build detections for cloud infrastructure. Analyze and mitigate security incidents affecting products. Develop security standards for other engineering teams. Work with compliance teams to ensure adherence to frameworks such as ISO 27001, SOC 2, and GDPR. Conduct architecture reviews, threat modeling, and code reviews to identify security risks. Collaborate with engineering and product teams. Qualifications Required 5+ years experience in cloud security 3+ years hand-on experience working with containerized environments Excellent understanding of AWS, k8s and IaC solutions Proficiency in one or more programming language Experience working with cloud security posture management tooling Nice to have Experience with Azure and GCP Experience in integrating security into CI/CD pipelines and DevOps workflows. Hands-on experience on threat modeling and security architecture reviews. Hands-on experience of working with compliance requirements and turning them to technical controls. Contributions to security communities, open-source projects, or security research. Relevant security certifications (e.g., CKS). Why Join Us? Work on cutting-edge security challenges in a fast-growing company. Opportunity to shape and drive product security strategy. Collaborative and security-minded engineering culture. Competitive compensation, benefits, and career growth opportunities. If youre a hands-on security leader passionate about building secure products, we d love to hear from you! In addition, it is the policy of AlphaSense to provide reasonable accommodation to qualified employees who have protected disabilities to the extent required by applicable laws, regulations, and ordinances where a particular employee works. Recruiting Scams and Fraud We at AlphaSense have been made aware of fraudulent job postings and individuals impersonating AlphaSense recruiters. These scams may involve fake job offers, requests for sensitive personal information, or demands for payment. Please note: AlphaSense never asks candidates to pay for job applications, equipment, or training. All official communications will come from an @ alpha-sense.com email address. If you re unsure about a job posting or recruiter, verify it on our Careers page . If you believe you ve been targeted by a scam or have any doubts regarding the authenticity of any job listing purportedly from or on behalf of AlphaSense please contact us. Your security and trust matter to us.

Case studies and testimonials from customers who talk extensively about their transformational experience using Unifize. Platform page that explores the various pioneering platform features About us , which includes a questionable piece of amateur dramatics by the founders. Role Overview: This role is for a CA who will be based in our office in Indiranagar, Bangalore on a full-time basis. This is not a remote position. You will report to the Finance lead and will interact with other members of the founding & leadership team. This is an opportunity for someone who wants to be part of the startup ecosystem and whos willing to do what it takes, including dealing with and enjoying the uncertainty. There will be no training process. You will have to figure things out on your own and be resourceful. Who Are You: A positive team player, ready to contribute to a collaborative environment. Someone who takes full ownership and responsibility without waiting to be told proactive, dependable, and driven by accountability. Open-minded and eager to learn new domains, whether in compliance, accounting, or global regulatory frameworks. Futuristic in thinking you consider long-term organizational growth and strive to build scalable, audit-ready processes. Accounts / Statutory Responsibilities Review and oversee daily bookkeeping and ledger management Handle GST workings, return preparation, and coordination for filing Manage TDS computations, return filings, and Form 26AS reconciliation Oversee ROC filings (MGT-7, AOC-4, etc.), director KYC, and statutory registers Support internal financial audits, preparation for statutory audits, and due diligence processes Track and maintain statutory calendars and ensure timely filings Coordinate with payroll processors to ensure compliance with PF/ESI/labor regulations Compliance Responsibilities Support documentation and implementation efforts for GDPR, HIPAA, SOC 2, ISO 27001, ISO 9001, NIST 800- 171A / CMMC Draft, update, and maintain compliance policies (data protection, access control, privacy, etc.) Collaborate with engineering and legal teams on technical and contractual compliance controls Conduct internal audits and gap analyses for compliance readiness Oversee vendor compliance (DPAs, ISO/SOC2 certifications, etc.) Maintain digital records for audit readiness and certification trails Requirements First pass CA with 0-1 years of experience (Training of Minimum 2 years) Proactive, detail-oriented, and capable of managing multiple statutory timelines Proficient in English- Strong command of written English with experience drafting clear and concise documentation

We re looking for a Staff Compliance Analyst to join Procore s Product & Technology Team. Procore software solutions aim to improve the lives of everyone in construction and the people within Product & Technology are the driving force behind our innovative, top-rated global platform. We re a customer-centric group that encompasses engineering, product, product design and data, security and business systems. In this role, you ll play a key part in ensuring our organizations information assets are protected by maintaining and improving our compliance posture. As a Staff Compliance Analyst, you ll partner with the IT, Cybersecurity, Risk, and Engineering team to ensure adherence to relevant security standards and regulations, and provide guidance on compliance best practices. Use your understanding of security principles and security standards and regulations to ensure security is integrated into all aspects of system design and implementation, with a focus on maintaining compliance. This position reports into the Senior Manager, Compliance and will be based in our Bangalore office. We re looking for someone to join us immediately. Apply today to join our team. What you ll do: Collaborate with IT teams to ensure security is integrated into all aspects of system design and implementation, with a focus on maintaining compliance. Perform security assessments to evaluate the effectiveness of security controls and ensure compliance. Evaluate and recommend security tools and technologies to enhance security posture and ensure compliance. Ensure compliance with relevant security standards and regulations (e.g., ISO 27001, AICPA TSC). Stay up-to-date on the latest security threats, trends, and technologies, and their impact on compliance. What we re looking for: Bachelors degree in Computer Science, Information Security, or a related field or equivalent experience Minimum of 5-7 years of experience in information security. Strong understanding of security principles, technologies, and best practices. Relevant security certifications (e.g., CISSP, CISM, CISA, etc.), with a focus on compliance. Familiarity with relevant security standards and regulations. Excellent analytical, problem-solving, and communication skills.

Work Type: Onsite Job Description: The prime responsibility of PMO Executive would be to ensure delivery of high quality codes to successfully execute Organizations business. Key Deliverables: Finding Gaps in following best practices defined Understand quality goals and making sure quality reports are handy for every engineering projects. ISO Compliance & Auditing: Ensure that software engineering projects comply with ISO standards (e.g., ISO 9001:2015, ISO 27001, etc.). Develop, implement, and maintain ISO-compliant processes for project management and software development. Lead regular audits of projects to ensure ongoing ISO compliance, document audit results, and create actionable reports. Collaborate with cross-functional teams to rectify non-compliance and implement corrective actions. Agile Practices & Process Improvement : Promote and support the adoption of Agile methodologies (e.g., Scrum, Kanban) across all software engineering projects. Conduct assessments to measure Agile maturity and ensure continuous improvement. Work with Project Managers to Develop Agile project management templates, tools, and guidelines to standardize processes across projects. Project Audits & Quality Assurance: Conduct thorough audits of all software engineering projects, ensuring proper documentation, project plans, timelines, and scope management. Review project performance against project baselines and identify risks, issues, and bottlenecks. Facilitate the resolution of audit findings, ensuring corrective actions are tracked and implemented. Analyse project metrics (e.g., cost, time, quality) to ensure project outcomes align with organizational goals. Stakeholder Communication & Reporting : Communicate audit results, ISO and Agile compliance issues, and recommended improvements to key stakeholders. Prepare and present audit reports to senior management, providing insights and recommendations for continuous improvement. Serve as the point of contact for internal and external auditors. Training & Development: Develop and deliver training on ISO compliance, Agile practices, and project management tools to project teams. Conduct workshops and seminars to raise awareness and drive improvements in software engineering project execution. Risk Management & Continuous Improvement: Identify and escalate project risks and non-compliance issues that could impact project success. Work with project managers to design and implement mitigation strategies. Foster a culture of continuous improvement by analyzing project outcomes and feedback to refine processes. Years of Experience: 3+ year of relevant work experience with a reputable organization. Educational Qualification: ME (IT, Computer), BE (IT, Computer), MCA, MSC-IT, BCA

This is a full-time hybrid role as an Assistant Manager / Manager with RSM India's ITSA Consulting Practice at its Delhi NCR Location. The role is to Independently execute Technology audit, IRDAI/SEBI/ RBI Cyber security circular based and Cyber Security assignments including Information Security, SOC 1, SOC 2, , ITGC SOX, Data privacy, Business Continuity, IT Planning, Implementation, Operations, Enterprise Architecture, Cloud Security etc.

Job description: Senior Security Consultant will be involved mainly in Vulnerability Assessment and Penetration Testing and Information Security Audit, Cyber Security Audit Activities. Perform external and internal network infrastructure vulnerability assessments and penetration testing Perform Web and mobile Android and IOS applications vulnerability assessment and penetration testing Perform secure code reviews and software development lifecycle (SDLC) security review Perform secure configuration reviews Perform wireless penetration tests and social engineering assessments Active Directory VAPT Report Writing Maintain quality during project delivery Perform IS Audit, Gap Assesment, SAR Audit as per RBI Guideline and SEBI Guideline As Senior Security Consultant you will be responsible for writing detailed reports & providing mitigation opinions to customers. You will be mentoring a JUNIOR Security consultant. 3 - 5 Years of experience in OWASP top 10 - Web, Mobile & API

Purpose of the position To conduct on-site assessments against the requirements of relevant standards or specifications To provide expertise, produce surveillance and initial assessment reports and make recommendations for certification decisions. To promote the BSI product offering and solutions to our clients with the view of improving their business performance, managing risk and Making excellence a habit Key responsibilities & accountabilities Undertake management system assessments in accordance with BSI requirements. Prepare assessment reports and deliver findings to clients to ensure client understanding of the assessment decision and clear direction to particular items of corrective action where appropriate. Recommend the issue, re-issue or withdrawal of certificates, and report recommendations in accordance with BSI policy, procedures and prescribed time frame. Lead assessment teams as required ensuring that team members are adequately briefed so that quality of service is maintained and that effective working relationships are sustained both with Clients and within the team Establish and develop an effective partnership, which secures the commercial relationship and encourages opportunities for business development and increased client satisfaction with clients in your portfolio. Provide accurate and prompt information to support services, working closely with them to ensure that client records are up to date and complete and that all other internal information requirements are met. Plan/schedule workloads to make best use of own time and maximise revenue-earning activity. Coach colleagues as appropriate especially where those members are inexperienced assessors or unfamiliar with clients' business/technology and assist in the induction and coaching of new colleagues as requested. Maintain and develop assessment skills and technical and management system standards knowledge. Provide technical support to clients through business development, sales and customer service staff Act as a brand Ambassador for BSI. This means acting ethically, following company rules and promoting BSI services to clients so they are able to optimize business performance and Make Excellence a Habit. Candidate specifications Bachelor degree or above in Engeneering . Must be a Lead Auditor certified in 27001 Added advantage to have experince and certified for BCMS, SOC, PCI-DSS Minimum 4 years working experience in IT, with 2 years work experience in IT. Commercial understanding of compliance industry, minimum 2 years quality system management Knowledge of business processes and application of quality management standards Good verbal and written communication skills and an eye for detail Be self-motivated, flexible, and have excellent time management/planning skills Can work under pressure Willing to travel on business intensively An enthusiastic and committed team player Good public speaking and business development skill will be considered advantageous

Responsibilities: * Design, implement, and maintain secure solutions on AWS cloud platform using IAM and security architecture principles.

Design and enhance the third-party risk management framework and establish risk appetite guidelines. Conduct and oversee third-party risk assessments, business impact analyses, and security control evaluations within OneTrust. Develop and maintain a third-party risk register, ensuring accurate tracking and remediation of risks. Lead remediation efforts for supply chain security gaps and facilitate creation of CUECs (Complementary User Entity Controls). Review supplier MSAs/security terms and collaborate with Legal to address risk concerns. Ensure compliance with firm security policies and evolving regulatory requirements. Establish and manage risk reporting and escalation processes. Stay current with emerging threats, industry frameworks, and relevant legislation. Act as liaison between internal stakeholders and external vendors on critical security issues. Create and present risk dashboards, reports, and executive summaries for leadership. Contribute to development of scalable risk management models and automation tools. Drive stakeholder engagement, incorporate feedback, and promote risk program adoption across the enterprise. Qualifications & Required Experience: Extensive experience in third-party risk management, security assessments, audits, and control implementations. Strong working knowledge of industry frameworks and standards: NIST, ISO, COSO, HiTrust, FAIR. Familiarity with regulatory requirements: PCI-DSS, GDPR, HIPAA, CCPA, etc. Hands-on experience with GRC tools: OneTrust, Security Scorecard, BitSight, or similar. Proven ability to assess control weaknesses and develop actionable remediation plans. Expertise in security control design, implementation, and monitoring. Strong analytical, communication, and stakeholder management skills. Preferred Experience: Experience with global or enterprise-level risk programs in complex matrixed organizations. Background across multiple information security domains. Experience presenting to senior leadership and creating executive-level documentation.

Client Security Questionnaires & Inquiries Maintain and update a centralized repository of standardized responses to client security questionnaires. Respond to client questionnaires accurately and in a timely manner, aligning with current security controls, certifications, and policies. Act as the primary point of contact for all client security-related inquiries. Collaborate with internal teams (IT, Legal, Compliance, InfoSec) to gather necessary documentation and responses. Security Terms Review for Contracts Draft and review security-related terms and conditions for inclusion in client MSAs (Master Service Agreements). Provide actionable feedback to the Legal team to ensure contractual obligations align with company security standards. Audit Management Lead and coordinate internal and external audits (e.g., ISO 27001, HIPAA, NIST). Serve as the liaison with external auditors and clients conducting audits. Prepare, compile, and provide audit documentation and evidence of compliance. Work with control owners to create and monitor remediation plans for identified risks. Ensure corrective actions are implemented and completed within designated timelines. Cyber Insurance Respond to cyber insurance questionnaires with accurate information based on implemented controls and certifications. Process Improvement Identify and implement opportunities to streamline and improve the audit and questionnaire response processes. Develop templates and workflows to increase efficiency and consistency. Continuously refine internal audit and compliance methodologies to meet evolving client and regulatory requirements. Stakeholder & Client Engagement Collaborate with internal stakeholders (IT, Legal, Compliance, Senior Leadership) to ensure timely and accurate responses to audits and client inquiries. Engage with clients and auditors to effectively represent and communicate the organizationsecurity posture. Provide recommendations to management on enhancing security practices and compliance alignment .

An AWS Developer is responsible for designing, implementing, and managing cloud-based solutions using Amazon Web Services (AWS). This role requires expertise in infrastructure-as-code tools like Terraform and CloudFormation, proficiency in Python for automation and scripting, and experience with AWS Lambda for serverless application development. The ideal candidate should be adept at leveraging various AWS services to build scalable, secure, and efficient cloud solutions. Key Responsibilities: Develop and deploy cloud infrastructure using Terraform and AWS CloudFormation . Write and maintain Python scripts to automate cloud operations and workflows. Design and implement serverless applications using AWS Lambda. Optimize AWS services to ensure high availability, security, and cost-effectiveness. Collaborate with DevOps and development teams to streamline deployment and cloud management processes. Monitor, troubleshoot, and improve cloud-based applications and services. Stay updated on AWS best practices, new services, and emerging cloud technologies. Required Skills & Qualifications: Proficiency in Terraform and CloudFormation for infrastructure automation. Strong programming skills in Python. Hands-on experience with AWS Lambda for serverless computing. Deep understanding of AWS core services (EC2, S3, RDS, IAM, VPC, etc.). Familiarity with CI/CD pipelines and DevOps principles. Knowledge of security best practices for cloud environments. Experience with API development and integration within AWS

Hiring a Senior DevOps Leader for a High-Scale, Multi-Cloud EnvironmentFinding the right Senior DevOps Leader for your organization, especially one with over 15 years of experience and a background in high-scale operations leveraging GitLab, Kubernetes, GCP, and AWS, is a critical undertaking This role demands a unique blend of deep technical expertise, strategic thinking, and proven leadership capabilities Here s a comprehensive guide to what you should be looking for:Key Responsibilities to Expect:A Senior DevOps Leader in this context will be responsible for more than just managing infrastructure; they will be a strategic partner driving efficiency, innovation, and reliability across the organization * Strategic Leadership & Vision: * Defining and executing a long-term DevOps strategy aligned with business objectives, particularly for high-scale and resilient systems * Driving the adoption of DevOps best practices, tools, and culture across engineering and operations teams * Leading architectural decisions for CI/CD, containerization, cloud infrastructure, and automation, ensuring scalability, security, and cost-effectiveness * Evaluating and integrating new and emerging technologies (e g , AI in DevOps, advanced monitoring solutions) to enhance operational efficiency and system performance * Team Leadership & Development: * Building, mentoring, and leading a high-performing team of DevOps engineers * Fostering a collaborative, innovative, and continuous improvement culture within the DevOps team and its interactions with other departments * Managing resource allocation, project prioritization, and performance management for the DevOps team * Technical Oversight & Execution: * Overseeing the design, implementation, and management of robust CI/CD pipelines using GitLab CI * Leading the strategy and governance for Kubernetes deployments at scale, including cluster management, networking, security, and resource optimization across GCP (GKE) and AWS (EKS) * Architecting and managing multi-cloud infrastructure (GCP and AWS), focusing on high availability, disaster recovery, security, and cost optimization * Championing Infrastructure as Code (IaC) practices using tools like Terraform or CloudFormation * Implementing and refining comprehensive monitoring, logging, and alerting strategies (e g , using Prometheus, Grafana, ELK Stack, CloudWatch, Google Clouds operations suite) to ensure system health and proactive issue resolution * Driving automation initiatives across all stages of the software development lifecycle * Collaboration & Communication: * Working closely with development, operations, security, and product teams to streamline workflows and ensure seamless delivery of software * Communicating effectively with executive leadership, stakeholders, and technical teams regarding DevOps strategy, project status, risks, and performance metrics * Championing and enforcing security best practices (DevSecOps) throughout the development lifecycle * Operational Excellence & Governance: * Establishing and tracking key DevOps metrics (e g , deployment frequency, lead time for changes, mean time to recovery (MTTR), change failure rate) * Ensuring compliance with industry standards and internal policies * Managing budgets and vendor relationships related to DevOps tools and cloud services Essential Technical Leadership Skills:Beyond hands-on proficiency, a leader must demonstrate strategic application and governance of these technologies * GitLab: * Strategic Implementation: Deep understanding of GitLabs full suite (beyond just CI/CD) for source code management, pipeline orchestration, security scanning, and package management in a large enterprise * Scalability & Performance: Experience in scaling GitLab infrastructure and optimizing its performance for a large number of users and projects * Automation & Integration: Proven ability to automate complex workflows and integrate GitLab with other development and operations tools * Kubernetes (K8s): * Large-Scale Cluster Management: Expertise in designing, deploying, and managing multiple large-scale Kubernetes clusters on both GCP (GKE) and AWS (EKS) This includes experience with cluster upgrades, multi-tenancy, and resource quotas * Advanced Networking & Security: In-depth knowledge of Kubernetes networking (e g , CNI, service mesh like Istio or Linkerd) and security best practices (e g , pod security policies, network policies, secrets management, RBAC) in a high-scale, multi-cloud environment * Ecosystem & Tooling: Familiarity with the broader Kubernetes ecosystem, including Helm for package management, Prometheus/Grafana for monitoring, and tools for logging and tracing * GitOps: Experience implementing GitOps principles for managing Kubernetes configurations and applications * Google Cloud Platform (GCP) & Amazon Web Services (AWS): * Multi-Cloud Strategy & Governance: Proven experience in developing and implementing multi-cloud strategies, including workload placement, data management, and consistent governance across GCP and AWS * Core Services Expertise: Deep understanding and experience with core compute, storage, networking, database, and security services on both platforms (e g , AWS EC2, S3, VPC, RDS; GCP Compute Engine, Cloud Storage, VPC, Cloud SQL) * Infrastructure as Code (IaC): Mastery of IaC tools like Terraform (preferred for multi-cloud) or CloudFormation (AWS-specific) for provisioning and managing infrastructure in both clouds * Cost Optimization & Management: Demonstrable experience in implementing cost optimization strategies and managing budgets effectively across both GCP and AWS at scale * Security & Compliance: Expertise in designing and implementing secure cloud architectures, adhering to compliance standards (e g , SOC 2, ISO 27001, HIPAA if applicable) on both platforms * Migration Experience: Experience leading large-scale migrations to or between cloud platforms is highly desirable * General DevOps & SRE Principles: * Automation: A strong automation mindset with proficiency in scripting languages (e g , Python, Bash, PowerShell) * Monitoring, Logging, and Observability: Experience designing and implementing comprehensive observability solutions for large-scale distributed systems * Site Reliability Engineering (SRE): Understanding and application of SRE principles for availability, reliability, performance, and incident response

Confiz is hiring: Engineer V - Java Confiz LLC is looking for Engineer V - Java in India with at least 10+ years professional experience in delivering quality software.You must have strong expertise in the domain and must be able to deliver well accordingly to the responsibilities. Responsibilities Responsible for feature design; evaluate designs and provide feedback Influence quality standards and understand, identify, measure across entire solution Identify performance issues and optimize solutions Demonstrate competence of engineering concepts and theories, combining them with business understanding to design, document and implement clean and robust solutions to complex business problems Collaborate with other engineering teams, business stakeholders, as well as program and product managers to define and implement technical solutions Demonstrate an ability to turn business needs into functional requirements, while also explaining technical details in ways the business can understand. Participate in defining, scoping, and estimating resulting stories Work closely with your peers and help the team achieve its goals Maintain a high bar for code quality, testing and automation while finding opportunities to continuously improve them Drive design and code reviews, ensuring the team ships high quality, scalable, maintainable, and well-tested code Maintain a DevOps mindset, promoting cloud-oriented solutions while implementing and supporting monitoring, alerting, CI/CD pipelines as well as the teams Cloud infrastructure Requirements: 10+ years of professional experience in delivering quality software, ideally across the full stack Excellent proficiency in an Object-Oriented language, such as Java Proficient with Java, Java Spring Boot Framework, Containerization(K8s/Docker) Test automation experience at all levels (Unit, Integration, Regression, Load) Familiarity with modern infrastructure tools and pipelines (Gitlab CI/CD, Terraform) Experience with RESTful architecture and micro services Experience with system design, architecture, scaling, and performance testing. Experience building services a plus Experience with Cloud technologies specially AWS Experience with databases like postgres. Experience with Cache based low latency system design Familiarity with CI/CD and testing tools. Strong understanding of computer science fundamentals Familiarity with ops tools, logging, and metrics (New Relic, Splunk) Experience with messaging technologies and patterns (Kafka/SQS)

Client questionnaires Security auditing ISO 27001:2022 Audit coordination NIST CSF Audit program development Security Analyst / Client Analyst experience Good to Have: CISSP certification ISO certification OneTrust GRC tool experience Role Overview: We are seeking an experienced and motivated Infosec Audit Manager to join our Information Security and Risk Management team. This role reports to the Director of Information Security Governance, Risk, and Compliance and supports the CISOoffice. You will be responsible for managing and coordinating internal and external audits while ensuring regulatory compliance and enhancing the organizationsecurity posture. The ideal candidate is a self-starter with deep technical knowledge, strong audit and compliance experience, and excellent communication and relationship-building skills. Key Responsibilities: Audit Management: Develop audit programs and plans for ISO, SOC 2, and other audits. Manage internal and external audit engagements and coordinate evidence collection through the OneTrust GRC tool. Oversee the entire audit process, ensuring compliance with relevant standards and frameworks. Review audit reports, management responses, and supporting documentation to ensure accuracy and quality. Identify gaps and provide actionable, practical recommendations for improvement. Validate the sufficiency of evidence in line with control requirements. Design both automated and manual control testing methodologies. Governance, Risk & Compliance (GRC): Support the implementation of compliance-by-design and security-by-design principles across the organization. Assess compliance with evolving regulatory requirements such as ISO 27001, NIST 800-53, SOC 2, and HIPAA. Coordinate with stakeholders to perform internal control testing and risk assessments. Conduct internal compliance assessments and prepare stakeholders for external audits. Develop and maintain scalable models and tools for compliance management and reporting. Draft and review internal policies, provide feedback, and support operationalization of policies. Generate audit dashboards and reports for leadership to drive informed decision-making. Stakeholder Engagement & Collaboration: Collaborate effectively across teams and establish strong relationships with control owners and operators. Promote a culture of compliance and awareness aligned with the firmrisk tolerance. Provide guidance and training on security and compliance practices. Experience & Qualifications: Bachelordegree in Computer Science, Engineering, or related field (or equivalent work experience). 812 years of relevant experience in information security audits and compliance. Hands-on experience with security frameworks and standards: ISO 27001:2022, SOC 2, NIST 800-53, NIST CSF, COSO, HITRUST. Experience with regulatory compliance (e.g., HIPAA).

About the Company e.l.f. Beauty, Inc. stands with every eye, lip, face and paw. Our deep commitment to clean, cruelty free beauty at an incredible value has fueled the success of our flagship brand e.l.f. Cosmetics since 2004 and driven our portfolio expansion. Today, our multi-brand portfolio includes e.l.f. Cosmetics, e.l.f. SKIN, pioneering clean beauty brand Well People, Keys Soulcare, a groundbreaking lifestyle beauty brand created with Alicia Keys and Naturium, high-performance, biocompatible, clinically-effective and accessible skincare. In our Fiscal year 24, we had net sales of $1 Billion and our business performance has been nothing short of extraordinary with 24 consecutive quarters of net sales growth. We are the #2 mass cosmetics brand in the US and are the fastest growing mass cosmetics brand among the top 5. Our total compensation philosophy offers every full-time new hire competitive pay and benefits, bonus eligibility (200% of target over the last four fiscal years), equity, flexible time off, year-round half-day Fridays, and a hybrid 3 day in office, 2 day at home work environment. We believe the combination of our unique culture, total compensation, workplace flexibility and care for the team is unmatched across not just beauty but any industry. Visit our Career Page to learn more about our team: https: / / www.elfbeauty.com / work-with-us Position Summary We are seeking a highly skilled and proactive Security Risk Manager to join our growing security team. You will be responsible for assessing, monitoring, and mitigating information security risks associated with third-party vendors and service providers. This role ensures vendor relationships comply with organizational security policies, industry regulations, and best practices to protect sensitive data and systems Responsibilities Conduct comprehensive security risk assessments internally and of third-party vendors, including cloud providers, SaaS vendors, and IT service providers. Evaluate internal and third-party security controls, policies, and compliance with frameworks such as NIST, ISO 27001, SOC 2, GDPR, HIPAA, and PCI-DSS. Perform due diligence reviews, including security questionnaires, audits, and contract reviews. Identify, document, and prioritize risks related to vendor access, data handling, and system integrations. Work with procurement and legal teams to ensure security requirements are included in vendor contracts and SLAs. Prepare risk reports for senior leadership, highlighting key vendor risks and mitigation strategies. Communicate security expectations to vendors and internal stakeholders. Maintain a centralized vendor risk repository with up-to-date documentation. Stay updated on emerging threats, regulatory changes, and industry best practices. Enhance vendor risk assessment processes and tools for efficiency and effectiveness. Cross-train team members on risk management principles. Actively participate in the broader corporate security efforts, including infrastructure security, end-user training, and vulnerability management Qualifications Bachelor s degree in Information Security, Cybersecurity, Risk Management, or related field. 5+ years of experience in IT risk management, vendor risk assessment, or third-party security evaluations. Strong knowledge of security frameworks (NIST, ISO 27001, SOC 2, GDPR, etc.). Experience with vendor risk assessment tools Strong GRC (Governance, Risk, and Compliance) platform knowledge. Familiarity with cloud security, data privacy laws, and contractual security clauses. Strong communication and interpersonal skills, with the ability to collaborate effectively with technical and non-technical stakeholders. Minimum Work Experience 5 Maximum Work Experience 10 15,00,000 - 30,00,000 a year This job description is intended to describe the general nature and level of work being performed in this position. It also reflects the general details considered necessary to describe the principal functions of the job identified, and shall not be considered, as detailed description of all the work required inherent in the job. It is not an exhaustive list of responsibilities, and it is subject to changes and exceptions at the supervisors discretion. e.l.f. Beauty respects your privacy. Please see our Job Applicant Privacy Notice ( www.elfbeauty.com / us-job-applicant-privacy-notice ) for how your personal information is used and shared.

Job Description: Python Programmer Are you passionate about data and coding? Do you enjoy working in a fast-paced and dynamic start-up environment? If so, we are looking for a talented Python developer to join our team! We are a data consultancy start-up with a global client base, headquartered in London UK, and we are looking for someone to join us full time on-site in our cool Office in Gurugram. About Uptitude: Uptitude is a forward-thinking consultancy that specializes in providing exceptional data and business intelligence solutions to clients worldwide. Our team is passionate about empowering businesses with data-driven insights, enabling them to make informed decisions and achieve remarkable results. At Uptitude, we embrace a vibrant and inclusive culture, where innovation, excellence, and collaboration thrive. As a Python Developer at Uptitude, you will be responsible for developing high-quality, scalable, and efficient software solutions. Your primary focus will be on designing and implementing Python-based applications, integrating data sources, and working closely with the data and business intelligence teams. You will have the opportunity to contribute to all stages of the software development life cycle, from concept and design to testing and deployment. In addition to your technical skills, you should be a creative thinker, have effective communication skills, and be comfortable working in a fast-paced and dynamic environment. Requirements: 3-5 years of experience as a Python Developer or similar role. Strong proficiency in Python and its core libraries. (e.g., Pandas, NumPy, Matplotlib). Proficiency in web frameworks (e.g., Flask, Django) and RESTful APIs. Working knowledge of Database technologies (e.g., PostgreS, Redis, RDBMS) and data modelling concepts. Hands on experience on advanced excel. Ability to work with cross-functional teams and communicate complex ideas to non-technical stakeholders. Awareness of ISO:27001, creative thinker and problem solver Strong attention to detail and ability to work in a fast-paced environment. Head office based in London, UK, with the role located in Gurugram, India Company Values: At Uptitude, we embrace a set of core values that guide our work and define our culture. Be Awesome: Strive for excellence in everything you do, continuously improving your skills and delivering exceptional results. Step Up: Take ownership of challenges, be proactive, and seek opportunities to contribute beyond your role. Make a Difference: Embrace innovation, think creatively, and contribute to the success of our clients and the company. Have Fun: Foster a positive and enjoyable work environment, celebrating achievements and building strong relationships. Benefits: Uptitude values its employees and offers a competitive benefits package, including: Competitive salary commensurate with experience and qualifications. Private health insurance coverage. Offsite trips to encourage team building and knowledge sharing. Quarterly team outings to unwind and celebrate achievements. Corporate English Lessons with UK instructor We are a fast-growing company with a global client base, so this is an excellent opportunity for the right candidate to grow and develop their skills in a dynamic and exciting environment. If you are passionate about coding, have experience with Python, and want to be part of a team that is making a real impact, we want to hear from you!

Power Apps Developer - Immediate Joiner Do you love working with data and building scalable solutions that can handle large volumes of data? Are you passionate about helping companies make data-driven decisions and achieve their goals? If so, we are looking for a talented Power Apps Developer to join our team! We are Uptitude, a fast-growing start-up with a global client base, headquartered in London UK, and we are looking for someone to join us full time in our cool office in Gurugram. About Uptitude: Uptitude is a forward-thinking consultancy that specializes in providing exceptional data and business intelligence solutions to clients worldwide. Our team is passionate about empowering businesses with data-driven insights, enabling them to make informed decisions and achieve remarkable results. At Uptitude, we embrace a vibrant and inclusive culture, where innovation, excellence, and collaboration thrive. We are seeking a highly skilled Power Apps Developer to join our team in the next month. As a Power Apps Developer at Uptitude, you will be responsible for developing and maintaining custom business applications using Microsoft Power Apps. You will work closely with our team of developers, designers, and project managers to deliver high-quality solutions that meet our clients needs. Requirements: 3-5 years of experience as a PowerApps developer or similar role Strong knowledge of Microsoft PowerApps Canvas, Modal driven Apps etc. Proficiency in data management tools like Azure SQL (preferred), SharePoint, etc. Must have experience in application migration. Experience with Automation tool like Power Automate, Azure logic apps etc. Hands on experience on advanced excel. Ability to work with cross-functional teams and communicate complex ideas to non-technical stakeholders. Aware of ISO:27001, creative thinker and problem solver Strong attention to detail and ability to work in a fast-paced environment. Head office based in London, UK, with the role located in Gurugram, India Company Values: At Uptitude, we embrace a set of core values that guide our work and define our culture. As a Data Analyst, you should align with these values: Be Awesome: Strive for excellence in everything you do, continuously improving your skills and delivering exceptional results. Step Up: Take ownership of challenges, be proactive, and seek opportunities to contribute beyond your role. Make a Difference: Embrace innovation, think creatively, and contribute to the success of our clients and the company. Have Fun: Foster a positive and enjoyable work environment, celebrating achievements and building strong relationships. Benefits: Uptitude values its employees and offers a competitive benefits package, including: Competitive salary commensurate with experience and qualifications. Private health insurance coverage. Offsite trips to encourage team building and knowledge sharing. Quarterly team outings to unwind and celebrate achievements. Corporate English Lessons with UK instructor We are a fast-growing company with a global client base, so this is an excellent opportunity for the right candidate to grow and develop their skills in a dynamic and exciting environment. If you are passionate about data and analytics, have experience with Power BI and SQL, and want to be part of a team that is making a real impact, we want to hear from you!

Careers at A-LIGN | Compliance & Cybersecurity Careers Senior IT Auditor ISO 27001 About the Role A-LIGN employs a business model that builds on the best of what the largest corporate security firms have to offer, such as the ability to offer high quality professionals a variety of project experience with high profile clients. What sets us apart is that we have eliminated time reporting, chargeability goals, and sales pressure. As a Sr. IT Auditor specializing in ISO 27001, your primary responsibilities will include standard project execution and client service activities. Client engagements typically last two weeks, which allows our employees the opportunity to work on varied projects over the course of the year and gain varied, valuable experience. Responsibilities Gather evidence on site and review Provide draft reports to management, within defined timelines Provide detailed project status reports weekly to management Organize client information on A-LIGN s drive Plan and execute ISO 27001 engagements under the direction of a member of the management team Communicate effectively to the client, prior to, during, and post on-site visit Review manager s planning meeting minutes, and prepare as appropriate for meetings Prepare lead sheets throughout the project Minimum Qualifications Master s or bachelor s cybersecurity, management information systems, computer science, or relevant discipline At least 3 years of experience in the IT auditing field performing: ISO 27001 Internal Information system audits or information security reviews ISO 27001 Implementation within an organisation Implementation and management of the information security management system (ISMS) Supervision and support of information security audits ISO 27001 PREFERRED BUT NOT REQUIRED External audit experience performing information system audits or information security reviews at a QSAC, accredited ISO 27001 certification body, or accredited FedRAMP 3PAO Currently holds at least one of the following: ISO 27001 LA or LI, CCSK, CISA, QSA, CISSP, or other relevant certification SKILLS Ability to meet deadlines with a high degree of motivation Excellent communication skills Thrives in a fast-paced environment Ability to work individually as well as collaboratively A high degree of motivation About A-LIGN A-LIGN is the leading provider of high-quality, efficient cybersecurity compliance programs. Combining experienced auditors and audit management technology, A-LIGN provides the widest breadth and depth of services including SOC 2, ISO 27001, HITRUST, FedRAMP, and PCI. A-LIGN is the number one issuer of SOC 2 and HITRUST and a top three FedRAMP assessor. To learn more, visit a-lign.com.

Role: Specialist Third Party Risk Management (TPRM) About the Company: Join AT&T and reimagine the communications and technologies that connect the world. Our Chief Security Office ensures that our assets are safeguarded through truthful transparency, enforce accountability and master cybersecurity to stay ahead of threats. Bring your bold ideas and fearless risk-taking to redefine connectivity and transform how the world shares stories and experiences that matter. When you step into a career with AT&T, you won t just imagine the future-you ll create it. About the Job: The Third-Party Risk Management (TPRM) team is part of Chief Security Office (CSO) and is responsible for working closely with internal teams including IT Security, Legal, Compliance, and Procurement, to ensure a unified approach to third-party risk management. Below are the key responsibilities: Conduct Cybersecurity Assessments: Perform comprehensive security assessments of third-party vendors, including evaluating their security policies, controls, and practices. Identify potential risks and vulnerabilities in vendor environments and provide recommendations for remediation. Risk Analysis and Reporting: Analyze assessment results to determine the level of risk associated with each third-party relationship. Prepare detailed assessment reports and risk summaries for internal stakeholders, including senior management and the TPRM team. Vendor Onboarding and Monitoring: Assist in the onboarding process for new vendors by conducting initial security assessments and ensuring compliance with Supplier Information Security Requirements (SISR). Monitor and re-assess existing vendors periodically to ensure ongoing compliance and address any emerging risks. Collaboration and Communication: Work closely with internal teams, including IT Security, Legal, Compliance, and Procurement, to ensure a unified approach to third-party risk management. Communicate assessment findings and risk mitigation strategies to third-party vendors in a clear and constructive manner. Policy and Procedure Development: Contribute to the development and enhancement of TPRM policies, procedures, and guidelines. Stay up to date with industry best practices, regulatory requirements, and emerging threats to continuously improve the TPRM program. Training and Awareness: Provide training and awareness sessions to internal teams and third-party vendors on cybersecurity best practices and TPRM requirements. Experience Level: 5+ years. Location: Hyderabad / Bengaluru Required skills: 4 years minimum experience in third-party risk management / risk consulting / cyber security assessments. Demonstrated experience in third-party risk management and vendor security assessments. Strong understanding of cybersecurity frameworks and standards (e.g., NIST, ISO 27001, CIS Controls). Good understanding of various third-party risk management frameworks and standards. Proficiency in using security assessment tools and methodologies. Excellent analytical and problem-solving skills. Strong communication and interpersonal skills, with the ability to convey complex security concepts to both technical and non-technical audiences. Detail-oriented with strong organizational and project management skills. Desirable skills: Knowledge of data protection regulations (e.g., GDPR, CCPA) and their impact on third-party risk management. Prior experience with Telecom sector. Relevant certifications such as CISSP, CISM, CRISC, or CISA Additional information (if any): Need to be flexible to provide coverage in US morning hours. Location: IND:KA:Bengaluru / Innovator Building, Itpb, Whitefield Rd - Adm: Intl Tech Park, Innovator Bldg Job ID R-64590 Date posted 04/24/2025