Information Security Assessor

1 day ago


Bengaluru, India JPMorgan Chase & Co Full time

**JOB DESCRIPTION**
You’re ready to gain the skills and experience needed to grow within your role and advance your career

**Job Summary**:
The scope of work includes control assessments for the various programs covering Financial (SOX, CCAP etc.), Payment Card (PCI), Cyber, Privacy (GLBA, GDPR etc.), Application (ARA) and Infrastructure (ICA) across both Regulatory and Organizational Compliance needs. These control assessments comply with relevant global regulations and JPMC information security policies, procedures and standards catering to technology teams for all Lines of Business (LOB) in the organization.

**Job responsibilities**
- Conduct high quality control assessment operations for Global Technology across annual firm wide regulatory programs ( Financial (SOX, CCAP, etc.), Privacy (GLBA, GDPR, etc.), Payments (PCI), AND Internal compliance to Application and Infrastructure Control Domains
- Integral part of a team responsible for execution of annual firm wide SOX/ CCAP program, testing the evidence of the controls and identifying any significant control deficiencies, working with the appropriate Assessment leads/ Technology Control Officer to identify appropriate remediation to improve the controls as necessary.
- Integral part of a team for execution of firm wide PCI DSS compliance program and provide end-to-end control oversight, assurance of compliance with requirements of the Data Security Standard, as well as risk and issue management and analysis.
- Work with technology teams to walkthrough, gather control design requirements facilitate discussions and bring to closure control issues.
- Advise Lines of Business (LOBs), based on the testing their results to ensure they are in compliance with the Firm's guidelines. Communicate issues and evaluate issues/findings and best practices with the rest of the team and manager. Perform QC reviews of control testing working papers.

**Required qualifications, capabilities, and skills**
- Bachelor's degree preferably in Computer Science or Information Technology. Minimum 5+ years of applied internal or external technology audit experience ("Big 4" experience preferred)
- Have a strong background in Auditing, understanding of internal controls, particularly General Computer Controls (GCC).
- Have an ability to effectively develop and communicate recommendations based on SOX Corporate Office (SCO) guidance.
- Experience in Application assessment and control testing. Experience in PCI DCC compliance requirement and control testing.
- Be detail oriented with ability to evaluate processes, controls and issues to determine the risks.
- Have an ability to maintain high standards with a drive to achieve the right answer in difficult and/or ever changing situations.
- Can work independently, collaborate within a team and is comfortable in a virtual environment.

**Preferred qualifications, capabilities, and skills**
- Proficient verbal and written communication skills, including the ability to effectively lead discussions and meetings with internal management, external/ internal audit and peer groups.
- Strong interpersonal skills - verbal communications, written communications, and a good track record of collaboration.
- Proficient in MS Office - Microsoft Word, Excel, Access and PowerPoint. CISA, CISSP, CISM, CRISC certification will be an added advantage.
- Should have reasonable knowledge of APAC technology regulatory requirements

**ABOUT US**

JPMorgan Chase & Co., one of the oldest financial institutions, offers innovative financial solutions to millions of consumers, small businesses and many of the world’s most prominent corporate, institutional and government clients under the J.P. Morgan and Chase brands. Our history spans over 200 years and today we are a leader in investment banking, consumer and small business banking, commercial banking, financial transaction processing and asset management.

We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our success. We are an equal opportunity employer and place a high value on diversity and inclusion at our company. We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable law. In accordance with applicable law, we make reasonable accommodations for applicants’ and employees’ religious practices and beliefs, as well as any mental health or physical disability needs.

**ABOUT THE TEAM**

The Cybersecurity & Technology Controls group at JPMorgan Chase aligns the firm’s cybersecurity, access management, controls and resiliency teams. The group proactively and strategically partners with all lines of business and functions to enable them to design, adopt and integrate appropriate controls; deliver processe



  • Bengaluru, India eliterecruitments Full time

    **Information Security Risk Assessor (ISRA)**: We are looking for an Information Security Risk Assessor (ISRA) to join our client’s team. In this role, you will play a crucial part in securing our projects by design through the delivery of Information Security Assurance Plans based on ISO Risk Management principles. **Location -...


  • Bengaluru, India JPMorgan Chase & Co Full time

    **JOB DESCRIPTION** You’re ready to gain the skills and experience needed to grow within your role and advance your career **Job Summary**: As an Information Security Risk Assessor with GT Controls Office Team, your primary responsibility will be to support firm wide technology and regulatory assessments, conduct various assessments/controls testing and...


  • Bengaluru, India JPMorgan Chase Bank, N.A. Full time

    The scope of work includes control assessments for the various programs covering Financial (SOX, CCAP etc.), Payment Card (PCI), Cyber, Privacy (GLBA, GDPR etc.), Application (ARA) and Infrastructure (ICA) across both Regulatory and Organizational Compliance needs. These control assessments comply with relevant global regulations and JPMC information...


  • Bengaluru, Karnataka, India Hewlett Packard Full time

    **Job Title: Senior Cybersecurity Risk Assessor** As the world around us becomes more connected and digital, cybersecurity attacks increase opportunities for fraud and disruption. In this constantly changing landscape, the need for companies, products, and services to be secure is more important than ever. Are you passionate about keeping good people safe...


  • Bengaluru, Karnataka, India Elytra Security Private Limited Full time

    Job Title: ISO 27001 Implementation ConsultantElytra Security Private Limited is a specialized consultancy firm dedicated to helping organizations strengthen their information security and achieve compliance with globally recognized standards. With expertise in ISO 27001 implementation and Cyber Security Controls Framework consulting, we deliver tailored...


  • Bengaluru, Karnataka, India Aptiv plc Full time

    **Job Description**: ASPICE Provisional Assessor Help shape the future of mobility. Imagine a world with zero vehicle accidents, zero vehicle emissions, and wireless vehicle connectivity all around us. Every day, we move closer to making that world a reality. Aptiv’s passionate team of engineers and developers creates advanced safety systems,...


  • Bengaluru, Karnataka, India Hewlett Packard Full time

    As the world around us becomes more connected and digital, cybersecurity attacks increase opportunities for fraud and disruption. In this constantly changing landscape, the need for companies, products, and services to be secure is more important than ever. Are you passionate about keeping good people safe from bad actors? We are, too! We are HP...


  • Bengaluru, Karnataka, India Aptiv plc Full time

    ASPICE Junior Assessor Help shape the future of mobility. Imagine a world with zero vehicle accidents, zero vehicle emissions, and wireless vehicle connectivity all around us. Every day, we move closer to making that world a reality. Aptiv’s passionate team of engineers and developers creates advanced safety systems, high-performance electrification...


  • Bengaluru, India Argus Cyber Security Full time

    **Who are we?** Argus Cyber Security is a global leader in the automotive cyber security industry. We protect drivers & manufacturers from cyber attacks on their vehicles. We use top notch technology & have several products for inside & outside the car. Our growing team is built of talented thinkers and we are always looking for more! **Why Argus?** -...

  • Security Assessor

    2 weeks ago


    Bengaluru, India ADCI - Karnataka Full time

    Bachelor’s degree in Management Information Systems, Computer Science or relevant field. Master’s Degree preferred. - 8+ years of relevant industry experience including information assurance, data privacy and compliance (preferably in payments and healthcare domains). - 3+ years of information security governance, audit, risk management or related client...


  • Bengaluru, India Black & White Business Solutions Full time

    **Job Information**: Industry **IT Services** *** Province **Karnataka** *** City **Bangalore North** *** Postal Code **560001** *** Country **India** We have opening for DATA PRIVACY SECURITY with one of our client, pls find the details below. - Must have skills : CISSP Certified, Data Privacy and Security, Experience in privacy by design, Risk...


  • Bengaluru, India Cerulean Information Technology Pvt Ltd Full time

    Key Responsibilities : - Evaluate and review security risks for enterprise networks in a fast-paced environment.- Design and implement secure network architectures, including firewalls, intrusion detection/prevention systems (IDS/IPS), Virtual Private Networks (VPNs), and other security-related network devices.- Collaborate with cross-functional teams to...


  • Bengaluru, Karnataka, India Signzy Full time

    Job Title Security Analyst – Compliance & Audit Key Responsibilities Conduct security assessments and audits for banks and financial institutions to ensure compliance with industry standards and regulations. Develop and implement security policies aligned with ISO 27001, PCI-DSS, SOC 2, NIST, GDPR, FFIEC, RBI, MAS TRM, PSD2, and other banking compliance...


  • Bengaluru, India Signzy Full time

    Job Title Security Analyst – Compliance & Audit Key Responsibilities Conduct security assessments and audits for banks and financial institutions to ensure compliance with industry standards and regulations. Develop and implement security policies aligned with ISO 27001, PCI-DSS, SOC 2, NIST, GDPR, FFIEC, RBI, MAS TRM, PSD2, and other banking compliance...


  • Bengaluru, India Bosch Group Full time

    Company Description Robert Bosch Engineering and Business Solutions Private Limited **Job Description**: **Primary Responsibilities and Accountability**: - Adherence to information security & privacy related concept of the business unit - Support the business owner in ensuring the business operations are as per the security expectations set - corporate,...


  • Bengaluru, Karnataka, India Lowe's Full time

    Job SummaryThe primary purpose of this role is to support the design, implementation, and ongoing operation of information security tools and services. This includes leading the process of translating business and technical requirements into robust enterprise security software solutions that ensure information assets are adequately protected with acceptable...


  • Bengaluru, Karnataka, India myGwork Full time

    This job is with State Street, an inclusive employer and a member of myGwork – the largest global platform for the LGBTQ+ business community. Please do not contact the recruiter directly. Role Summary & Role Description The Information Security Administrator (ISA) will support business units in their efforts to comply with GCS security policy and required...


  • Bengaluru, Karnataka, India Locus Full time

    Company OverviewLocus is a leading logistics optimization platform that empowers enterprises to execute over a billion deliveries across 30+ countries. Founded in 2015, Locus has evolved from a women's safety geo-tracking app into a globally recognized technology company.Job DescriptionWe are seeking an experienced Information Security Officer to join our...


  • Bengaluru, Karnataka, India HyrEzy Talent Solutions Full time

    Roles & Responsibilities (BSc. IT, BE) with Information Security Certifications - CISM, CISSPEXPERIENCE :- Candidate must have strong experience in Information Security Management system, Policy & procedures creation, implementation- ISO27001 assessment - Specification for a framework of policies procedures that include all technical & operational controls-...


  • Bengaluru, India Siemens Healthineers Full time

    Position Overview for an Information Security Professional The ISEC Coordinator has a very good expertise in Information Security and Data Protection. He or she provides support as well as guidance and advice for the protection of data, systems and the organization for the Business. He or she is also responsible for the ISEC request handling and acts as an...