Cyber & Technical Risk Assessment Officer

4 weeks ago

Navi Mumbai, Maharashtra, India Saraswat Bank Full time

Role Overview:

The Cyber & Technical Risk Assessment Officer will be responsible for identifying, analysing, and mitigating cyber and technical risks associated with banking systems, infrastructure, and digital assets. This role will ensure that the bank complies with regulatory requirements (such as RBI, SEBI, ISO, NIST, etc.), and internal risk frameworks, and maintains a strong security posture.

Required Qualifications & Skills:

Certifications (Preferred):

  • CRISC, CISA, CISSP, ISO 27001 LA, CEH, or similar.

Experience:

  • 8-10 years of relevant experience in Information Security domain (minimum 3 years in cyber/IT risk assessment, preferably in BFSI).
  • Familiarity with GRC tools (RSA Archer, ServiceNow GRC, etc.).

Key Responsibilities:

1. Cyber & IT Risk Assessments:

  • Conduct end-to-end cyber risk assessments for critical IT systems, applications, and infrastructure.
  • Evaluate technology solutions and vendors for inherent risks.
  • Perform periodic threat modelling and vulnerability assessments.
  • Maintain risk registers and report on identified risks with remediation plans.

2. Control Reviews & Compliance:

  • Assess and ensure compliance with applicable regulatory guidelines such as:
  • RBI's Cybersecurity Framework for Banks
  • SEBI's CSCRF (for REs, if applicable)
  • ISO 27001, NIST CSF, PCI-DSS
  • Validate implementation of security controls across endpoints, network, cloud, and application layers.

3. Governance and Reporting:

  • Prepare cyber risk dashboards and submit periodic reports to senior management, CRO, and Board committees.
  • Track and follow up on mitigation of identified risks.
  • Coordinate with auditors (internal/external) during cyber/IT audits.

4. Third-party & Cloud Risk Management:

  • Conduct third-party risk assessments for outsourced vendors and cloud service providers.
  • Ensure that Service Level Agreements (SLAs) and contracts cover cyber risk clauses and responsibilities.

5. Incident Risk Evaluation:

  • Participate in root cause analysis for cyber incidents.
  • Assess risk impact of incidents and define compensating controls.

6. Policy and Process Development:

  • Assist in drafting or updating Information Security and Risk Management policies.
  • Ensure adherence to secure SDLC and DevSecOps practices.

Technical Skills:

  • Understanding of firewalls, IDS/IPS, DLP, SIEM, EDR, IAM tools.
  • Knowledge of cybersecurity standards and frameworks (e.g., NIST, MITRE ATT&CK).
  • Ability to interpret vulnerability scan results and threat intelligence reports.

Soft Skills:

  • Strong analytical and documentation skills.
  • Communication and stakeholder management.
  • Ability to work independently and handle multiple priorities.

Desirable:

  • Hands-on experience with risk scoring methodologies.
  • Exposure to cloud platforms (AWS, Azure) and their risk models.
  • Experience in cybersecurity exercises, RCSA, and BIA for IT systems.

  • Cyber Maturity Assessment Consultant

    4 weeks ago

    Mumbai, Maharashtra, India r3 Consultant Full time

    Job Description : Cyber Maturity Assessment Consultant. Team : Security Consulting. Designation : Cyber Maturity Assessment Consultant. Job Role : Run Cybersecurity Maturity Assessments (CMA/SMA) and risk evaluations for customers, aligned with industry frameworks to enhance client security posture and operational resilience. Experience : 5+ years in...

  • Senior Cyber Security Risk Manager

    3 days ago

    Mumbai, Maharashtra, India beBeeCyber Full time ₹ 1,50,00,000 - ₹ 2,00,00,000

    Job Title: Senior Cyber Risk ManagerJob Summary: We are seeking a seasoned cyber risk manager to lead our organization's end-to-end vulnerability lifecycle and align risk and compliance efforts with regulatory mandates.Key Responsibilities:Lead Vulnerability Management Lifecycle: Lead overall vulnerability management lifecycle across infra and application...

  • Senior Cyber Risk Management Professional

    12 hours ago

    Mumbai, Maharashtra, India beBeeCyberSecurity Full time ₹ 1,55,20,000 - ₹ 2,11,12,000

    The organization seeks a senior-level professional to oversee its end-to-end vulnerability management lifecycle. The successful candidate will align risk and compliance efforts with regulatory mandates such as RBI Master Directions and SEBI Cybersecurity Framework.Job Description:This is a leadership position responsible for managing the overall...

  • Cyber Risk Management Expert Lead

    3 days ago

    Mumbai, Maharashtra, India beBeeCybersecurity Full time ₹ 25,00,000 - ₹ 40,00,000

    Cybersecurity Risk Manager LeadJob Overview:We are seeking a seasoned professional to lead our organization's end-to-end vulnerability lifecycle and align risk management efforts with regulatory mandates. This role ensures timely vulnerability detection, validation, remediation governance, and risk-based prioritization.Key Responsibilities:Lead the overall...

  • Enterprise Cyber Security Expert

    1 day ago

    Mumbai, Maharashtra, India beBeeCyberSecurity Full time ₹ 30,00,000 - ₹ 40,00,000

    Job Title: Enterprise Cyber Security ExpertKey Responsibilities:Design and develop comprehensive cyber security strategies for organizations.Evaluate business strategies to understand security requirements, conduct risk analyses, and identify potential vulnerabilities.Provide expert advice on product selection to ensure end-to-end security across different...

  • Chief Risk Officer

    3 days ago

    Navi Mumbai, Maharashtra, India beBeeRiskManagement Full time US$ 90,000 - US$ 1,20,000

    Job Title: Risk Management ProfessionalAbout the RoleWe are seeking a highly skilled Risk Management Professional to join our team. In this role, you will be responsible for identifying, assessing, and mitigating risks that could impact our organization.Key ResponsibilitiesRisk Identification: Develop and implement risk management strategies to identify...

  • Risk Management Specialist

    4 days ago

    Mumbai, Maharashtra, India beBeeVulnerability Full time ₹ 1,50,00,000 - ₹ 2,00,00,000

    We are seeking a seasoned professional to lead our Vulnerability Management efforts. As a key member of our Cyber Security team, you will be responsible for overseeing the entire vulnerability lifecycle, from detection to remediation. This role requires strong technical expertise, as well as excellent communication and leadership skills.Job Summary:Our ideal...

  • Chief Cyber Security Officer

    1 day ago

    Mumbai, Maharashtra, India beBeeRiskManagement Full time ₹ 2,00,00,000 - ₹ 2,50,00,000

    Lead Cyber Risk ManagerWe are looking for a seasoned professional to lead our end-to-end cyber risk management lifecycle. The successful candidate will be accountable for aligning risk and compliance efforts with regulatory mandates, ensuring timely vulnerability detection and remediation governance, and prioritizing risks based on business impact.Key...

  • Vulnerability Management, Risk

    2 weeks ago

    Mumbai, Maharashtra, India ITC Infotech Full time

    Job DescriptionL3 Vulnerability Management, Risk & Compliance LeadLocation : Mumbai (Andheri East)Mode: HybirdJob Summary:ITCI Cyber Security team is looking for the role which is accountable for leading the organizations end-to-end vulnerability lifecycle and aligning risk and compliance efforts with regulatory mandates such as RBI Master Directions and...

  • Vulnerability Management, Risk

    4 days ago

    Mumbai, Maharashtra, India ITC Infotech Full time

    L3 – Vulnerability Management, Risk & Compliance LeadLocation : Mumbai (Andheri East)Mode: HybirdJob Summary:ITCI Cyber Security team is looking for the role which is accountable for leading the organization's end-to-end vulnerability lifecycle and aligning risk and compliance efforts with regulatory mandates such as RBI Master Directions and SEBI...