Consultant -Public Cloud Security Risk Officer - OSMPermanent contractBangalore, India
4 weeks ago
Consultant -Public Cloud Security Risk Officer - OSM
Permanent contract|Bangalore|Risks
Consultant -Public Cloud Security Risk Officer - OSM
Bangalore, India Permanent contract Risks
Responsibilities
Job Summary:
We are seeking a Public Cloud Operations and Security Manager to join our team. In this role, you will be responsible
for implementing and overseeing controls related to Public Cloud. You will ensure compliance with Group policies
and security standards, perform security assessments, contribute to security audits, and communicate effectively with
various stakeholders. Additionally, you will play a vital role in developing and maintaining the IT skills of our employees,
participating in ISS events, and actively contributing to the overall IT function and security community within our
organization.
Core Responsibilities:
1. Control and report on security by design principle of applications hosted on the public cloud (Azure and AWS)
2. Control and report on the Landing Zone security as described and the security controls for example NIST cloud controls
3. Control and report (with the support public Cloud CSRO lead) on the security of CSP service on the Group Catalog.
4. Handle security alerts (Skynet) or incident.
Manage IT risk and SSI compliance:
Frame and plan:
· Contribute to the drafting of policies/ Group standards on the ISS in connection with its functional scope; if necessary,
define and maintain local procedures / good practices to meet the specificities of his department.
· Participate in the definition of the ISS strategy and roadmap for its functional scope, in collaboration with the GTS CISO
and the ISS sector.
· Define and validate roadmaps for the implementation of IT risk treatment plans (application of standards, implementation
of controls, etc.), ensuring that funding and commitment are secured from the teams involved.
· Contribute to the updating of permanent control policies (update of the library of normative controls...)
Implement:
· Ensure the management of security projects initiated directly by and for its department of attachment.
· Support the deployment of security projects initiated by the Group and/or GTS within its functional scope and participate
in the governance of these projects.
· In general, as a security expert, provide an advisory role vis-à-vis the projects deployed within his department of
attachment
· Evaluate and manage the treatment of IT risks in all new projects or infrastructures within its scope (integration of security
in projects, ISORP processes).
· Enforce Group policies / standards and/or procedures / good security practices within its department.
· Validate and monitor security exemptions (exceptions, RAF...).
· Lead the resolution of security incidents and contributeto post-mortem investigations of security incidents.
· Lead the remediation of critical vulnerabilities in coordination with technical teams, SOC and CERT.
· Maintain the IT security risk assessment of products / services / infrastructures of its functional scope (update ASA /
ARA / USF ...) and associated repositories;
· Monitor and coordinate (project not led by the OSM) the treatment of security risks of products / services / infrastructures
of its functional scope.
· Monitor and coordinate the timely closure of audit recommendations (internal / regulators), if necessary, intervene in
support of operational teams.
Communicate:
· Communicate regularly on the IT risks of its scope and on the mitigation plan undertaken.
· Communicate on the status of security audits (internal audit / regulators) as well as plans for handling recommendations.
· Communicate on its activities (definition of relevant KPIs / KRI) and on points of attention or security alerts.
· In the event of detection of a security anomaly on its functional perimeter, exercise as soon as possible a duty of alert visà-vis the CISO GTS and his hierarchy.
· Disseminate within the department of attachment all changes to the policies / Group standards or decision of the ISS
sector in connection with the activities of its functional scope.
Profile required
1. Bachelor's degree in computer science, information technology, or a related field. Relevant certifications (, CISSP,
CISM, CRISC) are preferred.
2. Proven experience in information system security management, risk assessment, and security operations.
3. Strong knowledge of security controls, regulatory requirements, and industry best practices.
4. Someone who understand public cloud model, strategy and public cloud risks surface
5. Familiarity with NIST standards or equivalent and PEN test tools
6. Excellent communication skills, including the ability to communicate complex security concepts to both technical and
non-technical stakeholders.
7. Experience in managing team of Security Analyst/Leads
8. Proactive approach to identifying and mitigating security risks.
9. Ability to work collaboratively in a team environment and contribute to a positive work culture.
10. Strong organizational and project management skills, with the ability to prioritize and multitask effectively.
11. Up-to-date knowledge of emerging security threats and trends.
12. Experience in financial services or a regulated industry is a plus
Why join us
We are committed to creating a diverse environment and are proud to be an equal opportunity employer. All qualified applicants receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, genetics, disability, age, or veteran status”.
-
Cyber Security Consultant
4 weeks ago
bangalore, India Société Générale Assurances Full timeCyber Security Consultant - CSRO Permanent contract|Bangalore|IT (Information Technology) Cyber Security Consultant - CSRO Bangalore, India Permanent contract IT (Information Technology) Responsibilities We are seeking a cloud security expert for Cloud Security and Risk Officer (CSRO) role who can contribute towards...
-
Lead Cloud Security
2 weeks ago
Bangalore/Chennai, India Women Entrepreneur Network Full timeCyber Security Consultant - Lead CSRO Missions: The Cyber/Cloud Security and Risk Officer (CSRO) aims to contribute to the steering of strategy in terms of public cloud security, technical standards, processes, tools and risk management. Profile: Experience : 10 yrs +- Defines, publishes and maintains processes for Security Governances, Risk and Compliance...
-
Cyber/Cloud Security
2 weeks ago
Bangalore/Chennai, India WEN Full timeRole : Cyber Security Consultant - Lead CSRO (Only Female : The Cyber/Cloud Security and Risk Officer (CSRO) aims to contribute to the steering of strategy in terms of public cloud security, technical standards, processes, tools and risk management.Experience : 10 yrs + - Defines, publishes and maintains processes for Security Governances, Risk and...
-
Cyber Security Lead
4 weeks ago
bangalore, India Société Générale Assurances Full timeCyber Security Lead - CSRO Permanent contract|Bangalore|IT (Information Technology) Cyber Security Lead - CSRO Bangalore, India Permanent contract IT (Information Technology) Responsibilities We are seeking a cloud security expert for Cloud Security and Risk Officer (CSRO) role who can contribute towards the strategic...
-
Cyber Security Consultant
3 weeks ago
Bangalore/Chennai, Tamil Nadu, India WEN Full timeJob Description :- Defines, publishes and maintains processes for Security Governances, Risk and Compliance (GRC) for public cloud (AWS and Azure)- Define cyber controls for public cloud platform, whilst adhering to a centralized methodology- Updating and documenting security controls as an accountable part of the public cloud expertise team (e.g.: code...
-
Cyber Security Consultant
2 weeks ago
Bangalore/Chennai, India WEN Full timeJob Description : - Defines, publishes and maintains processes for Security Governances, Risk and Compliance (GRC) for public cloud (AWS and Azure)- Define cyber controls for public cloud platform, whilst adhering to a centralized methodology- Updating and documenting security controls as an accountable part of the public cloud expertise team (e.g.: code...
-
bangalore, India Société Générale Assurances Full timeCyber Security Consultant Permanent contract|Bangalore|Innovation / Project / Organization Cyber Security Consultant Bangalore, India Permanent contract Innovation / Project / Organization Responsibilities As a cyber security consultant, you will work in a multinational environment with other top security experts to...
-
bangalore, India Société Générale Assurances Full timeInformation & Cyber Security Lead Expert Permanent contract|Bangalore|Risks Information & Cyber Security Lead Expert Bangalore, India Permanent contract Risks Responsibilities · Support Risk Management and Supervision team (RMS) in charge of assessing the risk profile and the effectiveness of the information security...
-
Cloud Security Architecture
24 minutes ago
bangalore, India Alp Consulting Limited Full timeProject Role : Application Developer Project Role Description : Design, build and configure applications to meet business process and application requirements. Must have skills : Cloud Security Architecture Good to have skills : Microsoft Azure Security Minimum 5 year(s) of experience is required Educational Qualification : Any degree Summary: As a Cloud...
-
Cyber Security Consultant-CSRO
4 weeks ago
bangalore, India Global Pharma Tek Full timeExperience: Min yrs relevant yrs experience with Excellent Skills Required Strong understanding of cloud technologies and platforms: Azure or AWS or both(preferred). Understanding and hands-on experience of cloud native service such as AWS EC, S, CloudFront, VPC, Direct Connect, DynamoDB etc and for Azure VNET, Storage Accounts, Application...
-
bangalore, India Société Générale Assurances Full timeConsultant Expert Permanent contract|Bangalore|Risks Consultant Expert Bangalore, India Permanent contract Risks Responsibilities The missions of a senior functional expert are varied and hinge upon the strengthening of regulatory and accounting requirements related to the supervision and monitoring of risk models. In...
-
bangalore, India Deloitte Full timeResponsibilities: Determines security requirements by evaluating business strategies and requirements; researching information security standards; information security risk assessments; studying architecture/platform; identifying integration issues. Work closely with IT Business Partners and Enterprise Architects in designing system solutions...
-
Specialist Software Engineer
4 weeks ago
bangalore, India Société Générale Assurances Full timeSpecialist Software Engineer - Devops , Public Cloud (AWS/Azure) CDI|Bangalore|IT (Systèmes d'information) Specialist Software Engineer - Devops , Public Cloud (AWS/Azure) Bangalore, Inde CDI IT (Systèmes d'information) Vos missions au quotidien * Test, build, and maintain landing zone environment in AWS based on...
-
GRC Consultant
2 weeks ago
Bangalore/Hyderabad/Pune/Kerala/Karnataka/Dubai, India LEGPRO CONSULTANT PVT LTD Full timeJob Description : HIRING FOR GRC Consultant to collaborate closely with our clients in the UAE. In this role, you will be responsible for consulting, designing, and reviewing formal documentation and business requirements to ensure alignment with key frameworks and standards such as ISO 27001and NIST. As a front-facing role, you will engage with internal...
-
Oracle Cloud Security HCM Consultant
2 weeks ago
Delhi NCR/Mumbai/Bangalore/Hyderabad/Chennai/Kolkata/Pune, India Anlage Infotech Full timeSkill : Oracle Cloud Security (HCM)Experience : 3-9yrsLocation : Bangalore / Hyderabad / Gurgaon / Pune / Chennai / Kolkata / Mumbai Job Description :Required skills :- 3 to 8 years of experience delivering full cycle of Oracle Cloud Security assessments, design, and implementations as well as understanding of leading practices relates to ERP security-...
-
Manager/Assistant Manager
36 minutes ago
bangalore, India KPMG India Full timeKPMG Global Services (KGS) India is a strategic global delivery organization that works with more than 50 KPMG firms to provide a progressive, scalable and customized approach to business requirements.The KGS India journey has been one of consistent growth, with a current employee count of c.21,000, operating from eight locations in India — Bengaluru,...
-
bangalore, India Société Générale Assurances Full timeCyber Security Lead Analyst Permanent contract|Bangalore|Innovation / Project / Organization Cyber Security Lead Analyst Bangalore, India Permanent contract Innovation / Project / Organization Responsibilities 1. Perform manual penetration testing and vulnerability assessment for internal, external perimeter, web...
-
Cyber Security Analyst
4 weeks ago
bangalore, India Société Générale Assurances Full timeCyber Security Analyst -NIST Control Permanent contract|Bangalore|Innovation / Project / Organization Cyber Security Analyst -NIST Control Bangalore, India Permanent contract Innovation / Project / Organization Responsibilities Major Activities · Ability to identify, propose, design and run the operational and...
-
Oracle SaaS Cloud Security Consultant
3 weeks ago
Anywhere in India/Multiple Locations/Bangalore, IN Anlage Infotech Full timeJob Description :Required skills :- 5 to 8 years of experience delivering full cycle of Oracle Cloud Security assessments, design, and implementations as well as understanding of leading practices relates to ERP security- Demonstrate an understanding of business processes designs, cloud security risk, Oracle application security and risk management-...
-
Oracle SaaS Cloud Security Consultant
4 weeks ago
Anywhere in India,Multiple Locations,Bangalore Anlage Infotech Full timeJob Description : Required skills :- 5 to 8 years of experience delivering full cycle of Oracle Cloud Security assessments, design, and implementations as well as understanding of leading practices relates to ERP security- Demonstrate an understanding of business processes designs, cloud security risk, Oracle application security and risk management-...
