Principal - Cyber Risk and Assurance
1 week ago
Site Name:
Bengaluru Luxor North Tower
Posted Date:
Feb
Our Cyber Security organisation enables GSK to take on some of the biggest healthcare challenges in the world by protecting our business, customers, and patients from cyber risks.
We are investing in growing our Cyber Security teams because they play a pivotal role as the nature and types of threats get more sophisticated.
In this ever-evolving digital and technology landscape, it is critical to stay on top of issues that could cause us harm.
Our Cyber Security teams are continuously learning and developing their skills to protect against bad actors, allowing GSK to stay focused on what matters most - getting ahead of disease together.
Job Purpose:
-
The primary purpose of this position is to partner with the business and global support functions to embed the concept of "secure by design" by influencing projects and operations to implement proportionate cyber security coverage throughout the development Lifecyle.
This is achieved by acting as a cyber security focal point for the business, acting as a conduit to other security teams (such as Cyber Security Operations, Governance Risk and Compliance and Architecture and Engineering) as required to meet business needs.
Key Responsibilities:
- To identify, document and report business cyber risks to senior stakeholders and positively influence the cyber security posture
- Formally assess and evaluate cyber security risks related to business projects, determine the potential impact of those risks, and conduct followup on any necessary remediation efforts. Ensure that IT solutions and business processes comply with GSK's policies, controls and applicable legal and regulatory requirements whilst also ensuring that business objectives are met
- Collaborate with internal thirdparty relationship owners and thirdparty representatives to recommend necessary security and privacy controls to effectively mitigate risks to GSK
- Evangelize thirdparty risk management processes across business lines to help influence a strong culture of proactive awareness for thirdparty security risks
- To guide business owners and relevant stakeholders throughout the entire delivery lifecycle ensuring that information security is considered in a proportionate and tailored way
- To carry out expert security assessments in supporting the business and global support functions utilising a thorough understanding of pharma and effectively create/monitor delivery of the remediation plans on identified risks and support on all levels within the business.
- To partner effectively with the business, GRC and the wider Tech Security/Risk teams to eliminate overlaps and provide a holistic and consistent cyber security position including key initiatives such as cyber incidents and resilience.
- To ensure consistent and continual alignment to the business and TSR strategy through oversight of the Cyber Risk Management framework, activities and processes including all aspects of the metrics/reporting.
- To contribute to the development of global cyber security baselines, guidelines, standards, policies and procedures
- Maintain current knowledge of cyber risk management requirements and accreditation standards and monitor changes in technology impacting security & risk posture.
- To serve as a coach and mentor to peers and engage in upskilling activities for the overall team
- Identifying and implementing automation initiatives like control testing to enhance the delivery time and improve efficiency
- Identify and implement areas of duplication and propose ways of eliminating duplication to bring cost effectiveness and efficiency
- Partner with outsourced thirdparty provider in effectively providing a cyber risk service reducing response times and improving on integration and automation
Job-Related Experience sections above that are required for the job: -
- Experience and knowledge across different frameworks and standards such as ISO 27001, NIST, CIS etc.
- CISSP, CISM
- Demonstrated experience and understanding of cyber security principles, IT security controls, and related technologies and products
- Experience in working with outsourced providers and bringing positive changes to the organisation by working in partnership
- Prior experience in conducting cyber Security risk assessments and 3rd party security and data privacy assessments
- Stakeholder/ internal business management experience
- Strong verbal/written communication in English, with the ability to effectively interact with professionals at all levels of responsibility and authority
- Ability to prioritize, delegate, and foster the development of highperformance teams to lead/support an environment driven by customer service and teamwork
- Work with virtual teams located in different countries around the world, aligning and
-
Bengaluru, Karnataka, India GSK Full timeSite Name: Bengaluru Luxor North TowerPosted Date: May 2 2024Our Cyber Security organisation enables GSK to take on some of the biggest healthcare challenges in the world by protecting our business, customers, and patients from cyber risks. We are investing in growing our Cyber Security teams because they play a pivotal role as the nature and types of...
-
Bengaluru, Karnataka, India 14260 GSK India Global Services Private Limited Full timeOur Cyber Security organisation enables GSK to take on some of the biggest healthcare challenges in the world by protecting our business, customers, and patients from cyber risks. We are investing in growing our Cyber Security teams because they play a pivotal role as the nature and types of threats get more sophisticated. In this ever-evolving digital...
-
Bengaluru, Karnataka, India Tredence Inc. Full timeAbout TredenceTredence is a data science and AI engineering company focused on solving the last-mile problem in analytics. We define 'last mile' as the gap between insight creation and value realization. Tredence is now 2000+ employees strong with offices in Foster City, Chicago, London, Toronto, and Bangalore, Chennai, Pune, Kolkata, Gurgaon serving Fortune...
-
Bengaluru, Karnataka, India Fidelity Investments Full timeJob Title : Principal - Cyber Security - Network SecurityThe Purpose and Value you Deliver to this RolePrincipal Perimeter Security Engineer (Principal, Edge Security Ops)How your Work Impacts the OrganizationThe TeamThe Principal Cybersecurity Analyst will be working on external defense team to ensure indications of compromise are promptly identified and...
-
Data Scientist, Cyber Risk
1 week ago
Bengaluru, Karnataka, India Safe Securities Full timeOur vision is to be the Champions of a Safer Digital Future and the Champions of Change. We believe in empowering individuals and teams with freedom and responsibility to align their goals such that we all row in the same direction. We are uncomfortably transparent, autonomous & accountable; we have zero tolerance for brilliant jerks; we have an unlimited...
-
Bengaluru, Karnataka, India Tredence Inc. Full timeAbout TredenceTredence is a data science and AI engineering company focused on solving the last-mile problem in analytics.We define 'last mile' as the gap between insight creation and value realization.Tredence is now 2000+ employees strong with offices in Foster City, Chicago, London, Toronto, and Bangalore, Chennai, Pune, Kolkata, Gurgaon serving Fortune...
-
Bengaluru, Karnataka, India Tredence Inc. Full timeAbout TredenceTredence is a data science and AI engineering company focused on solving the last-mile problem in analytics. We define 'last mile' as the gap between insight creation and value realization. Tredence is now 2000+ employees strong with offices in Foster City, Chicago, London, Toronto, and Bangalore, Chennai, Pune, Kolkata, Gurgaon serving Fortune...
-
Bengaluru, Karnataka, India Tredence Inc. Full timeAbout Tredence Tredence is a data science and AI engineering company focused on solving the last-mile problem in analytics. We define 'last mile' as the gap between insight creation and value realization. Tredence is now 2000+ employees strong with offices in Foster City, Chicago, London, Toronto, and Bangalore, Chennai, Pune, Kolkata, Gurgaon serving...
-
Principal Cloud Security Assurance
1 week ago
Bengaluru, Karnataka, India GSK Full timeSite Name: Bengaluru Luxor North TowerPosted Date: Mar Our Cyber Security organisation enables GSK to take on some of the biggest healthcare challenges in the world by protecting our business, customers, and patients from cyber risks. We are investing in growing our Cyber Security teams because they play a pivotal role as the nature and types of threats get...
-
Cyber Risk Lead
1 week ago
Bengaluru, Karnataka, India Amagi Full timePurpose of the roleThis role has been established to support the business to build a strong risk management framework at Amagi. The basic factor required to be successful in this role warrants a good understanding of the business, product, and engineering functions in the company. The focus is to build a risk based rather than compliance based framework. We...
-
Cyber Manager
1 week ago
Bengaluru, Karnataka, India Maersk Full timeCyber Manager – Third Party Risk Company Name: A.P. Moller – Maersk Location: Bangalore, India We offer Joining Maersk T&L will embark you on a great journey with career development in a global organisation. As a Cyber Security Manager, you will gain broad business knowledge of the company's activities globally, as well as understand how the...
-
Cyber Risk Lead
1 week ago
Bengaluru, Karnataka, India Amagi Full timePurpose of the role This role has been established to support the business to build a strong risk management framework at Amagi. The basic factor required to be successful in this role warrants a good understanding of the business, product, and engineering functions in the company. The focus is to build a risk based rather than compliance based framework. We...
-
Cyber Risk IoT Lead Consultant
1 week ago
Bengaluru, Karnataka, India Anicalls (Pty) Ltd Full timeCandidate should be able to:Demonstrate a general knowledge of market trends, competitor activities, Deloitte Advisory products and service linesAssist in the selection and tailoring of approaches, methods, and tools to support service offering or industry projectsActively participate in decision making with engagement management and seek to understand the...
-
Principal Security Engineer
1 week ago
Bengaluru, Karnataka, India HERE Technologies Full timeWhat's the role? Key Functions: Lead a team of 2 SOC analysts/engineers covering the APAC region for a follow-the-sun SOC Operations. Oversee and actively participate in Detection/Monitoring activities, continuously monitoring network traffic and security alerts for potential threats and vulnerabilities. Develop and implement robust incident...
-
Cyber Technology
1 week ago
Bengaluru, Karnataka, India MUFG Global Service (MGS) Full time10-15 years experience in leading a mixed team of both technical and non-technical SMEs Understanding of various Cyber/IT Security frameworks e.g. NIST; ISO-27001; PCI-DSS; and FFIEC Mastery of Project Life Cycle (PLC) Controls Proven understanding of current best practise approach to security assurance and the application of security frameworks Working...
-
Cyber Technology
1 week ago
Bengaluru, Karnataka, India MUFG Full time10-15 years' experience in leading a mixed team of both technical and non-technical SMEsUnderstanding of various Cyber/IT Security frameworks e.g. NIST; ISO-27001; PCI-DSS; and FFIECMastery of Project Life Cycle (PLC) Controls Proven understanding of current best practice approach to security assurance and the application of security frameworksWorking...
-
IT Risk Assurance
1 week ago
Bengaluru, Karnataka, India Quesscorp Full timeOverall Experience 9 to 15 years years previous experience in IT Risk Assurance and/or IT Auditing is essential 3 years previous experience in Risk Management is essential 3 years previous experience with IT Sec Control evaluation is essential 3 years previous experience in a Financial Services IT department is desirable 2 years previous experience in...
-
Cyber Risk and Privacy
1 week ago
Bengaluru, Karnataka, India INTEL Full timeQualifications: Job QualificationsYou must possess the below minimum qualifications to be initially considered for this position:Bachelor of Science (or equivalent degree) in Cyber Security, Computer Science, Information Security, Management Information Systems or related fields 6+ years of relevant industry experience in Information Security, Privacy,...
-
Senior Principal Cybersecurity Consultant
1 week ago
Bengaluru, Karnataka, India CYFIRMA Full timeCYFIRMA is the fastest-growing cybersecurity start-up delivering a complete near real-time view of external cyber threats and risks. We are an external threat landscape management platform company. We combine cyber intelligence with attack surface discovery and digital risk protection to deliver an early warning, personalized, contextual, outside-in, and...
-
Cyber Security
1 week ago
Bengaluru, Karnataka, India MUFG Full timeAbout the Role:Position Title: Senior Analyst - Cyber SecurityLocation: BengaluruJob Profile:Position details:To ensure effective management and control of Cyber Security, IT and information risk for MUFG EMEA entities by ensuring all appropriate Security, IT and common sense controls are in place, that these controls are being followed and that this is...
