Cyber Risk Assessment/GRC- Lead Consultant
3 weeks ago
Job Description
We have an opportunity for someone having experience in performing Security Risk Assessments to join the Information Security department as a Cyber Risk Security Assessor in the Allstate Technology & Strategic Ventures (ATSV). The Cyber Risk Assessor will be responsible for supporting the company's efforts to identify, assess and evaluate security risks through business-as-usual cyclical assessments and ad hoc consultations. This individual will be a key contributor managing operational activities to reduce risks to business goals in close consultation with other Information Security, ATSV and business partners. The analyst needs to understand information security best practices, risk assessment methodologies, and working across multi-functional teams.
Job Responsibilities
Conducts risk assessment at the network, systems, platforms and application level. Involved in addressing and providing guidance on wide range of security issues including architectures, platforms including Public Cloud, electronic data traffic, and network access. Driving the company's efforts to proactively identify, assess, and communicate the company's information security risks to leadership and board. Ensure compliance with security policies and standards. Deep understanding of Cyber programs such as Threat Management, Secure SDLC, Security Architecture, Network and Data Protection. Work in close partnership with internal information security and business representatives to scope assessments, gather documentation, interview clients, identify risks, document findings, and ensure transparent management of risks by following a structured risk assessment methodology Works independently to lead and complete high quality threat-based risk assessments across a diverse set of technologies, business functions, and platforms. This position will also proactively drive process improvements, overcome barriers to success, build professional relationships across the company, brief senior leaders, and mentor others.
Primary Skills
The successful candidate will be required to collaborate across security/IT teams and business partners to assess and report risk ratings of assets/technologies/platforms/cloud which have impact on enterprise and identify process improvement areas. A broad range of professional skills, along with strong interpersonal skills, will be required for problem-solving and collaboration with virtual cross-functional work groups. This resource is expected to serve as a subject matter expert and trusted advisorthat can clearly articulate Allstate security policies, standards and risks to assets to both technical and business audiences alike.
Experience
Experience with information security risk management framework, assessment, audit and controls based on industry standard frameworks (i.e. NIST CSF; ISO; HiTrust, FAIR) Experience with regulatory requirements (i.e. PCI; GDPR; HIPPA; CCPA; etc.) Experience using/knowhow of various tools and technologies in support of the assessment/audit process (RSA Archer, Qualys, Bitsight, etc.) Experience gathering information from a range of different sources to help identify weaknesses in security controls Expert with security control design, development, implementation, and monitoring Minimum of 6-8 years of IT experience in either an infrastructure or development background with proficiency in Cyber Risk Assessments.Shift Timing
1PM - 9:30 PM
-
Director - Cyber GRC Operations
4 weeks ago
Pune, Maharashtra, India Northern Trust Full timeRole/ Department:This role will sit in the newly formed Cyber Governance, Risk and Compliance (GRC) team within Northern Trust's Technology function (1st Line of Defense), and will focus on the measurement, analysis, oversight and reporting of cybersecurity risks and controls.As a Global GRC Operations Director, you will be responsible for optimizing NT's...
-
Principal - Cyber GRC Operations
4 weeks ago
Pune, Maharashtra, India Northern Trust Full timeRole/ Department:This role will sit in the newly formed Cyber Governance, Risk and Compliance (GRC) team within Northern Trust's Technology function (1st Line of Defense), and will focus on the measurement, analysis, oversight and reporting of cybersecurity risks and controls.As a Global GRC Operations Principal, you will play a key role in delivering NT's...
-
Cyber Risk Associate
4 weeks ago
Pune, Maharashtra, India Northern Trust Full timeJob Title Cyber Risk Associate Role/ Department: This role will be part of the newly formed Cyber Governance, Risk and Compliance (GRC) team within Northern Trust's Technology function, serving as a key component in the 1st Line of Defense. The focus will be on measuring, analyzing, overseeing, and reporting cybersecurity risks and controls. Key...
-
SAP GRC Consultant
3 weeks ago
Pune, Maharashtra, India KONE Full timeJob Description :Company :Did you know KONE moves two billion people every day? As a global leader in the elevator and escalator industry, we employ over 60,000 driven professionals in more than 60 countries worldwide joined together by a shared purpose, to shape the future of cities. In 2023, we had annual net sales of EUR 11.0 billion.To summarize, in this...
-
Lead, Cyber Sec IT RiskM
3 weeks ago
Pune, Maharashtra, India Northern Trust Corporation Full timeDescription Northern Trust Technology Risk & Control function is responsible for enabling Global Information Technology to build a strong 1st Line of Defense, foster a control aware culture, deliver compliant and secure technology capabilities, protect customers and meet regulatory requirements. The Principal cybersecurity risk and control officer is...
-
Lead – Governance
2 weeks ago
Pune, Maharashtra, India Jio Full timeReliance Jio is inviting applications from candidates for Lead – Governance & Risk Management in Navi MumbaiKey Attributes (Experience and Qualifications)1. Education : BE/B.Tech/ME/M.Tech/MCA/MS from a reputed/recognized institute2. Experience : 12-15 years' experience in Cyber Security with a strong background of Governance, Risk and Compliance3....
-
SAP GRC Senior Consultant
4 weeks ago
Pune, Maharashtra, India Systems Plus Solutions Full timeSystemsPlus is hiring for SAP GRC Senior Consultant Location : Pune, Hybrid. What You'll Do As an SAP GRC Senior Consultant, you will: · Work directly with project teams to provide SAP GRC (Governance, Risk & Compliance) Design, Implementation, Administration, and Support · Analyze business requirements, review existing systems, define the solution, and...
-
SAP GRC Senior Consultant
4 weeks ago
Pune, Maharashtra, India Systems Plus Solutions Full timeSystemsPlus is hiring for SAP GRC Senior Consultant Location : Pune, Hybrid. What You'll Do As an SAP GRC Senior Consultant, you will: · Work directly with project teams to provide SAP GRC (Governance, Risk & Compliance ) Design, Implementation, Administration, and Support · Analyze business requirements, review existing systems, define the solution,...
-
SAP GRC Senior Consultant
4 weeks ago
Pune, Maharashtra, India Systems Plus Solutions Full timeSystemsPlus is hiring forSAP GRC Senior ConsultantLocation : Pune, Hybrid.What You'll DoAs an SAP GRC Senior Consultant, you will:· Work directly with project teams to provide SAP GRC ( Governance, Risk & Compliance ) Design, Implementation, Administration, and Support· Analyze business requirements, review existing systems, define the solution, and...
-
SAP GRC Senior Consultant
4 weeks ago
Pune, Maharashtra, India Systems Plus Solutions Full timeSAP GRC Senior Consultant Join SystemsPlus as a seasoned SAP GRC expert, collaborating with project teams to deliver top-notch Governance, Risk & Compliance solutions. Key Responsibilities: Design, implement, administer, and support SAP GRC solutions for clients. Analyze business requirements, review existing systems, and translate needs into detailed...
-
Senior Associate
3 weeks ago
Pune, Maharashtra, India Northern Trust Full timeRole/ Department:This role will sit in the newly formed Cyber Governance, Risk and Compliance (GRC) team within Northern Trust's Technology function (1st Line of Defense), and will focus on the measurement, analysis, oversight and reporting of cybersecurity risks and controls.As a Global GRC Operations Sr Associate, you will play a role in delivering NT's...
-
Senior Associate
4 weeks ago
Pune, Maharashtra, India Northern Trust Full timeRole/ Department:This role will sit in the newly formed Cyber Governance, Risk and Compliance (GRC) team within Northern Trust's Technology function (1st Line of Defense), and will focus on the measurement, analysis, oversight and reporting of cybersecurity risks and controls.As a Global GRC Operations Sr Associate, you will play a role in delivering NT's...
-
SAP Security GRC DevOps Lead
3 weeks ago
Pune, Maharashtra, India Johnson Controls Full timePosition: SAP Security GRC DevOps LeadExperience: 7+ yearsJob Summary:The SAP Security GRC DevOps Lead will be responsible for leading the implementation and management of security controls and governance, risk, and compliance (GRC) solutions within SAP environments. The candidate will work closely with cross-functional teams to ensure robust security...
-
SAP Security GRC DevOps Lead
1 week ago
Pune, Maharashtra, India Johnson Controls Full timePosition: SAP Security GRC DevOps LeadExperience: 7+ yearsJob Summary:The SAP Security GRC DevOps Lead will be responsible for leading the implementation and management of security controls and governance, risk, and compliance (GRC) solutions within SAP environments. The candidate will work closely with cross-functional teams to ensure robust security...
-
SAP Security GRC DevOps Lead
2 weeks ago
Pune, Maharashtra, India Johnson Controls Full timePosition: SAP Security GRC DevOps Lead Experience: 7+ years Job Summary: The SAP Security GRC DevOps Lead will be responsible for leading the implementation and management of security controls and governance, risk, and compliance (GRC) solutions within SAP environments. The candidate will work closely with cross-functional teams to ensure robust security...
-
Cyber Security Consultant
3 weeks ago
Pune, Maharashtra, India Infosys Full timeAs a member of the Infosys Cyber security Consulting & Advisory team, your primary role would be to develop, design and execute a consulting opportunity fully or partly as needed in response to a customer requirement, differentiating in the market place through a strong business value proposition, working as a trusted advisor to the customer – across one...
-
Senior GRC Specialist
3 weeks ago
Pune, Maharashtra, India VikingCloud Full timeDescription Senior GRC Specialist Job Title: Senior GRC Specialist (Risk and Business Continuity)Department: Governance, Risk, and Compliance (GRC)Reports To: Vice President, Information Security and Compliance Overview Senior GRC Specialist role is critical in ensuring that the organization's risk management processes are comprehensive, and that...
-
SAP GRC Security
2 weeks ago
Pune, Maharashtra, India People Prime Worldwide Private Limited Full timeJob DescriptionAbout Company:It is a global consulting service and systems integrator that operates in over 90+ countries, delivering solutions with a unique blend of digital innovation and robust, industry-strong processes. With our promise to help our customers 'scale at speed,' we design future state solutions for industry leaders and offer innovative...
-
Servicenow Grc Architect
3 weeks ago
Pune, Maharashtra, India ScaleneWorks People Solutions Full time13 years 5 years in ServiceNow GRC implementation minimum 1 GRC implementation should be hands on Resource must have experience in implementing the IRM module of ServiceNow This should be an experienced implementation consultant who can guide and consult business on their requirements be able to prepare and perform workshops with business stakeholders...
-
Cyber Threat Intelligence Specialist
5 days ago
Pune, Maharashtra, India Northern Trust Full timeAt Northern Trust, we are seeking a highly skilled Cyber Threat Intelligence Analyst to join our Threat Intelligence team. The TI team supports the Chief Information Security Officers organization by providing Cyber Threat Intelligence and leading cyber risk reduction efforts.The ideal candidate will have a deep understanding of emerging threats, technical...
