365 Security Audit Jobs - Page 10

Job Title Security Analyst Role and Responsibilities The security Analyst is a member of the CISO Regulatory & Compliance Team and will assist in ensuring the associated business units / accounts comply with applicable Conduent and NIS 2 security standards, regulations, and policies.The Security analyst will be professional, independent, impartial, and fair in all interactions. The security resource is accountable for procedures and processes that ensure the integrity, confidentiality, and availability of assigned Business units\u2019 information, applications, and infrastructure. Resource will perform routine risk assessments, security audits, and vulnerability scans to identify, evaluate, document, and remediate organization risk, control gaps and vulnerabilities. This position will be responsible for developing security reports, security recommendations, and security policies and procedures that are meaningful, defensible, and actionable for a variety of audiences as pertained to assigned business units. Perform log collection, correlation, reviews, archival, retention, and monitoring of automated alerts for items such as, and not limited to IPS/IDS alerts; change detection (FIM) alerts application firewall alerts; malware alerts rogue wireless network alerts security system health alerts; exploit attempt alerts Participate and be an integral component of audit, compliance, and regulatory functions, including and not limited to audits of system security to ensure compliance with Corporate security framework NIS 2, NIST 800-53, ISO 27001/2, PCI-DSS emerging country, state, and Federal privacy laws Primary POC in a vulnerability management program of the account that includes external and internal vulnerability scans of applications and systems external and internal penetration tests of applications and systems documentation and remediation of identified vulnerabilities and exploits routinely monitoring various communication avenues for security vulnerabilities and security patches taking a risk-based approach comparing those security vulnerabilities and security patches across the operating environments making recommendations to various IT teams on the mitigation process for those identified security vulnerabilities Coordinate with business units, operations, and technology teams for incident response, remediation, and improvement Acts as the initial point of contact to facilitate the handling of security audits and client requests Supports the creation of business continuity/disaster recovery plans, to include conducting disaster recovery tests, publishing test results, and making changes necessary to address deficiencies Maintain documentation that supports the annual Security compliance attestation as it is relevant to the assigned Business units Qualifications and Education CIPP, CRISC, CISA, CISSP, CISM, ISO or any security/IT audit certification is a plus. Minimum of Five (3 to 5) Years of experience in IT Security compliance, or Security Auditing is required. Knowledge and understanding of security controls across all security domains, such as access management, encryption, vulnerability management, authentication, authorization, network security, physical security, etc. Ability to identify security risks in application, system, and network architecture, data flow, and processes or procedures Ability to assess the organizational impact of identified security risks and recommend solutions or mitigating controls. Knowledge of security technologies, devices, and countermeasures, as well as the threats they are designed to counter. Experience with developing security reports, recommendations, policies, and procedures that are meaningful, defensible, and actionable for a variety of audiences. Familiarity with more than one framework (NIST 800-series, ISO 27000-series, PCI DSS and ISO, HIPAA, HITRUST, FISMA, FedRAMP other common security control frameworks). Experience in PowerPoint, Word, Excel; experience with Visio and MS Project. Communication skills (interpersonal, verbal, presentation written, email). Experience to write report segments and to participate in presentations. Familiarity with security, workflow, and collaboration tools such Nessus Tenable, Splunk, SharePoint and ServiceNow (Snow) is a plus Positive attitude, team player, self-starter; takes initiative, ability to work independently and effectively with all levels of staff and management both internally and externally Preferred Skills Creating and Maintaining NIST 800-53-rev5 based SSP and POAM Familiarity with more than one framework (NIST 800-series, ISO 27000-series, PCI DSS and ISO, HIPAA, HITRUST, FISMA, FedRAMP other common security control frameworks).

KEY RESPONSIBILITIES Governance: Develop and maintain cybersecurity policies, standards, and procedures. Collaborate with leadership to align cybersecurity initiatives with business objectives. Lead or support security awareness and training initiatives. Risk Management: Identify, assess, and monitor cybersecurity risks across the organization. Conduct risk assessments and gap analyses on systems, applications, and vendors. Work with stakeholders to implement risk mitigation strategies and track remediation activities. Compliance: Ensure compliance with regulatory and industry standards such as ISO 27001, NIST, SOC 2, GDPR, HIPAA, PCI-DSS, etc. Prepare and support internal and external audits and security assessments. Maintain documentation of compliance controls and audit evidence. Reporting & Documentation: Produce risk reports and metrics for senior management and stakeholders. Maintain accurate records of compliance activities and risk treatment plans. Track and report on the status of cybersecurity initiatives and issues. Required Skills and Qualifications: Bachelors degree in Cybersecurity, Information technology, or a related field. 2-3+ years of experience in information security governance, risk, or compliance. Strong knowledge of GRC frameworks and regulatory requirements. Familiarity with risk assessment methodologies and tools. Excellent analytical, organizational, and communication skills. Preferred Qualifications: Certifications such as ISO 27001 Lead Implementer, or similar. Experience with GRC tools such as RSA Archer, ServiceNow GRC..etc Understanding of third-party risk management and vendor assessments. CANDIDATES WHO CAN JOIN IMMEDIATELY ARE HIGHLY PREFERRED.

Job Description To support Post Disaster Need Assessment study (Study on sector specific impacts due to disasters such as floods, earthquake, landslides, erosion, cyclone, drought etc) to be conducted in the State of Assam Provide technical support for the development of web-based portal and Mobile Application, conduct field level data collection, analysis, and assessment. Engage with various stakeholders for discussions. Provide training for stakeholders. Offer technical inputs for project deliverables/components. Conduct field level inspections when necessary. Provide recommendations for recovery and Build Back Better initiatives. Qualification Criteria System Engineer IT Expert B. Tech in IT/Computer Sc. with 10 years or above experience in the field of developing IT tools/software/web tools/Mobile app etc., experience in the field of disaster risk management having experience in External Aided/multilateral agency projects and regional experience in the Northeast with knowledge of local language is desirable. Should have relevant certifications or relevant training in IT/ Softwares/ Web tools or in Project Management.

Role & Responsibilities:- Assist in conducting audit engagements to ensure compliance with standards and frameworks such as ISO 27001, PCI DSS, SOC 2, and GDPR. • Support the planning, execution, and reporting of audits under the supervision of senior auditors. • Gather and analyze evidence to evaluate client compliance and provide initial recommendations. Detailed Responsibilities • Conduct audits based on defined standards, collecting and verifying evidence. • Perform control testing, evaluate processes, and identify compliance gaps. • Assist in evaluating policies, procedures, and systems for compliance • Draft sections of audit reports with findings, observations, and initial recommendations. • Maintain accuracy and completeness in audit documentation, following the organization's standards. • Support in preparing final audit deliverables for senior review • Communicate with client representatives during evidence collection. • Participate in meetings to discuss audit findings and recommendations. • Assist in tracking client remediation actions. Professional Skills:- • Basic understanding of audit standards and regulatory frameworks (e.g., ISO 27001, SOC 2). • Competency in using audit tools and software (e.g., spreadsheets, document management systems). • Strong analytical skills for evidence evaluation and compliance assessment. Personal Skills:- • Attention to detail and accuracy in documenting findings. • Good communication skills for interacting with team members and clients. • Willingness to learn and adapt to new standards and regulations. Knowledge/Competency Requirements:- • Basic knowledge of auditing principles, risk assessment, and compliance. • Understanding of industry standards relevant to information security and data privacy. • Competency in basic project management tasks, such as tracking timelines and deliverables

Convene the IS group meeting on a frequent basis Maintain minutes for all the IS group meetings and ensure the closure of action items Initiate and monitor the internal security audits on defined frequencies Analyze and verify findings and action plans of internal audit Present the findings and trend to top management Verify and analyze the information security incidents along with respective team and take appropriate action. Identify, measure, and analyze information security objectives of all the departments and projects Ensure information security risk assessment and action plan initiation are conducted on a regular basis for all the departments and projects. The critical information security risks and the status to be updated to top management Analyze and approve special permissions which are requested by the employees Ensure the regular reviewing of ISMS documents and make sure that the approved changes are updated in document. Monitor IT related events regularly and ensure that appropriate actions are taken. Ensure the network issues and glitches in the system are addressed on time by IT Monitor the Information security performance and execute the action plans where ever necessary and ensure that the proposed actions are taken care. Ensure the ISMS Awareness among employees are developed. Develop information security policy and get it approved by top management Develop a Business Continuity Plan along with the team members and get it approved by top management Frequently test the BCP and ensure appropriate actions are taken Ensure appropriate external Information Security communications are conducted by relevant team. Ensure applicable acts and policies of the organization are identified, detailed and appropriate actions taken to implement the same Ensure all department related security activities are taken care and support in case of any issues/ clarifications.

We are seeking a Senior Azure Cloud Architect with a strong background in designing and managing cloud infrastructure using Azure. The ideal candidate will have extensive experience with base infrastructure creation using Terraform, Azure DevOps, and security best practices. They should also be well-versed in CI/CD pipelines, security auditing, Windows monthly patching, and various Azure services, including Imperva, Azure Search, Firewalls, Redis Cache, Key Vault, Service Bus, Azure Site Recovery (ASR), Networking, Operations Management Suite (OMS), Blob Storage, Resource Groups, Network Security Groups (NSG), Application Insights, SQL Server, SQL Database, and Load Balancers. Key Responsibilities: Design, implement, and maintain scalable, secure, and high-performance cloud infrastructure solutions using Azure. Lead the creation and management of base infrastructure using Terraform. Ensure the implementation of security best practices across cloud infrastructure, including firewalls, Network Security Groups (NSG), Key Vault, and other security controls. Manage and optimize Azure DevOps pipelines for continuous integration and continuous deployment (CI/CD). Oversee Windows monthly patching and ensure systems are up-to-date with the latest security patches. Conduct security audits and assessments to identify and mitigate potential risks and vulnerabilities. Implement and manage Azure services, including Azure Search, Redis Cache, Service Bus, Azure Site Recovery (ASR), and Blob Storage. Design and manage networking solutions within Azure, including Virtual Networks, NSGs, and Load Balancers. Utilize Application Insights and OMS for monitoring and diagnostics of cloud applications and infrastructure. Manage SQL Server and SQL Database instances, ensuring high availability, performance, and security. Collaborate with development, security, and operations teams to ensure seamless integration and support of Azure-based solutions. Provide technical guidance and mentorship to other team members and stakeholders. Stay up-to-date with the latest Azure features, best practices, and industry trends.

Headquartered in Canada with locations across the United States and around the globe with a footprint on six continents, Bulletproof, a GLI company has decades of technology, security, and compliance expertise. Bulletproofs work in the security space has been recognized nationally and globally with Microsofts global Security Partner of the Year in 2021 and five Microsoft Canada Impact Award wins from 2019 to present-day. At Bulletproof, our vision is to serve, secure, and empower the world through people and technology; one customer at a time. We believe everyone has the right to feel safe and secure. Our mission is to serve and protect organizations to ensure their success. What we have to offer : Challenging Work - We love solving highly complex problems. Across our teams and in all roles, every employee is empowered to bring their best ideas forward and to jump in and solve the problems they're passionate about. Great People - We are stronger, together, when we are open, honest, and above all, real. Every person is valued here and plays an important role in our shared success. Global Impact - As a global team spanning continents, boundaries, and cultures, every day we are inspired by the impact our work has on our colleagues, our customers, our communities, and the world at large. Diversity, Equity and Inclusion - We celebrate each others differences, continuously strive for equality and recognize that inclusion makes us stronger as individuals, a company and a global citizen. Position Summary: This position will work with Bulletproof employees to extract internal requirements for the configuration of an Audit Automation Platform. The candidate will need to define the best approach to configure those requirements within the chosen Audit Automation platform. This includes, but it is not limited to implementing checklists starting from a given technical standard, implementing report and audit plan templates and define workflow logic. Those requirements need to be maintained within the platform as the number of checklists served is increasing and as the audit methodology evolves. This position's main duties are regarding the configuration and maintenance of a chosen Audit Automation Platform. Responsibilities: Configure audit templates and checklists in the Audit Automation Platform Translate compliance frameworks (e.g., ISO 27001, NIST, SOC 2) into structured audit workflows Maintain and update templates based on evolving audit needs Support internal users and troubleshoot platform issues Document configuration guidelines and best practices Liaise with auditors and IT/security stakeholders to ensure audit readiness Develops and reviews security audit reports for quality assurance. Collaborating with clients to develop appropriate remediation plans. Collaborating with colleagues in other lines of services in support of client needs for Information Security Services. Follows, maintains and suggests improvements to standard operation procedures (SOP) Follows, maintains and suggests improvements to workflow and Audit Automation Platform interface Provides clients with exceptional service in a professional, courteous and timely manner. Perform other related duties as assigned. Defines the scope for information security audit assignments. Support the team technical development (e.g. through service development or research) and contribute to technical processes overall. Required Education / Credentials / Qualifications: Degree in Computer Science, Information Systems, Engineering or related major from an accredited University or equivalent College Diploma and related experience. Prior experience with audit or compliance automation tools (experience with AuditBoard, Vanta, Drata or Intact Platform is a plus) Familiarity with IT/IS audit and compliance standards (ISO 27001, NIST, SOC 2, etc.) Strong skills in configuring structured templates and workflows Ability to understand and map audit requirements into platform configurations Detail-oriented, organized, and self-motivated Clear written and verbal communication in English Must have in-depth experience designing and implementing information security solutions. The following skills are preferred but not required: Basic scripting or low-code experience (depending on customization features) Experience working with internal IT or security teams Familiarity with other GRC tools or platforms

Interpret requirements and design solution that satisfy the customer needs and also satisfied the need for standardization, usability and maintainability of the different Agent facing applications. Breakdown solution into components that could be assigned and tracked in pursuit of a fast and cost-effective solution. Must have experience in SQL/PL-SQL. Should have Implement ADF Business Components / Web Services / Oracle Objects Calls that would provide the data access layer for the Agent Applications processes. Implement the ADF View Controller components, including Tasks Flows, Beans and JSF pages that would allow the successful interaction between the agents and the applications. Supervise tasks performed by other members of the solution team in order to ensure a cohesive approach that satisfies the external (customer) requirements and internal (technology) requirements. Design and develop enhancements using exit-point based architecture within loan the origination/servicing system Designing and developing enhancements using exit-point based architecture within loan origination/servicing system Design and implement custom business applications using Oracle Application Development framework Produce, present and validate AS-IS and TO-BE landscape models for technical approval showing migration path Produce and validate solution design documentation for projects ensuring a consistent quality approach is maintained Input into the Technical Environment Plans (TEP) for projects Work directly with business users in all aspects of design and development Produce code that meets quality, coding and performance standards according to local IT guidelines and policies including Security, auditing and SOX requirements Ensure technical & supporting documentation is written to company standards Undertake Unit testing making full utilization of automation tools available and working with the system test team to ensure tests are integrated as part of the overall test plan Qualification: Bachelor / master s in engineering, MCA or equivalent

Total Yrs. of Experience* 8 - 10years Detailed JD *(Roles and Responsibilities) Mandatory skills* Minimum 5 years of relevant informatica technical experience with Enterprise Data Warehouse(DWH) design and development using Informatica Design, develop, and optimize robust ETL/ELT pipelines using Informatica PowerCenter and other data integration tools. Manage and maintain IPP application related components BDM Ability to do performance tuning of Informatica BDM jobs Write complex SQL queries for data extraction, transformation, and analysis across relational databases. Architect and implement data solutions leveraging AWS services such as S3 Collaborate with business stakeholders to understand data requirements and deliver solutions. Monitor and troubleshoot data pipelines to ensure high availability and data quality. Implement best practices in data governance, security, and compliance. Create, maintain, review design documentations Implement and manage Change Requests pertaining to IPP application related components S3, BDM and MFT Work with other relevant teams (SCP, IOC, Production Control, Infra, Security, Audit) as required Work with platform and application teams to manage and close incidents / issues and implement changes, to troubleshoot complex Data issues and resolve them within SLA Documenting and updating of Standard Operating Procedures (SOPs) Desired skills* Architect and implement data solutions leveraging Python, lambda, EMR Build and maintain scalable data workflows and orchestration using Apache Airflow.

Hi, You are invited for the walk-in interview for the Operations Officer - Hyderabad position . Please find the details below: Date: 25 April 2025 Time: 10 am onwards Address for Interview : #Unit No-1501A,15th Floor, Manjeera Triniti Corporate, JNTU Kukatpally to Hitech City Road, KPHB Colony, Kukatpally, Telangana. Kindly carry the following documents with you, as they are mandatory for joining us: Last 3 months salary slips Offer letter from the current organization Latest increment letter Aadhaar Card PAN Card Graduation certificate Looking forward to meeting you. Role & responsibilities (1) Plan, organize, conduct and control operations as per the monthly/weekly supervision plans and route charts (2) Carry out Operations audits of Sites / Assignments. (3) Should be able to supervise and conduct on-site training as per training programme (4) Should be well versed with basic Sales requirements and Commercials. (5) Effective supervision and Management mechanism. (6) Plans to prevent and combat fire at site and ensure that all the fire extinguishers are serviceable (7) Check all alarm systems at sites for serviceability (8) Check and train security personnel in handling of metal detectors, vehicles search mirrors radio sets, Personnel and Materials gate etc. (9) Train security personnel in techniques of searching trucks, cars, scooters and cargo/consignment and other bomb situations. (10) Carry out a fresh security survey if any changes in location or any addition has taken place in high value items, viz. Computer Centre, network, cash room, bullion vaults or expensive calibration equipment. (11) Formulation and rehearsal of emergency procedures (12) Check log books and documents at sites and compile evaluation and action report. Make out daily visit report and hand it over to Branch Manager for evaluation and action.

Job ID: 199316 Required Travel :No Travel Managerial - No LocationIndia- Pune (Amdocs Site) In one sentence Manages and coordinates the diverse operation of the department/domain, ensuring that the daily operations are coordinated with vital resource and tools; Ensures that operational directives are carried out in full and to completion, and assures that the schedules, meetings and goals work in harmony towards customer happiness; Tracks and maintains the performance of vendors / external parties to uphold company interests. All you need is... Education Graduate Experience: Minimum 5 years Skills: 1. CommunicationStrong command of written and spoken communication.(Hindi ,Marathi, English) 2. KnowledgeProficient in computer skills, including Excel and PowerPoint. Responsibilities: 1. Email ResponseHandle and respond to security-related emails in a timely manner. 2. Work Plan TrackingTrack and update work plans to ensure all security tasks are completed as scheduled. 3. Budgeting and Invoicing HandlingManage budgeting and invoicing processes for security operations. 4. Vendor Payment Follow-upFollow up on payments with vendors to ensure timely transactions. 5. AMC CoordinationCoordinate Annual Maintenance Contracts (AMC) for security systems and equipment. 6. Report MaintenanceMaintain various types of security reports. 7. Fire Evacuation Drill CoordinationOrganize and coordinate fire evacuation drills to ensure preparedness. 8. Security Incident ResponseManage and respond to security incidents promptly and effectively. 9. Security TrainingConduct security training sessions for staff. 10. Physical Security AuditsPerform physical security audits to ensure compliance and safety. 11. ComplianceEnsure adherence to security policies and regulations. 12. Technology ManagementOversee the management of security technologies. 13. MonitoringContinuously monitor security systems and processes. What will your job look like You will handle the work activities of a department / domain and suggests and/or implements changes that will make the output more effective. Collaborate closely with internal partners and external vendors, and supervises execution of activities Supervise and monitor vendor / supplier performance to improve results and uptime, minimize costs, and maintain high levels of customer happiness. You will support managers / employees in their day-to-day coordination and management of business operational activities and/or issue resolution Coordinate communication between internal units and external vendors / suppliers. You will process, approve and follow up on invoices, rate charges, payments, and other financial operations-related issues You will supervise and updates the relevant systems and business operations policies. You will ensure compliance with company's standards and procedures. You will maintain a high level of service to internal / external customers and ensure superb communication between partners. Who are we Amdocs helps those who build the future to make it amazing. With our market-leading portfolio of software products and services, we unlock our customers innovative potential, empowering them to provide next-generation communication and media experiences for both the individual end user and enterprise customers. Our employees around the globe are here to accelerate service providers migration to the cloud, enable them to differentiate in the 5G era, and digitalize and automate their operations. Listed on the NASDAQ Global Select Market, Amdocs had revenue of $5.00 billion in fiscal 2024. For more information, visit www.amdocs.com Why you will love this job: You will have responsibility to Manages and coordinates the diverse operation of the departments. You will supervise the work activities of a department/ Supervises and monitors vendor as per Amdocs guidelines. You will work with relevant partners supervise and update the relevant systems and business operations policies. We are giving the opportunity to work with the industry s most sophisticated testing technologies and help customers shift into the new testing realities of the digital world! We offer a wide range of stellar benefits including health, dental, vision, and life insurance as well as paid time off, sick time, and parental leave! Amdocs is an equal opportunity employer. We welcome applicants from all backgrounds and are committed to fostering a diverse and inclusive workforce

Job Information Job Opening ID ZR_1945_JOB Date Opened 15/05/2023 Industry Technology Job Type Work Experience Fresher Job Title IS Group Convenor City Kochi Province Kerala Country India Postal Code 682037 Number of Positions 2 Convene the IS group meeting on a frequent basis Maintain minutes for all the IS group meetings and ensure the closure of action items Initiate and monitor the internal security audits on defined frequencies Analyze and verify findings and action plans of internal audit Present the findings and trend to top management Verify and analyze the information security incidents along with respective team and take appropriate action. Identify, measure, and analyze information security objectives of all the departments and projects Ensure information security risk assessment and action plan initiation are conducted on a regular basis for all the departments and projects. The critical information security risks and the status to be updated to top management Analyze and approve special permissions which are requested by the employees Ensure the regular reviewing of ISMS documents and make sure that the approved changes are updated in document. Monitor IT related events regularly and ensure that appropriate actions are taken. Ensure the network issues and glitches in the system are addressed on time by IT Monitor the Information security performance and execute the action plans where ever necessary and ensure that the proposed actions are taken care. Ensure the ISMS Awareness among employees are developed. Develop information security policy and get it approved by top management Develop a Business Continuity Plan along with the team members and get it approved by top management Frequently test the BCP and ensure appropriate actions are taken Ensure appropriate external Information Security communications are conducted by relevant team. Ensure applicable acts and policies of the organization are identified, detailed and appropriate actions taken to implement the same Ensure all department related security activities are taken care and support in case of any issues/ clarifications. check(event) ; career-website-detail-template-2 => apply(record.id,meta)" mousedown="lyte-button => check(event)" final-style="background-color:#2B39C2;border-color:#2B39C2;color:white;" final-class="lyte-button lyteBackgroundColorBtn lyteSuccess" lyte-rendered=""> I'm interested

Job Summary The App Security Specialist will play a crucial role in ensuring the security and integrity of applications within the Hi-Tech domain. With a focus on Privileged Access Management the candidate will work in a hybrid model during day shifts. This position requires 11 to 14 years of experience emphasizing technical expertise and domain knowledge to safeguard company assets. Responsibilities Implement robust security measures to protect applications from unauthorized access and potential threats Collaborate with cross-functional teams to identify security vulnerabilities and develop effective mitigation strategies Conduct regular security assessments and audits to ensure compliance with industry standards and best practices Develop and maintain security policies and procedures tailored to the Hi-Tech domain Monitor and analyze security incidents providing timely responses and solutions to mitigate risks Utilize Privileged Access Management tools to control and monitor access to sensitive information Provide guidance and training to team members on security protocols and practices Stay updated with the latest security trends and technologies to enhance the companys security posture Ensure seamless integration of security solutions within the existing IT infrastructure Work closely with stakeholders to align security initiatives with business objectives Prepare detailed reports on security performance and present findings to management Support the development of secure application architectures and frameworks Contribute to the continuous improvement of security processes and systems. Qualifications Possess a strong understanding of Privileged Access Management and its application in securing sensitive data Demonstrate expertise in the Hi-Tech domain with a focus on application security Have a proven track record of implementing security solutions in a hybrid work environment Exhibit excellent problem-solving skills and the ability to work collaboratively with diverse teams Show proficiency in conducting security audits and assessments Be adept at developing and enforcing security policies and procedures Display strong communication skills to effectively convey security concepts and strategies Maintain a proactive approach to identifying and addressing security challenges Hold relevant certifications in application security and Privileged Access Management Be committed to continuous learning and staying abreast of industry developments Demonstrate the ability to balance security needs with business objectives Have experience in training and mentoring team members on security best practices Show a dedication to enhancing the companys security posture through innovative solutions. Certifications Required Certified Information Systems Security Professional (CISSP) Certified in Risk and Information Systems Control (CRISC)

POSITION SUMMARY: This position will give an opportunity to work for Information Security Governance on information systems, processes, and technologies within the organization. This is a global role engaging stakeholders (at all levels) across geographies like India, Philippines, and US This position will report to the Senior Manager, Information Security and is expected to work independently on tasks assigned. This position requires: Works on Vendor IT Security risk assessment/ Third Party Risk management Monitor Security posture and appraise Senior Leadership on the posture. Conduct phishing campaigns that includes analysis of phishing emails and develop reports. Experience in performing Risk Assessments in line with Information Security Standards (like ISO 27001) for Business processes and IT systems. Knowledge about latest regulations, compliance, standards, and procedures such as GLBA, SOX, ISO27000 Standards, CoBiT, etc. Excellent verbal and written communication skills with a demonstrated ability to build and maintain relationships within the organization. Strong proficiency in Microsoft Office applications (MS Excel, Word, PowerPoint etc.) with a general understanding of data analysis techniques JOB FUNCTIONS AND RESPONSIBILITIES Perform IT security reviews, evaluations, risk assessments, and monitoring on a regular basis to ensure exceptions and violations are identified and addressed. Perform and oversee Information Security Policy Framework Recommend appropriate corrective actions and remediation plans for risks identified. Assist in developing the implementation of risk mitigation measures. Work with the Business functions to ensure security standards are in-line with Onity s risk management and information security policies. Plan and execute vendor IT and Security audit programs in-line with Onity s risk management policies. EDUCATION / EXPERIENCE 1-3 years of progressive experience in one or more of the following: internal/external IT and business process auditing, sourcing advisory, vendor management roles Bachelor s degree from an accredited college / university. Management degrees MS, M. Tech or MBA in relevant field would be an added advantage. Preferred Certifications CGEIT or CISM CISSP ISO 27001 Demonstrated experience in conducting Risk Assessments for Vendors, Internal and External stakeholders. Experience in Information Security or demonstrated knowledge on Information Security Operations. Demonstrated experience in a multi-vendor environment. Demonstrated experience in Cloud Security assessments on various Cloud platforms such as AWS, Azure, Oracle etc. WORK SCHEDULE OR TRAVEL REQUIREMENTS 2 PM to 11 PM

Control Risks is currently looking for an experienced Field Security Consultant to be embedded with our client, a large energy-sector firm, based in Duliajan, Assam, India. This position will be employed on a rotational shift pattern, 1-month on, 1-month off, with a start date of 15th July. Responsibilities: Provide the company with expertise that will help to conduct its business in a low-profile manner and which provides for optimum protection of its employees, families and assets in event of political or criminal aggression. Help to ensure that the client employees exposure to violence, blackmail, threats, kidnapping or civil war is minimized and managed To issue and implement guidelines on good security practices for employees and their families in countries of operation. To assess all potential hazardous situations in countries of operation and come up with proper plans and measures to mitigate these hazards. To perform security audits of all Client locations to make sure that all existing and future locations have an optimum standard of security in order to let Client conduct its business in a safe and secured environment. To prepare and keep updated evacuation plans for all locations in the country of operation. Supervise and ensure optimum utilisation of consultants deployed for providing security advice to the Client, in country. To develop and implement a comprehensive security strategy that will allow Client to operate securely within the country of operation within foreseeable future. Ability to analyse security trends by collation of intelligence. To visit all Client sites and locations to ensure on-going operations are conducted in a safe, secure manner. A minimum of 3 years of progressively responsible experience in the security management industry or other security specialization. Strong ability to focus on customer service and to build trust and rapport with people from all cultures and backgrounds. Strong communication skills, both written and oral, in English and local dialects. Able to commence work in Duliajan on 15th July.

Greetings from Datamark !!! Position: Information Security Analyst Experience : 7 Yrs + Position Overview: The Information Security Analyst is responsible for the administration of the organization s information and data security policies and practices of the overall internal security audit program to ensure that the Company is protected in terms of security, compliance and confidentiality. Primary Responsibilities: Coordinates and assists with security activities for the enterprise Operate, maintain, and validate vulnerability scanning of Infrastructure, Applications, and APIs Review daily threat intelligence. Ensures compliance to security standards for assigned sites Schedules and administers internal security audits for Client and Physical Site Audits Follows up on remediation plans Support the management and maintenance of security tools with an emphasis on Security Information and Event Monitoring (SIEM) tools. Assist with the review of technical deployments for risk prior to deployment across the campus. Recommends risk mitigation solutions based on audit findings Maintains Security and Compliance Metrics monthly Assists in the development and delivery of IT risk and security awareness and compliance training programs Willingness to travel to DATAMARK global sites as necessary Other duties as assigned Minimum Qualifications: Education Requirements: Bachelor s degree in Computer Science or related field, experience in lieu of degree can be considered Field Experience: At least four years of experience in Information Security Position Experience: At least four years of experience in an Information Security Analyst position, or similar position Demonstrated experience with traditional vulnerability analysis: identify, categorize, prioritize, track, and validate remediation of known vulnerabilities by accountable IT teams Other Qualifications: Certification in IT Security required Knowledge in Information Security policies and practices Knowledge of third-party auditing and risk assessment methodologies Experience in an IT Security related environment preferred Required Skills: Extremely organized and detail oriented. Capable of holding team members accountable to timely delivery of audit evidences. Practices and methods of IT strategy, enterprise architecture and security architecture Excellent analytical and problem-solving abilities to identify and remediate security risks Team-work mentality to develop security solutions in collaboration with other IT professionals.

POSITION SUMMARY: This position will give an opportunity to work for Information Security Governance on information systems, processes, and technologies within the organization. This is a global role engaging stakeholders (at all levels) across geographies like India, Philippines, and US This position will report to the Senior Manager, Information Security and is expected to work independently on tasks assigned. This position requires: Works on Vendor IT Security risk assessment/ Third Party Risk management Monitor Security posture and appraise Senior Leadership on the posture. Conduct phishing campaigns that includes analysis of phishing emails and develop reports. Experience in performing Risk Assessments in line with Information Security Standards (like ISO 27001) for Business processes and IT systems. Knowledge about latest regulations, compliance, standards, and procedures such as GLBA, SOX, ISO27000 Standards, CoBiT, etc. Excellent verbal and written communication skills with a demonstrated ability to build and maintain relationships within the organization. Strong proficiency in Microsoft Office applications (MS Excel, Word, PowerPoint etc.) with a general understanding of data analysis techniques JOB FUNCTIONS AND RESPONSIBILITIES Perform IT security reviews, evaluations, risk assessments, and monitoring on a regular basis to ensure exceptions and violations are identified and addressed. Perform and oversee Information Security Policy Framework Recommend appropriate corrective actions and remediation plans for risks identified. Assist in developing the implementation of risk mitigation measures. Work with the Business functions to ensure security standards are in-line with Onity s risk management and information security policies. Plan and execute vendor IT and Security audit programs in-line with Onity s risk management policies. EDUCATION / EXPERIENCE 1-3 years of progressive experience in one or more of the following: internal/external IT and business process auditing, sourcing advisory, vendor management roles Bachelor s degree from an accredited college / university. Management degrees MS, M. Tech or MBA in relevant field would be an added advantage. Preferred Certifications CGEIT or CISM CISSP ISO 27001 Demonstrated experience in conducting Risk Assessments for Vendors, Internal and External stakeholders. Experience in Information Security or demonstrated knowledge on Information Security Operations. Demonstrated experience in a multi-vendor environment. Demonstrated experience in Cloud Security assessments on various Cloud platforms such as AWS, Azure, Oracle etc. WORK SCHEDULE OR TRAVEL REQUIREMENTS 2 PM to 11 PM

Job Summary: The candidate will be responsible for Spearheading the deployment of a Role-Based Access Control model for JDE Security, using solutions like AllOut Security. In this Role, Your Responsibilities Will Be: Handle and configure Security Roles and authorizations within JDE, meeting the security requirements of organization. Ensure compliance with the security policies, processes and procedures pertaining to the JDE application. Resolve business issues within defined SLAs. Obtain clear and concise requirements from the key business users and other application users. Develop top security standards and guidelines for the organization. Monitor, investigate, and report on security incidents and tasks. Coordinate with internal and external auditors during security audits and provide reports. Who We Are: Emerson s global Professional Tools business offers the broadest portfolio of reliable tools, connected equipment and software technologies for those working in mechanical, electrical and plumbing trades. With unparalleled expertise from RIDGID, Greenlee and Klauke, we deliver trusted products that provide dependable performance to handle the industries toughest challenges. For This Role, You Will Need: In-depth knowledge of security within JD Edwards Enterprise One Solid understanding in User and Role Administration- End to end process and Menu task views, environment copy. Continual learning and adaptation to new security practices and JD Edwards updates Proficient in standard processes for JDE/Allout Security. Crafting and implementing Segregation of Duties Frameworks. Excellent written and verbal communication skills Good to have Knowledge on JAMS Schedular. Good to have Knowledge on Package Assembly, build and deploy in JDE. Our Culture & Commitment to You . .

We are seeking a skilled Security Audit professional with experience in the Manufacturing or Electronics Manufacturing industry. Candidates from the IT industry will not be considered. The role focuses on conducting thorough security audits, managing inventory controls, and ensuring compliance with device and material handling policies within a manufacturing setup. Key Responsibilities: Manage NPI (New Product Introduction) area segregation and conduct NPI perimeter audits to ensure strict access control. Audit various types of raw materials, verify critical material storage requirements, maintain critical material inventory audits, and track material movement accurately. Implement and monitor personal screening procedures and ensure equipment calibration standards are met. Oversee device control policy enforcement, conduct device inventory audits, validate IT approvals, and maintain detailed device control logs. Conduct material inventory control and perform regular audits to ensure compliance. Maintain track and trace (TT) control data for materials and devices. Provide TT training to cross-functional teams (CFT) and security teams, and support the implementation of related processes. Support application development, coordinate with IT teams, assist cross-functional teams, and handle escalation management. Required Profile: 6 to 13 years of relevant experience in security audits or material control within Manufacturing or Electronics Manufacturing industries. Strong knowledge of NPI processes, material storage protocols, device control, and inventory audit practices. Experience in conducting audits, maintaining control data, and enforcing compliance standards. Ability to train and guide cross-functional teams on security audit processes. Good coordination skills with IT and other support teams. Detail-oriented, with excellent documentation and communication skills. Note: Candidates with experience primarily in the IT industry will not be considered. If you have the required background and are looking to grow your career in Security Audit within a manufacturing environment, we encourage you to apply.

MSSQL DBA Proactive Monitoring of Databases Installation, Configuration of Databases Performance Tuning, Improvements Restore & Refresh of Databases Security Auditing Managing Database Objects- Tables, Indexes Additional duties as assigned Expected to be on weekend & night support in rotation High Availability Learn more about us At Atos, we embrace diversity as the ultimate engine of ingenuity for our clients, and we constantly strive to create a culture where people feel supported and encouraged. Read more about our commitment here . Whether it is fighting climate change, promoting digital inclusion, or ensuring trust in data management tech for good sits at the core of our identity. With numerous global recognitions for our ESG practices, we are committed to building a better future for all by harnessing the power of technology. Learn more here

MSSQL DBA Proactive Monitoring of Databases Installation, Configuration of Databases Performance Tuning, Improvements Restore & Refresh of Databases Security Auditing Managing Database Objects- Tables, Indexes Additional duties as assigned Expected to be on weekend & night support in rotation High Availability Learn more about us

Role & responsibilities Key highlights of the role are listed below (purely indicative and not limiting): This position would include the mentioned set of responsibilities but not limited to: Develop and execute the Information Security Audit Plan based on a risk-based approach. Conduct IT security audits, risk assessments, and compliance reviews across applications, infrastructure, and third-party vendors. Evaluate IT / Information Security policies, procedures, and controls to ensure compliance with ISO 27001, PCI-DSS, DPDPA, SOC 2, and other relevant standards. Identify security risks, control weaknesses, and process inefficiencies, providing recommendations for mitigation. Work closely with IT, IS, cybersecurity, and other business teams to ensure audit findings are addressed in a timely manner. Perform security assessments of cloud environments (AWS, Azure, GCP), network security, and application security Prepare detailed audit reports, executive summaries, and presentations to relevant stakeholders Monitor industry trends, regulatory changes, and emerging cyber threats to enhance the organizations security posture. Lead and conduct internal and external IT / security compliance audits, ensuring adherence to company policies and industry best practices. Mentor and guide the team in audit methodologies and best practices. Assist in IT and cybersecurity audits by external regulators (RBI, PCI-DSS, etc.). Applicants should possess the following attributes: Experience in ISO 27001, SOC 2, PCI-DSS or RBI, SEBI guidelines compliance. Knowledge of penetration testing, vulnerability assessments, and security operations. Hands-on experience with SIEM, DLP, IAM, and other security tools. Prior experience in a Big 4 audit firm or financial services sector is an advantage. Effective Team Management Excellent communication skills with the ability to present technical findings to nontechnical stakeholders Strong understanding of IT security frameworks, governance, risk, and compliance (GRC) principles. Familiarity with financial, regulatory or other requirements related to information security. Experience in performing security assessments of cloud environments (AWS, Azure, GCP), network security, and application security Strong analytical, problem-solving, and leadership skills.

Certbar Security is looking for Junior Security Analyst to join our dynamic team and embark on a rewarding career journey. Defining, planning, implementing, maintaining, and upgrading security measures, policies, and controls Assisting with the creation of updates and training programs to secure the network and train the employees Keeping the security systems up to date Monitoring security access and maintaining the relevant data Conducting vulnerability testing and risk analyses to assess security and performing internal and external security audits Analyzing security breaches to identify the cause and to update incidence responses and disaster recovery plans

locationsBangalore, Indiaposted onPosted 2 Days Ago job requisition id29822 FICO (NYSEFICO) is a leading global analytics software company, helping businesses in 100+ countries make better decisions. Join our world-class team today and fulfill your career potential! The Opportunity Join our Cyber Security Engineering team where youll play a critical role in managing and securing our infrastructure. In this hands-on position, you'll work on IAM, database security, and cloud environments, ensuring our systems remain secure and compliant. This role provides the opportunity to collaborate with experts across multiple domains, helping you build a deep understanding of security architectures in hybrid environments. Director, Cyber Security. What Youll Contribute Manage, maintain, and optimize security and audit infrastructure, including application and database servers. Oversee security, reporting, and auditing of Active Directory (AD) and Entra ID to ensure proper access controls and identity management. Administer AWS Key Management Services (KMS) for encryption key lifecycle management to protect critical data within AWS environments. Implement and manage database security controls, audits, and encryption to safeguard sensitive data. Support security operations by responding to incidents, investigating threats, and remediating risks. Collaborate on security audits, compliance initiatives, and risk assessments to meet regulatory standards. Maintain thorough documentation of security configurations, incidents, and remediation actions, and provide regular reports on security metrics. What Were Seeking Bachelor's degree in Computer Science, Cyber Security, Information Technology, or a related field. Relevant security certifications like CEH or AWS Certified Security are a plus. 6+ years of experience in a Cyber Security Engineering role. Working knowledge of networks, protocols, Linux/Windows OS internals, and system configuration. Hands-on experience with Active Directory/Entra ID auditing and reporting. Knowledge of AWS Key Management Services (KMS), CloudWatch, CloudTrail, and Guard Duty. Experience with AWS CLI and Infrastructure as Code (Terraform is a plus) Knowledge of database security best practices, encryption technologies, and cryptographic key management. Our Offer to You An inclusive culture strongly reflecting our core valuesAct Like an Owner, Delight Our Customers and Earn the Respect of Others. The opportunity to make an impact and develop professionally by leveraging your unique strengths and participating in valuable learning experiences. Highly competitive compensation, benefits and rewards programs that encourage you to bring your best every day and be recognized for doing so. An engaging, people-first work environment offering work/life balance, employee resource groups, and social events to promote interaction and camaraderie. Why Make a Move to FICO At FICO, you can develop your career with a leading organization in one of the fastest-growing fields in technology today Big Data analytics. Youll play a part in our commitment to help businesses use data to improve every choice they make, using advances in artificial intelligence, machine learning, optimization, and much more. FICO makes a real difference in the way businesses operate worldwide Credit Scoring FICO Scores are used by 90 of the top 100 US lenders. Fraud Detection and Security 4 billion payment cards globally are protected by FICO fraud systems. Lending 3/4 of US mortgages are approved using the FICO Score. Global trends toward digital transformation have created tremendous demand for FICOs solutions, placing us among the worlds top 100 software companies by revenue. We help many of the worlds largest banks, insurers, retailers, telecommunications providers and other firms reach a new level of success. Our success is dependent on really talented people just like you who thrive on the collaboration and innovation thats nurtured by a diverse and inclusive environment. Well provide the support you need, while ensuring you have the freedom to develop your skills and grow your career. Join FICO and help change the way business thinks! Learn more about how you can fulfil your potential at FICO promotes a culture of inclusion and seeks to attract a diverse set of candidates for each job opportunity. We are an equal employment opportunity employer and were proud to offer employment and advancement opportunities to all candidates without regard to race, color, ancestry, religion, sex, national origin, pregnancy, sexual orientation, age, citizenship, marital status, disability, gender identity or Veteran status. Research has shown that women and candidates from underrepresented communities may not apply for an opportunity if they dont meet all stated qualifications. While our qualifications are clearly related to role success, each candidates profile is unique and strengths in certain skill and/or experience areas can be equally effective. If you believe you have many, but not necessarily all, of the stated qualifications we encourage you to apply. Information submitted with your application is subject to theFICO Privacy policy at

Project Role : Security Engineer Project Role Description : Apply security skills to design, build and protect enterprise systems, applications, data, assets, and people. Provide services to safeguard information, infrastructures, applications, and business processes against cyber threats. Must have skills : Oracle HCM Cloud Core HR Good to have skills : Oracle Applications Development, Security GovernanceMinimum 5 year(s) of experience is required Educational Qualification : 15 years full time education Summary :As a Security Engineer, you will apply security skills to design, build, and protect enterprise systems, applications, data, assets, and people. Your typical day will involve collaborating with various teams to implement security measures, conducting risk assessments, and ensuring compliance with security policies. You will engage in proactive monitoring of systems to identify vulnerabilities and respond to potential threats, all while maintaining a focus on safeguarding information and business processes against cyber threats. Roles & Responsibilities:- Expected to be an SME.- Collaborate and manage the team to perform.- Responsible for team decisions.- Engage with multiple teams and contribute on key decisions.- Provide solutions to problems for their immediate team and across multiple teams.- Conduct regular security audits and assessments to identify areas for improvement.- Develop and implement security policies and procedures to enhance overall security posture. Professional & Technical Skills: - Must To Have Skills: Proficiency in Oracle HCM Cloud Core HR.- Good To Have Skills: Experience with Oracle Applications Development, Security Governance.- Strong understanding of security frameworks and compliance standards.- Experience with risk assessment and management methodologies.- Familiarity with incident response and threat detection tools. Additional Information:- The candidate should have minimum 5 years of experience in Oracle HCM Cloud Core HR.- This position is based at our Hyderabad office.- A 15 years full time education is required. Qualification 15 years full time education