Sme - Security Risk & Compliance
4 weeks ago
**Our Excellent Opportunity**:
- Senior Manager - Security Risk & Compliance is responsible for ensuring that the company's processes and systems are monitored and evaluated to meet compliance requirements. Some of the responsibilities include:
- Regulatory Intelligence - Monitor and analyse regulatory policies, notifications, and guidelines.
- Compliance - Developing and implementing policies and procedures that ensure compliance with regulatory and ethical standards.
- Risk management - Identifying and mitigating compliance risks and supporting annual risk assessments.
- Advisory - Providing guidance to business teams on regulatory compliances.
- Audits - Conducting compliance reviews and audits and performing due diligence screening on third-party engagements.
- Decision-making - Overseeing key decision points to ensure appropriate decisions are made.
- Program management - Work internally with key stakeholders to drive compliance program covering impact assessment of regulatory requirements and identify risks.
Security Compliance landscape
The security landscape is dynamically evolving from a regulatory perspective. Since security is a cross-cutting issue, India has a complex inter-ministerial and inter-departmental institutional framework, with several ministries, departments and agencies performing key functions.**.**:
**India's cyber security compliance requirements include**:
- Communication Security Certification Scheme (ComSec) notified in 2020 follows Indian Telecom Security Assurance Requirements (ITSAR) and mandates testing in designated Telecom Security Test Labs (TSTL) accredited by National Centre for Communication Security (NCCS).
- Telecom Cybersecurity Rules 2024 - These rules expand the scope of data collection, increase the responsibilities of telecom entities, and introduce new roles and reporting requirements. They also emphasize a proactive approach to cybersecurity, with a focus on continuous monitoring, rapid response, and coordination between the government and telecom entities.
- Information Technology (The Indian Computer Emergency Response Team and Manner of Performing Functions and Duties) Rules, 2013 (2013 rules), established the Computer Emergency Response Team (CERT-In) and put in place obligations on intermediaries and service providers to report cybersecurity incidents to the CERT-In.
- Directions on information security practices, procedure, prevention, response and reporting of cyber incidents for a safe and trusted internet, issued in 2022 by the CERT-In, add to and modify existing cybersecurity incident reporting obligations under the 2013 rules.
- Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011 (SPDI rules) require companies that process, collect, store or transfer sensitive personal data or information to implement reasonable security practices and procedures.
- The Information Technology (Guidelines for Intermediaries and Digital Media Ethics Code Rules, 2021) require intermediaries to implement reasonable security practices and procedures to secure their computer resources and information, maintaining safe harbour protections. Intermediaries are also mandated to report cybersecurity incidents to the CERT-In.
- Information Technology (Information Security Practices and Procedures for Protected System) Rules, 2018, oblige companies that have protected systems - as defined under the IT Act - to put in place specific information security measures.
- Data localization - Mandatory data localization is a key provision of the 2024 Cyber Security Regulations in India.
- Incident reporting and response
- All entities are required to report cybersecurity incidents to the Computer Emergency Response Team (CERT-In) within six hours of becoming aware of them.
- Cyber security audits and compliance
- Cyber security audits and compliance are key provisions of the 2024 Cyber Security Regulations in India.
- National Critical Information Infrastructure Protection Centre (NCIIPC)
- The NCIIPC was launched by the Indian government in 2014 and is under the Prime Minister's Office (PMO).
**Why join Ericsson?**
At Ericsson, you´ll have an outstanding opportunity. The chance to use your skills and imagination to push the boundaries of what´s possible. To build solutions never seen before to some of the world’s toughest problems. You´ll be challenged, but you won’t be alone. You´ll be joining a team of diverse innovators, all driven to go beyond the status quo to craft what comes next.
**What happens once you apply?**
Click Here to find all you need to know about what our typical hiring process looks like.
**Primary country and city**: India (IN) || Gurgaon
**Req ID**: 756496
-
Security and Network Sme
6 months ago
Gurugram, Haryana, India Coforge Ltd. Full timeSecurity and Network Subject Matter Expert (SME) for Oracle Cloud Infrastructure (OCI), the person should have a mix of traditional networking and security skills along with specific knowledge and experience with OCI services and tools. Security SME Skills for OCI 1. OCI Security Services 2. Threat Management and Incident Response 3. Data Security 4....
-
Security Compliance Intern
2 months ago
Gurugram, Haryana, India Syfe Pte. Ltd. Full time**About Syfe** Syfe is a digital investment platform with a mission to empower people to grow their wealth for a better future. Built on the pillars of advice, access and innovation, we cater to the full spectrum of an individual's wealth needs across diversified proprietary portfolios, cash management solutions and a state-of-the-art brokerage. The Syfe...
-
Security Compliance Intern
2 months ago
Gurugram, Haryana, India SYFE PTE. LTD. Full time**About Syfe** Syfe is a digital investment platform with a mission to empower people to grow their wealth for a better future. Built on the pillars of advice, access and innovation, we cater to the full spectrum of an individual's wealth needs across diversified proprietary portfolios, cash management solutions and a state-of-the-art brokerage. The Syfe...
-
IT Security risk compliance Manager
2 weeks ago
Gurugram, India FMCG JOB Full timeLooking for Someone with good understanding in IT Security, IT Audit, Risk and Compliance .Knowledge of Agile Tools Like Jira and Confluence.Knowledge of IT Application Architectures and technologies.Knowledge of SOA and SaaS methodologies.
-
IT Security risk compliance Manager
2 weeks ago
Gurugram, India FMCG JOB Full timeLooking for Someone with good understanding in IT Security, IT Audit, Risk and Compliance .Knowledge of Agile Tools Like Jira and Confluence.Knowledge of IT Application Architectures and technologies.Knowledge of SOA and SaaS methodologies.
-
IT Security risk compliance Manager
1 week ago
Gurugram, India FMCG JOB Full timeLooking for Someone with good understanding in IT Security, IT Audit, Risk and Compliance . Knowledge of Agile Tools Like Jira and Confluence. Knowledge of IT Application Architectures and technologies. Knowledge of SOA and SaaS methodologies.
-
It-grc (Governance, Risk & Compliance)
5 months ago
Gurugram, Haryana, India Professional Edge Business Solutions Full timeHiring Profile**:IT-GRC (Governance, Risk & Compliance)** Experience: 14-17 years Location: Mumbai or Goregaon Mode: Work From Office Job specific skills: - Strong Understanding of BFSI sector & related Governance, Risk and Compliance of IT, Business Application, Business Process, Regulatory. *Experience of a broad range of technologies, Detail oriented,...
-
Sr. Executive
6 months ago
Gurugram, India Airtel Full timeReview of policy and procedure with implementation across organization In depth knowledge of risk management with good knowledge of handling external and internal risks Work with cyber risk quantification and integrate with existing risk management process. Should be able to quantify risks and define criticality. Work with the internal teams to...
-
Mainframe Security Sme
2 months ago
Gurugram, Haryana, India Kyndryl Full timeWho We Are At Kyndryl, we design, build, manage and modernize the mission-critical technology systems that the world depends on every day. So why work at Kyndryl? We are always moving forward - always pushing ourselves to go further in our efforts to build a more equitable, inclusive world for our employees, our customers and our communities. The...
-
O2i Subject Matter Expert
5 months ago
Gurugram, Haryana, India Ericsson Full time**Join our Team**: **About this opportunity** O2I Subject Matter Expert - Compliance within O2I Compliance Office will work with overall regulatory and compliance environment concerning Order to Invoice process and remains accountable for assigned control activities for specific market area responsibility as well as actively support compliance quality,...
-
Lead Information Security Engineer
3 months ago
Gurugram, India Randstad Digital Full timeHiring for Lead - Information Security, Risk and Audit ComplianceExperience : 6+ YearsLocation : Gurgaon (WFO)Need only Immediate JoinersJob Description :This is a full-time role for an Information Security Manager (Lead). The Information Security manager will be responsible for managing the information security program for PSS Systems and Services.This...
-
Sme Security
3 months ago
Gurugram, Haryana, India JLL Full timeJLL supports the Whole You, personally and professionally. Definition To ensure safety and security procedures and policies are in place and is proactively been applied. Essential Function Statements Essential and other important responsibilities and duties may include, but are not limited to, the following: **Essential Functions**: Security Planning-Risk...
-
Lead Information Security Engineer
4 weeks ago
Gurgaon/Gurugram, India Randstad Digital Full timeHiring for Lead - Information Security, Risk and Audit ComplianceExperience : 6+ Years Location : Gurgaon (WFO)Need only Immediate Joiners Job Description : This is a full-time role for an Information Security Manager (Lead). The Information Security manager will be responsible for managing the information security program for PSS Systems and Services. ...
-
Lead Information Security Engineer
2 months ago
Gurgaon/Gurugram, IN Randstad Digital Full timeHiring for Lead - Information Security, Risk and Audit ComplianceExperience : 6+ YearsLocation : Gurgaon (WFO)Need only Immediate JoinersJob Description :This is a full-time role for an Information Security Manager (Lead). The Information Security manager will be responsible for managing the information security program for PSS Systems and Services.This...
-
Performance Sme
2 months ago
Gurugram, Haryana, India Citi Full time**Description** You will be part of the middle office operations team providing performance calculation, Attribution analysis and Risk reporting for our clients in the region (APAC/EMEA/NAM). As a SME, you will be responsible for ensuring the accurate and timely delivery of assigned Performance reports which would include accounts & benchmark performance,...
-
Information Security
1 month ago
gurugram, India VMock Full timeJob Summary:We are seeking a highly motivated Information Security & Compliance Manager to join our dynamic team at VMock. You will leverage your technical expertise and communication skills to ensure our information security program meets or exceeds industry regulations and standards while directly addressing client concerns and requirements. You will be a...
-
Information Security
4 weeks ago
gurugram, India VMock Full timeJob Summary: We are seeking a highly motivated Information Security & Compliance Manager to join our dynamic team at VMock. You will leverage your technical expertise and communication skills to ensure our information security program meets or exceeds industry regulations and standards while directly addressing client concerns and requirements. You will be...
-
Information Security
1 month ago
gurugram, India VMock Full timeJob Summary: We are seeking a highly motivated Information Security & Compliance Manager to join our dynamic team at VMock. You will leverage your technical expertise and communication skills to ensure our information security program meets or exceeds industry regulations and standards while directly addressing client concerns and requirements. You will be...
-
Information Security
1 month ago
Gurugram, India VMock Full timeJob Summary:We are seeking a highly motivated Information Security & Compliance Manager to join our dynamic team at VMock. You will leverage your technical expertise and communication skills to ensure our information security program meets or exceeds industry regulations and standards while directly addressing client concerns and requirements. You will be a...
-
Process Excellence
5 months ago
Gurugram, Haryana, India Airtel India Full timeProcess Excellence SME for GPA and RR - Internal Control Over Financial Reporting (ICOFR) control testing and reporting control failure with mitigation plan for Global Payable Accounting (GPA) and Revenue Reporting (RR). - Tool base compliance for Internal Controls submission and testing by artifacts. - Identify new controls required in process for...
