156 Iso27001 Jobs - Page 4

>>Technical Skills Expertise in cyber security including standards such as ISO27001, PCI-DSS, ISO22301, Privacy etc. Knowledge of technical domains such as Cloud security, VAPT, Application security, Risk and control assessment, Technology risk assessments, IT or OT compliance, Data privacy, and Network security Knowledge of concepts such as Shadow IT, Vendor risk, Country specific legal and regulatory requirements, outsourcing/ technology regulations, OWASP top 10 vulnerabilities, review of reports such as SOC, Penetration Test, Code Scan and Cloud compliance Strong GRC and Gap Assessment / Auditing, VAPT skills are desirable >>Soft Skills Strong problem solving and logical approach skills ...

You should have 2 to 5 years of experience in information security, IT auditing, and IT/Third Party risk management processes. This position is based in Chennai. Your main responsibilities will include reviewing and establishing secure processes and systems at Third Party's end, conducting Third Party risk assessments using ISO27001 or COBIT framework, classifying Third Parties from an information security risk perspective, preparing risk-based questionnaires and reports, evaluating Third Parties from an information security perspective, and providing recommendations to mitigate risks and include risk-based clauses in agreements with Third Parties. Preferred certifications for this role incl...

You will be joining Marriott Tech Accelerator, a division of Marriott International, a renowned global leader in hospitality. As a Senior Engineering Manager Site Reliability Engineering (SRE) for the Loyalty team, you will play a critical role in ensuring the reliability, scalability, and performance of essential cloud and on-prem services that cater to millions of Marriott customers worldwide. Your responsibilities will include overseeing incident management, driving automation initiatives, and collaborating with various teams to align SRE strategies with business objectives. You will closely partner with Product Teams, Applications teams, Infrastructure, and other relevant teams to establ...

As a Regulatory and Compliance Specialist for the Tech and Cyber GRC team at London Stock Exchange Group (LSEG), your main responsibility will be handling regulatory assessments for regulated entities to ensure all compliance matters are of high quality and centrally supported with policies and standards. You will also lead the Governance of Technology and cyber-related Internal Audit and External audit actions, support the development and maintenance of a central repository of Cybersecurity regulatory guidance, and engage partners in governance forums to resolve critical issues. Your role will involve maintaining central repositories of Technology & Cyber audit & regulatory evidence, custom...

The Senior Technology Analyst position based in Pune, India, with a corporate title of Associate, involves providing support for the technical infrastructure necessary to deliver IT services to the bank. The role encompasses activities such as strategy formulation, design, development, and deployment of IT solutions. The ideal candidate should possess a minimum of 5+ years of experience in IT, preferably focusing on Asset Management Business Applications and Processes. The individual should have expertise in IT risk management, and a solid understanding of development methodologies and IT policies. As an IT Application Owner (ITAO), the candidate will be responsible for enhancing the safety ...

We are seeking a highly skilled and experienced GRC/infosec professional to join our organization. The IT Auditor will play a critical role in assessing the security, compliance, and overall effectiveness of our IT systems and infrastructure. The ideal candidate will have a strong background in IT audit, risk management, and compliance, along with excellent analytical and communication skills. Responsibilities: Conduct IT Audits: Plan, execute, and report on IT audits to evaluate the effectiveness, security, and compliance of the organisation's IT systems, applications, and processes. Risk Assessment: Identify and assess IT-related risks and vulnerabilities, and work with stakeholders to dev...

Mission In charge of Cybersecurity of one or several countries or one subsidiary ('Region'): Act as the Cybersecurity point of contact for the 'Region' Functionally manage the Sites Cybersecurity Officers Deploy the Valeo ISSP (Information Systems Security Policy) within the 'Region', assess and improve the level of Cybersecurity of the different sites Coordinate the Cybersecurity incidents in the 'Region' Provide reporting of the 'Region' Contribute to the evolution of the Valeo ISSP (Information Systems Security Policy) and some Group Cybersecurity programs. Upon request, act as Group CISO (Chief Information Security Officer) delegate to perform some specific missions. Responsibilities : A...

About Northern Trust: Northern Trust is a globally recognized, award-winning financial institution that has been in continuous operation since 1889. With over 130 years of financial experience and more than 22,000 partners, Northern Trust is proud to provide innovative financial services and guidance to the world's most successful individuals, families, and institutions. The company remains true to its enduring principles of service, expertise, and integrity, serving sophisticated clients using leading technology and exceptional service. Role Description: Northern Trust's Security Operations team is seeking a motivated and detail-oriented candidate to support the creation, maturation, and ex...

Direct Responsibilities Performs basic vulnerability scans using vendor utility tools. Monitors security audit and intrusion detection system logs for system and network anomalies. Investigates and/or escalates security violations, attempts to gain unauthorized access, virus infections that may affect the network or other event affecting security. Documents and reports event(s). Assists in providing engineering analysis, design and support for firewalls, routers, networks, and operating systems. Assists in performing product evaluations and recommends products/services for network security. Validates and tests basic security architecture and design solutions to produce detailed engineering s...

You will be joining in a role which requires you to conduct yourself as a specialist in cloud security and shall be responsible for ensuring data and systems are secure in their cloud environments using native or third-party tools. This role also includes end-customer management and people management. Role: - Design, implement, assess, manage and operate tools / architecture / processes / controls to secure clients cloud infrastructures and services. Design cloud security architecture including, but not limited to, secure cloud landing zone, secure cloud infrastructure & services and cloud workloads. Develop and document security policies & procedures as per the requirements. On-boarding clo...

Technical Strong experience in review of guideline defined, conducting regulatory assessments for BFSI (E.g. RBI, SEBI, IRDAI). Global guidelines knowledge which includes NIST, ISO27001, PCI-DSS, COBIT, etc. Assisting in remediating gaps on the defined guidelines for the client. Performing System Audit and conducting technology landscape review. Having worked on Information Technology Risk Assessment areas such as NIST, ISO27001, PCI-DSS, COBIT, etc. Experience of handling IT audits and reviews. Good understanding on technology topics related to cyber security, encryption, architecture resiliency , business continuity, disaster recovery, IT Governance, Third party outsourcing risk and inform...

As a Cyber Security Manager at Lenovo in the Solutions & Services Group (SSG), you will play a key role in leading ISO27001 and SOC 1&2 compliance activities. This exciting position offers you the opportunity to collaborate with Lenovo Product teams globally, aligning Lenovo Business Units with various security standards and regulations at regional, national, and international levels. You will work alongside top-tier security teams within the industry. Your responsibilities will involve working closely with business executives, product managers, architects, engineers, devops, and developers to ensure adherence to Information Security Standards. You will define methodologies, metrics, and KPI...

About BNP Paribas India Solutions: Established in 2005, BNP Paribas India Solutions is a wholly owned subsidiary of BNP Paribas SA, European Union's leading bank with an international reach. With delivery centers located in Bengaluru, Chennai and Mumbai, we are a 24x7 global delivery center. India Solutions services three business lines: Corporate and Institutional Banking, Investment Solutions and Retail Banking for BNP Paribas across the Group. Driving innovation and growth, we are harnessing the potential of over 10,000 employees to provide support and develop best-in-class solutions. About BNP Paribas Group: BNP Paribas is the European Union's leading bank and a key player in internation...

You will be responsible for assisting in achieving ISO27001:2022 compliance for CRISIL. This includes ensuring the documentation adequacy, reviewing, suggesting changes as per the 2022 requirements, facilitating and participating in internal and external audits, as well as preparing management updates related to the same. Additionally, you will contribute to employee training and awareness programs related to information security. You will also be involved in conducting client security assessments internally and supporting external audits, including first, second, and third-party audits. Your role will also involve liaising with vendors to achieve the certification and assisting in risk asse...

As a Cybersecurity professional specializing in Third Party Risk Management (TPRM), you will utilize your expertise and skills to ensure the security of third-party relationships. With over 4 years of experience in TPRM and a strong background in IT Audits and Cloud security, you will play a crucial role in managing risks associated with external vendors and suppliers. Your responsibilities will include implementing and conducting audits based on ISO22301 standards, as well as assessing and mitigating risks related to third-party relationships. Preferred certifications such as CBCI, CBCP, ISO22301 LI or LA, Offensive Security Certified Professional, and CISA will be valuable assets in this r...

The Supplier Assurance Services (SAS) team is responsible for conducting comprehensive risk assessments of suppliers within JPMCs Corporate Third Party Oversight (CTPO) program. Additionally, SAS plays a crucial role in supporting JPMCs Cybersecurity and Technology functions by designing and implementing controls and processes to enhance the security posture of JPMCs supply chain. SAS operates under Global Supplier Services (GSS) and reports directly to JPMCs Global Head of Corporate Third Party Oversight. The SAS Risk Management function aims to standardize and centralize Assessment quality oversight and Supplier Issue Management activities. As an Associate in the Technology Risk and Contro...

You are seeking an experienced InfoSec Governance, Risk and Compliance (GRC) Lead to join the expanding global team of DNEG. In this role, you will be responsible for managing and steering the Information Security GRC and Privacy function within DNEG. The InfoSec team ensures the confidentiality, integrity, and availability of both internal and client data, PII, and systems. Your expertise in InfoSec GRC will be crucial in collaborating with the team, peers, and business stakeholders to align and effectively manage InfoSec GRC initiatives/projects to meet tactical roadmap requirements and the broader InfoSec strategy. As the InfoSec GRC Lead, you will need to work methodically and concisely,...

The Supplier Assurance Services (SAS) team is responsible for conducting comprehensive risk assessments of suppliers as part of JPMCs Corporate Third Party Oversight (CTPO) program. In addition, SAS plays a key role in supporting JPMCs Cybersecurity and Technology functions by implementing controls and processes to enhance the security posture of the supply chain. SAS operates within Global Supplier Services (GSS) and reports directly to the Global Head of Corporate Third Party Oversight. The SAS Risk Management function aims to standardize and centralize the quality oversight of assessments and Supplier Issue Management activities. As an Associate in the Technology Risk and Control - Issue ...

This position is responsible for performing vendor security assessments, analyzing risks, and processing exceptions to security standards and PEEP requests. The increasing regulatory and audit oversight of these critical activities emphasizes the importance of continued execution of these tasks. The key responsibilities of this role include conducting risk analysis, reporting metrics, and providing business support. This entails collaborating with business partners, leadership, vendor management, IT leaders, and staff. The position plays a crucial role in ensuring that vendor security assessments are conducted as required, meeting Ameriprise's regulatory obligations, capturing necessary requ...

Role & responsibilities Perform 3rd-party audits and trainings according to ISO/IEC 27001, ISO 9001, ISO 20000-1, ISO 22301 & other IT specific standards/ frameworks Provide timely and accurate reviews of clients corrective action and closure Provide customers with timely, complete, and accurate reports of their current level of conformity / implementation of their management system Maintain schedule of audit activity with Management System clients Maintain appropriate auditor credentials and pursues advancement of those credentials and other related credentials as needed. Ensuring compliance with accreditation rules and other internal or external requirements. Ability to manage Key Customer...

You are seeking a Senior Auditor specializing in Security Compliance and Governance, with a profound understanding of cyber security, IT systems, applications, and infrastructure. As a Cyber Security Auditor, you are required to possess exceptional problem-solving abilities, meticulous attention to detail, and a comprehensive comprehension of cybersecurity trends. Your primary responsibilities will include evaluating internal IT controls, analyzing operational effectiveness, assessing risk exposure, and formulating remediation strategies. You will be tasked with responding to system or network security breaches, conducting audits, and preparing detailed reports for clients. Moreover, your ro...

At EY, you have the opportunity to shape a career that reflects your uniqueness, supported by a global network, inclusive culture, and cutting-edge technology to help you reach your full potential. Your distinct voice and perspective are valued in contributing towards making EY even better. Join us in creating an extraordinary experience for yourself while striving towards a better working world for all. As a Technology Risk Manager at EY, you will play a pivotal role in IT Risk and Assurance client projects and internal initiatives. Building and maintaining relationships, identifying business opportunities, and proactively addressing risks are key aspects of your responsibilities within the...

The job is located in Fort, Mumbai. You should possess a Bachelor's degree in Information Security, Computer Science, or a related field. Additionally, certifications such as CISA, ISO27001, ISO22301, and CISSP would be advantageous. Ideally, you should have 8 to 10 years of experience in a Senior Manager/AGM role. Your responsibilities will include: - Governance and Risk Management - Incident Management - Training and Awareness - Reporting and Documentation - Policy and Procedure Management - Audit Management This is a full-time position with benefits such as Provident Fund. The schedule for this role is a fixed shift. The preferred candidate will have a total of 8 years of work experience....

As the Cyber Security Manager, you will be responsible for protecting the company's digital landscape by designing and implementing comprehensive security programs and cybersecurity strategies. Your role will include securing cloud environments, conducting vulnerability assessments, and managing endpoint security solutions to ensure optimal performance of security tools. Staying updated on the latest security threats and best practices will be crucial to continuously improving the security posture of the organization. Furthermore, you will play a key role in building a culture of security awareness by developing security policies, procedures, and training programs to educate employees. Colla...

At Bravura Solutions, collaboration, diversity, and excellence are highly valued. We provide a space for you to be curious, innovative, and contribute to our culture in an exciting and fast-paced environment. As a global FinTech market leader and ASX listed company, Bravura partners with over 350 top financial services clients, offering wealth management technology and products. We are dedicated to developing cutting-edge, digital-first solutions that help our clients achieve financial security and prosperity for their customers. Join us in our mission to drive innovation and make a positive impact in the financial services industry. We are currently seeking a Senior Information Security Off...