Information Security-grc
2 weeks ago
**Role / Designation**: Manager - Information Security Governance, Risk & Compliance Job Level: 12A/13A Job location: Mumbai Employment type: On-Roll Reporting Manager: Chief Information Security Officer Accountabilities: 1. Establishing and maintaining Information security program conforming to ISO/IEC 27001:2015 for uplifting the cyber resilience and incident response for CRISIL in compliance to Information Security and Cybersecurity Policy, Common Security Standards, Technical Security Standards, Industry best practices and CISO Directives. 2. Responsible for assisting CISO in reporting to CRISIL Management and IT Risk Committee the critical cyber security threats and vulnerabilities that CRISIL is exposed to, ensuring emerging cyber threats and the bank’s preparedness in response to these threats are reported and discussed in the CRISIL IT Risk Committee.
3. Be the focal person for CRISIL during various audits, be able to communicate accurately and effectively CRISIL’s security posture and regulatory compliance status. Be the point of contact and interact regularly with regulatory agencies and Computer Emergency Response Team (CERT-In). 4.
Support and manage ISO 27001 and SOC2Type2 external and internal audits. 5. Responsible for driving the regulatory compliance for Cyber Security Framework and all current and future advisory notes received from the regulator. 6.
Being the information security and cyber policy owner, responsible for development of (but not limited to) CRISIL Information Security and Cyber Security Policy, Data Governance and Classification Policy, Access Control Policy, Acceptable use of assets and asset management policy. 7. Keep abreast with country specific cyber threats through maintaining close work relationship with regulatory agencies CERT-In, attend RBI’s cyber events & trainings 8. Establish a Cyber Management Group with representations from CRISIL management and functional heads.
Establish and maintain the Cyber Incident Response Plan (CIRT) which defines the roles and responsibilities amongst key functional stakeholders during a cyber incident. 9. Planning and executing periodic cyber breach simulation exercises, make sure CRISIL Branch is well prepared for any cyber breach incidents with widespread impacts. 10.
Responsible for developing CRISIL cybersecurity KRIs and KPIs and presenting the KRIs and KPIs to CRISIL risk committee for independent challenge and management oversight. 11. Work with the CISO & CIO to develop a holistic risk management framework for CRISIL. 12.
14. Manage risks associated with third party suppliers, conduct third party due diligence and ongoing risk management activities in accordance to the bank’s Third-Party Risk Management Framework. 15. Conduct Information Security awareness training periodically to general staffs and functional leads across the CRISIL.
16. Communication should be expert. Education / Experience / Other Information - Bachelor degree in Engineering or Graduation in Computer Science degree or equivalent degree - 12-15 years’ experience in information security, cybersecurity, technology risk management in large multinational financial / technology institutions environment - ISMS ISO 27001 LI/LA and other Security related certifications viz., CISA / CISM (or equivalent) is an advantage. - Hand-on experience on Process definitions, process drafting, documentation, conducting and managing audits, knowledge of Data privacy laws of various countries - Excellent verbal and written communication skills.
**No. of Openings**: 01
-
Information Security GRC Consultant
2 weeks ago
Mumbai, India Cybernx Technologies Full timeManage the ISMS including maintenance of the current ISO 27001 certification scope as well as strategic expansion across the customers organization. Support the management of information security governance for the organization, ensuring adherence to group policies and standards. Can ensure key information security risks and issues are identified,...
-
Security Specialist
Found in: Talent IN C2 - 2 days ago
Mumbai, India Lionbridge Full timeSecurity Specialist - Information Techno Mumbai, Maharashtra, India The Security Specialist - GRC will work with other members of the security and privacy team to create, maintain, and improve processes of information security and privacy management system (ISPMS); and to identify, assess, control, record and review ISPMS risks across Lionbridge....
-
Security Specialist
Found in: Talent IN C2 - 2 days ago
Mumbai, India Lionbridge Full timeThe Security Specialist - GRC will work with other members of the security and privacy team to create, maintain, and improve processes of information security and privacy management system (ISPMS); and to identify, assess, control, record and review ISPMS risks across Lionbridge. This role will assist/lead in ISPMS Governance, Risk Management and Compliance...
-
3i Infotech
Found in: Talent IN 2A C2 - 3 weeks ago
Mumbai, India 3i infotech Full timeResponsibilities:1. Lead and execute ISO 27000 audits, assess compliance with established standards, and identify areas for improvement.2. Develop and implement comprehensive GRC frameworks to mitigate risks and enhance organisational resilience.3. Collaborate with cross-functional teams to ensure alignment with regulatory requirements and industry best...
-
GRC Analyst
Found in: Talent IN 2A C2 - 2 weeks ago
Mumbai, India Quantiphi Full timeLooking for GRC AnalystNP : Immediate to 30 DaysExperience Level: 4 to 6 years Responsibilities 1. Develop and ensure compliance of company-wide best practices for IT security. 2. Research security enhancements and make recommendations to management. 3. Respond to RFI /RFPs by consulting to various support functions and client queries regarding organization...
-
GRC Analyst
Found in: Appcast Linkedin IN C2 - 2 weeks ago
Mumbai, India Quantiphi Full timeLooking for GRC AnalystNP : Immediate to 30 DaysExperience Level: 4 to 6 years Responsibilities 1. Develop and ensure compliance of company-wide best practices for IT security. 2. Research security enhancements and make recommendations to management. 3. Respond to RFI /RFPs by consulting to various support functions and client queries regarding organization...
-
SAP Security
1 day ago
Navi Mumbai, India Capgemini Full timePosition Title: Senior SAP Security Consultant Job Summary: TE Connectivity?s SAP Security function is part of TEIS (TE Information Solutions) and has global responsibility to ensure SAP assets are properly secured. We are looking for a senior SAP security consultant with strong knowledge and experience in SAP Application Security who will play a key role in...
-
3i Infotech
Found in: beBee S IN - 4 weeks ago
Mumbai, India iimjobs Full timeResponsibilities:1. Lead and execute ISO 27000 audits, assess compliance with established standards, and identify areas for improvement.2. Develop and implement comprehensive GRC frameworks to mitigate risks and enhance organisational resilience.3. Collaborate with cross-functional teams to ensure alignment with regulatory requirements and industry best...
-
upGrad - Manager - Information Security
Found in: Talent IN 2A C2 - 3 weeks ago
Mumbai, India Upgrad Education Private Limited Full timeManager - Information Title: Manager - Information SecurityRoles and Responsibilities:- Ensure Compliance to the Regulatory requirements w.r.t the Information and Cyber Security requirements.- Identify and develop the InfoSec Policy, Processes, & Procedures to incorporate the industry benchmarks / best practices and the latest trends.- To identify, track,...
-
Governance/Risk & Compliance Lead - Information Security Team (8-15 yrs)
Found in: beBee S IN - 3 weeks ago
Mumbai, India iimjobs Full timeJob Purpose- The person appointed will be part of the Information Security Team and responsible for developing, implementing, and managing the Information Security GRC program to ensure compliance with regulatory requirements, industry standards, and organizational policies.- Initiate, run and manage information security governance, risk management, audits,...
-
Governance/Risk & Compliance Lead - Information Security Team (8-15 yrs)
Found in: beBee jobs IN - 3 weeks ago
Mumbai, Maharashtra, India iimjobs Full timeJob Purpose- The person appointed will be part of the Information Security Team and responsible for developing, implementing, and managing the Information Security GRC program to ensure compliance with regulatory requirements, industry standards, and organizational policies.- Initiate, run and manage information security governance, risk management, audits,...
-
Information/cyber Security Tester
3 days ago
Nagpur, Maharashtra, India Harrier Information Systems Full time**Harrier is Hiring!**: Do you believe in the values of **Openness, Integrity, Commitment, Knowledge is Supreme, Think Win-Win, and Attitude is Everything?** If yes, then we are looking for you. We look beyond qualifications & technical skills. We look for behavioural competence with Emotional Intelligence as a foundation. Our reward philosophy is based on...
-
3i infotech
Found in: Talent IN 2A C2 - 3 weeks ago
Mumbai, India 3i infotech Ltd Full timeExp : 9Yrs (Overall) & 5+Yrs (Relevant)Location : MumbaiNotice : Immediate-Max 10days.Role : GRC Consultant(ISO,SOC Implementation)About 3i Infotech :Headquartered in Mumbai, India, since inception in 1993, 3i Infotech has been committed to driving business value across multiple industry verticals. It has emerged as a leading name in propelling digital...
-
3i infotech
Found in: Whatjobs IN C2 - 3 weeks ago
Mumbai, India 3i infotech Ltd Full timeExp : 9Yrs (Overall) & 5+Yrs (Relevant) Location : Mumbai Notice : Immediate-Max 10days. Role : GRC Consultant(ISO,SOC Implementation) About 3i Infotech : Headquartered in Mumbai, India, since inception in 1993, 3i Infotech has been committed to driving business value across multiple industry verticals. It has emerged as a leading name in propelling...
-
3i infotech
Found in: Talent IN 2A C2 - 3 days ago
Mumbai, India 3i infotech Ltd Full timeExp : 9Yrs (Overall) & 5+Yrs (Relevant)Location : MumbaiNotice : Immediate-Max 10days.Role : GRC Consultant(ISO,SOC Implementation)About 3i Infotech :Headquartered in Mumbai, India, since inception in 1993, 3i Infotech has been committed to driving business value across multiple industry verticals. It has emerged as a leading name in propelling digital...
-
3i infotech
Found in: Whatjobs IN C2 - 2 days ago
Mumbai, India 3i infotech Ltd Full timeExp : 9Yrs (Overall) & 5+Yrs (Relevant) Location : Mumbai Notice : Immediate-Max 10days. Role : GRC Consultant(ISO,SOC Implementation) About 3i Infotech : Headquartered in Mumbai, India, since inception in 1993, 3i Infotech has been committed to driving business value across multiple industry verticals. It has emerged as a leading name in propelling...
-
Information Security Media Group
Found in: Talent IN 2A C2 - 2 weeks ago
Mumbai, India Information Security Media Group Full timeResponsibilities include and not limited to:- Gathers and analyzes information to identify new markets and customers, demand for products and services, and efficacy of existing marketing campaigns and strategies.- Maintains knowledge of trends and developments in the market; identifies needs for new products and services and makes recommendations to...
-
Information Security Convenor
1 week ago
Mumbai, Maharashtra, India Percipere Full time**Job Title**:Information Security Convenor **Department**: Information Security **Location**: Mumbai **Requirement**: - Understanding and atleast 2-3 years experience in the Information Security space - Certified as Information Security Implementer will be an added advantage **Job Description-** - You will be responsible for assisting and driving the...
-
SPNI - Role : SME in Basis & GRC
Found in: Whatjobs IN C2 - 1 week ago
Mumbai, India Sony UK Technology Centre Full timeWe look for therisk-takers, thecollaborators, theinspiredand theinspirational. We want the people who are brave enough to work at thecutting edgeand create solutions that will enrich and improve the lives of people across the globe. So, if you want to make the world say wow, let's talk.The conversation starts here. If this role matches your ambitions and...
-
SPNI - Role : SME in Basis & GRC
Found in: Whatjobs IN C2 - 3 weeks ago
mumbai, India Sony UK Technology Centre Full timeWe look for the risk-takers , the collaborators , the inspired and the inspirational . We want the people who are brave enough to work at the cutting edge and create solutions that will enrich and improve the lives of people across the globe. So, if you want to make the world say wow, let's talk. The conversation starts here. If this role...
