Cyber Risk and Compliance Analyst
3 weeks ago
Introduction
The Economist Group is the leading source of analysis on international business and world affairs. We deliver our information through a range of formats, from newspapers and magazines to conferences and electronic services.
The Information Security team operates the Information Security Program and is responsible for the standard of information security across the Group. We define and implement our security strategy and mitigation activities across our brands. We work with business units to ensure that the confidentiality, integrity and availability risks that they are exposed to are clearly understood and appropriately managed.
The Cyber Risk and Compliance Analyst is a member of the Information Security team and the job holder is responsible for establishing, implementing, monitoring, reviewing and improving a suitable set of controls to protect our information assets and ensure the business objectives of the organisation.
Responsibilities:
Conduct risk assessments to identify potential vulnerabilities and threats to the organisation's information systems, networks, and data. Develop and implement comprehensive GRC frameworks and risk management strategies and policies to mitigate identified risks and enhance organisational resilience. Monitor and evaluate the effectiveness of risk management strategies and policies. Ensure compliance with applicable regulatory and legal requirements, as well as industry standards and best practices (PCI-DSS 4.0) Develop and maintain an effective vendor risk management program. Conduct vendor risk assessments and evaluate vendors' compliance with applicable security requirements. Work closely with third-party vendors to ensure their adherence to our organisation's security policies and standards. Identify and address any security gaps or vulnerabilities in the vendor management process. Ensure that all vendor contracts contain appropriate security requirements. Develop and deliver training to employees on cyber security and risk management best practices. Coordination of annual General IT Controls Audit and any other ad-hoc Audit. Maintaining the policy library and monitoring compliance and review.Requirements :
Bachelor's degree in Cyber Security, Information Technology or related field. At least 2 years of experience in risk and compliance, with a focus on cyber security. Strong knowledge of cyber security regulations, standards and best practices, including NIST, ISO 27001 and PCI-DSS. Experience in developing and implementing effective risk management strategies and policies. Experience in conducting vendor risk assessments and managing vendor relationships. Experience with assisting with audits Excellent analytical and problem-solving skills. Excellent communication and interpersonal skills. Ability to work independently and as part of a team
Accountabilities
Conduct risk assessments to identify potential vulnerabilities and threats to the organisation's information systems, networks, and data. Develop and implement comprehensive GRC frameworks and risk management strategies and policies to mitigate identified risks and enhance organisational resilience. Monitor and evaluate the effectiveness of risk management strategies and policies. Ensure compliance with applicable regulatory and legal requirements, as well as industry standards and best practices (PCI-DSS 4.0) Develop and maintain an effective vendor risk management program. Conduct vendor risk assessments and evaluate vendors' compliance with applicable security requirements. Work closely with third-party vendors to ensure their adherence to our organisation's security policies and standards. Identify and address any security gaps or vulnerabilities in the vendor management process. Ensure that all vendor contracts contain appropriate security requirements. Develop and deliver training to employees on cyber security and risk management best practices. Coordination of annual General IT Controls Audit and any other ad-hoc Audit. Maintaining the policy library and monitoring compliance and review.
Experience, skills and professional attributes
Bachelor's degree in Cyber Security, Information Technology or related field. At least 4 years of experience in risk and compliance, with a focus on cyber security. Strong knowledge of cyber security regulations, standards and best practices, including NIST, ISO 27001 and PCI-DSS. Experience in developing and implementing effective risk management strategies and policies. Experience in conducting vendor risk assessments and managing vendor relationships. Experience with assisting with audits Excellent analytical and problem-solving skills. Excellent communication and interpersonal skills. Ability to work independently and as part of a team
The Economist Group values diversity. We are committed to equal opportunities and creating an inclusive environment for all our employees. We welcome applicants regardless of ethnic origin, national origin, gender, gender identity, race, colour, religious beliefs, disability, sexual orientation , age or marital status.
-
Cyber Risk and Compliance Analyst
3 weeks ago
Gurugram, India The Economist Full timeIntroduction The Economist Group is the leading source of analysis on international business and world affairs. We deliver our information through a range of formats, from newspapers and magazines to conferences and electronic services. The Information Security team operates the Information Security Program and is responsible for the standard of...
-
Governance Risk and Compliance Reporting Analyst
3 hours ago
gurugram, India dunnhumby Full timeWe’re looking for a who expects more from their career . You will work with dunnhumby’s Governance Risk and Compliance leadership to promote a proactive approach to risk management in the business. The role’s primary focus with the cyber risk domain is risk assessment and alignment to the NIST security framework, whilst assisting the risk...
-
Cyber Security Analyst
3 weeks ago
Gurugram, India The Economist Full timeIntroduction Job Title: Cyber Security Analyst (Security Awareness focus) The Economist Group is the leading source of analysis on international business and world affairs. We deliver our information through a range of formats, from newspapers and magazines to conferences and electronic services. The Information Security team operates the...
-
Cyber Security Analyst
3 weeks ago
gurugram, India The Economist Full timeIntroduction Job Title: Cyber Security Analyst (Security Awareness focus) The Economist Group is the leading source of analysis on international business and world affairs. We deliver our information through a range of formats, from newspapers and magazines to conferences and electronic services. The Information Security team operates...
-
Senior Analyst || Risk
3 weeks ago
Gurugram, India NAB Full timeExperience & Skills Required5+ years’ experience working in risk management/compliance/internal control or external audit or equivalentThorough knowledge of risk management and compliance disciplinesExcellent verbal, written and interpersonal communication skills, ability to collaborate and network effectively in a team environmentInternal control/audit...
-
Senior Analyst || Risk
3 weeks ago
Gurugram, India NAB Full timeExperience & Skills Required5+ years’ experience working in risk management/compliance/internal control or external audit or equivalentThorough knowledge of risk management and compliance disciplinesExcellent verbal, written and interpersonal communication skills, ability to collaborate and network effectively in a team environmentInternal control/audit...
-
Senior Analyst || Risk
3 weeks ago
gurugram, India NAB Full timeExperience & Skills Required 5+ years’ experience working in risk management/compliance/internal control or external audit or equivalent Thorough knowledge of risk management and compliance disciplines Excellent verbal, written and interpersonal communication skills, ability to collaborate and network effectively in a team environment Internal...
-
Sr. Executive
4 weeks ago
Gurugram, India Airtel Full timeReview of policy and procedure with implementation across organization In depth knowledge of risk management with good knowledge of handling external and internal risks Work with cyber risk quantification and integrate with existing risk management process. Should be able to quantify risks and define criticality. Work with the internal teams to...
-
Sr. Executive
4 weeks ago
gurugram, India Airtel Full timeReview of policy and procedure with implementation across organization In depth knowledge of risk management with good knowledge of handling external and internal risks Work with cyber risk quantification and integrate with existing risk management process. Should be able to quantify risks and define criticality. Work with the internal teams to...
-
Analyst, Compliance
2 weeks ago
Gurugram, India GLG Full timeJob Description - Analyst GLG is currently seeking an Analyst to join our Gurugram, India office within the global Compliance department, comprised of over 70 professionals. In this role you will develop strong actionable business skills – including time management, prioritization, communication, negotiation, problem solving, and project management. At...
-
Analyst, Compliance
4 weeks ago
Gurugram, India GLG Full timeJob Description - Analyst (Compliance) GLG is currently seeking an Analyst to join our Gurugram, India office within the global Compliance department, comprised of over 70 professionals. In this role you will develop strong actionable business skills – including time management, prioritization, communication, negotiation, problem solving, and project...
-
Analyst - Risk and Compliance
4 days ago
Gurugram, India Wipro Full timeResponsibilities:Analyzing investment guidelines and interpret them to build logic-based rules to implement into automated investment compliance system for monitoring.Deliver daily/monthly/quarterly compliance reports to PM team for the new violations across all investment policies.Support onshore team by assisting them in post trade compliance monitoring...
-
Analyst - Risk and Compliance
5 days ago
Gurugram, India Wipro Full timeResponsibilities:Analyzing investment guidelines and interpret them to build logic-based rules to implement into automated investment compliance system for monitoring.Deliver daily/monthly/quarterly compliance reports to PM team for the new violations across all investment policies.Support onshore team by assisting them in post trade compliance monitoring...
-
Analyst - Risk and Compliance
4 days ago
Gurugram, India Wipro Full timeResponsibilities: Analyzing investment guidelines and interpret them to build logic-based rules to implement into automated investment compliance system for monitoring. Deliver daily/monthly/quarterly compliance reports to PM team for the new violations across all investment policies. Support onshore team by assisting them in post trade compliance...
-
Cyber Security Analyst
3 weeks ago
Gurugram, India AXA Group Full timeAXA XL has as an objective to enhance its security posture across all domains of information security to increase not only its technical capabilities in defending against cyber-attacks, but also to increase its brand value by becoming a leader in information security in relation to peers both within the AXA fold but and also to its partners and competitors....
-
Cyber Security Analyst
3 weeks ago
gurugram, India AXA Group Full timeAXA XL has as an objective to enhance its security posture across all domains of information security to increase not only its technical capabilities in defending against cyber-attacks, but also to increase its brand value by becoming a leader in information security in relation to peers both within the AXA fold but and also to its partners and competitors....
-
Risk & Compliance
4 weeks ago
Gurugram, India Axtria - Ingenious Insights Full timePosition: Risk and Compliance (ISMS) (Strong individual contributor with solid internal audit experience on cloud)Location: Gurgaon/NOIDA/BangaloreDesired experience: 2-4 yearsJob description:2-4 years of experience in auditing as per ISO 27001/ SOC 1/SOC 2 ITGC control framework. Understanding of IT/SAAS related security, good in creating and automating...
-
Risk & Compliance
4 weeks ago
Gurugram, India Axtria - Ingenious Insights Full timePosition: Risk and Compliance (ISMS) (Strong individual contributor with solid internal audit experience on cloud)Location: Gurgaon/NOIDA/BangaloreDesired experience: 2-4 yearsJob description:2-4 years of experience in auditing as per ISO 27001/ SOC 1/SOC 2 ITGC control framework. Understanding of IT/SAAS related security, good in creating and automating...
-
Risk & Compliance
4 weeks ago
Gurugram, India Axtria - Ingenious Insights Full timePosition: Risk and Compliance (ISMS) (Strong individual contributor with solid internal audit experience on cloud) Location: Gurgaon/NOIDA/Bangalore Desired experience: 2-4 years Job description: 2-4 years of experience in auditing as per ISO 27001/ SOC 1/SOC 2 ITGC control framework. Understanding of IT/SAAS related security, good in creating and...
-
It Risk Compliance Governance _src
4 weeks ago
Gurugram, India Nityo Infotech Full timeCommunication , Hiring , Leadership , Linux , Microsoft Office , Management , Oracle , PowerPoint , Project Management , SQL , Strategy , Teamwork , Unix , Visio , Windows , Ability , Accurate , Advanced , Analysis , Applications , Apply , Applying , Approach , Aptitude , Best Practices , Business , Business Applications , CISA , CISSP , CSF , Certifications...