Job
Description
Job Description: Risk Management is a crucial department in FIS which is responsible for Control assessment, SSAE 16 assessment, Vendor due diligence and Risk assessment. About the Team: Our team of associates are great to work with, and we have an awesome team of management professionals who are there to help guide you to success. We believe our clients are the most important aspect of our business. Our determination to be the best that FIS has to offer rings true with each team member through training, knowledge, and a desire to excel in the financial world. What You Will Be Doing: Performing Vendor Risk Assessment & Reviews for Internal and External client vendors as per ISO 27001, PCI DSS, HIPPA, RBI, GLBA etc. Develop utilizing key control objectives and principles from the Federal Financial Institutions Examination Council (FFIEC), the Gramm-Leach-Bliley Act (GLBA), the Federal Trade Commission (FTC), the Health Information Portability and Accountability Act (HIPAA), and other relevant requirements. Performing the Control Testing as per Data Security Standard for APAC & AUS Business. Support the various requirements towards compliance for ISO 27001 and other second party audits. In co-ordination with Internal Audit guidelines, conduct routine audit checks to verify the compliance to the RISC Policy and Procedures. Prepare audit reports and work paper with the process owners to close the findings. Designed to manage and mitigate operational and reputational risk associated with third party provider services. Key elements of the Process include: due diligence reviews, service provider selection, contract establishment and ongoing monitoring practices related to third party relationships and adequate risk assessment activities at all stages of the lifecycle. Performing the Pre-SSAE 16 review for the International Products and Business as per client requirement. What you bring: B Tech or Technical Graduates can apply The candidate must have 3-6 years of experience for desired position. Ability to create new controls as per need and not dependent on existing controls. Governance, Risk Management, Compliance, Internal Audit, Vendor Management, Analysis of loss data. Must have worked or having theoretical knowledge on Risk Assessment. Must have a broad knowledge of technology and Information Security technology and methodologies particularly including for example, SSAE 16, ISO 27001, PCI DSS. ISO 27001, PCI DSS, HIPPA, RBI, GLBA etc. Self-driven who can take initiative to get things done on their own without waiting to be told. Good communication and writing skills A team player and ability to lead team. Project and assignment management. What we offer you: A multifaceted job with a high degree of responsibility and a broad spectrum of opportunities A broad range of professional education and personal development possibilities - FIS is your final career step! A competitive salary and benefits. A variety of career development tools, resources and opportunities
