Grc Auditor

7 months ago

Gurugram Haryana, India Netrika, Consulting and Investigations Full time

**Designation**: Assistant Manager/ Manager

**Department**: Cyber Security

**Location**: Gurugram

**Certification**: ISO27001 LA Certification along with a CISA/CISSP/CCSP (or Equivalent)

**Required Skills**:
Firsthand experience on any Sector based compliance (RBI/IRDA/PCI/SEBI/CEA/NHB etc.) shall be an added advantage

Working knowledge on tools like Burp, Nessus, Nmap, Nipper, Metasploit etc., and any other tools (latest) in Cyber Security Audit and Management shall be an added advantage.

Basic scripting knowledge in any language a plus (Added Advantage)

Excellent communication and analytical skills to face clients directly during projects.

Good report making skills (written and verbal communication) and able to face clients directly during projects.

**Experience**:
5-10 years of post
- qualification experience on Cyber Security Projects.

Knowledge of ISMS framework along with knowledge on IT Governance, IT Risks and Security/Privacy Compliances.

Knowledge of Security configurations (best practices), policy, procedures and SOPs

Capability for verification of adequacy for regulatory compliance with respect to ISO 27001, NIST Framework, PCI-DSS, GDPR and other Privacy Guidelines

Security Risk Assessment (including Cloud Environment)

Security assurance on the Firewall/VPN/Perimeter Security (incl Cloud Environment)Information Security Responsibility and Day-to-day Operations and Approvals

Data Lifecycle Management - Creation, Retention and Disposal

Supporting ICT in solution evaluation and building/finalizing security requirements

Knowledge on third-party vendor risk management Client Security Assessments. Includes New Supplier Security Assessment during Onboarding

Day to day management of ICT security issues e.g., EoL/EoS, Patch Management, oversight of security task etc.

User entitlement reviews / theme-based reviews. Access control experience - Active Directory, LDAP, RBAC, Privileged Access, etc.

Capable of monitoring and reviewing Monthly/Quarterly Security Vulnerability Program, including Penetration Testing and Remediation Management

Support Global Information Risk Management initiatives

Representation in various Cyber Security forums/round tables (discuss on the cyber threats)

Security Consultation and guidance to the ICT and Business

Privacy and Data Leak Projects including involvement on Information Classification

Information Security Incident Reporting

Understanding of Incident and Problem Management, Audit Logs and Trail Logs.

Able to review cyber-attack surface and suggest safeguards and carry out cyber investigations

Experience on Business Continuity & DR Policies, Procedures and Plan. Experience on verification of Backup & Restoration procedure, evidence verification, BIA and its analysis, BCP/DR Test and Result.

Conversant on sharing Information Security Mailers and and conducting internal Trainings

Knowledge on Cloud based Infrastructure & privacy Requirements

Willingness to Travel

  • GRC Specialist

    1 month ago

    Gurugram, India Cubical Operations LLP Full time

    Job Description : GRC SpecialistLocation : Mumbai, Pune, Gurgaon, BangaloreExperience Required : 3+ yearsKey Responsibilities : 1. Third-Party Risk Management (TPRM) : - Develop and implement comprehensive TPRM frameworks and strategies.- Conduct risk assessments of third-party vendors and service providers.- Monitor and manage third-party risks, ensuring...

  • Manager - GRC Tools

    4 weeks ago

    Gurugram, India Clix Cap Full time

    Job Overview:We are seeking a skilled and experienced IT Infrastructure and Governance, Risk, and Compliance (GRC) Specialist to join our team. The ideal candidate will have a proven track record in managing and optimizing IT infrastructure, Network while ensuring compliance with industry regulations and best practices. Person will be responsible for...

  • SAP Governance Risk and Compliance

    3 months ago

    Gurugram, Haryana, India Dwaith Infotech Pvt Ltd Full time

    Hi We are Immediately Hiring for SAP GRC SUPPORT CONSULTANT **Minimum of 5 years of experience in a full cycle implementation as well as in support projects.** - **At least 5 years’ experience SAP-GRC.**: - **Having experience in Cloud**: - **Having experience of Upgrade/ Migration**: - Ability to multitask and manage multiple deliverables and projects...

  • IT Assurance

    7 months ago

    Gurugram, Haryana, India Siemens Energy Full time

    **A Snapshot of Your Day****: As an IT Assurance Expert, you will be part of the global IT Assurance team at Siemens Energy. Your role will involve advising IT Service Owners and IT Contract Managers on how IT process and control assurance is provided to internal and external auditors to achieve annual audit requirements efficiently. You will collaborate...

  • Risk Advisory Internal Audit Executive

    6 months ago

    Gurugram, Haryana, India KPMG Full time

    **About KPMG in India** **_KPMG entities in India are professional services firm(s). These Indian member firms are affiliated with KPMG International Limited. KPMG was established in India in August 1993. Our professionals leverage the global network of firms, and are conversant with local laws, regulations, markets and competition. KPMG has offices across...

  • Governance, Risk and Compliance Specialist

    4 weeks ago

    Gurugram, India apexanalytix Full time

    Quick Take :We are seeking a skilled and motivated GRC (Governance, Risk, and Compliance) Specialist to join our team. The ideal candidate will have a strong background in Third-Party Risk Management (TPRM), SOC 1 and SOC 2 audits, ISO/IEC 27001, and SSAE 18 frameworks. This role is crucial in ensuring compliance with regulatory requirements, industry...

  • Governance, Risk and Compliance Specialist

    4 weeks ago

    Gurugram, India apexanalytix Full time

    Quick Take :We are seeking a skilled and motivated GRC (Governance, Risk, and Compliance) Specialist to join our team. The ideal candidate will have a strong background in Third-Party Risk Management (TPRM), SOC 1 and SOC 2 audits, ISO/IEC 27001, and SSAE 18 frameworks. This role is crucial in ensuring compliance with regulatory requirements, industry...

  • Business Process

    7 months ago

    Gurugram, Haryana, India Boston Scientific Corporation Full time

    **Work mode**:Hybrid**Onsite Location(s)**:Gurgaon, HR, IN**Additional Locations**: India-Haryana, Gurgaon**Diversity - Innovation - Caring - Global Collaboration - Winning Spirit - High Performance** - At Boston Scientific, we’ll give you the opportunity to harness all that’s within you by working in teams of diverse and high-performing employees,...

  • UnitedLex | Information Security Analyst

    4 days ago

    gurugram, India UnitedLex Full time

    About Us UnitedLex India Pvt Ltd(erstwhile iRunway India Pvt Ltd) is a data and professional services company delivering outcomes that create value and competitive advantage for legal and the business. Our business is anchored by a passion for innovation brought to life by a global community of diverse individuals determined to deliver on the promise of data...

  • Ankura Consulting Group

    1 month ago

    Gurgaon/Gurugram, India Ankura Consulting Group, LLC Full time

    Responsibilities :- Executing IT security risk assessments using industry standards and frameworks (e.- NIST, ISO/IEC 27002, etc), data security and privacy regulations (e.g PCI, HIPAA).- Identification, measuring, communicating, and prioritizing information security risks across the enterprise using a common framework that would be used for communicating...