IT Information Security GRC Analyst
3 weeks ago
Job Title:
Information Security GRC AnalystMain Purpose:
The Information Security (InfoSec) Analyst serves as a trusted advisor when assessing internal systems and controls, and is a key point of contact with external examiners. Identifies and verifies risks to systems and data, and ensure teams are cognizant of any deficiencies and working toward addressing findings and recommendations. Evaluates risk according to best practices, as well as compliance mandates, and provides detailed reports from assessments. When external examiners conduct engagements. Acts as a primary point of contact and facilitator to ensure teams are abiding by safe computing and administrative procedures. In this position, the InfoSec Analyst will regularly review, evaluate and verify controls, and then document and report based on the state of the engagements. Uses key risk indicators and IT general controls (ITGC) when assessing system design, data privileges/access and the entire supply chain related to a business system. Follows up and verifies appropriate actions have taken place, especially when risk is excessive and an organization is at risk or out of compliance.
Main Duties and Responsibilities:
Support the delivery of InfoSec GRC security advisory engagements and projects related to industry standards and frameworks.Lead and perform security assessmentsMaintain and support internal audit department practices and processes with detailed reporting and accompanying technology recommendations.Work closely with security leadership to ensure cybersecurity policies and practices as defined in global and industry standards are aligned with an appropriate level of risk.Retain expertise in one or more compliance standards, including Sarbanes-Oxley Act (SOX), Payment Card Industry (PCI), Health Insurance Portability and Accountability Act (HIPAA), Control Objectives for Information Technology (COBIT), National Institute of Standards and Technology (NIST) and International Standards Organization (ISO) 27001.Be actively informed and engaged in upcoming and completed security projects across the business.Enforce a strong security culture mindset set forth by risk management, ensuring uniformity across technical teams, business units and employees.Foster strong relationships with internal business units and excel in risk management, technical controls and cybersecurity communication.Engage with critical third parties and validate adequate controls are in place.Remain up-to-date on security threats, vulnerabilities and mitigations set forth by IT and security teams to reduce the corporate attack surface.Uncover, validate and document deficiencies in risk management, technology and cybersecurity practices.Conduct architecture reviews and identify where security controls must be implemented.Specify guidance on key risk indicators and ITGC testing methodology, validation and alignment with policies and documentation.Persuade IT and security teams to adopt cybersecurity controls.Stay abreast of evolving technologies and areas of risk against the rapidly changing threat landscape as well as standards and compliance requirements.Serve as a point of contact and liaison with external examiners for assessments throughout the year and at end-of-year evaluations.Draft and deliver presentations to management explaining audit findings and recommendations for corrective action that are operationally feasible, within budget and team skillset.Build relationships with business units to verify security-by-design controls are incorporated into projects, architecture, infrastructure and applications.Stay abreast of new laws, regulations and standards, and assess their impact to the business.Openly support the management team and executive leadership, even during tumultuous times.Travel as needed to office locations and third-party on-site engagements.Requirements:
At least 5 years’ IT or cybersecurity experience (or IT coupled with cybersecurity), with at least 2 years in an operationally focused IT or security practitioner role.Strong experience in technology controls review, risk assessment, policy review and control review type of engagementsStrong written and verbal communication skills across all levels of the organization.Skilled at working with diverse teams and promoting enterprise-wide risk management rigorHigh level of integrity, trustworthiness and confidence to represent the company and risk management leadership with the highest level of professionalism.Project management, multitasking and organizational skills.Ability to preserve credibility with the team through sustained industry knowledge.Applicable knowledgeable with national and global cybersecurity policies, regulations and security frameworks.Demonstrated understanding and comprehension of a wide range of compliance and technology frameworks.Proven trustworthiness and history of acting with integrity, taking pride in work, seeking to excel, being curious and adaptable, and communicating well.Self-starter requiring minimal supervision.General business administration competencies.Excellence in communicating privacy, business risk and remediation requirements from assessments.Outstanding written and verbal business and cybersecurity communication skills.Highly organized and efficient.Demonstrated strategic and tactical thinking, along with decision-making skills and business acumen.Educational Requirements:
Bachelor's degree in computer science, information assurance, or related technical field or business administration preferred, but not required.Certification Requirements:
CISA highly recommendedCISSP, CISM, CRISC preferable, but not required.EEO and Veteran Employer
Marken
is a wholly owned subsidiary of UPS and is a critical part of UPS Healthcare. Marken offers a state-of-the-art GMP-compliant depot network and logistic hubs for clinical drug product storage and distribution worldwide and supports cell and gene therapy logistics services from clinical to commercial, while maintaining the leading position for Direct-to-Patient and Home Healthcare services, biological sample shipments and biological kit production.
Moving Our World Forward by Delivering What Matters.
-
Information Security Analyst
6 days ago
Delhi, India Nike Full timeRejoignez l'équipe NIKE, Inc.Loin de se contenter d'équiper les plus grands athlètes mondiaux, NIKE, Inc. explore les potentiels, abolit les frontières et repousse les limites du possible. L'entreprise recherche des personnes capables d'évoluer, de réfléchir, de rêver et de créer. L'épanouissement de sa culture repose sur son ouverture à la...
-
Cyber Security Analyst
3 weeks ago
delhi, India Black Box Full timeJoin Our Cyber Security Dream Team!Are you a fresh graduate with a passion for cyber security? Ready to kickstart your career and protect the digital world from evolving threats? We have the perfect opportunity for you!We Are Hiring Cyber Security Freshers!Positions Available:Security Operations Center (SOC) AnalystVulnerability Assessment and Penetration...
-
SAP Security and Grc
7 days ago
Delhi, India Supro info Solution Full time**Job Overview**: **[URGENT SAP SECURITY AND GRC REQUIREMENT IN DELHI]** **Years**: 5+ **Location** : Delhi **Required Skills**: - Design and deploy GRC reporting based on business requirements - Responsible for Technical Design, Development, Testing, Implementation and Support of SAP Security Roles, across all SAP landscapes - Perform regular system...
-
SAP Grc Security
2 months ago
Delhi, India Supro info Solution Full time**Job Overview**: Position Name: SAP GRC Security Year of Experience: 6+ Years Education: Any Graduation Location: Delhi Pay roll : Direct Client Payroll Type : Full time (No Contract, NO Contract to hire Only Full time on client payroll) References are most welcome. SAP GRC Security JD: - 6+ Years of SAP Security + GRC 10.X experience. 1-2...
-
GRC Analyst
2 months ago
Delhi, India Quantiphi Full timeLooking for GRC AnalystNP :Immediate to 30 DaysExperience Level:4 to 6 yearsResponsibilities1. Develop and ensure compliance of company-wide best practices for IT security.2. Research security enhancements and make recommendations to management.3. Respond to RFI /RFPs by consulting to various support functions and client queries regarding organization...
-
Sap Security And Grc
3 weeks ago
New Delhi, India Tech Mahindra Full timeGreetings from Tech Mahindra We have an opportunity for __ __SAP Security and GRC_ _____position and we find your profile suitable for the same. Total Experience - 5+ Years Location - New Delhi (Client Loc) Notice Period - Imm to 30 Days (Serving Notice Period Only) Shift Timings - General Mode - WFO (5 Days) Must Have Skills - SAP Security/GRC SAP ECC,...
-
Information Security GRC Analyst
2 months ago
Delhi, India Marken Full timeDescriptionJob Title:Information Systems AuditorLocation:PuneMain Purpose:The Information Systems (IS) Auditor serves as a trusted advisor when assessing internal systems and controls, and is a key point of contact with external examiners. Identifies and verifies risks to systems and data, and ensure teams are cognizant of any deficiencies and working toward...
-
SAP Grc Security
4 days ago
Delhi, India Anlage Infotech India Pvt Ltd Full timeHi, Experience 5 years Location Delhi Skill SAP GRC Security and IDM To MNC Client **Salary**: Up to ₹2,500,000.00 per year Ability to commute/relocate: - Delhi, Delhi: Reliably commute or planning to relocate before starting work (required) **Education**: - Bachelor's (preferred) **Experience**: - total work: 1 year (preferred) - Security: 1...
-
IT Information Security Analyst
3 weeks ago
Delhi, India Marken Full timeDescriptionJob Title:Information Security Operations AnalystLocation:PuneMain Purpose:The Information Security (InfoSec) Operations Analyst will be a critical member of the Information Security Operations team responsible for operational security activities and support for multi-vendor security platforms. You will actively investigate threat actor activity,...
-
Information Security Analyst
2 months ago
Delhi, India Snaphunt Full timeThe OfferFlexible working optionsLeadership RoleFantastic work cultureThe JobYour responsibilities will include:Monitoring and analyzing network and system activityInvestigating and responding to security incidentsEscalating security incidents and alertsInstalling and configuring security software and hardwarePerforming security audits and...
-
Senior Information Security Analyst
2 months ago
Delhi, India IQ-EQ Full timeJob DescriptionOutline of responsibilitiesWe are hiring an Information Security Analyst to work in our growing IT Security team. You will monitor our digital environment for security issues, respond to security requests, install and operate security software, and document any security issues or breaches you find. To do well in this role you should have a...
-
Information Security Analyst
3 weeks ago
delhi, India CareerXperts Consulting Full timeAs an Information Security Analyst, you'll be the frontline defender in the organization's cybersecurity posture. You'll be responsible for a wide range of tasks to ensure the confidentiality, integrity, and availability of critical information systems and data.Responsibilities:Monitor and analyze network traffic for suspicious activity that might indicate...
-
Information Security Analyst
2 months ago
Delhi, India Total Shape Full timeYour Compass in the Health & Fitness JourneyTotal Shape is a community dedicated to making the pursuit of a healthier lifestyle both achievable and straightforward. At Total Shape, we pride ourselves on deliveringcomprehensive informationtailored to your health and fitness journey. Our mission is to help you makeinformed decisionsthat expedite your path to...
-
Information Security Analyst
1 week ago
Delhi, India Total Shape Full timeYour Compass in the Health & Fitness JourneyTotal Shape is a community dedicated to making the pursuit of a healthier lifestyle both achievable and straightforward. At Total Shape, we pride ourselves on deliveringcomprehensive informationtailored to your health and fitness journey. Our mission is to help you makeinformed decisionsthat expedite your path to...
-
Security Analyst
7 days ago
Delhi, India Novalink Solutions LLC Full timeJob DescriptionUnder the general guidance of the Chief Information Security Officer (CISO) and in cooperationwith the Security Team Lead, this position is responsible for providing advanced security policyanalysis. This position is responsible for developing and maintaining information securitypolicies and workforce training and awareness. This position...
-
Information Security Analyst
3 weeks ago
Delhi, India CryptoMize Full timeResponsibilitiesEND -->Our PrinciplesThese are some of the principles that we strongly believe in, preach and actually follow as well.CommitmentsWe clearly commit what we can do, by when can we do it and how we would do it, And then we do it.ConfidentialityWe are extremely paranoid about protecting the confidentiality of what we do, for whom and how we do...
-
Information Security GRC Manager
4 weeks ago
Delhi, India IQ-EQ Full timeJob DescriptionResponsibilities (how we will measure success)To provide second line support for all aspects of the Group’s Information Security strategy and arrangements encompassing cultural, physical and technology elements throughout the business, with the primary focus being on Info Sec programme governance and oversight.Working as part of the Group...
-
SAP Security and GRC
1 month ago
new delhi, India Tech Mahindra Full timeGreetings from Tech MahindraWe have an opportunity for __ __SAP Security and GRC_ _____position and we find your profile suitable for the same.Total Experience - 5+ YearsLocation - New Delhi (Client Loc)Notice Period - Imm to 30 Days (Serving Notice Period Only)Shift Timings - GeneralMode - WFO (5 Days)Must Have Skills -SAP Security/GRCSAP ECC, S4HANA, HR,...
-
SAP Security and GRC
1 week ago
new delhi, India Tech Mahindra Full timeGreetings from Tech MahindraWe have an opportunity for __ __SAP Security and GRC_ _____position and we find your profile suitable for the same.Total Experience - 5+ YearsLocation - New Delhi (Client Loc)Notice Period - Imm to 30 Days (Serving Notice Period Only)Shift Timings - GeneralMode - WFO (5 Days)Must Have Skills -SAP Security/GRCSAP ECC, S4HANA, HR,...
-
GRC Functional Architect
1 week ago
Delhi, India Tech AGRIM Full timePosition Overview:Tech AGRIMis seeking a knowledgeable and experienced GRC Functional Expert to join our team. The ideal candidate will play a crucial role in implementing, configuring, and supporting Governance, Risk, and Compliance (GRC) solutions.Location :India (Remote)Experience: 8-10 YearsKey Responsibilities:Collaborate with stakeholders to gather and...
