122 It Compliance Jobs - Page 3

Department: IT Travel: Medium Job Overview We are looking for an experienced and motivated IT Compliance Manager with expertise in SAP S/4 HANA implementation. The selected candidate will manage IT compliance activities, ensuring all systems and processes adhere to regulatory standards and organizational policies. The ideal candidate will play a key role in implementing and monitoring compliance controls, working closely with cross-functional teams to maintain a secure and compliant SAP S/4 HANA environment. Key Stakeholders: Internal Business Site / Central Partner functions IT Team (e.g. SAP/ Infra / Quality IT / Allied / SAP Basis) Key Stakeholders: External IT Vendors IT Contractors/Consultants Reporting Structure Reporting to Associate General Manager QeC/CSV Experience Hands-on experience with IT compliance, quality management, and SAP systems, with a strong focus on SAP S/4HANA. 9+ years of experience in SAP S/4 HANA implementation and configuration. Competencies Comprehensive understanding of SAP S/4 HANA architecture, modules, and functionalities. To have in depth understanding of regulatory requirements and guidelines required to comply IT systems in Pharma industry DI, ALCOA+, Part 11, Annex 11, GAMP 5 etc. Knowledge and Experience of Pharma domain Quality (QA, QC) (Good to have) Knowledge and experience on handling of CSV project related QMS e.g. Change control, deviation, CAPA and incidents. Key Roles/ Responsibilities: To have good understanding and knowledge on SAP S/4 HANA application functionalities. Proven track record of successfully delivering multiple full life-cycle SAP S4 HANA implementation projects. Proficiency in managing integrations with other ERP systems or third-party applications. Accountable to ensure compliance of CSV documentation during various phases (project, operational & retirement) of software lifecycle (SLC) as per GAMP5, CFR Part 11/EU Annex 11 and Data integrity requirements. To define validation strategy and review CSV deliverables for IT projects for the applications SAP ECC, SAP S4 HANA, etc. To Review and approval of QMS documents e.g. Change control, Deviation, Incidents, CAPA, Extension, etc. as applicable. To perform periodic and audit trail review of computerized systems as per defined frequency. To review/approve the onboarding/off boarding form, user access management requests etc ., To ensure infrastructure (Network, Servers, Cloud, Database) are qualified as per required Quality Standards and required documents are in place. To support the initiatives undertaken by Quality e-Compliance team across the Central/PPL sites. To guide Central and Site IT teams for CSV, Data Integrity (DI), and Regulatory Compliance activities. To ensure 21 CFR Part 11, EU Annex 11 and GAMP 5 compliance across PPL sites, as applicable. To coordinate & build good working relations with Site/business users, Subject Matter Experts (SMEs) and IT operations team, Manage vendors / partners / support teams. Responsibilities Qualifications Graduate in Science/ Pharmacy/ Engineering Post Graduation Science/MBA (Desirable).

Handle Server Trouble shooting,21CFR part11,CSV,Monitoring of network,Handle lab instruments installation & Monitoring,firewall issues,window os installation,0365 configuration. Call Shailesh @ 9880899706 , mail to tmkonsultblr@gmail.com,.

Seeking an experienced IT Head to lead ERP (Business Central/Salesforce), IT infra, cybersecurity & digital transformation at manufacturing units. Must have strong knowledge in cloud, and IT/OT systems. Leadership & project skills essential.

Role & responsibilities We are looking a candidate who can work independently at our API Mfg plant which will cover IT Infra, CSV, ERP implementation, GMP compliance, etc. Implementation and roll out of all IT Application and Infrastructure initiatives at the site Deployment, monitoring, maintenance, security, data backup, development, upgrade, and support of all IT systems including Servers, Telephones, network elements, PCs. Operating systems, hardware, software, and other peripheral equipment. Responsible for day-to-day system administration, including management of internal network, VPN, Microsoft Active Directory (AD) and system backups. Implement IT policies, procedures, and best practices, working closely with management to help maintain compliance on all IT infrastructure and applications as needed. Plan and coordinate IT-related activities, provide direction and support for daily and mission-critical operational activities of the IT department. Work with users to define business and system requirements for new technology implementations. Coordinate with cross-functional module leads and continuous monitoring and system development. Thorough understanding of CSV process, GMP Compliance, CFR compliance, etc. Management of IT Infrastructure (Servers, Virtualization, software, Network and RDBMS) Stakeholder & Vendor Management ERP Implementation & UAT for various modules i.e. Manufacturing, HRMS, Quality, etc. Working Location : Zekda, Dist: Bavla, Ahmedabad

Dear Candidate, Greetings of the day! We are hiring for the position of Cluster Head IT (GM) for Aurangabad location. Company Profile: Harman Finochem Limited leading India-based pharmaceutical company which was established by Late Mr. Bhupinder Singh Manhas in 1983. It specializes in the manufacture and export of more than 45 Active Pharmaceutical Ingredients (APIs) of which 10 are Essential drugs as per the WHO model list. Company has its Head office at Kalina, Santacruz (East), Mumbai and 3 state-of-the-art API manufacturing facilities and one formulation manufacturing site at Aurangabad that have been inspected by USFDA. Role & responsibilities : Establishing organizational technology vision and goals. Establishing and enforcing IT guidelines, policy, and standards and managing IT budget. Evaluate Business Needs, Study IT systems to evaluate effectiveness, and make recommendations for improvement and appropriate IT Solutions. Studying current and new pharma industry trends, technologies, and software development. Strategizing and implementing technology that results in company growth. Estimating and establishing cost parameters, budgets, and potential ROI. Collaborating with the leadership team to create long-term plans and improvements. Providing support and mentorship to IT team members. Creating and customizing technology systems for optimized performance. Sourcing and Buying technology software, equipment, and accessories for the company by selecting the right suitable vendors. Implementing technology to streamline internal operations and optimize strategic benefits. Ensuring the company's technological processes and services comply with all requirements, laws, and regulations. Evaluate Best Practices and Implement the Same Wherever Necessary. Periodical Evaluation of Controls and tightening / implementation of the same. Effective MIS Generation with Minimum Effort and Duplication of Effort. SAP S4hana 1909 ERP Package gap implementation, and improvements along with support the existing process. Support Factories and other locations for smooth IT Operations. Hardware Procurement & Maintenance. Software procurement, development and implementation. Vendor Development. LAN / WAN uptime. (Cisco Meraki Solution) Support Internet and Email for all locations. Audit Management (USFDA , EUGMP, MHRA, Vendor) Support IT CSV & CSA activities. Implement & Manage Data Security & Cyber security. Preferred candidate profile : Expertise requires - SAP S4Hana, All Lab solution applications and IT Infrastructure & Security. Experience :18-25 Years in Pharma API / Formulation Manufacturing Industry. Team Management of 20+ team members across all locations. Perks and benefits : As per Industry Standard Interested candidates can share their profiles at poonamm@harmanfinochem.com

Team Manager SOX ITGC 5+ Years – [Bangalore] Are you a certified IT audit professional with extensive experience in SOX ITGC and team management? Location: Bangalore Your Future Employer Join a global organization committed to strong internal controls, compliance excellence, and a collaborative work environment. Responsibilities: Lead planning, fieldwork, and reporting phases for assigned SOX ITGC audit engagements. Design and execute detailed testing for IT General Controls and Automated Controls. Validate Test of Design (ToD) and Test of Effectiveness (ToE) for key control areas including Logical Access, Change Management, Backup & Restoration, and Incident Management. Manage and mentor a team, taking full responsibility for performance reviews, appraisals, and goal setting. Ensure audit documentation meets professional standards and internal quality benchmarks. Collaborate with stakeholders and effectively communicate findings and recommendations. Participate in internal initiatives and support continuous process improvements. Maintain updated knowledge on IT auditing best practices, COSO, and SOX regulations. Requirements: CISA certification is a must. Bachelor’s or advanced degree in Information Technology or a related field. Minimum 5 years of experience in SOX ITGC audits. At least 2 years of hands-on team management experience, including appraisal and performance management. Strong knowledge of IT General and Automated Controls. Proficiency in validating ToD/ToE documentation. Excellent interpersonal and stakeholder communication skills. Strong analytical thinking and attention to detail. Proficient in Microsoft Office Suite. Ability to manage multiple priorities in a fast-paced environment. What’s in it for you: Competitive salary and perks. Hybrid working model (1 week/quarter from office). Opportunity to lead high-impact IT compliance audits. Work in a growth-driven and evolving audit environment. Reach us: If you feel this opportunity is well aligned with your career progression plans, please feel free to reach me with your updated profile at sonaly.sharma@crescendogroup.in Crescendo Global specializes in Senior to C-level niche recruitment. We are passionate about empowering job seekers and employers with an engaging, memorable job search and leadership hiring experience. Crescendo Global does not discriminate on the basis of race, religion, color, origin, gender, sexual orientation, age, marital status, veteran status, or disability status. Note: We receive a lot of applications on a daily basis so it becomes a bit difficult for us to get back to each candidate. Please assume that your profile has not been shortlisted in case you don't hear back from us in 1 week. Your patience is highly appreciated. Keywords: SOX ITGC, CISA, IT General Controls, Audit Manager, Team Management, Risk Assessment, Change Management, Logical Access, IT Audit

Key Responsibilities: 1. IT Practices and Compliance: a. Keep abreast of IT practices, procedures, and compliances to ensure alignment with organizational and regulatory standards. b. Co-ordinate with relevant stakeholders (internal/external) for facilitating the internal and external audits (internal, external, statutory, etc) c. Track the audit observations and ensure timely closure. d. Maintain and track the status for all compliance testing observations. e. Maintain and track the status for all applicable IT Compliances. f. Tracking the updates in SOP with audit, compliance and risk for finalising the SOPs and policies and related documentation. g. 2. Vendor agreements: a. Oversee and maintain the vendor agreements, ensuring that all terms and conditions are met. Qualifications: 1. A Bachelors Degree in Computer Science, IT along with relevant technological certifications. 2. A minimum of 2-5 years of experience in a similar role. 3. Familiarity with IT governance, compliances, and audits. 4. Strong communication and teamwork skills. 5. Ability to work effectively with both internal and external stakeholders. 6. Technology background is must for the role.

Job Title: Cybersecurity Analyst - IT Risk and Control Analyst Location: Chennai Experience: 9 - 15 years Notice Period: 0 - 30 Days Work Mode: Hybrid Interview Mode: 1st round is Virtual interview & 2nd round is F2F is Must Position Purpose: The IT Risk and Control Analyst plays a critical role in strengthening the risk culture within WMIS by driving the adoption of IT Risk frameworks, ensuring regulatory compliance, and reducing IT-related risk exposure. This role exists to proactively identify, assess, and monitor IT risks, perform IT control assessments, and report risk metrics to senior stakeholders. The position directly supports the APAC region and contributes to global risk visibility and risk mitigation initiatives. Responsibilities: Direct Responsibilities: IT Risk Management Identify, assess, and monitor IT risks related to WMIS activities. Record and maintain risk registers; provide regular reporting. Oversee the execution and monitoring of risk mitigation plans. Assess IT risks across the project lifecycle and track until resolution. IT Control Conduct IT control testing aligned with the Groups internal control framework. Monitor corrective action plans arising from control deficiencies. Ensure compliance with group-wide control standards. Shadow IT Governance Maintain and assess the Shadow IT inventory for the APAC region. Coordinate assessments to ensure non-compliant IT assets are identified and managed. Operational Incident Risk Management Evaluate operational risks from production and project-related incidents. Ensure proper recording, escalation, and handling of incidents. Maintain historical records for risk measurement and trending analysis. Contribute to lessons learned and prevention measures. Reporting Generate timely and accurate IT Key Risk Indicator (KRI) reports for regional and global management. Contribute to management dashboards and executive summaries of IT risk posture. Technical & Behavioral Competencies: Deep understanding of IT Risk Management principles and practices. Familiarity with IT System Development Life Cycle (SDLC) methodologies. Strong knowledge of banking industry IT systems and compliance requirements. Proficiency in Microsoft Office Suite , especially Excel and PowerPoint. Experience with ServiceNow GRC or other GRC platforms (preferred). Excellent communication skills in English (both written and verbal). Strong interpersonal, coordination, and analytical abilities. Team-oriented with a collaborative mindset. Value-added Competencies High integrity and confidentiality in handling sensitive information. Awareness of data governance , data protection , and relevant regulatory frameworks (e.g., MAS, GDPR). Strong management reporting capabilities. Ability to respond to ad hoc executive requests with agility and precision. Understanding of risk measurement metrics and dashboards. Qualifications Bachelors Degree in Information Technology , Computer Science, or related field. 10 to 15 years of relevant experience in IT Risk Management, IT Audit , or IT Security , preferably in a banking environment . Risk Management certifications such as CRISC , ISO 31000 , CISA , or equivalent are preferred. Experience with project management is a plus.

Position : TechOps Manager Timings : 9 am to 6 pm Location : Hyderabad Job Summary : The TechOps Team Lead will play a pivotal role in managing and guiding the technical operations team in India. This role requires deep knowledge of infrastructure management and best practices. The ideal candidate will be a technical leader capable of managing a team to ensure our technology infrastructure's reliability, availability, and performance. Key Responsibilities : 1. Team Leadership and Management : - Lead and mentor a team of DevOps, SecOps, Linux Engineers, DBA's, network engineers, and other technical staff. - Develop team goals and objectives in alignment with IT strategies the IT management team sets out. - Conduct performance reviews, identify training needs, and foster professional development. Infrastructure Management : - Oversee the design, deployment, and maintenance of the company's IT infrastructure, including servers, networks, and cloud services. - Ensure high availability and acceptable levels of performance of mission-critical resources. Incident and Problem Management : - Lead the response to critical incidents, acting as a technical lead during service disruptions. - Ensure root cause analyses are conducted and that the results are used to prevent future incidents. Strategic Planning and Optimization : - Contribute to the strategy and planning of infrastructure improvements and investments. - Optimise existing infrastructure for cost, performance, and security. Security and Compliance : - Ensure infrastructure is compliant with relevant industry standards and regulations. - Collaborate with security teams to ensure the organisation's infrastructure is secure and risks are mitigated. Documentation and Knowledge Sharing : - Ensure the creation and maintenance of system documentation. - Promote a culture of knowledge sharing and documentation within the team. Required Qualifications : - Bachelor's degree in computer science, Information Technology, Engineering, or a related field, or equivalent experience. - 10+ years of professional experience in IT operations or infrastructure roles, with at least 3 years in a leadership or managerial capacity. - Deep technical knowledge of server hardware, operating systems (Linux/Windows), networking, and cloud services (AWS, Azure, GCP, etc. - Strong analytical, problem-solving, and decision-making skills. - Proven ability to manage and lead a diverse team, including remote members. - Excellent written and verbal communication skills, including the ability to explain technical concepts to non-technical stakeholders. - Ability to work on-call as needed and respond to emergencies promptly. - Experience with high transactional e-commerce platforms. Preferred Qualifications : - Relevant certifications (e., ITIL, PMP, AWS Certified Solutions Architect, Cisco CCNA/CCNP). - Experience with infrastructure-as-code tools (e., Terraform, Ansible). - Experience in a highly regulated industry (e., finance, healthcare) is a plus. Benefits : - Competitive salary and performance-based bonuses. - Ongoing professional development opportunities and certification support. - Flexible work hours and remote work options. - Vibrant company culture

Role & responsibilities: Testing the controls from regulatory guidelines/circulars/advisories on IT and Cyber Security issued by RBI, SEBI, NSDL, NPCI, UADAI by identifying the observations based on control implementation & its effectiveness. Follow up with stakeholder to ensure timely testing of regulatory guidelines, legacy Circulars, Advisories, Show cause notice/ Penalties/Displeasures. Prepare Annual testing plan based on Compliance risk and senior management directions. Support IT & InfoSec team during the onsite IT Examination Review conducted by RBI. Conduct Compliance Testing / Review of RAR, RMP & other regulatory observations related to IT, InfoSec & Digital Banking units to ensure that regulatory guidelines are complied with. Coordinate with stakeholder for seeking responses in respect of testing observations, submission of periodic update to ACB, Board and RBI & Follow up for closure of open issues & observations. Review of new product and process notes. Assist in preparation of monthly / quarterly / annual submission to the Board / Audit & Compliance Committee. Automation of testing related to regulations. Compliance Monitoring & Testing. Regulatory inspection & audit management. Preferred candidate profile In depth knowledge of the regulatory environment for the banks in India particularly in IT and Cyber Security Area. Knowledge of all regulatory compliance requirements in IT & Information Security areas. Good knowledge of IT Governance frameworks & Risk Assessment and mitigation. Good understanding of Digital Banking products and regulations pertaining to the same. Good Co-ordination skills. Good research capabilities and intelligent interpretation of regulatory guidelines. Good knowledge of all the elements (commercial, operational) of banking. Demonstrated ability to drive results and be very effective in a startup. Good interpersonal skills.

Responsibilities: - Ensure IT compliance & cybersecurity. - Manage IT infrastructure, cloud (AWS/Azure), CRM systems. - Oversee ERP implementation. - Support Microsoft 365 tools incl. SharePoint, Teams, Power Automate. - Coordinate with vendors.

IT Infrastructure Compliance Manager job consist of creation of IT Compliance Framework, track all compliances as per regulatory requirements and to ensure IT Compliance adherence to regulatory requirements. To identify Technology Compliance requirement for IT Infrastructure Units To draft Compliance policies & procedure To work with IT Infra Units to implement compliance controls. To track Status of compliance To remediate noncompliance as per the governance structure To interface with External Auditors for all IT Infra Units To ensure all audit points are closed as per the defined TAT Key Decisions / Dimensions Compliance Status of Control as per the documented policy and procedure Major Challenges To identify all compliance requirement Create a horizontal control framework and track it across IT Infra Units Required Qualifications and Experience a) Qualifications Engineering / Computer Graduate with 3-5 years of Information Security Governance / IT Compliance Experience/IT Audit in BFSI organization Relevant Certifications like CISA/ISO 27001 LA b) Work Experience Prior Experience of RBI/SEBI/IRDA Regulatory requirements for Technology Compliances Prior experience of Implementation & Sustenance of Technology Compliance requirements Working Knowledge of Security Governance Practices across Datacenter, Cloud, Servers, Endpoints, Security Technologies, Application & Database Good Written and Verbal Communication with Presentation Skills Good Team Player and sound in stakeholder management

About Us: Paytm Money is a leading digital investment platform dedicated to providing secure and innovative financial solutions to our users. We prioritize the protection of our customers' data and assets through robust security practices. Role Overview: We are seeking an experienced Information Security Manager to lead our security initiatives and ensure the integrity, confidentiality, and availability of our systems and data. This role is crucial in safeguarding our digital assets and maintaining compliance with industry standards. 1.Should take care of Infosec functions by coordinating with various stakeholders 2.Drive VAPT activity end to end 3.Attend all cyber security compliance directions issued from time to time by the regulator 4.Coordination with SOC & CISO team to follow up the incidents till closure 5.Follow escalation matrix for delayed issues 6.Assist in Internal and External Audits (Regulatory) and work towards closure of observations if any 7. Prepare and review new/existing policies, procedures 8. Should possess technical skills and knowledge to handle/manage security solutions if required 9. Exposure to Cloud Environment 10. Knowledge of Application Security is a plus. Qualifications: * Experience: 7+ years of experience in information security or related fields, with a proven track record in managing security programs. * Technical Skills: Strong understanding of security frameworks, tools, and technologies, including firewalls, intrusion detection systems, and encryption. * Certifications: Relevant security certifications such as CISSP, CISM, or equivalent are highly desirable. * Analytical Skills: Excellent analytical and problem-solving skills to assess complex security issues and develop effective solutions. * Communication: Strong communication skills to effectively convey security concepts and collaborate with cross-functional teams. * Education: Bachelors degree in Computer Science, Information Technology, Cybersecurity, or a related field. Masters degree or relevant certifications preferred. What We Offer: A dynamic and innovative work environment. Opportunity to make a significant impact on the security landscape of a leading fintech platform. Competitive salary and comprehensive benefits package.

Job Description: Proffered Profile: Bachelors degree (BE/B tech) with 3-5 years of experience in IT QMS Compliance Specialist ensures alignment of all IT systems, processes, and documentation with internal Quality Management Systems (QMS) and applicable regulatory standards such as GxP, ISO 9001, 21 CFR Part 11, and EU Annex 11. This role plays a key part in audit preparedness, deviation management, and maintaining consistent quality across IT operations and projects. Key Responsibilities: Develop, implement, and maintain IT quality policies, SOPs, and work instructions in accordance with QMS. Ensure compliance of IT systems with relevant regulatory requirements (GxP, 21 CFR Part 11, GDPR, etc.). Collaborate with QA, Validation, and Business teams for development, qualification, and maintenance of IT systems as per CSV and QMS guidelines. Manage QMS elements such as deviations, CAPAs, change controls, audit trails, and periodic reviews. Participate in internal/external audits; coordinate documentation, evidence, and responses. Conduct IT quality risk assessments and support necessary remediation. Maintain accurate records of compliance activities, including SOP training and validation documentation. Deliver training programs to IT teams on QMS processes and compliance awareness. Support full lifecycle management of computerized systems (planning, validation, operation, retirement). Assist with vendor qualification and assessments for IT-related services. Required Skills and Qualifications: 3 - 5 years in IT compliance/QA/validation in a regulated industry Working knowledge of ISO 9001, GAMP 5, 21 CFR Part 11, EU Annex 11 Familiar with LIMS, ERP, MES, DMS systems Strong documentation and analytical skills Good understanding of ALCOA+ and data integrity Preferred Certifications: ISO Lead Auditor, Six Sigma, or other Quality Management certifications

Well experience Computer system validation (CSV) in API/formulation organisation, Preparing all validation document (i.e URS, GxP assessment & SLRA, Configuration specification, IQ, OQ, PQ, RTM, VSR, DRP) through validation tool as per GAMP 5 & 21 CFR Compliance or Manufacturing and Quality Control Laboratory Equipment. Validate newly/upgraded software in QC Laboratory/manufacturing. Preparation periodic review & Vendor Assessment for Manufacturing and Quality Control Laboratory Equipment Initiate QMS document in Manual/Software base i.e : CCF, Risk assessment, Deviation etc. Solving the issue occurred during the execution. Data Migration and System Retirement activity triggered for manufacturing system. Experience of SOP preparation Preparation of inventory list, periodic review schedule, periodic review report Designation : Executive/Senior Executive Experience: 05 - 09 years

Hello, We are looking for candidates who are Currently serving Notice Period or 30 Days Job Title: Associate - IT Governance & Compliance Reports to: Lead - IT Governance & Compliance Location: Mumbai Experience: 2-6 Years Relevant 1. Role Overview: The Associate of IT Governance & Compliance will be part of the development, implementation, and oversight of the organization's IT Governance, and compliance framework. This role ensures stringent adherence to regulatory mandates, particularly those issued by the Reserve Bank of India (RBI). The ideal candidate must demonstrate a comprehensive understanding of RBI regulations, IT to Business strategy alignment, IT Policies & Processes and Governance best practices within the financial sector. With a keen focus on regulatory compliance, this role will fortify the organization's IT operations, IT project management and safeguard its reputation. 2. Duties & Responsibilities: IT Governance Facilitate implementation of enterprise-wide IT policies, procedures, and standards. Facilitate automation of IT Processes. Coordinate integration of IT governance with broader enterprise governance structures, ensuring alignment with corporate objectives. Facilitate maintenance of governance frameworks in alignment with COBIT, ITIL etc driving adherence and continuous improvement. Collate IT governance metrics and report to IT Senior Management Regulatory and Compliance Assurance Facilitate full compliance with RBI regulations, industry standards, and internal policies. Facilitate maintenance of comprehensive IT compliance programs, proactively addressing regulatory changes. Facilitate regular compliance assessments, ensuring timely resolution of identified issues. Coordinate with regulatory bodies, ensuring accurate and timely reporting and communication IT Risk Management Facilitate a robust IT risk management framework. Track mitigation for potential IT risks, ensuring alignment with organizational goals and regulatory requirements. Track IT risk management initiatives, providing insights and recommendations to the management team Incident Management Track the IT & Security incidents and breaches, ensuring minimal impact on operations. Facilitate implementation of incident response procedures. Coordinate with key stakeholders to mitigate the impact of IT incidents, ensuring swift and effectiveresolution Imbibe a culture of continuous improvement, adopting and integrating best practices in IT governance, and compliance 3. Job Requirements: Professional Qualification : - Bachelor's degree in Information Technology, Computer Science, Business Administration, or a related field. A Masters degree or professional certifications (e.g., CISA, CISSP, CRISC) is preferred. - Minimum of 5 years of experience in IT governance, and compliance, with Lead IT GRC role within a financial services organization. - Strong understanding of IT governance and compliance frameworks, regulatory requirements, and compliance standards (e.g., ISO 27001, NIST, PCI-DSS).

Job Statement: NopalCyber makes cybersecurity manageable, affordable, reliable, and powerful for companies that need to be resilient and compliant. Managed extended detection and response (MXDR), attack surface management (ASM), breach and attack simulation (BAS), and advisory services fortify your cybersecurity across both offense and defense. AI-driven intelligence in our Nopal360 platform, our NopalGo mobile app, and our proprietary Cyber Intelligence Quotient (CIQ) lets anyone quantify, track, and visualize their cybersecurity posture in real-time. Our service packages are tailored to client needs and budgets, with external threat analysis provided at no costdemocratizing access to enterprise-grade cybersecurity for all. We are looking for a high-energy, results-oriented GRC professional with 6 to 10 years of experience , combining expertise in IT and Governance, Risk, and Compliance (GRC) . The candidate will report directly to the CISO’s office and contribute to internal audits and projects executed under CISO’s instructions . Key Responsibilities: Serve as a subject matter expert on information and cybersecurity governance, risk, and compliance (GRC) services and solutions. Execute security assessments of on-premise/cloud IT environments aligned with business objectives and regulatory requirements. Conduct testing and validation of IT security controls, documenting findings and preparing detailed reports. Manage and perform internal audits as per the CISO’s directives , contributing to risk posture improvements and present the metrics to the CISO on a regular basis. Apply knowledge of the Digital Personal Data Protection Act, 2023 , and other global data protection laws. Utilize and manage GRC tools and platforms. Conduct security control assessments for web/mobile applications and enterprise systems. Drive third-party risk management and support client-facing initiatives. Deliver complex GRC projects in dynamic, fast-paced environments. Engage in knowledge-sharing forums to strengthen team capabilities. Continuously enhance the cybersecurity strategy based on evolving threats and technologies. Job Requirements: 1. Qualifications: Bachelor’s degree in Engineering or a related technology discipline. Mandatory Certification : Must possess CISA or ISO 27001 Lead Auditor certification. Additional certifications preferred: ISO 27001 Lead Implementer CISSP, CIPP, CCSK, or CCSP Public Cloud certifications (AWS, Azure, GCP) 2. Experience: 6 to 10 years of total experience with proven exposure to both IT and GRC functions . Experience in internal audits, consulting, and cybersecurity risk advisory. 3. Desired Skills: Deep understanding of information security principles and compliance frameworks. Strong understanding of the IT topology and application development principles Hands-on experience with security tools (e.g., vulnerability scanners, code review platforms). Strong exposure to IT/cybersecurity standards: ISO 27001/27005, NIST CSF, PCI DSS, SOC 1/2, GDPR, COBIT. Excellent communication skills, documentation abilities, and stakeholder engagement. Experience in program and project management within cybersecurity initiatives. 4. Personal Attributes: Self-starter with strong problem-solving skills. Highly motivated and able to work with minimal supervision. Strong prioritization and multitasking abilities under pressure.

We are looking for an experienced governance personal in our Information Technology Team. JOB ROLE The IT Governance specialist is responsible for ensuring the effective management and oversight of IT systems, services, and processes within the organization. This includes developing, implementing, and maintaining IT governance frameworks, policies, and procedures to ensure alignment with industry best practices, regulatory requirements, and organizational objectives. Highlights of this role is to ensure the governance across various area for IT functions, e.g. Information Security compliance, Change management, Agreement Tracking, Incident Management, Software License Management, BCP/DR, Obsolescence Tracking, etc. KEY RESPONSIBILITIES Information security and compliance Develop and maintain IT Governance frameworks, policies and procedures 1. Ensure compliance with relevant laws, regulations, and industry standards (e.g. COBIT, ITIL, ISO 27001, ISO 22301, etc.) 2. Conduct risk assessment and develop mitigation plans to ensure IT Systems and services are secure and resilient. 3. Monitor and report on IT governance metrics 4. Facilitate internal audits and external assessments (e.g. ISO 27001, ISO 22301, etc.) 5. Stay up-to-date with emerging trends and best practices in IT governance. Change Management 1. Manage and coordinate changes through the entire change lifecycle (assessment, planning, implementation, and review) 2. Ensure changes are properly assessed, approved, and prioritized before implementation 3. Develop and maintain change management policies, procedures, and documentations. 4. Communicate changes to stakeholders, including IT staff, management and end-users. 5. Ensure change comply with organizational policies, procedures, and regulatory requirements. 6. Collaborate with IT teams, stakeholders, and vendors to ensure smooth implementation of changes. 7. Develop and maintain change management metrics and reports to measure performance and identify areas of improvements Agreement Tracking 1. Maintain centralized repository of agreements, contracts, and licenses 2. Track and monitor agreement renewals, expirations, and terminations 3. Ensure accurate and up-to-date records, including agreement terms, conditions, and obligations. 4. Provide regular reports and insights to stakeholders on agreement status and performance. 5. Identify and alert stakeholders to potential risks, opportunities, and compliance issues. 6. Collaborate with legal, finance and business teams to ensure agreement alignment and compliance 7. Develop and implement agreement tracking processes and procedures. 8. Ensure compliance with organizational polices, legal requirements, and regulatory standards. 9. Conduct regular audits and quality assurance checks on agreement records. Incident Management 1. Lead the response to critical incident management and ensure effective coordination and communication among all the stakeholders and drive incident call, providing clear direction and updates to all involved parties. 2. Collaborate with IT teams, business unites and external vendors to troubleshoot the incidents. 3. Document all incident details, action taken and resolution in the incident management system and maintain the tracker. 4. Conduct root cause analysis for critical incidents and ensure that corrective actions are implemented to prevent the recurrence. 5. Prepare the monthly and weekly reports and share the same with senior management and Internal Audit team. Software License Management 1. Manage software license and ensure compliance with licensing agreements. 2. Track and monitor software usage, identifying areas of inefficiency and waste. 3. Develop and implement strategies to optimize license utilization. 4. Conduct regular audits to ensure software compliance and minimize risk. 5. Collaborate with IT teams to ensure software deployments align with licensing agreements. 6. Collaborate with finance teams to ensure accurate budgeting and forecasting for software licensing. Business Continuity and Disaster Recovery 1. Develop and maintain business continuity and disaster recovery plans. 2. Develop and maintain BCP/DR calendar, collaborate with cross-functional teams to ensure alignment. 3. Develop and maintain crisis communication plans and protocols. 4. Continuously monitor and update plans to ensure relevance and effectiveness Obsolescence Tracking Maintain a database of components and products with potential obsolescence risks. Collaborate with cross-functional teams to develop and implement obsolescence management strategies Provide regular reports and updates to stakeholders on obsolescence risks and mitigation efforts. Develop and implement processes and procedures for obsolescence tracking and management. Collaborate with design and engineering teams to ensure design-for-obsolescence considerations MANDATORY SKILLS REQUIRED Bachelors degree in Computer Science, Information Technology, or related field. Strong understanding of IT governance frameworks, standards, and best practices. Ability to work with complex data and provide actionable insights. Ability to analyze complex technical and business issues and develop effective solutions. DESIRABLE SKILLS Strong understanding of supply chain management, or a related field. Professional certifications (e.g. CISA, CISM, CISSP, COBIT). Experience with change management tools and software (e.g., ServiceNow, JIRA, etc.) Experience with data analysis and reporting tools (e.g. Excel, Tableau, etc.)

Quest is seeking a motivated self-starter with excellent interpersonal, communication, and presentation skill to join the IT Security Risk and Assurance team to work with internal and external customers to address IT Audit and assurance related requests in the areas of IT, IT security and privacy and compliance. This role will be primarily responsible for responding to, coordinating, and managing IT Security assessment and audit inquiries from our clients and regulators.

About Us Our purpose at Avient Corporation is to be an innovator of materials solutions that help our customers succeed, while enabling a sustainable world. Innovation goes far beyond materials science; its powered by the passion, creativity, and diverse expertise of 9,000 professionals worldwide. Whether youre a finance wizard, a tech enthusiast, an operational powerhouse, an HR changemaker, or a trailblazer in materials development, youll find your place at Avient. Join our global team and help shape the future with sustainable solutions that transform possibilities into realities. Your unique perspective could be the key to our next breakthrough! Job Summary The Information Security Architecture and Engineering Senior Manager is responsible for defining and driving the overall design, implementation and operation of security technologies at Avient. This position requires experience leading local and offshore resources, ensuring compliance with relevant regulations, and driving effective solutions which minimize risk. Essential Functions Design and lead the implementation of the security architecture roadmap, achieving business performance targets and cyber maturity protection goal Ensure security capabilities are properly implemented and tuned as “fit for purpose,” addressing known and emerging threats Collaborate across IT and the business to ensure that technology roadmaps and implemented solutions address risk requirements Establish and maintain architecture and engineering standards for the organization Consult on Operational Technology (OT) security requirements, and recommend, design and deliver capabilities to protect these environments Stay informed of industry trends and relevant threat activity to adapt Avient’s capabilities as needed Other leadership duties as assigned Education and Experience Qualifications Bachelor’s degree in computer science, information technology, or related experience. Cloud and platform certifications preferred. 15+ years' experience leading Information Technology teams, with substantial direct experience leading distributed engineering teams Strong track record of integrating modern architectures (SaaS, PaaS, IaaS, etc.) with traditional environments to achieve an effective security posture Strong application security knowledge of OWASP TOP 10 and other vulnerability frameworks Threat modeling methodologies and experience at an application and enterprise level Strong knowledge of NIST Cybersecurity Framework, and related security standards and best practices Additional Qualifications Knowledge of modern authentication and identity infrastructures and cross-platform interoperability is a strong plus Cyber Incident Response experience Project Management and Quality Management methodologies

Dear Candidate, We are hiring an IT Compliance Specialist to ensure adherence to regulatory and corporate IT standards across systems, processes, and vendors. Ideal for professionals with a background in audit and risk management. Key Responsibilities: Review IT systems and processes for regulatory compliance (GDPR, HIPAA, SOX, etc.) Conduct internal audits and risk assessments Maintain compliance documentation and assist in policy development Work with IT and legal teams to resolve compliance gaps Required Skills & Qualifications: Familiarity with governance frameworks (ISO 27001, NIST, COBIT) Strong understanding of data protection, access control, and IT audit practices Experience with GRC tools and risk registers Bonus: Certifications like CISA, CRISC, or ISO 27001 Lead Auditor Note: If interested, please share your updated resume and preferred time for a discussion. If shortlisted, our HR team will contact you. Kandi Srinivasa Delivery Manager Integra Technologies

Arora.rajat@sammaancapital.com. Job Description Lead - IT Regulatory Compliance & Audit Location [Gurgaon] Key Purpose of the Role The Lead - IT Regulatory Compliance & Audit will be responsible for ensuring the organizations full compliance with applicable IT and Cybersecurity laws, regulations, and supervisory expectations, specifically those outlined by the Reserve Bank of India (RBI), including the Master Directions on Information Technology and Cyber Security Framework and IT Outsourcing guidelines. This role will also lead the IT Infra and cybersecurity audit management process, ensuring the timely closure of observations and proactive compliance monitoring. Key Responsibilities IT Regulatory Compliance (RBI & Other Regulatory Bodies) Ensure ongoing compliance with RBIs IT and Cybersecurity Master Directions, circulars, notifications, and guidelines. Track and analyze IT regulatory updates and assess their impact on IT operations, security, and governance. Implement a compliance monitoring framework specific to IT and cybersecurity, including regulatory checklists, gap assessments, and periodic testing. Ensure timely submission of IT-related regulatory returns, filings, and disclosures as required under various laws and RBI guidelines. Maintain a regulatory IT compliance register and evidence of adherence. Coordinate with IT, Information Security, Risk, and Legal teams to ensure regulatory alignment across technology and operations. IT Policy Management Draft, review, and update IT policies, processes, and internal control frameworks in line with regulatory changes. Provide guidance to IT and business units on the interpretation and implementation of IT regulatory requirements. IT Audit & Cybersecurity Review Management Lead and manage IT audits, assessments, statutory audits, and regulatory inspections. Liaise with IT auditors, statutory auditors, and regulatory examiners. Track and ensure timely closure of all IT audit observations and regulatory inspection findings. Prepare and present periodic reports to senior management and the Board on IT audit and compliance status. Stakeholder Reporting Prepare IT Compliance Risk Management Reports, Quarterly IT Compliance Reviews, and other Board-level presentations. Report material IT regulatory breaches or significant non-compliance incidents. Training & Awareness Conduct regular training sessions for employees on IT regulatory compliance requirements and updates. Promote a strong IT compliance culture across the organization. Desired Candidate Profile Education & Certifications Graduate/Post-Graduate in Information Technology, Computer Science, Cybersecurity, Law, or related fields. Certification in IT Compliance / Cybersecurity / Risk Management preferred (e.g., CISA, CISM, CISSP, ISO 27001 LA, IIBF Certified Compliance Professional). Experience Minimum 8-12 years of relevant experience in IT regulatory compliance and audit functions within Banking, NBFCs, or Financial Services. Hands-on experience with RBI IT compliance management. Hands on IT infra services specially VAPT, AD, Messaging etc.. Key Skills & Competencies In-depth understanding of RBIs IT and Cybersecurity regulations, circulars, and guidelines. Strong knowledge of IT compliance and IT risk management practices. Excellent analytical, communication, and stakeholder management skills. Strong leadership and team management capabilities. Proficiency in preparing IT regulatory and Board-level reports. Proficiency in managing the VAPT related to IT infra services Key Interfaces Internal IT - Infra Information Security Risk Management Legal & Secretarial Internal Audit External Reserve Bank of India (RBI) IT Auditors Cybersecurity Consultants Legal Counsel & Consultants Employment Type Full-Time / Permanent Thanks Rajat Arora 98735 66771

We are hiring Manager / Sr. Manager IT Infrastructure (L2L3) with 8–10 years of hands-on experience in IT infrastructure management, Windows Server environments, enterprise networking, and user support. The ideal candidate must have a strong background in IT operations, system security, and support for 500+ users including senior leadership. Key Responsibilities: Manage Microsoft Windows Server 2016/2019 environments. Administer AD, DNS, DHCP, Group Policies. Handle Microsoft 365 (Exchange Online, OneDrive, Teams). Monitor servers, perform backup/restoration, patching, server hardening. Configure and troubleshoot firewalls, routers, switches. Work with technologies like Checkpoint, Palo Alto, Fortinet, Cisco Switching, Load Balancer, DLP, Web Proxy, VOIP, SDWAN. Address L2-L3 issues and support escalations from desktop/server teams. Manage outsourced IT support staff and ensure SLA adherence. Close VAPT observations and handle audits from regulatory bodies. Support VIP/Sr. Management users with high-quality technical service. Prepare monthly IT infrastructure reports. Evaluate and implement new technologies. Follow ITIL framework practices. Desired Candidate Profile: 8–10 years of experience in IT infrastructure domain. Bachelor’s degree in IT/Computer Science or equivalent. Experience in stock broking firms preferred. Excellent troubleshooting, communication, and documentation skills. Proactive and open to learning new technologies Key Skills: Windows Server | Active Directory | Microsoft 365 | Server Monitoring | Network Security | Firewalls (Checkpoint/Palo Alto/Fortinet) | Cisco Switching | DLP | Load Balancer | Backup & Restore | VAPT | ITIL | Desktop Support | VOIP | SDWAN | Group Policy | DHCP | DNS | Server Hardening | VIP Support Interested Can drop Resume on below Mail dharti.gothi@upgrad.com 8356993985

Location: Gurgaon Sector 58 Preference: Candidates with experience in NBFCs Compensation: Up to 00 LPA Requirements: Strong communication skills, a compelling personality, and relevant profile exposure -----JOB DESCRIPTION--- For a role that encompasses IT GRC (Governance, Risk, and Compliance) along with IT Security Audit responsibilities, especially in the context of NIST, ISO 27001, SOC2, ITGC audit, RBI (Reserve Bank of India) regulatory compliance, IT Security Compliance, Business Continuity Management (BCM), Disaster Recovery (DR), and Vulnerability Assessment (VA), the roles and responsibilities would typically include: Governance, Risk, and Compliance (GRC): Develop and maintain IT governance frameworks aligned with industry standards and regulatory requirements. Establish and enforce policies, procedures, and controls to ensure compliance with applicable laws, regulations, and standards. Coordinate risk assessment and management activities across the organization. Monitor and report on compliance status to senior management and stakeholders. Facilitate audits and assessments to verify adherence to compliance requirements. Implement continuous improvement initiatives to enhance the effectiveness of GRC processes. IT Security Audit: Plan, coordinate, and conduct IT security audits based on regulatory requirements and industry best practices. Perform risk-based assessments of IT systems, networks, and applications to identify security vulnerabilities and weaknesses. Review and evaluate controls related to access management, change management, data protection, and incident response. Document audit findings, including recommendations for remediation and improvement. Collaborate with internal and external auditors to facilitate audit engagements and address audit findings. Track and monitor the implementation of audit recommendations to ensure timely resolution. Regulatory Compliance: Interpret and apply relevant regulatory requirements, including NIST Cybersecurity Framework, ISO 27001, and RBI guidelines. Conduct gap assessments against regulatory requirements to identify areas of non-compliance and develop remediation plans. Coordinate with business units and stakeholders to implement controls and measures to achieve compliance objectives. Prepare documentation and evidence to demonstrate compliance with regulatory requirements. Stay informed about changes in regulations and standards and assess their impact on the organization's compliance posture. IT Security Compliance: Establish and maintain IT security policies, standards, and guidelines in accordance with regulatory requirements and industry best practices. Conduct periodic reviews and assessments to ensure adherence to security policies and standards. Implement controls and measures to mitigate security risks and vulnerabilities. Monitor and analyse security events and incidents to detect and respond to security breaches. Provide guidance and support to business units on security compliance matters. Business Continuity Management (BCM) and Disaster Recovery (DR): Develop and maintain business continuity and disaster recovery plans aligned with organizational objectives and regulatory requirements. Run BCP/DR frameworks Conduct business impact analyses and risk assessments to identify critical business functions and dependencies. Coordinate the development, testing, and maintenance of BCM and DR plans. Ensure alignment between BCM/DR plans and IT systems, applications, and infrastructure. Provide training and awareness programs to ensure effective response and recovery during emergencies. Vulnerability Assessment (VA): Plan and execute vulnerability assessment activities to identify security weaknesses and vulnerabilities in IT infrastructure and applications. Utilize automated scanning tools and manual techniques to identify and prioritize vulnerabilities based on risk. Analyse and interpret scan results to provide actionable recommendations for remediation. Coordinate remediation efforts with IT teams to address identified vulnerabilities in a timely manner. Monitor and track the status of vulnerability remediation efforts and report on progress to stakeholders. In summary, this role involves a comprehensive approach to managing IT governance, risk, and compliance, along with conducting IT security audits, ensuring compliance with regulatory requirements such as NIST, ISO 27001, and RBI guidelines, and overseeing BCM, DR, and VA activities. Effective communication, collaboration, and coordination with various stakeholders are essential for success in this role. Digital Personal Data Protection Act (DPDPA) and GDPR Compliance: Interpret and ensure compliance with the provisions of the Digital Personal Data Protection Act (DPDPA) and the General Data Protection Regulation (GDPR), as applicable. Conduct data protection impact assessments (DPIAs) to identify and mitigate risks associated with the processing of personal data. Develop and maintain data protection policies, procedures, and controls to safeguard the privacy and confidentiality of personal data. Implement measures such as data encryption, pseudonymization, and access controls to protect personal data from unauthorized access and disclosure. Establish mechanisms for obtaining and managing consent for the processing of personal data in accordance with regulatory requirements. Monitor and respond to data subject requests (e.g., access requests, erasure requests) in compliance with GDPR and DPDPA requirements. Facilitate training and awareness programs to ensure compliance with data protection regulations and promote a culture of privacy within the organization. Collaborate with legal and compliance teams to address data protection issues and ensure alignment with regulatory requirements. Maintain records of processing activities and data protection measures to demonstrate compliance with GDPR and DPDPA obligations. Conduct regular audits and assessments to evaluate the effectiveness of data protection controls and identify areas for improvement. Competencies: Proactively contribute to leadership & handle work stress & people skills Strong analytical skills, problem solving skills, and project/program management skills Excellent communication skills working with all levels of management across the entire organization Ability to handle team strength and work cohesively Ability to act in Leadership position Work and stretch as required in corporate scenario Extrovert and Outspoken Experience Needed: 8+ years' demonstrable experience in IT security GRC management, IT security project management, IT & Data security policy management, and other security practices w.r.t Cloud Infra , Basic IT infra design and architecture Hands-on experience with designing, implementing and managing security IT GRC programs Past experience managing a small to mid-sized team Educational Requirements: Bachelor's degree or equivalent business experience in Computer Science, Business Management. Certified training in IT & Data security management, risk and compliance solutions and practices. CISSP, CISA, CISM, GSEC, CRISC, ISO 27K LA or related certification will be added advantage

We are Hiring for IT & Cybersecurity Compliance Specialist for our client company for Andheri East location Job description- Looking for 3+ year experiencein IT compliance, cybersecurity regulations, risk management, and audit support. This role will be instrumental in ensuring IT systems and practices adhere to relevant laws, industry standards, and internal policies, thereby safeguarding our information assets and maintaining stakeholder trust. Key Responsibilities: Compliance Framework Management: Assist in the development, implementation, and maintenance of following IT and cybersecurity compliance frameworks ISO 27001, NIST, SOX 2, local regulations like IT Act 2000, CEA, DPDP Stay up to date with evolving cybersecurity related regulatory changes, and industry best practices. Policy & Procedure Development: Contribute to the creation, review, and update of IT security policies, standards, guidelines, and procedures to ensure alignment with compliance requirements. Communicate compliance requirements and policy changes to relevant stakeholders. Risk Assessment & Management: Participate in IT risk assessments to identify, evaluate, and prioritize potential security vulnerabilities and compliance gaps. Support the development and implementation of remediation plans for identified risks. Audit & Assurance: Act as a key liaison during internal and external IT and cybersecurity audits. Gather, organize, and provide evidence required for audit requests. Track and monitor the progress of audit findings and remediation efforts. Control Monitoring & Testing: Assist in the regular monitoring and testing of IT security controls to ensure their effectiveness and compliance. Identify control deficiencies and recommend corrective actions. Vendor Risk Management (VMR): Support the assessment of third-party vendor security postures and compliance with organizational requirements. Training & Awareness: Contribute to the development and delivery of IT security and compliance awareness training programs for employees. Documentation & Reporting: Maintain accurate and comprehensive documentation of compliance activities, risk assessments, and audit results. Prepare regular reports on compliance status, key risks, and remediation progress for management. This role will involve tremendous amount of Documentation work & management of same. Qualifications: Preferred bachelors degree in information technology, Computer Science, Cybersecurity, or a related field. 3-4 years of proven experience in an IT compliance, cybersecurity, or IT audit role. Solid understanding of common information security frameworks and standards (e.g., ISO 27001, NIST, SOX 2). Familiarity with data privacy regulations (e.g., India's DPDP Act 2023, IT ACT 2000). Experience with risk assessment methodologies and tools. Strong analytical and problem-solving skills with meticulous attention to detail. Must Excellent written and verbal communication skills, with the ability to articulate complex technical and compliance concepts clearly. Ability to work independently and collaboratively in a fast-paced environment. Exceptional Documentation & presentation Skill. Prior experience with GRC Tools & Cybersecurity Awareness tools like KNowbe4 will be preferred. Preferred Certifications (one or more): CompTIA Security+ (ISC) SSCP (Systems Security Certified Practitioner) ISACA CISA (Certified Information Systems Auditor) - a strong plus ISACA CRISC (Certified in Risk and Information Systems Control) ISO 27001 Lead Implementer/Auditor Looking for candidates who can join immediately or within 20 days.