155 Iso27001 Jobs - Page 3

The Job in short - As an IT Governance, Risk and Compliance (GRC) Manager, you enable Backbase in conducting its business in full compliance with all relevant national and international laws and regulations. This also includes professional standards, accepted business practices, internal policy standards and IT Security frameworks such as SOC2, ISO27001 and PCI-DSS etc. requirements. There is both an ethical component and a pragmatic approach to compliance that this role would require in helping the organization manage risk and build trust with its Customers. IT GRC Manager must present a good understanding of the highly innovative and dynamic environment of a FinTech organisation. Meet the ...

As an Information Risk Analyst at ACA, you will play a crucial role in coordinating and managing the execution of the information security framework, policies, and programs. Your responsibilities will include working closely with ACA teams, department managers, staff, and vendors to develop, execute, and enforce information security standards that support ACA's robust security program. Your duties will involve guiding the development and ensuring compliance with corporate security policies, standards, and procedures. You will manage the annual review cycle and sign off of policies, propose changes to enhance operating efficiency and regulatory compliance, and oversee outsourced vendors provi...

You have a strong knowledge and hands-on experience in conducting vulnerability assessments and penetration testing for web applications and devices. You are proficient in using security assessment tools like Nessus, NMAP, OWAPS, NICTO, KALI LINUX, etc. You excel in preparing detailed reports, submitting them, and ensuring follow-up for closure of security issues. Your expertise extends to understanding and working with SIEM, WAF, Firewall, log server, and Cloud Security. You are familiar with File Server, network devices, and Firewall access control lists. Knowledge of ISO27001 requirements will be an added advantage. Possessing certifications such as CEH and LA-ISMS showcases your commitme...

Role & responsibilities Preferred candidate profile Required Skills & Qualifications: Bachelors degree in information security, IT, or a related field. 1+ years of experience in Information Security, IT Security, or Compliance. Strong proficiency in Microsoft Word, Excel and PowerPoint. Knowledge of compliance frameworks such as ISO 27001, NIST, CIS Controls. Basic understanding of security risk assessments, audit processes, and vulnerability management. Strong attention to detail, documentation skills, and ability to manage compliance related tasks efficiently. Excellent communication and coordination skills for interacting with auditors, IT teams, and leadership.

Marriott Tech Accelerator is a division of Marriott International, a renowned global leader in the hospitality industry. Marriott International, Inc. is a prominent American multinational corporation with a diverse portfolio of lodging brands, encompassing hotels and residential properties worldwide. With a presence in over 141 countries and territories, Marriott International boasts more than 30 well-established brands and nearly 8,900 properties. As a Senior Manager, Security Architecture at Marriott, you will play a pivotal role in overseeing Security Data Lakes (SDL) environments and AI/ML Security Technologies. Your primary responsibility will involve spearheading the development and ma...

As the Lead Security Engineer, you will need to have a Bachelor's degree or equivalent and possess at least 10-12 years of experience in the field. Your expertise should include a deep understanding of AWS Cloud security, NIST, ISO27001, and PCI DSS Compliance. You should have hands-on experience with PCI-compliant environments and managing vulnerability cycles for OS and Non-OS Patch. Your proficiency should extend to TSL/SSL and Cryptographic Standards, with the ability to identify and mitigate risks from deprecated algorithms or vulnerabilities. In addition, you should have a solid grasp of DevSecOps practices and integrating security measures into the software development lifecycle, incl...

As a passionate member of Advarra, you will play a crucial role in overseeing the information security compliance program for the relevant region. Your responsibilities will include identifying areas of non-compliance and directing corrective action while serving as a consultant and advisor to regional site leadership on information security and related matters. You will take the lead in initiating, facilitating, and promoting activities that enhance information security awareness within your area of responsibility. Your role at Advarra will involve fostering a culture of cybersecurity within the organization, driving behavioral changes for the business, and providing insightful reports and ...

Join us for a role in "CCO Functions" at Barclays, where you'll spearhead the evolution of our digital landscape, driving innovation and excellence. You'll harness cutting-edge technology to revolutionize our digital offerings, ensuring unparalleled customer experiences. To be successful as a Tech Assurance AVP SOX, you should have experience with testing IT Application Controls (ITAC) / IT General Controls (ITGC) / Cyber Security Assessments and hands-on experience in IT Audits / IT Assessments and GRC (Governance, Risk & Controls), specifically SOx Review. It is essential to have a good understanding of industry frameworks such as COSO, COBIT, NIST, ISO27001, and control frameworks used in...

As a Senior Engineering Manager (Hotel Ops) at Marriott Tech Accelerator, you will be responsible for ensuring the reliability, availability, and performance of mission-critical cloud and on-prem services that cater to millions of Marriott customers worldwide. Your role will involve overseeing incident management, driving automation efforts, and collaborating with cross-functional teams to align SRE strategy with business objectives. You will work closely with Product Teams, Applications teams, Infrastructure, and other delivery teams to enhance application stability, availability, and performance by developing key metrics and KPIs. Your primary responsibilities will include implementing bes...

MTX Group Inc. is looking for a dedicated Senior Consultant - IT Support to become a valuable part of our team. As a global technology consulting firm, MTX specializes in facilitating digital transformation for organizations worldwide. Our focus is on leveraging data as the new currency to drive strategic outcomes related to happiness, health, and the economy. By collaborating with leading cloud technologies, MTX empowers clients to enhance decision-making processes with speed and precision. We offer expertise in a wide range of platforms and technologies, including Google Cloud, Salesforce, artificial intelligence/machine learning, data integration, data governance, data quality, analytics,...

The Risk Consulting Senior Consultant in Digital Risk, IT Internal Audit and Controls at EY in Belfast will play a crucial role in providing assurance and consulting services to major organizations in the digital risk domain. The focus will be on strengthening the IT Internal Audit and IT Controls fields, including SOCR, SOX, and Digital Risk Consulting. As a dynamic individual, you will be an essential part of the team, contributing to the growth targets set for this area. Your responsibilities will include collaborating with clients to plan engagements, conducting fieldwork, drafting findings for review, presenting reports to Audit Committees, contributing to business development, and supp...

HMH is a learning technology company committed to delivering connected solutions that engage learners, empower educators and improve student outcomes. As a leading provider of K12 core curriculum, supplemental and intervention solutions, and professional learning services, HMH partners with educators and school districts to uncover solutions that unlock students" potential and extend teachers" capabilities. HMH serves more than 50 million students and 4 million educators in 150 countries. HMH Technology India Pvt. Ltd. is our technology and innovation arm in India focused on developing novel products and solutions using cutting-edge technology to better serve our clients globally. HMH aims t...

At EY, you will have the chance to build a career as unique as you are, with the global scale, support, inclusive culture, and technology to become the best version of yourself. And EY is counting on your unique voice and perspective to help them become even better. Join EY and build an exceptional experience for yourself, contributing to creating a better working world for all. As part of the EY- Technology Risk team, you will contribute technically to IT Risk and Assurance client engagements and internal projects. You will actively establish, maintain, and strengthen internal and external relationships. Identifying potential business opportunities for Ernst & Young within existing engageme...

Dentsu is a network designed for what's next, assisting clients in predicting and planning for disruptive future opportunities and creating new paths to growth in the sustainable economy. Embracing a people-centered approach to business transformation, insights are utilized to connect brand, content, commerce, and experience, all underpinned by modern creativity. Dentsu Security oversees the scope and delivery of cyber security and business continuity activities across all dentsu offices in 145 countries globally. As a part of the Technology & Security Governance, Risk & Compliance team, you will directly report to the Head of Third-Party Security, playing a pivotal role within the expanding...

As a Security Compliance and Assurance Auditor at Lenovo, you will have the opportunity to work with Lenovo Product teams globally to ensure alignment with various security standards and regulations. You will collaborate with top security teams in the industry to assess risks, implement remediation strategies, and work closely with business executives and other stakeholders to mitigate security issues. Your role will involve assessing security requirements, advising on cyber risk management, developing security strategies, and maintaining security policies and practices. Your responsibilities will include providing guidance to design, service, and operations teams on security implementation,...

As the Manager - Data Protection at our organization, you will play a crucial role in overseeing the data protection and privacy management functions. Based in Mumbai, you will report to the Head Compliance MS India and be responsible for ensuring compliance with the DPDP Act, 2023. Knowledge or exposure to GDPR will be an added advantage. Your primary responsibilities will include developing policies, procedures, and checklists related to data protection and privacy. You will monitor compliance with various data protection regulations at an enterprise level and provide guidance to the security organization on data protection matters. Additionally, you will review business arrangements and i...

You will be responsible for managing the IT infrastructure, which includes installing, configuring, and managing network equipment such as routers, switches, and firewalls. Your role will involve maintaining day-to-day IT operations and monitoring the network to maximize performance. You will be required to create accurate network diagrams and documentation for designing and planning network communication systems. Additionally, configuring and managing access lists, DHCP IP Sec tunnels, VLANs, and routing & switching will be part of your responsibilities. You will also handle the configuration and maintenance of MPLS technology and oversee IT asset & inventory management. As an ideal candida...

Design, implement & manage enterprise InfoSec solutions. Handle IAM lifecycle, SSO/MFA, access certifications, threat detection, SIEM, security automation, compliance (SOX, GDPR). Support audits & incident response. Required Candidate profile 4–7 yrs in InfoSec/IAM. Expertise in IAM platforms, SSO/MFA, SIEM, scripting, compliance. Strong coding in Python/Java/Go. Certifications like CISSP, CISM, or Security+ preferred. Cloud IAM exposure

At EY, you'll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture, and technology to become the best version of you. And we're counting on your unique voice and perspective to help EY become even better, too. Join us and build an exceptional experience for yourself, and a better working world for all. As an IT risk consultant, you'll contribute technically to risk assurance client engagements and internal projects. An important part of your role will be to perform IT audits, document good quality assessment reports, and issue opinions. You'll anticipate and identify risks within engagements and share any issues with the audit stakeholders...

HMH is a learning technology company committed to delivering connected solutions that engage learners, empower educators, and improve student outcomes. As a leading provider of K12 core curriculum, supplemental and intervention solutions, and professional learning services, HMH partners with educators and school districts to uncover solutions that unlock students" potential and extend teachers" capabilities. HMH serves more than 50 million students and 4 million educators in 150 countries. HMH Technology India Pvt. Ltd. is our technology and innovation arm in India focused on developing novel products and solutions using cutting-edge technology to better serve our clients globally. HMH aims ...

HMH is a learning technology company dedicated to providing connected solutions that engage learners, empower educators, and enhance student outcomes. With a focus on K12 core curriculum, supplemental and intervention solutions, as well as professional learning services, HMH collaborates with educators and school districts to discover solutions that unlock students" potential and extend teachers" capabilities. Serving over 50 million students and 4 million educators in 150 countries, HMH Technology India Pvt. Ltd. is the technology and innovation arm in India, striving to develop innovative products and solutions using cutting-edge technology to better serve clients globally. HMH values the ...

Job Title Manager / Assistant Manager (Network) Department Information Technology Company Profile Credence Global Solutions is a diversified technology-driven financial transformation company with deep expertise and focus on Receivables Management, Health care RCM, Technology Platforms and Contact Center verticals. Credence services leading telecommunication, health care and media companies in the United States. Health care providers serviced by Credence include medical transport providers, emergency physicians, health infusion service providers, and diagnostic laboratories. In the telecommunication vertical, Credence serves four of the top five providers in the United States. Our Group Comp...

The role of Corporate Bank (CB), Investment Bank (IB) and Operations (Ops) Technology Risk Function at Deutsche Bank in Mumbai, India as a Vice President involves being a key player in managing Information Technology (IT) and Information Systems (IS) risks for business divisions CB, IB, and Ops. Working within the Divisional Control Office, you will be part of a dynamic team responsible for providing insights, assessments, and risk management for the business. The Divisional Control Office (DCO) team ensures high levels of integrity, supports the business in developing and maintaining a risk culture, and minimizes non-financial risk factors. This role involves driving Risk & Control Assessme...

This position is responsible for performing vendor security assessments, analyzing risks, and processing exceptions to security standards and PEEP requests. The growing regulatory and audit oversight of these critical activities is increasing, making the continued execution of these tasks very important. Responsibilities include risk analysis, metrics reporting, and business support. This involves collaborating with business partners, leadership, vendor management, IT leaders, and staff. The role is critical in ensuring that vendor security assessments are conducted as required, meeting Ameriprise regulatory obligations, capturing necessary requirements, ensuring timely responses, escalating...

>>Technical Skills Expertise in cyber security including standards such as ISO27001, PCI-DSS, ISO22301, Privacy etc. Knowledge of technical domains such as Cloud security, VAPT, Application security, Risk and control assessment, Technology risk assessments, IT or OT compliance, Data privacy, and Network security Knowledge of concepts such as Shadow IT, Vendor risk, Country specific legal and regulatory requirements, outsourcing/ technology regulations, OWASP top 10 vulnerabilities, review of reports such as SOC, Penetration Test, Code Scan and Cloud compliance Strong GRC and Gap Assessment / Auditing, VAPT skills are desirable >>Soft Skills Strong problem solving and logical approach skills ...