Information Security Engineer(GRC)
4 weeks ago
Develop and finalize policies, procedures, and guidelines related to IT and Infosec domains in alignment with industry best practices (ISO 27001 and ITIL)Align internal IT and Infosec processes as per RBI IT and security guidelinesAssist IT and Infosec Team in defining the key metrics for management reportingDevelop of cyber security standards, including incorporating industry practices and applicable compliance requirementsMaintain the the security risk register and related policiesMaintain the inventory of IT vendors as per regulatory guidelines.Develop review checklists, questionnaire, and manage evidences to assist the IT vendor risk management processPerform 3rd party security due-diligence reviews and periodic vendor risk assessments to assess vendor compliance.Coordinate with external stakeholders and auditors for IT and Infosec related reviewsCoordinate for conducting periodic penetration testing exercises on in-scope applications and related infrastructure. Coordinate with stakeholders for timely closure of open risks.Assist in imparting security awareness training and executing phishing simulation exercises to employees.Assist IT and Infosec in gathering the metrics data and prepare management dashboardsLead the periodic IT and Infosec governance review meetings and gather feedback for improvementAssess the existing IT and Infosec processes and provide recommendations to improveIdentify opportunities for IT and Infosec governance automation and lead the continuous compliance initiativesSupport cross-entity teams/group entities to mirror the best practices implemented at the parent entityDevelop templates for incident reporting and manage artifacts. Assist during incident investigation and collaborating with stakeholders.
Key Areas:
ISO 27001, security governance, vendor security due-diligence, vendor security reviews and assessment, preparation of security checklist, security awareness/phishing simulation, management dashboards, manage key metrics for IT and Infosec,Certifications: good to have
- ISO 27001, ITILExperienceShould have 5 - 7 years of experience in information security domain and minimum should have 4 of years in overall IT and Infosec governance related activities.Must have sound knowledge in defining processes, developing policies, procedures, and guidelines, and preparing management reporting dashboards.Must have experience in guiding teams with respect to RBI IT guidelinesDeveloping and implementing enterprise governance, risk, and compliance strategy and solutionsAbility to document and explain details in a concise & understandable mannerIndustry recognized certificates relevant to the roles such as ITIL, ISO 27001 are desiredAbility to lead complex, cross-functional projects, and problem-solving initiatives.Passionate about IT/information security and update knowledge on daily basis to support the organizationCandidates must have excellent verbal and written communication skillsFamiliarity with industry standards and regulations including PCI, ISO27001, CIS, NIST is desired.Candidates from BFSI experience will be preferredFair understanding of public cloud models (e.g. AWS, Google, Microsoft Azure) and their security implications
Skills:Candidate should be a good team playerShould have good interpersonal skillsGood written communication skills including ability to develop process documentation and security guidelines.Ability to apply critical thinking and logic to a wide range of intellectual and practical problemsAbility to maintain composure under pressure and work calmly during an emergencyAbility to manage multiple tasks and schedules
-
Security and GRC Consultant
2 weeks ago
Bengaluru, Karnataka, India SAP Full timeTHE ROLE:Security threats are increasing as the value of information assets rises, that's why SAP dedicates expertise to enhance enterprise solutions and ensure customer business operations security.As part of the Adoption Service Center team, you will contribute to providing solutions for customers to Run Simple Run Secure.Experience needed in Security...
-
Staff Security Engineer, GRC
1 day ago
Bengaluru, India Greenlight Full timeWhat you will be doing:Lead and execute security projects, that are identified by the Security leadership, from start to finishDevelop and maintain documentation relevant to the IT SOX Program, including IT Risk Control Matrix (RCM), process narratives, flowcharts, and more.Develop and deliver security awareness programs, including security awareness...
-
Staff Security Engineer, GRC
2 weeks ago
Bengaluru, Karnataka, India Greenlight Full timeWhat you will be doing:Lead and execute security projects, that are identified by the Security leadership, from start to finishDevelop and maintain documentation relevant to the IT SOX Program, including IT Risk Control Matrix (RCM), process narratives, flowcharts, and more.Develop and deliver security awareness programs, including security awareness...
-
Staff Security Engineer, GRC
1 month ago
Bengaluru, India Greenlight Full timeWhat you will be doing:Lead and execute security projects, that are identified by the Security leadership, from start to finishDevelop and maintain documentation relevant to the IT SOX Program, including IT Risk Control Matrix (RCM), process narratives, flowcharts, and more.Develop and deliver security awareness programs, including security awareness...
-
Staff Security Engineer, GRC
2 weeks ago
Bengaluru, Karnataka, India Greenlight Full timeYour day to day:Lead and execute security projects, that are identified by the Security leadership, from start to finishDevelop and maintain documentation relevant to the IT SOX Program, including IT Risk Control Matrix (RCM), process narratives, flowcharts, and more.Develop and deliver security awareness programs, including security awareness training,...
-
Staff Security Engineer, GRC
2 weeks ago
Bengaluru, Karnataka, India Greenlight Full timeWhat you will be doing: Lead and execute security projects, that are identified by the Security leadership, from start to finish Develop and maintain documentation relevant to the IT SOX Program, including IT Risk Control Matrix (RCM), process narratives, flowcharts, and more. Develop and deliver security awareness programs, including security awareness...
-
Staff Security Engineer, GRC
4 weeks ago
Bengaluru, India Greenlight Full timeWhat you will be doing:Lead and execute security projects, that are identified by the Security leadership, from start to finishDevelop and maintain documentation relevant to the IT SOX Program, including IT Risk Control Matrix (RCM), process narratives, flowcharts, and more.Develop and deliver security awareness programs, including security awareness...
-
Information security Engineer
2 weeks ago
Bengaluru, Karnataka, India Virtusa Full timeInformation security Engineer CREQ188773 Description P1,C3,STSQualifications:5+ years of relevant professional work experience in Information Security and Technology Risk ManagementDeep knowledge of compliance, risk management and internal IT control frameworksBroad understanding of information security disciplines with emphasis on vulnerability management,...
-
Information security Engineer
2 weeks ago
Bengaluru, Karnataka, India Virtusa Full timeInformation security Engineer - CREQ188773 Description P1,C3,STSQualifications:5+ years of relevant professional work experience in Information Security and Technology Risk ManagementDeep knowledge of compliance, risk management and internal IT control frameworksBroad understanding of information security disciplines with emphasis on vulnerability...
-
Engineering Manager_SAP Security GRC
2 weeks ago
Bengaluru, Karnataka, India Allstate Benefits Full timeJob Description This role holder is responsible for primarily working on Application Security team, candidate will be part of our SAP practice and will be responsible for delivering SAP, Cloud & S/4 HANA security implementations and assessments. This role will act as an application support for implementing changes and design ideas. The overall objective of...
-
Cloud Security Grc
3 weeks ago
Bengaluru, Karnataka, India BNC Full timeBig 4 is hiring for Cloud Security GRC role for Bangalore location at consultant level **Duties and Responsibilities**: 1. Work closely with the technology team to build and maintain secure, scalable, and highly available cloud-based infrastructure. 2. Experience with information security; cloud security; risk assessment and GRC is must to have 3....
-
Security and GRC Consultant
2 weeks ago
Bengaluru, Karnataka, India SAP Full timeWe are here to make the world function betterOur company is all about enabling innovation by working together to create breakthroughs. How do we do it? By focusing on laying the groundwork for the future each day and fostering a diverse, flexible workplace that is committed to purpose-driven, forward-thinking projects. We provide a collaborative and...
-
SAP GRC Security
2 weeks ago
Bengaluru, Karnataka, India Alp Consulting Limited Full timeSAP GRC Duties & Responsibilities To write an effective SAP GRC job description, begin by listing detailed duties, responsibilities and expectations. We have included SAP GRC job description templates that you can modify and use. Sample responsibilities for this position include: Evaluate & integrate SAP Fiori apps into SAP GRC Perform outside research...
-
SAP Grc
2 weeks ago
Bengaluru, India VARITE INDIA PRIVATE LIMITED Full timeDescription: Location: Bangalore / Hyderabad ESSENTIAL DUTIES AND RESPONSIBILITIES - SAP security resource should have 6 - 8 years of experience in ECC, GRC 10.1 implementation and support projects. - Should have at least one end to end implementation, roll out project for SAP Security and GRC 10.1. - Good experience in SAP ECC, BI security, SAP GRC 10.1,...
-
SAP GRC Security Consultant
2 months ago
Bengaluru, India CANOPUS-GBS Full timeSalary : 10-20 LPA Key Responsibilities :- Implement and maintain SAP GRC Access Control, Process Control, and Risk Management modules.- Develop and maintain SAP security policies, procedures, and standards in alignment with industry best practices and regulatory requirements.- Conduct regular risk assessments and security audits of SAP systems to identify...
-
SAP GRC Security Consultant
4 weeks ago
Bengaluru, India CANOPUS-GBS Full timeSalary : 10-20 LPA Key Responsibilities :- Implement and maintain SAP GRC Access Control, Process Control, and Risk Management modules.- Develop and maintain SAP security policies, procedures, and standards in alignment with industry best practices and regulatory requirements.- Conduct regular risk assessments and security audits of SAP systems to identify...
-
SAP GRC/Security Consultant
2 weeks ago
Bengaluru, Karnataka, India Dextris Infoservices Pvt Ltd. Full timeLooking FIORI Security experiencePrimary Skill : SAP GRC/Security Consultant Job Description : SAP SAP GRC/Security Consultant with 4 ~ 7 years of experience Technical Skill sets : SAP GRC - 5+ years of experience of working in SAP security and GRC Access control Application Management Services. Good Team player with a positive attitude and good written...
-
SAP GRC Security Consultant
2 weeks ago
Bengaluru, Karnataka, India CANOPUS-GBS Full timeSalary : 10-20 LPA Key Responsibilities :Implement and maintain SAP GRC Access Control, Process Control, and Risk Management modules. Develop and maintain SAP security policies, procedures, and standards in alignment with industry best practices and regulatory requirements. Conduct regular risk assessments and security audits of SAP systems to identify...
-
Bengaluru, India Lilly Full timeWe’re looking for people who are determined to make life better for people around the world.Position DescriptionInformation security risk management is an integral component of Lilly’s IS strategy, program, and operations. This leader will sit on the IS GRC and BISO lead teams and be responsible for providing oversight of the LCCI resources that support...
-
Information Security Manager
2 weeks ago
Bengaluru, Karnataka, India Morae Full timePOSITION OVERVIEWThisInformation Security GRC Expert – Associate Managercontributes to Morae success byimplementing, and maintaining people, process and technology-oriented policies, procedures, andcontrols to ensure ongoing security and compliance of Morae's innovative technology solutions and information assets.As a part of highly skilled Information...
