
Information Security Assessor
1 day ago
**JOB DESCRIPTION**
You’re ready to gain the skills and experience needed to grow within your role and advance your career
**Job Summary**:
The scope of work includes control assessments for the various programs covering Financial (SOX, CCAP etc.), Payment Card (PCI), Cyber, Privacy (GLBA, GDPR etc.), Application (ARA) and Infrastructure (ICA) across both Regulatory and Organizational Compliance needs. These control assessments comply with relevant global regulations and JPMC information security policies, procedures and standards catering to technology teams for all Lines of Business (LOB) in the organization.
**Job responsibilities**
- Conduct high quality control assessment operations for Global Technology across annual firm wide regulatory programs ( Financial (SOX, CCAP, etc.), Privacy (GLBA, GDPR, etc.), Payments (PCI), AND Internal compliance to Application and Infrastructure Control Domains
- Integral part of a team responsible for execution of annual firm wide SOX/ CCAP program, testing the evidence of the controls and identifying any significant control deficiencies, working with the appropriate Assessment leads/ Technology Control Officer to identify appropriate remediation to improve the controls as necessary.
- Integral part of a team for execution of firm wide PCI DSS compliance program and provide end-to-end control oversight, assurance of compliance with requirements of the Data Security Standard, as well as risk and issue management and analysis.
- Work with technology teams to walkthrough, gather control design requirements facilitate discussions and bring to closure control issues.
- Advise Lines of Business (LOBs), based on the testing their results to ensure they are in compliance with the Firm's guidelines. Communicate issues and evaluate issues/findings and best practices with the rest of the team and manager. Perform QC reviews of control testing working papers.
**Required qualifications, capabilities, and skills**
- Bachelor's degree preferably in Computer Science or Information Technology. Minimum 5+ years of applied internal or external technology audit experience ("Big 4" experience preferred)
- Have a strong background in Auditing, understanding of internal controls, particularly General Computer Controls (GCC).
- Have an ability to effectively develop and communicate recommendations based on SOX Corporate Office (SCO) guidance.
- Experience in Application assessment and control testing. Experience in PCI DCC compliance requirement and control testing.
- Be detail oriented with ability to evaluate processes, controls and issues to determine the risks.
- Have an ability to maintain high standards with a drive to achieve the right answer in difficult and/or ever changing situations.
- Can work independently, collaborate within a team and is comfortable in a virtual environment.
**Preferred qualifications, capabilities, and skills**
- Proficient verbal and written communication skills, including the ability to effectively lead discussions and meetings with internal management, external/ internal audit and peer groups.
- Strong interpersonal skills - verbal communications, written communications, and a good track record of collaboration.
- Proficient in MS Office - Microsoft Word, Excel, Access and PowerPoint. CISA, CISSP, CISM, CRISC certification will be an added advantage.
- Should have reasonable knowledge of APAC technology regulatory requirements
**ABOUT US**
JPMorgan Chase & Co., one of the oldest financial institutions, offers innovative financial solutions to millions of consumers, small businesses and many of the world’s most prominent corporate, institutional and government clients under the J.P. Morgan and Chase brands. Our history spans over 200 years and today we are a leader in investment banking, consumer and small business banking, commercial banking, financial transaction processing and asset management.
We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. In accordance with applicable law, we make reasonable accommodations for applicants’ and employees’ religious practices and beliefs, as well as any mental health or physical disability needs.
**ABOUT THE TEAM**
The Cybersecurity & Technology Controls group at JPMorgan Chase aligns the firm’s cybersecurity, access management, controls and resiliency teams. The group proactively and strategically partners with all lines of business and functions to enable them to design, adopt and integrate appropriate controls; deliver processe
-
Information Security Risk Assessor
4 weeks ago
Bengaluru, India eliterecruitments Full time**Information Security Risk Assessor (ISRA)**: We are looking for an Information Security Risk Assessor (ISRA) to join our client’s team. In this role, you will play a crucial part in securing our projects by design through the delivery of Information Security Assurance Plans based on ISO Risk Management principles. **Location -...
-
Information Security Risk Assessor
9 hours ago
Bengaluru, India JPMorgan Chase & Co Full time**JOB DESCRIPTION** You’re ready to gain the skills and experience needed to grow within your role and advance your career **Job Summary**: As an Information Security Risk Assessor with GT Controls Office Team, your primary responsibility will be to support firm wide technology and regulatory assessments, conduct various assessments/controls testing and...
-
Information Security Assessor
4 weeks ago
Bengaluru, India JPMorgan Chase Bank, N.A. Full timeThe scope of work includes control assessments for the various programs covering Financial (SOX, CCAP etc.), Payment Card (PCI), Cyber, Privacy (GLBA, GDPR etc.), Application (ARA) and Infrastructure (ICA) across both Regulatory and Organizational Compliance needs. These control assessments comply with relevant global regulations and JPMC information...
-
Cybersecurity Governance Assessor
2 weeks ago
Bengaluru, Karnataka, India Hewlett Packard Full time**Job Title: Senior Cybersecurity Risk Assessor** As the world around us becomes more connected and digital, cybersecurity attacks increase opportunities for fraud and disruption. In this constantly changing landscape, the need for companies, products, and services to be secure is more important than ever. Are you passionate about keeping good people safe...
-
Information Security Manager
7 days ago
Bengaluru, Karnataka, India Elytra Security Private Limited Full timeJob Title: ISO 27001 Implementation ConsultantElytra Security Private Limited is a specialized consultancy firm dedicated to helping organizations strengthen their information security and achieve compliance with globally recognized standards. With expertise in ISO 27001 implementation and Cyber Security Controls Framework consulting, we deliver tailored...
-
Aspice Provisional Assessor
6 days ago
Bengaluru, Karnataka, India Aptiv plc Full time**Job Description**: ASPICE Provisional Assessor Help shape the future of mobility. Imagine a world with zero vehicle accidents, zero vehicle emissions, and wireless vehicle connectivity all around us. Every day, we move closer to making that world a reality. Aptiv’s passionate team of engineers and developers creates advanced safety systems,...
-
Cybersecurity Third-party Risk Assessor
1 day ago
Bengaluru, Karnataka, India Hewlett Packard Full timeAs the world around us becomes more connected and digital, cybersecurity attacks increase opportunities for fraud and disruption. In this constantly changing landscape, the need for companies, products, and services to be secure is more important than ever. Are you passionate about keeping good people safe from bad actors? We are, too! We are HP...
-
Aspice Junior Quality Assessor
3 days ago
Bengaluru, Karnataka, India Aptiv plc Full timeASPICE Junior Assessor Help shape the future of mobility. Imagine a world with zero vehicle accidents, zero vehicle emissions, and wireless vehicle connectivity all around us. Every day, we move closer to making that world a reality. Aptiv’s passionate team of engineers and developers creates advanced safety systems, high-performance electrification...
-
Automotive Cybersecurity Compliance Expert
9 hours ago
Bengaluru, India Argus Cyber Security Full time**Who are we?** Argus Cyber Security is a global leader in the automotive cyber security industry. We protect drivers & manufacturers from cyber attacks on their vehicles. We use top notch technology & have several products for inside & outside the car. Our growing team is built of talented thinkers and we are always looking for more! **Why Argus?** -...
-
Security Assessor
2 weeks ago
Bengaluru, India ADCI - Karnataka Full timeBachelor’s degree in Management Information Systems, Computer Science or relevant field. Master’s Degree preferred. - 8+ years of relevant industry experience including information assurance, data privacy and compliance (preferably in payments and healthcare domains). - 3+ years of information security governance, audit, risk management or related client...
-
Data Privacy Security
3 days ago
Bengaluru, India Black & White Business Solutions Full time**Job Information**: Industry **IT Services** *** Province **Karnataka** *** City **Bangalore North** *** Postal Code **560001** *** Country **India** We have opening for DATA PRIVACY SECURITY with one of our client, pls find the details below. - Must have skills : CISSP Certified, Data Privacy and Security, Experience in privacy by design, Risk...
-
Cerulean Information Technology
3 weeks ago
Bengaluru, India Cerulean Information Technology Pvt Ltd Full timeKey Responsibilities : - Evaluate and review security risks for enterprise networks in a fast-paced environment.- Design and implement secure network architectures, including firewalls, intrusion detection/prevention systems (IDS/IPS), Virtual Private Networks (VPNs), and other security-related network devices.- Collaborate with cross-functional teams to...
-
Security Analyst – Compliance
2 weeks ago
Bengaluru, Karnataka, India Signzy Full timeJob Title Security Analyst – Compliance & Audit Key Responsibilities Conduct security assessments and audits for banks and financial institutions to ensure compliance with industry standards and regulations. Develop and implement security policies aligned with ISO 27001, PCI-DSS, SOC 2, NIST, GDPR, FFIEC, RBI, MAS TRM, PSD2, and other banking compliance...
-
Security Analyst – Compliance
2 weeks ago
Bengaluru, India Signzy Full timeJob Title Security Analyst – Compliance & Audit Key Responsibilities Conduct security assessments and audits for banks and financial institutions to ensure compliance with industry standards and regulations. Develop and implement security policies aligned with ISO 27001, PCI-DSS, SOC 2, NIST, GDPR, FFIEC, RBI, MAS TRM, PSD2, and other banking compliance...
-
Information Security Specalist
9 hours ago
Bengaluru, India Bosch Group Full timeCompany Description Robert Bosch Engineering and Business Solutions Private Limited **Job Description**: **Primary Responsibilities and Accountability**: - Adherence to information security & privacy related concept of the business unit - Support the business owner in ensuring the business operations are as per the security expectations set - corporate,...
-
Information Security Engineer
3 days ago
Bengaluru, Karnataka, India Lowe's Full timeJob SummaryThe primary purpose of this role is to support the design, implementation, and ongoing operation of information security tools and services. This includes leading the process of translating business and technical requirements into robust enterprise security software solutions that ensure information assets are adequately protected with acceptable...
-
Information Security Administrator
19 hours ago
Bengaluru, Karnataka, India myGwork Full timeThis job is with State Street, an inclusive employer and a member of myGwork – the largest global platform for the LGBTQ+ business community. Please do not contact the recruiter directly. Role Summary & Role Description The Information Security Administrator (ISA) will support business units in their efforts to comply with GCS security policy and required...
-
Information Security Specialist
5 days ago
Bengaluru, Karnataka, India Locus Full timeCompany OverviewLocus is a leading logistics optimization platform that empowers enterprises to execute over a billion deliveries across 30+ countries. Founded in 2015, Locus has evolved from a women's safety geo-tracking app into a globally recognized technology company.Job DescriptionWe are seeking an experienced Information Security Officer to join our...
-
Information Security Engineer
4 days ago
Bengaluru, Karnataka, India HyrEzy Talent Solutions Full timeRoles & Responsibilities (BSc. IT, BE) with Information Security Certifications - CISM, CISSPEXPERIENCE :- Candidate must have strong experience in Information Security Management system, Policy & procedures creation, implementation- ISO27001 assessment - Specification for a framework of policies procedures that include all technical & operational controls-...
-
Information Security Professional
3 days ago
Bengaluru, India Siemens Healthineers Full timePosition Overview for an Information Security Professional The ISEC Coordinator has a very good expertise in Information Security and Data Protection. He or she provides support as well as guidance and advice for the protection of data, systems and the organization for the Business. He or she is also responsible for the ISEC request handling and acts as an...