169 Security Audit Jobs - Page 3

Information Security Manager: Job Title: Information Security Manager Work from Office Location: Bangalore/Chennai/Hyderabad Experience:9 + years No.of Positions: #womenhiring #womenintech #womendiversity this role is exclusive for female candidates. Required Skills: Hands-on experience with security technologies Experience in Information security and business continuity internal audits Strong Knowledge in risk management, ISO 27001, ISO 22301 PCI DSS, HIPAA, GDPR, SOC 2 Knowledgeable in security concepts, techniques, tools, methods, and practices Good technical in cyber security products Individually to perform the technical audits Roles and Responsibilities: Minimum 8 years of experience in managing security audits, such as, ISO 27001, HIPAA, SOC 1, SOC2, PCIDSS Including preparing control owners for audits, interpreting control requirements, reviewing control evidence for appropriateness, testing control effectiveness, presenting control evidence to external auditors, and audit planning with external auditors In-depth knowledge of security controls, interpreting control requirements for SOC 2, ISO, HIPAA, PCIDSS audits, reviewing control evidence for completeness an accuracy, and ensuring evidence provided to auditors satisfies control requirements. Ability to of plan and lead meetings with control owners and external auditors. Ability to clearly define control requirements to control owners or explaining control evidence to external auditors. Supports the Security Audit function by reviewing evidence submissions for accuracy and completeness, following up on audit requests, and helping to establish a continuous monitoring function. Assist in testing and verification of all controls and formulating reports documenting findings. Recommends and assists in the definition and implementation of security controls in accordance with enterprise policies, standards, and procedures. Work closely with internal business teams to assist in the identification and assessment of potential security risks, and establish risk owners, ratings, and management action plans. Ensure continuity of compliance with ISO27001 and ISO 22301, PCI DSS, HIPAA, GDPR Analyse the potential impact of new threats and communicate risks to relevant business units Manage security operations, analyze security exceptions, gather necessary background information, document exceptions and ensurethat the risk is recognized and managed with compensating controls Provide orientation to Business Units on Risk Assessment, Business Continuity Plan and Business Impact Analysis Facilitate in preparation of a Business continuity plan for each project and functions Conduct internal ISMS and BCMS audits and identify potential gaps in the system Prepare detailed and summary reports of assessments, and remediation plans as needed and advise internal stakeholders Report the audit findings on the potential weakness in the system and areas of improvement

ABOUT THIS JOB: The SAP Successfactors Security Consultant is accountable for implementation and operational support of all security aspects of Successfactors modules, applications and role design across Nielsen s SAP landscape. As the Technical Owner and Subject Matter Expert, you will be a trusted advisor for all SAP Successfactors Security project initiatives. This role will be responsible for ensuring Successfactors security architecture and design meets best practices along with collaboration with Corporate Security, Cloud and Onprem Infrastructure teams, and internal and external audit teams to ensure proper functionality of SAP environments. RESPONSIBILITIES: Analyze and action remediation plans for SOD violations on roles/users for the ECC HR and Successfactors systems Ensure that you follow Release, Incident and SAP Change Management procedures Provide SAP Security support skills to business end users and team members Design and implement SOD remediation activities on the Successfactors RBPs and ECC HR systems Partner with internal and external audit teams to ensure audit compliance. Update user roles and groups with a thorough understanding of risk and impact of those changes. Self driven individual that would drive with the business or impacted users of remediation Manage Successfactors Security for BAU and project initiatives across all modules (Employee Central, Recruiting, Onboarding 2.0, Time & Absence Mgmt, Compensation Planning, Performance Management, Goal Management, Succession, Development, LMS). Coordinate and manage periodic reviews of user access and roles to meet audit compliance. Maintain best practice configurations to ensure the health and stability of Successfactors environments. Perform periodic refreshes of non production environments in support of critical project initiatives. A LITTLE BIT ABOUT YOU Nielsen is looking to hire a seasoned SAP Security professional who thrives on challenges and desires to make a real difference in the business world. QUALIFICATIONS Bachelor s Degree or equivalent work experience. Minimum 6 to 8 years technical knowledge of SAP Successfactors Security and Authorization Concepts, User & Role management, and Identity Authentication Services (IAS). Experience with user and role administration in SAP NetWeaver (HCM) and Successfactors Role based permissions Troubleshooting complex security issues and risks related to SAP Netweaver (HCM) and Successfactors Role based permissions Excellent technical knowledge of HR Structural authorizations and Infotype restrictions. Knowledge of SAP Modules HR and Successfactors Learning admin, ONB Dynamic Groups, Role based permissions, Proxy access restrictions, report access Knowledge of Control and Compliance requirements, Security Audit Cycles, Segregation of Duties and Risk Remediation Good knowledge of SAP Security strategy documentation alignment and understanding Ability to collaborate with SAP Functional and Technical teams to drive remediation plans and impact thereof Ability to deliver in accordance with strict deadlines Excellent interpersonal and communication (written and verbal) skills Minimum 4 to 6 years in managing and overseeing internal and external audit data collection, analytics, and reporting for SOX compliance.. Ability to proactively identify upcoming risks, issues, and bottlenecks and resolve issues that may cross departmental boundaries Ability to be productive and self-motivated in a fast-paced environment with minimal direction. Involvement in at least 1 SAP HXM full life cycle implementation As the arbiter of truth, Nielsen Global Media fuels the media industry with unbiased, reliable data about what people watch and listen to. To discover what s true, we measure across all channels and platforms from podcasts to streaming TV to social media. And when companies and advertisers are armed with the truth, they have a deeper understanding of their audiences and can accelerate growth. Do you want to move the industry forward with Nielsen? Our people are the driving force. Your thoughts, ideas and expertise can propel us forward. Whether you have fresh thinking around maximizing a new technology or you see a gap in the market, we are here to listen and act. Our team is made strong by a diversity of thoughts, experiences, skills, and backgrounds. You ll enjoy working with smart, fun, inquisitive colleagues, who are passionate about their work. Come be part of a team that motivates you to do your best work! Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, protected veteran status or other characteristics protected by law.

Job Description: Redhat Openshift Administrator Job Location : Chennai Work Mode: Work at office The Resource should be able to Manage Microservice Environment in Redhat Openshift(OCP) enviroment. . Should be well versed in Container Orchestration, Deployments etc . should have hand on exprience on scheduling of containers on worker nodes , load balancing, distribution, Checking health of PODS . Deploy Standalone Application . ConfigMaps and Secrets . Should be able to perform automated installation, upgrades, and life cycle management throughout the container stack . . Installing Kubernetes . Kubernetes Volume Management . setting up Setting Up a Single Node and multinode Kubernetes Clusters . Creation and managing Namespaces. . Should be well versed in Red Hat OpenShift Administrator capabilities in GUI and command line prompts. . Should be able to deploy, Scale application fast. . Enhances DevOps productivity - Should be able to manage CI/CD pipeline management. . Setup Monitoring and alerting systems, AI-powered performance monitoring solutions, and user-demand analysis tools. . Should have basis knowledge on how to integrate with Dynatrace or Open source based monitoring tools. . Good understanding on Ingress and troubleshooting issue involving communication failures. . Good knowledge on Red hat linux Administration capabilities like storage allocation/deallocation, FS creations. . Should be able to implement advance security features in the Stack, Should be able to implement Security audit recommendations. . Should have good knowledge on O/s Hardening especially on Linux o/s level. . Troubleshoot the application issues in Red Hat OpenShift Container Platform environment. . Assistance to applications in change, migrations and assistance to build their images and develop their application topology. . Platform Upgrades and Cert Managements. . Knowledge, skills and abilities to manage container image repositories in support of Linux Containers. . Developing deployment templates . Good Knowledge on narrowing down the RCAs. Recruitment fraud is a scheme in which fictitious job opportunities are offered to job seekers typically through online services, such as false websites, or through unsolicited emails claiming to be from the company. These emails may request recipients to provide personal information or to make payments as part of their illegitimate recruiting process. DXC does not make offers of employment via social media networks and DXC never asks for any money or payments from applicants at any point in the recruitment process, nor ask a job seeker to purchase IT or other equipment on our behalf. More information on employment scams is available here .

Comcast brings together the best in media and technology We drive innovation to create the world's best entertainment and online experiences As a Fortune 50 leader, we set the pace in a variety of innovative and fascinating businesses and create career opportunities across a wide range of locations and disciplines We are at the forefront of change and move at an amazing pace, thanks to our remarkable people, who bring cutting-edge products and services to life for millions of customers every day If you share in our passion for teamwork, our vision to revolutionize industries and our goal to lead the future in media and technology, we want you to fast-forward your career at Comcast, Job Summary Responsible for working with the Network and Systems Engineers to create, maintain and enforce security policies effecting the network Responsible for securing all information and information systems assets of the Company network infrastructure Design/install/operations of VPN, SoHo, WAF, IDS, DDoS, Partner Access Solutions, Network Security Stack powering Zero-Trust, Firewalls and microsegmentation protecting CCS operations infrastructure (SIEM, DataLake, WAF, IDS, SOC dashboards) Has in-depth experience, knowledge and skills in own discipline Usually determines own work priorities Acts as a resource for colleagues with less experience, Job Description Core Responsibilities Ensures implementation of security safeguards to the Company's IP network Security safeguards should be in accordance with industry standards, generally accepted business practices and Company security policies, Ensures Network and Systems Engineers follow security best practices when deploying/configuring hardware and software, Collaborates with the Network Operations team to ensure disaster recovery plans are viable and current, Works with the Network Operating Center to maintain up-to-date troubleshooting guides that pertain to security, Recommends policy for responding to security incidents along with a training program for those that might be involved, Researches new and/or updated technologies as they come available that pertain to our environment, Performs regular penetration tests and vulnerability assessments, Takes lead on security audits, both internal and external, Helps ensure that customer SLAs are met at all times Responds quickly to downtime situations, Communicates regularly with development and supports teams regarding system status and implementation schedules, Consistent exercise of independent judgment and discretion in matters of significance, Regular, consistent and punctual attendance Must be able to work nights and weekends, variable schedule(s) as necessary, Other Duties And Responsibilities As Assigned, Employees at all levels are expected to: Understand our Operating Principles; make them the guidelines for how you do your job, Own the customer experience think and act in ways that put our customers first, give them seamless digital options at every touchpoint, and make them promoters of our products and services, Know your stuff be enthusiastic learners, users and advocates of our game-changing technology, products and services, especially our digital tools and experiences, Win as a team make big things happen by working together and being open to new ideas, Be an active part of the Net Promoter System a way of working that brings more employee and customer feedback into the company by joining huddles, making call backs and helping us elevate opportunities to do better for our customers, Drive results and growth, Respect and promote inclusion & diversity, Do what's right for each other, our customers, investors and our communities, Disclaimer This information has been designed to indicate the general nature and level of work performed by employees in this role It is not designed to contain or be interpreted as a comprehensive inventory of all duties, responsibilities and qualifications, Comcast is proud to be an equal opportunity workplace We will consider all qualified applicants for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, disability, veteran status, genetic information, or any other basis protected by applicable law, Base pay is one part of the Total Rewards that Comcast provides to compensate and recognize employees for their work Most sales positions are eligible for a Commission under the terms of an applicable plan, while most non-sales positions are eligible for a Bonus Additionally, Comcast provides best-in-class Benefits to eligible employees We believe that benefits should connect you to the support you need when it matters most, and should help you care for those who matter most Thats why we provide an array of options, expert guidance and always-on tools, that are personalized to meet the needs of your reality to help support you physically, financially and emotionally through the big milestones and in your everyday life Please visit the compensation and benefits summary on our careers site for more details, Education Bachelor's Degree While possessing the stated degree is preferred, Comcast also may consider applicants who hold some combination of coursework and experience, or who have extensive related professional experience, Relevant Work Experience 5-7 Years

Job Title Security Analyst Role and Responsibilities The security Analyst is a member of the CISO Regulatory & Compliance Team and will assist in ensuring the associated business units / accounts comply with applicable Conduent and NIS 2 security standards, regulations, and policies.The Security analyst will be professional, independent, impartial, and fair in all interactions. The security resource is accountable for procedures and processes that ensure the integrity, confidentiality, and availability of assigned Business units\u2019 information, applications, and infrastructure. Resource will perform routine risk assessments, security audits, and vulnerability scans to identify, evaluate, document, and remediate organization risk, control gaps and vulnerabilities. This position will be responsible for developing security reports, security recommendations, and security policies and procedures that are meaningful, defensible, and actionable for a variety of audiences as pertained to assigned business units. Perform log collection, correlation, reviews, archival, retention, and monitoring of automated alerts for items such as, and not limited to IPS/IDS alerts; change detection (FIM) alerts application firewall alerts; malware alerts rogue wireless network alerts security system health alerts; exploit attempt alerts Participate and be an integral component of audit, compliance, and regulatory functions, including and not limited to audits of system security to ensure compliance with Corporate security framework NIS 2, NIST 800-53, ISO 27001/2, PCI-DSS emerging country, state, and Federal privacy laws Primary POC in a vulnerability management program of the account that includes external and internal vulnerability scans of applications and systems external and internal penetration tests of applications and systems documentation and remediation of identified vulnerabilities and exploits routinely monitoring various communication avenues for security vulnerabilities and security patches taking a risk-based approach comparing those security vulnerabilities and security patches across the operating environments making recommendations to various IT teams on the mitigation process for those identified security vulnerabilities Coordinate with business units, operations, and technology teams for incident response, remediation, and improvement Acts as the initial point of contact to facilitate the handling of security audits and client requests Supports the creation of business continuity/disaster recovery plans, to include conducting disaster recovery tests, publishing test results, and making changes necessary to address deficiencies Maintain documentation that supports the annual Security compliance attestation as it is relevant to the assigned Business units Qualifications and Education Requirements CIPP, CRISC, CISA, CISSP, CISM, ISO or any security/IT audit certification is a plus. Minimum of Five (3 to 5) Years of experience in IT Security compliance, or Security Auditing is required. Knowledge and understanding of security controls across all security domains, such as access management, encryption, vulnerability management, authentication, authorization, network security, physical security, etc. Ability to identify security risks in application, system, and network architecture, data flow, and processes or procedures Ability to assess the organizational impact of identified security risks and recommend solutions or mitigating controls. Knowledge of security technologies, devices, and countermeasures, as well as the threats they are designed to counter. Experience with developing security reports, recommendations, policies, and procedures that are meaningful, defensible, and actionable for a variety of audiences. Familiarity with more than one framework (NIST 800-series, ISO 27000-series, PCI DSS and ISO, HIPAA, HITRUST, FISMA, FedRAMP other common security control frameworks). Experience in PowerPoint, Word, Excel; experience with Visio and MS Project. Communication skills (interpersonal, verbal, presentation written, email). Experience to write report segments and to participate in presentations. Familiarity with security, workflow, and collaboration tools such Nessus Tenable, Splunk, SharePoint and ServiceNow (Snow) is a plus Positive attitude, team player, self-starter; takes initiative, ability to work independently and effectively with all levels of staff and management both internally and externally Preferred Skills Creating and Maintaining NIST 800-53-rev5 based SSP and POAM Familiarity with more than one framework (NIST 800-series, ISO 27000-series, PCI DSS and ISO, HIPAA, HITRUST, FISMA, FedRAMP other common security control frameworks). Conduent is an Equal Opportunity Employer and considers applicants for all positions without regard to race, color, creed, religion, ancestry, national origin, age, gender identity, gender expression, sex/gender, marital status, sexual orientation, physical or mental disability, medical condition, use of a guide dog or service animal, military/veteran status, citizenship status, basis of genetic information, or any other group protected by law. People with disabilities who need a reasonable accommodation to apply for or compete for employment with Conduent may request such accommodation(s) by submitting their request through this form that must be downloaded:click here to access or download the form. Complete the form and then email it as an attachment toFTADAAA@conduent.com.You may alsoclick here to access Conduent's ADAAA Accommodation Policy. At Conduent we value the health and safety of our associates, their families and our community. For US applicants while we DO NOT require vaccination for most of our jobs, we DO require that you provide us with your vaccination status, where legally permissible. Providing this information is a requirement of your employment at Conduent.

PrimeGen Healthcare Laboratories Private Limited is looking for Network Administrator to join our dynamic team and embark on a rewarding career journey. A Network Administrator is responsible for the design, implementation, and maintenance of an organization's computer networks. Responsibilities : Designing and implementing network infrastructure, including LANs, WANs, and wireless networks. Installing and configuring network hardware, software, and protocols, including routers, switches, firewalls, and other network devices. Monitoring network performance and security, identifying and resolving issues proactively. Conducting regular network maintenance, such as firmware updates, patches, and security audits. Configuring and managing network security protocols, including firewalls, VPNs, and intrusion detection and prevention systems. Developing and maintaining network documentation, including network diagrams, procedures, and policies. A Network Administrator should have a strong understanding of network infrastructure, protocols, and security best practices. They should also have experience with network hardware and software, as well as experience with network management tools and techniques.

ventureit global solutions is looking for Cybersecurity Specialist to join our dynamic team and embark on a rewarding career journey. A Cybersecurity Specialist is responsible for protecting an organization's information systems and networks from cyber threats such as hacking, data breaches, and viruses. The job duties may include: 1. Implementing and maintaining security measures such as firewalls, encryption, and intrusion detection systems. 2. Conducting risk assessments and security audits to identify vulnerabilities in the network. 3. Responding to security incidents and conducting investigations to determine the cause and impact. 4. Keeping up-to-date with the latest cybersecurity trends and technologies to ensure the organization stays protected. 5. Developing and implementing security policies and procedures to ensure the organization's compliance with industry standards and regulations. 6. Providing training and awareness to employees on cybersecurity best practices. 7. Collaborating with other IT and security teams to resolve security issues and integrate security into the overall IT strategy. The ideal candidate should have a strong technical background in cybersecurity, experience with security tools and technologies, and excellent problem-solving and communication skills.

The primary objective of the Security & Loss Prevention coordinator is to ensure the protection of people & assets of Amazon s FC in accordance with global Security guidelines and Policies The role is cross-functional and requires deep collaboration and influencing ability with stakeholders from business and corporate functions To Assist Security Manager, in day to day activities, planning, sourcing and executing the process and procedure. The Security Coordinator along with Security Team works together to ensure and maintain high quality and timely support to the Operations of the organization 1. Security Operation Rationalization & Review of Guard Force Profiling of Guard Force Implementation & Follow-up of Security Plan Review of Post Site Instruction Reports - Daily, Weekly, Monthly, Half yearly and Annual Security Team is ensuring that SLAs for all processes are being taken care of All the Control Room systems are functioning properly Patrolling Observations & Corrective action and follow ups Daily Vehicle Movements Ensure all posts are 4M & 5S compliant 2. Audits/Certifications Keeping the plans & SOPs updated Periodical Check of Documentation Preparation of Documents for Internal & External Audits Follow up on Lights, Hydrants, Emergency Exit door, & all access reader Reports No of Employees entry / Exit thru Frisking Points Review of Manpower required at Frisking Points Maintenance of Systems Installed at Frisking Area Maintenance of Systems Installed at Frisking Area & Improvement Surprise Check and reports 5S Audits of all Frisking Points and Implementation of suggested Points 4. Process Improvement & Loss Prevention Program Process Review & Necessary Improvements Process Improvisation Quarterly Assessment Loss Prevention Report Feed backs from Shop Floors Follow up & Completion of CAPA Loss Prevention Audits 5. Scrap Disposal Auditing Process Review & Necessary Improvements No of Vehicle in & Out Movement Surprise Checks and Scrap yards and report Cross functional Team Audits 6. Security System Ensure 95 % serviceability of all Systems Ensure 100% Training of all security guards Controlling of Access & Review of Access level Hygiene Status Report & Operational Effectiveness of Security gadgets. Preventive maintenance Schedule for all Security Gadgets & its Improvements Monthly Review Meeting with AMC Vendor and Updates New Projects & Completion report Reports - Daily, Weekly & Monthly reports Daily Defect Follow ups Reports & Follow ups Of Near Miss, Suspected Movements & Process violation at production 7. Loss Prevention Analysis Working closely with ICQA team and do the analysis of all unreconciled ASINs Quick Completion Investigation and submission of reports Loss prevention audits and recommendations if any Surprise Checks and submission of reports Follow up & Completion of CAPA with regards to Concern areas 8. Security Stores and Assets Maintenance of updated Assets list Maintenance Schedule of Assets & Security Gadgets 1. Security Operations 2. Audits 3. Process Improvement & Loss Prevention Program 4. Security Stores & Assets 5. Loss Prevention Analysis Graduation with minimum 3 years of experience in the field of Security, Loss Prevention, Shrinkage, Asset Protection, Investigations, Inventory University degree level or equivalent through experience and professional certification. A minimum of 3- 5 years in law enforcement or security-related profession. Extensive and up to date knowledge of security equipment and technology. Experience in managing or coordinating security investigations of complex nature. Knowledge of information security processes and systems. Experience in security auditing. Exposure to MNC culture and dynamics. Graduation with minimum 3 years of experience in the field of Security, Loss Prevention, Shrinkage, Asset Protection, Investigations, Inventory University degree level or equivalent through experience and professional certification. A minimum of 3- 5 years in law enforcement or security-related profession. Extensive and up to date knowledge of security equipment and technology. Experience in managing or coordinating security investigations of complex nature. Knowledge of information security processes and systems. Experience in security auditing. Exposure to MNC culture and dynamics.

The Role: The Senior Information Security Engineer is for responsible for implementing industry best security practices, will design, implement, maintain, and document the security measures to protect the organization against cyber threats and attend all ISO audits and requirements. Your Responsibilities: Ensuring that an ISMS system is established, implemented, and maintained in accordance with the ISO 27001:2013 and/or ISO 27001:2022. Lead all ISO and customer security audits/meetings and compliance activity. Contributing to Request for Proposal (RFPs) and supporting IT in CAPA management and Change Controls. Conducting regular internal security audits (Quarterly basis) to assess the effectiveness of security controls and identify areas for improvement. IT tickets handling related to security related incidents. Security Incident Reporting - Generating and presenting regular reports on the organization's security posture(weekly/quarterly/annual), including incidents, vulnerabilities, and risk mitigation efforts. Organization wide Security Awareness - Contributing to and developing security awareness by way of email leaflet/posters on monthly basis and training materials to improve security posture among the organization's staff. Security Policies and Procedures - Developing and implementing security policies, standards, and procedures to safeguard the organization's information assets. Review process documentation to ensure adequacy and consistency is maintained. Risk Assessment - Contribute to the team on regular assessments to identify potential security risks and vulnerabilities in the organization's IT infrastructure. Vulnerability Management - Monitoring and managing vulnerabilities in the organization's systems, including applying patches and updates in a timely manner. Running and automation of vulnerability scans and responsible for closure. Penetration Testing - Gathering penetration test requirements and performing internal pen tests on a scheduled basis. Should be adaptable for 24x7x365 availability for new security related projects/tasks. Preferred Qualifications, Training and Experience: Engineering degree in Computer Science, Information Technology, or a related field. Certifications such as CISSP, CISA/CISM, CEH and ISO 27001 demonstrating expertise in information security management and practices. Minimum of 10 years’ experience in information security roles, with a focus on security architecture, ISO Audits, incident response, and risk management. In-depth knowledge of security technologies such as firewalls, intrusion detection/prevention systems, encryption, and endpoint security solutions. Proficiency in security monitoring tools and techniques for detecting and responding to security incidents in real-time.

The primary objective of the SLP Coordinator is to provide security services, investigation and asset protection in designated area of responsibility, assist in mitigating shipment loss, and maintain customer satisfaction in accordance with India Security and Loss Prevention guidelines and policies. will include GSF and AMZL responsibilities under this specific role. 1. Review process lapse & Monitor losses Conduct Investigations & retrieval plan Analysis Trend of each site & initiate corrective measures in line to control losses Surprise visits to allotted sites (located in Maharashtra) Manage SLP related escalations & incidents 2. Audits/Certifications Keeping the plans & SOPs updated Periodical Check of Documentation Preparation of Documents for Internal & External 3. Audits Surprise Check and reports 4. Process Improvement & Loss Prevention Program Process Review & Necessary Improvements Process Improvisation Quarterly Assessment Loss Prevention Report Feed backs from Shop Floors Follow up & Completion of CAPA Loss Prevention Audits Process Review & Necessary Improvements Cross functional Team Audits 4. Loss Prevention Analysis Quick Completion Investigation and submission of reports Loss prevention audits and recommendations if any Surprise Checks and submission of reports Follow up & Completion of CAPA with regards to Concern areas 5. Coaching & review new process implementation Ensuring adherence of process leading maintaining ZERO losses About the team The India Security and Loss Prevention (INSLP) team is responsible for leading the effort to efficiently and effectively provide security services and asset (lives, buildings, equipment, inventory, data, and intellectual property) protection in a designated area of responsibility. Amazons LP and shrink reduction efforts are supported by the World Wide Operations Security (WWOS) team through the creation of an overall global strategy designed to optimize resources and leverage technology to mitigate product loss and maintain customer satisfaction. Graduation with experience in the field of Security, Loss Prevention, Shrinkage, Asset Protection, Investigations, Inventory University degree level or equivalent through experience and professional certification. A minimum of 3- 5 years in law enforcement or security-related profession. Experience in managing or coordinating security investigations of complex nature. Knowledge of information security processes and systems. Experience in security auditing. Exposure to MNC culture and dynamics

Job Title- Consultant- Security Risk Management Key Responsibilities Conduct security risk assessments and threat analyses for planning and design projects. Develop and implement security strategies, policies, and designs that align with project objectives and client requirements. Collaborate with architects, engineers, and planners to integrate security measures into project designs, ensuring compliance with regulations and standards. Provide expert guidance on physical security systems, including CCTV, access control, intrusion detection, and perimeter protection. Prepare detailed security plans, specifications, and reports to support project delivery and client presentations. Engage with clients, stakeholders, and regulatory bodies to address security concerns and ensure project alignment with industry best practices. Stay updated on emerging security trends, technologies, and threats to provide forward-thinking solutions. Support project teams in managing budgets, timelines, and resources related to security deliverables. Qualifications Bachelor’s degree in security management or a related field. Master’s degree or relevant certifications (e.g, PSP) preferred. 5+ years of experience in security consulting, with a focus on planning and design projects. Proven expertise in integrating security solutions into multidisciplinary projects, such as transportation, commercial, or public infrastructure. Strong knowledge of security standards, risk assessment methodologies, and physical security technologies. Excellent communication and interpersonal skills to collaborate with diverse project teams and clients. Proficiency in design and planning tools (e.g., AutoCAD, Revit, Bluebeam) and security software is an asset. Ability to manage multiple projects, prioritize tasks, and meet deadlines in a fast-paced environment. Familiarity with local and international regulations, including building codes and security guidelines.

":" We are seeking a skilled and forward-thinking DevOps Engineer to join our dynamic team. As a DevOps Engineer, you will work at the intersection of software development and IT operations, automating, monitoring, and optimizing our infrastructure and deployment pipelines. Your primary goal will be to enhance our software delivery processes, ensuring reliable and scalable applications. Responsibilities: Design, implement, and maintain CI/CD pipelines using modern tools. Collaborate with development teams to ensure seamless integration and deployment. Monitor system performance, troubleshoot issues, and ensure high availability. Manage cloud infrastructure using Infrastructure as Code (IaC) tools. Implement robust security practices and conduct regular security audits. Automate repetitive tasks and improve operational efficiency. Implement observability using logging, monitoring, and alerting tools. Ensure disaster recovery and backup strategies are in place. Work with container orchestration platforms like Kubernetes. Foster a DevOps culture within cross-functional teams. Requirements Bachelordegree in Computer Science, Engineering, or a related field. 3+ years of experience in a DevOps, SRE, or related role. Proficiency with CI/CD tools (e.g., Jenkins, GitLab CI/CD, GitHub Actions). Experience with cloud platforms (e.g., AWS, Azure, GCP). Strong knowledge of AWS services (e.g., EC2, S3, Lambda, RDS, ECS, EKS, CloudFormation, CloudWatch, IAM, AWS CodePipeline, and AWS Config). Solid knowledge of containerization and orchestration (e.g., Docker, Kubernetes). Proficient in Infrastructure as Code tools (e.g., Terraform, Pulumi). Strong scripting and automation skills (e.g., Bash, Python, PowerShell). Knowledge of monitoring and logging tools (e.g., Prometheus, Grafana, ELK Stack). Experience with configuration management tools (e.g., Ansible, Chef, Puppet). Understanding of networking, security protocols, and cloud security best practices. Excellent collaboration and problem-solving skills. Preferred Qualifications: Certifications in AWS, Kubernetes. Experience with serverless computing. Knowledge of database management and caching solutions

Role Purpose The purpose of this role is to analyse, identify, rectify & recommend specific improvement measures that help in the security posture of the organization by protecting the sensitive information Do Ensuring customer centricity by providing apt cybersecurity Monitoring and safeguarding the log sources and security access Planning for disaster recovery in the event of any security breaches Monitor for attacks, intrusions and unusual, unauthorized or illegal activity Performs moderately complex log reviews and forensic analysis to identify unauthorized or unacceptable access to data or systems Conduct security assessments, risk analysis and root cause analysis of security incidents Handling incidents escalated by the L1 team in 24x7 rotational shifts Use advanced analytics tools to determine emerging threat patterns and vulnerabilities Completing all tactical security operations tasks associated with this engagement. Analyses all the attacks and come up with remedial attack analysis Conduct detailed analysis of incidents and create reports and dashboards Stakeholder coordination & audit assistance Liaise with stakeholders in relation to cyber security issues and provide future recommendations Maintain an information security risk register and assist with internal and external audits relating to information security Assist with the creation, maintenance and delivery of cyber security awareness training for colleagues Advice and guidance to employees on issues such as spam and unwanted or malicious emails Deliver No. Performance Parameter Measure 1. Customer centricity Timely security breach solutioning to end users, Internal stakeholders & external customers experience 2. Process Adherence Adherence to SLAs (90-95%), response time and resolution time TAT Mandatory Skills: Security Audits. Experience5-8 Years.

ISO 27001 Compliance Auditor & Consultant Work from Office & Client Site (Mumbai & Beyond) We are looking for a detail-oriented professional with experience in ISO 27001 audits, risk assessment, and compliance management. The role involves audit execution, security documentation, client collaboration, and regulatory compliance. Strong communication & report-writing skills required. Frequent travel required. Skills : - IT Security Compliance,Risk Assessment,Compliance Auditor,Security Audit,Governance,Risk,Compliance,GRC,IT Risk Management,Audit,ISO 27001 Lead Auditor,Internal Audit,External Audit,Security Frameworks,GDPR,NIST,SOC 2

Job Title: Windows Server Administrator Location : Bangalore, India (Hybrid) Experience : 2-4 Years Job Type : Full-Time About the Role We are seeking a skilled and self-motivated Windows Server Administrator to join our infrastructure team. This role involves managing and monitoring Windows server and workstation environments, supporting software and tool installations, and troubleshooting both server-side and client-side issues. The ideal candidate will have hands-on experience with Windows Servers, Cloud platforms, along with a willingness to grow into DevOps and container-based technologies . You should be proactive, capable of working independently, committed to meeting SLAs, and comfortable maintaining technical documentation and process adherence. Key Responsibilities Administer and support Windows Server environments (2016/2019/2022), including Active Directory, DNS, DHCP, Group Policy. Perform installation, configuration, and troubleshooting of servers, workstations, and client software/tools. Manage and optimize system performance , patching, antivirus, and security hardening. Monitor and maintain servers, applications, and client endpoints with modern tools. Provide support for AWS and Azure environments, including VM provisioning, identity management (IAM, Entra ID), and basic cloud operations. Handle remote management of systems using tools like RDP, PowerShell Remoting, and VPN. Automate routine tasks and infrastructure management using PowerShell and required scripting. Respond to incidents and service requests using ticketing systems ; ensure accurate documentation and SLA compliance. Maintain and create SOPs, knowledge base articles, and operational documentation . Participate in security audits , patch compliance, and disaster recovery activities. Collaborate with IT, cybersecurity, network and development teams to ensure cohesive infrastructure security and availability. Train users and junior staff on best practices related to Windows systems and security. Proactively research and resolve technical issues using internal and external documentation. Act as an escalation point for complex issues and support after hours if needed. Coordinate with OEMs and 3rd-party vendors to resolve hardware/software-related issues. Perform miscellaneous duties as assigned by senior IT leadership. Must-Have Skills 2-4 years of hands-on experience in Windows Server and client system administration . Strong understanding of windows Servers, cloud platforms (AWS, Azure) and core cloud services (networking, DNS, storage, firewalls, compute, containers). Proficient with remote management tools and monitoring/logging solutions . Scripting knowledge, particularly PowerShell for task automation. Experience in software deployment , network drive and printer configurations, and patching. Strong documentation and communication skills. Self-starter with excellent troubleshooting and time management capabilities. Ability to work independently and make decisions under pressure. Nice to Have Exposure to DevOps tools such as Git, Jenkins, Ansible, Terraform. Basic understanding or hands-on experience with Docker and Kubernetes . IT certifications such as MCSA, Azure Administrator, AWS SysOps , or relevant cloud/security credentials. Familiarity with ITIL processes and working in SLA-driven environments. Why Join Us? Flexible hybrid work culture (Bangalore-based) Real exposure to cloud, DevOps, and modern IT operations Opportunity to support both infrastructure and end-user environments High-impact role with ownership, autonomy, and learning opportunities

Role & responsibilities: Conduct IS audits across technology domains; ITGC Controls, Risk Assessment, VA/PT, Application Security, NSAR, CA Assist in implementing a risk-based audit plan aligned with the organisation's audit objectives. Ensure timely completion of audit assignments and maintain clear, accurate documentation. Provide insights and recommendations to enhance internal systems, controls and policies. Update and maintain Audit Procedure Manuals and audit checklists. Collaborate with cross-functional teams to ensure regulatory and compliance alignment. Follow departmental risk policies and protocols to mitigate operational, financial, regulatory and reputational risks. Execute internal control mechanisms effectively and support audit processes by providing necessary information. Demonstrate strong presentation skills and thorough understanding of regulatory compliance requirements. Preferred candidate profile Experienced in ITGC Controls, Risk Assessment, VA/PT, Application Security, NSAR, CA Has ISO Certifications Proficient in Business Continuity Planning/Disaster Recover and Change/Incident Management Knowledge of Cybersecurity & Cloud Security, Security Operations and Surveillance Strong knowledge of regulatory circulars and guidelines. Banking domain experience preffered

Cyber Security is an integral part of Visa s corporate culture. It is important to maintaining our position as an industry leader in electronic payments. At Visa, we believe that it is the responsibility of every employee to safeguard information, protect it from unauthorized access, and ensure regulatory compliance. Cyber Security has a significant effect on privacy, consumer confidence, external reputation, and it is a priority on everyone s agenda. In this critical leadership role, you will take a lead role in the continued innovation of Visa s Cyber Security strategy and drive Visa s competitive advantage in payments by facilitating a best-in-class security infrastructure. You will be responsible for leading a premier engineering team that develops, operates and supports a heterogeneous security infrastructure on a global scale. You will build and lead the Cyber Security Engineering program and lead a team of high performing engineers and analysts. By working with other groups such as Client Engineering, Operations & Infrastructure, VSIRT and other Cyber Security groups, you will help shape the strategy and implement all changes necessary to provide best in class Endpoint security solutions. Job Scope Instil a culture that works toward the highest standards in security engineering while ensuring that business requirements are understood and adhered to and security risks in new and existing infrastructure are properly understood and mitigated. Provide leadership and direction in the implementation of leading-edge security technologies and utilizing a risk-based approach to properly test and introduce them into the overall environment. Be passionate in the pursuit of securing Visa s data and critical assets. Recruit, develop, and retain a talented group of technology professionals for this core security engineering function. Collaborate with colleagues in technology departments as we'll as the business and product offices to establish effective, productive business relationships. General Responsibilities Lead a team of security engineering professionals responsible for planning, design, implementation, attack mitigation and ongoing support of security systems of high complexity to fulfil the business needs. Provide technical deep understanding of security systems at different layers. Such as endpoint, advanced malware defence, cloud, networking, data security etc Work with all interfacing teams to define and baseline the system uptime SLAs and KPIs from main security solutions. Work with other Cyber Security teams to manage endpoint protections effectively and efficiently. In doing so work closely with research team, undertake research of threat vectors and provide mitigation strategies. Work with stakeholders, mentoring and providing technological guidance on network security. Manage staff, including selection, goal setting, annual reviews, and compensation planning and career development. Provide recommendations to management team to increase effectiveness of organization and technology solutions. Develop and nurture team of security team by motivating and mentoring and assist in hiring critical talent. Effectively manage cross-functional internal and external team collaboration, and communications. Prioritization, planning of projects and features, stakeholder management and tracking of external commitments. Respond to and assist with due diligence and internal / external security audit requests. Support, implement and promote standard configuration and change management, processes and practices Identify opportunities for further enhancements and refinements to security standards and processes. This is a hybrid position. Expectation of days in office will be confirmed by your Hiring Manager. Basic Qualifications: 10+ years of relevant work experience and a Bachelors degree, OR 13+ years of relevant work experience Preferred Qualifications: 12 or more years of work experience with a bachelors Degree or 8-10 years of e

Varonis is looking for Security Analyst to join our dynamic team and embark on a rewarding career journey. Defining, planning, implementing, maintaining, and upgrading security measures, policies, and controls Assisting with the creation of updates and training programs to secure the network and train the employees Keeping the security systems up to date Monitoring security access and maintaining the relevant data Conducting vulnerability testing and risk analyses to assess security and performing internal and external security audits Analyzing security breaches to identify the cause and to update incidence responses and disaster recovery plans

Find what drives you on a team with a more than 75-year history of discovery, determination, and innovation. As a global leader in high-tech filtration, separation, and purification, Pall Corporation thrives on helping our customers solve their toughest challenges. Our products serve diverse, global customer needs across a wide range of applications to advance health, safety and environmentally responsible technologies. For the exponentially curious, Pall is a place you can thrive and amplify your impact on the world. Pall is one of 10 Life Sciences companies of Danaher. Together, we accelerate the discovery, development and delivery of solutions that safeguard and improve human health. Learn about the Danaher Business System which makes everything possible. The role of the requested candidate is for the position of SAP GRC Access Control and is responsible for the analysis, design, configuration, and support of the SAP GRC area to meet the user access and security needs of PALL Corporation. As an Authorization GRC Specialist, your goal is to timely handle requests of Business SAP Security - Users and authorization management with focus on GRC module enhancements via BRF+. This position is part of the IT Infrastructure team and will be located in Pune, India. This role will perform the following : SAP authorization concepts, including role design (Single/Composite/Derived roles), securing custom transactions, maintaining SU24, and ensuring compliance with SOX and IT general controls. SAP security across modules and Basis components, including ECC and S/4. Familiarity with at least one S/4 implementation cycle, along with GRC Access Control configuration (10/10.1/12), BRF+, and SAP GRC AC components (ARA, EAM, ARM, BRM). D eveloping and maintaining SAP roles to ensure Segregation of Duties, clear access controls, and adherence to security and audit requirements. Good understanding of SOX requirements and develop standard work in security space to enforce SOX standards. Participates in audits (SOX and others) and enforces effective control and monitoring processes. Thorough understanding of business processes and dependencies between SAP modules and systems, working cross-functionally with teams (Functional, Developers, BASIS) to support user access needs, issue resolution, and system monitoring. Develop and refines security processes, assists in testing and implementing system changes, and contributes to documentation, blueprinting, and user requirements gathering to enhance security efficiency and compliance. The essential qualifications of the job include: Bachelor s degree (prefer Computer Science or related field) 7+ years of SAP experience with SAP authorizations (ERP and HANA) as a consultant or worked in a customer facing environment (Internal or External) with at least 2 years of SAP GRC in Access control (12.x) Understanding of Business Rule Framework, BRF+. Knowledge and experience of initial GRC Access Control 10/10.1/12 configuration, knowledge and experience of configuring SAP GRC AC Components (ARA, EAM, ARM, BRM) Experience of working with Internal and External Audit - SAP security audit skills. Knowledge of SAP Public Cloud security integration (SAP BTP) and access risks. It would be a plus if you also possess previous experience in: Exposure to ITIL Framework. Understands and applies Best Practice methodologies and procedures. Awareness of Information Security principles. Pall Corporation, a Danaher company, offers a broad array of comprehensive, competitive benefit programs that add value to our lives. Whether it s a health care program or paid time off, our programs contribute to life beyond the job. Check out our benefits at danaherbenefitsinfo.com . This job is also eligible for bonus/incentive pay. Note: No amount of pay is considered to be wages or compensation until such amount is earned, vested, and determinable. The amount and availability of any bonus, commission, benefits, or any other form of compensation and benefits that are allocable to a particular employee remains in the Companys sole discretion unless and until paid and may be modified at the Company s sole discretion, consistent with the law. Join our winning team today. Together, we ll accelerate the real-life impact of tomorrow s science and technology. We partner with customers across the globe to help them solve their most complex challenges, architecting solutions that bring the power of science to life. For more information, visit www.danaher.com . At Danaher, we value diversity and the existence of similarities and differences, both visible and not, found in our workforce, workplace and throughout the markets we serve. Our associates, customers and shareholders contribute unique and different perspectives as a result of these diverse attributes.

Overview 170+ Years Strong. Industry Leader. Global Impact. At Pinkerton, the mission is to protect our clients. To do this, we provide enterprise risk management services and programs specifically designed for each client. Pinkerton employees are one of our most important assets and critical to the delivery of world-class solutions. Bonded together, we share a commitment to integrity, vigilance, and excellence. Pinkerton is an inclusive employer who seeks candidates with diverse backgrounds, experiences, and perspectives to join our family of industry subject matter experts. The Regional Security Assurance Specialist, assigned to one of Pinkerton's largest global clients- Amazon, will be responsible for analyzing and evaluating the physical security posture of the client's corporate sites. The Analyst works closely with self-inspection and external audit teams to identify, assess, and mitigate physical security risks across the enterprise while also creating data models and visualizations to analyze physical security incidents. Responsibilities Represent Pinkerton's core values of integrity, vigilance, and excellence. Collect, aggregate, and analyze data from self-inspections, external audits, and security incident reports. Identify and investigate anomalies, trends, and areas of concern within the security data. Perform root cause analysis to determine the underlying issues contributing to security risks and compliance gaps. Develop data models and visualization tools to enhance the understanding and interpretation of security data. Prepare detailed reports and dashboards that communicate the organization's security posture to management, security team, and other key stakeholders. Identify opportunities to enhance the security assurance program's processes, tools, and methodologies. Participate in the continuous improvement of the organization's security controls and risk management practices. Provide data-driven insights and recommendations to mitigate identified audit defect trends effectively. Partner closely with cross-functional teams including regional security, physical security, and risk teams to ensure a comprehensive approach. Engage with business leaders, security teams, and operational personnel to understand their security concerns and requirements. Update tracking tools and associating data with relevant product or service categories and/or types. Conduct standardized analytical tasks. Support major/strategic projects including Corporate Security and customer-related, as a key project member. Propose, scope, and manage projects related to the continuous improvement of security assurance practices, processes, and tools. Complete concise, detailed reports and technical analysis for customers based on concrete evidence and verified datasets. Routinely engage with internal stakeholders and teams within Corporate Security and the wider organization to align analysis, insights, and best practices. All other duties, as assigned. Qualifications Bachelor's degree in business, security management, or risk management with previous experience on Security Audits , ISO 9001 , specializing in corporate or physical security. Able to analyze complex data and physical security incidents. Knowledge of corporate security audits , ISO Audits Able to manage difficult problems/efforts and appropriately mitigate immediate risks. Able to make effective trade-offs between time vs. quality vs. resources. Effective, clear, and concise written and verbal communication skills across all levels within the organization. Able to apply knowledge and skill to determine the actions necessary to meet goals. Serve as a positive team member and mentor. Able to manage multiple tasks/projects with competing deadlines and priorities. Client focused and results driven. Able to design short and long-term solutions. Proactive approach towards operational excellence through procedure and process optimization. Computer skills; Microsoft Office Working Conditions: With or without reasonable accommodation, requires the physical and mental capacity to effectively perform all essential functions; Regular computer usage. Occasional reaching and lifting of small objects and operating office equipment. Frequent sitting. Ability to work flexible hours including after-hours to meet demands of a globally dispersed team. Travel, as required.

About The Role Role Purpose The purpose of this role is to provide solutions and bridge the gap between technology and business know-how to deliver any client solution ? Do 1. Bridging the gap between project and support teams through techno-functional expertise For a new business implementation project, drive the end to end process from business requirement management to integration & configuration and production deployment Check the feasibility of the new change requirements and provide optimal solution to the client with clear timelines Provide techno-functional solution support for all the new business implementations while building the entire system from the scratch Support the solutioning team from architectural design, coding, testing and implementation Understand the functional design as well as technical design and architecture to be implemented on the ERP system Customize, extend, modify, localize or integrate to the existing product by virtue of coding, testing & production Implement the business processes, requirements and the underlying ERP technology to translate them into ERP solutions Write code as per the developmental standards to decide upon the implementation methodology Provide product support and maintenance to the clients for a specific ERP solution and resolve the day to day queries/ technical problems which may arise Create and deploy automation tools/ solutions to ensure process optimization and increase in efficiency Sink between technical and functional requirements of the project and provide solutioning/ advise to the client or internal teams accordingly Support on-site manager with the necessary details wrt any change and off-site support ? 2. Skill upgradation and competency building Clear wipro exams and internal certifications from time to time to upgrade the skills Attend trainings, seminars to sharpen the knowledge in functional/ technical domain Write papers, articles, case studies and publish them on the intranet ? Deliver No. Performance Parameter Measure 1. Contribution to customer projects Quality, SLA, ETA, no. of tickets resolved, problem solved, # of change requests implemented, zero customer escalation, CSAT 2. Automation Process optimization, reduction in process/ steps, reduction in no. of tickets raised 3. Skill upgradation # of trainings & certifications completed, # of papers, articles written in a quarter ? Mandatory Skills: Security Audits. Experience8-10 Years. Reinvent your world. We are building a modern Wipro. We are an end-to-end digital transformation partner with the boldest ambitions. To realize them, we need people inspired by reinvention. Of yourself, your career, and your skills. We want to see the constant evolution of our business and our industry. It has always been in our DNA - as the world around us changes, so do we. Join a business powered by purpose and a place that empowers you to design your own reinvention. Come to Wipro. Realize your ambitions. Applications from people with disabilities are explicitly welcome.

We want to shape the future with vision and innovation. Be part of it and develop your full potential! As part of the global NTT DATA Group, one of the most successful IT service providers in the world, we specialize in value-added SAP solutions as NTT DATA Business Solutions. With over 16,000 employees in more than 30 countries, we design, implement, and develop custom-fit SAP solutions for our global customers. Would you like to take the next step in your career and be part of our highly qualified team? Are you ready to break new ground? Job Title: Information Security Analyst Experience: 3 - 6 Years Job Location: Hyderabad Technical Experience Experience in managing security audits, such as, ISO 27001, SOC I / II including preparing control owners for audits, interpreting control requirements, reviewing control evidence for appropriateness, testing control effectiveness, presenting control evidence to external auditors, and audit planning with external auditors. In-depth knowledge of security controls, interpreting control requirements for ISO 27001 (Must) and SOC II (good to have), audits, reviewing control evidence for completeness an accuracy, and ensuring evidence provided to auditors satisfies control requirements. Ability to of plan and lead meetings with control owners and external auditors. Ability to clearly define control requirements to control owners or explaining control evidence to external auditors. Experience planning and performing vendor security risk reviews including creation of templates and reporting for reviewing different types and categories of vendors such as cloud, vendors hosting sensitive data, and vendors with access to sensitive data. Experience reviewing ISO 27001, SOC 2, Pen Test , and other forms of security assessment reports. Manages and tracks the delivery of Security Training and Awareness campaigns. Assists in the development of content for Security Awareness campaigns. Actively contributes to the Security knowledgebase to enable internal knowledge sharing and facilitates efficient audits and questionnaire responses. Supports the Security Audit function by reviewing evidence submissions for accuracy and completeness, following up on audit requests, and helping to establish a continuous monitoring function. Manages and performs quarterly access reviews ensuring completeness and accuracy of results and consistent evidence collection. Supports the Risk Management function by reviewing and documenting Security exceptions and recommending appropriate actions. Recommends and assists in the definition and implementation of security controls in accordance with enterprise policies, standards, and procedures. Educational Qualification: Must be a graduate. Must be ISO27001:2022 Lead Auditor / Lead Implementer certified. Interested candidates share me your updated resume to Satyendra.TVNR@bs.nttdata.com

Diverse Lynx is looking for SOC L2 Engineer to join our dynamic team and embark on a rewarding career journey Security Monitoring: Monitor security alerts and events from various sources, including security information and event management (SIEM) systems. Analyze and respond to security incidents, threats, and vulnerabilities. Incident Response: Conduct incident investigations, document findings, and implement corrective actions. Collaborate with incident response teams to contain and mitigate security incidents. Vulnerability Management: Conduct regular vulnerability assessments and coordinate remediation efforts. Stay informed about the latest security threats, vulnerabilities, and technologies. Security Infrastructure Management: Manage and maintain security technologies, such as firewalls, intrusion detection/prevention systems, and endpoint protection. Configure and fine-tune security tools to enhance detection and prevention capabilities. Log Analysis and Correlation: Analyze logs and security events for unusual or suspicious activity. Develop and implement correlation rules to enhance detection capabilities. Security Policy Enforcement: Enforce security policies and procedures to ensure compliance with industry standards and regulations. Recommend and implement improvements to security policies. Collaboration: Collaborate with other IT and security teams to ensure a coordinated response to security incidents. Provide support during security audits and assessments.

ROLE AND RESPONSIBILITIES Develop, implement, and manage strategic, comprehensive enterprise information security and IT risk management program. Make a risk assessment of company systems, networks, and data to prevent it from being accessed (viewed by unauthorized personnel, data corrupted, or data lost) Define Risk Management framework and implement across the enterprise business functions. Security assessment, validation & clearance of developed /acquired applications for production launch. Assist with the overall business technology planning, providing a current knowledge and future vision of technology, cloud security and systems aligned to security framework. Managing the daily operation and conducting continuous assessment of current IT security practices and systems and identifying areas for improvement. Implement and maintain compliance of security requirements for new products/services. Devising strategies, solutions and implementing security solutions and minimizing the risk of cyber-attacks. Lead Implementation of security products and solution across organization Implement and comply with best Industrial standards on Security, IT Acts/ISO and other IT statutory requirements. Determines security violations and inefficiencies by conducting periodic audits. Conduct Investigations and forensics for any breaches dealing with those responsible and planning to avoid repeats of the same crisis. Lead the various internal and external IT/Security audits and ensure all compliances are met. Lead various Internal, External IT and security audits. Ensure compliances are met. Preparing Cybersecurity roadmap and assisting for all Cybersecurity compliances requirement. QUALIFICATIONS AND EDUCATION REQUIREMENT Bachelors degree in IT, Computer Science, or a related field. Good to have relevant industry certifications such as CISA, CISM, CISSP, ISO 27001, and others (as relevant) At least 8+ years of working experience in domains related to Information security and with a very strong security mindset. Experience in area of IT Security, IT Audits, Compliance and Risk Management in IT/FMCG Industry Excellent Knowledge of Cyber Security, risks, threats in infrastructure, network, Cloud, Application and Data Centre Technologies Experience of various security solutions such as Firewall / IDS/ IPS / NAC / Email Security/CASB / EDR / WAF / AV / DLP / ATP / PIM / PAM / DAM / SIEM etc. Good understanding of Security technologies for private and public cloud Thorough Knowledge of IT and Security processes implementation and compliances Knowledge of information and network security principles, with a major focus on information, network & application security risks and impact. Good understanding of security frameworks, standards such as ITCG Control, ISO 27001, NIST, CIS etc.

Installing and configuring new software and hardware Conducting security audits and vulnerability assessments Maintaining software licenses and hardware inventory Monitoring system performance and making recommendations for improvements Responding to user inquiries and resolving technical issues Collaborating with other members of the IT team to develop and implement new technologies Key skills and qualifications required for a Desktop Engineer To become a desktop engineer, one must possess a specific set of skills and qualifications: A bachelor s degree in computer science or a related technical field Experience in managing Windows and Mac OS Familiarity with desktop support software and tools Knowledge of network protocols and security systems Strong problem-solving skills Excellent communication skills to interact with users and other IT professionals Ability to work well under pressure