Lead- Information security, Risk and Compliance
4 weeks ago
Position Summary:
The Security Compliance Specialist is responsible for managing all compliance related activities within the Whatfix platform and supporting other global compliance related initiatives. Compliance activities will include coordinating internal and external assessments/audits, contributing to policy and standards updates, developing compliance framework and producing compliance reports, metrics, scorecards and dashboards. This position will require some technical background with appropriate security training/skills.
Responsibilities:
Lead, manage and improve security compliance program for Whatfix
Coordinate external audits and customer assessments of Whatfix platform
Develop compliance strategy in alignment with business requirements, objectives and metrics
Translate legal, statutory and contractual obligations into a cohesive collection of processes and provide the respective stakeholders with the compliance requirements and methodologies
Interface with management and partner with groups such as Engineering, operations and Customer Success on how to best improve security compliance and reduce risk
Use key business measurements to identify and drive process improvement opportunities for compliance and risk management
Review and update security policies and standards on a regular basis to address new threats, new industry practices, requirements and standards based on security and compliance requirements
Coordinate regular system and network audits, reviews, and tests to verify compliance with security policies and standards
Conduct and/or interpret network, system and application Audits/assessments and track through to remediation
Monitor internal and external security advisories that impact security, risk and compliance requirements
Support the implementation of security controls and recommend areas for risk reduction
Support RFP and contractual agreements process in assessing security requirements from potential customers
Develop and enhance an information security, risk & compliance management framework based on CobIT/Risk IT, NIST, ISO and CSA CCM/STAR, FEDRAMP
Manage updates to the external and internal security portals
Assist and improve security awareness program
Assist and improve governance activities
Evaluate suspected security breaches, work with subject matter experts, and recommend corrective actions
Skills and Experience Required:
At least 6-8+ years of experience in information security, compliance, audit and/or risk management
End-to-end security experience including web, application, network, OS and database
Knowledge of security issues, trends, best practices
Familiarity with audit, business and segregation of duties, risks, and controls
Ability to foresee and identify mitigation strategies for risks
Knowledge in at least 2 of security industry standards such as SSAE18/SOC2, ISO 27001, PCI-DSS, NIST and CSA CCM/STAR, FEDRAMP mandatory
Working knowledge in one or more privacy laws such as GLBA, HIPAA, GDPR, CCPA is important.
Excellent communication and presentation skills
Ability to communicate well up to line management and also motivate technical teams
Ability to work autonomously with flexibility and excellent judgment
Ability to work effectively under pressure to meet deadlines
Ability to solve problems quickly and automate processes
Ability to work cooperatively as part of a team
Education:
Bachelor's degree in computer science, information technology or other related major required
ISO 27001 Internal Auditor
CISM/ CISA
-
Risk Security Compliance Analyst
6 days ago
bangalore, India Talent Ocean Full timeClient : MNCPayroll: Third partyBudget : As per marketstandardsExperience : 36 YearsNP : Immediate to April joinersonlyLocation : BangaloreWFORisk Security &Compliance Analyst Certification : ISO 27001 LI CISSP / CISM / CISA IAMConsultant JobResponsibilities: Implementation of ISMSacross the organization working in European time zone driving thetopics and...
-
Information Security Risk Analyst
3 weeks ago
bangalore, India Take-Two Interactive Software Full timeAbout the Position Job Title: Information Security Risk Analyst Who We Are: Take-Two Interactive Software, Inc. is a leading developer, publisher, and marketer of interactive entertainment for consumers around the globe. For more than 25 years, our development teams have created some of the most critically acclaimed and commercially...
-
Information Security Risk Analyst
3 weeks ago
bangalore, India Take-Two Interactive Software Full timeAbout the Position Job Title: Information Security Risk Analyst Who We Are: Take-Two Interactive Software, Inc. is a leading developer, publisher, and marketer of interactive entertainment for consumers around the globe. For more than 25 years, our development teams have created some of the most critically acclaimed and commercially...
-
Information Security Risk Analyst
4 weeks ago
bangalore, India Take-Two Interactive Software Full timeAbout the Position Job Title: Information Security Risk Analyst Who We Are: Take-Two Interactive Software, Inc. is a leading developer, publisher, and marketer of interactive entertainment for consumers around the globe. For more than 25 years, our development teams have created some of the most critically acclaimed and commercially...
-
Information Security Risk Analyst
4 weeks ago
bangalore, India Take-Two Interactive Software Full timeAbout the Position Job Title: Information Security Risk Analyst Who We Are: Take-Two Interactive Software, Inc. is a leading developer, publisher, and marketer of interactive entertainment for consumers around the globe. For more than 25 years, our development teams have created some of the most critically acclaimed and commercially...
-
Team Lead- Information Security Risk Management
3 weeks ago
bangalore, India Take-Two Interactive Software Full timeAbout the Position Job Title: Team Lead- Information Security Risk Management Who We Are: Take-Two Interactive Software, Inc. is a leading developer, publisher, and marketer of interactive entertainment for consumers around the globe. For more than 25 years, our development teams have created some of the most critically acclaimed and...
-
Team Lead- Information Security Risk Management
4 weeks ago
bangalore, India Take-Two Interactive Software Full timeAbout the Position Job Title: Team Lead- Information Security Risk Management Who We Are: Take-Two Interactive Software, Inc. is a leading developer, publisher, and marketer of interactive entertainment for consumers around the globe. For more than 25 years, our development teams have created some of the most critically acclaimed and...
-
bangalore, India Tredence Inc. Full timeAbout TredenceTredence is a data science and AI engineering company focused on solving the last-mile problem in analytics. We define ‘last mile’ as the gap between insight creation and value realization. Tredence is now 2000+ employees strong with offices in Foster City, Chicago, London, Toronto, and Bangalore, Chennai, Pune, Kolkata, Gurgaon serving...
-
bangalore, India Tredence Inc. Full timeAbout TredenceTredence is a data science and AI engineering company focused on solving the last-mile problem in analytics. We define ‘last mile’ as the gap between insight creation and value realization. Tredence is now 2000+ employees strong with offices in Foster City, Chicago, London, Toronto, and Bangalore, Chennai, Pune, Kolkata, Gurgaon serving...
-
bangalore, India Tredence Inc. Full timeAbout Tredence Tredence is a data science and AI engineering company focused on solving the last-mile problem in analytics. We define ‘last mile’ as the gap between insight creation and value realization. Tredence is now 2000+ employees strong with offices in Foster City, Chicago, London, Toronto, and Bangalore, Chennai, Pune, Kolkata, Gurgaon serving...
-
bangalore, India Paradise Placement Consultancy Full timeJob Description: Job Title: Infosec Lead Department: IT Level/Designation Manager/Sr. Manager Position Type: Full Time Job Overview This role is responsible for implementing processes such as GRC to automate and continuously monitor the information security controls, risks, etc. Evaluates the firm to ensure compliance with security...
-
bangalore, India Paradise Placement Consultancy Full timeJob Description: Job Title: Infosec Lead Department: IT Level/Designation Manager/Sr. Manager Position Type: Full Time Job Overview This role is responsible for implementing processes such as GRC to automate and continuously monitor the information security controls, risks, etc. Evaluates the firm to ensure compliance with security...
-
Risk and Compliance Manager
2 weeks ago
bangalore, India JLL Full timeJob Description : Risk and Compliance Manager Job Overview: As a Risk and Compliance Manager, you will be responsible for ensuring regulatory compliance, mitigating risk, and maintaining a robust compliance program across various areas, including contract compliance, ISO oversight, procedure compliance, data compliance, and auditing. Your role will...
-
Director Information Security
3 weeks ago
bangalore, India AMEX Full timeYou Lead the Way. Weve Got Your Back. With the right backing, people and businesses have the power to progress in incredible ways. When you join Team Amex, you become part of a global and diverse community of colleagues with an unwavering commitment to back our customers, communities and each other. Here, youll learn and grow as we help you create a...
-
Director Information Security
3 weeks ago
bangalore, India American Express Full timeYou Lead the Way. We’ve Got Your Back. With the right backing, people and businesses have the power to progress in incredible ways. When you join Team Amex, you become part of a global and diverse community of colleagues with an unwavering commitment to back our customers, communities and each other. Here, you’ll learn and grow as we help you...
-
Risk and Compliance Lead
4 weeks ago
Bangalore City, India Kenvue Full timeDescription Kenvue is currently recruiting for: Risk and Compliance Manager This position reports into GCC Head and is based at Bangalore. Who we are At Kenvue, we realize the extraordinary power of everyday care. Built on over a century of heritage and rooted in science, we’re the house of iconic brands - including NEUTROGENA®, AVEENO®, TYLENOL®,...
-
Information Security
3 weeks ago
bangalore, India Nityo Infotech Full timeAuditing , Communication , English , Management , Risk Management , Training , Testing , Ability , Activities , Adaptability , Administrative , Application , Application Security , Auditing , Awareness , Business , Business Continuity , Business Continuity Planning , CISA , CISSP , Certifications , Change , Client , Cloud , Cloud Security , Communication ,...
-
Information Security
2 months ago
bangalore, India Nityo Infotech Full timeAuditing , Communication , English , Management , Risk Management , Training , Testing , Ability , Activities , Adaptability , Administrative , Application , Application Security , Auditing , Awareness , Business , Business Continuity , Business Continuity Planning , CISA , CISSP , Certifications , Change , Client , Cloud , Cloud Security , Communication ,...
-
Lead - IT Risk Compliance & Info Security
2 weeks ago
bangalore, India First Advantage Full timeAt First Advantage (Nasdaq: FA), people are at the heart of everything we do. From our customers and partners to our greatest advantage — our team members. Operating with empathy and compassion, First Advantage fosters a global inclusive workforce devoted to the diverse voices that make up our talent and products. Our team members empower each other to be...
-
Information Security
3 weeks ago
bangalore, India Nityo Infotech Full timeAuditing , Communication , English , Hiring , Interviewing , Leadership , Management , Newsletters , Risk Management , Risk Assessment , Testing , Ability , Activities , Adaptability , Address , Administrative , Analysis , Annual , Assessment , Associates , Auditing , Author , Availability , Awareness , Bangalore , Basis , Blogs , Bulletins , Business , CISA...
