- Conduct comprehensive assessments of potential technical risks associated with the organization's systems, infrastructure, and technology projects.
- Stay abreast of industry trends, emerging technologies, and potential vulnerabilities that may impact the organization's technical landscape.
- Evaluate the potential impact and likelihood of identified risks, considering both internal and external factors.
- Work closely with technical teams to assess the security posture of systems and applications through vulnerability assessments and penetration testing.
- The ability to articulate the business risks associated with technical vulnerabilities and risks.
- Develop and implement risk mitigation strategies and action plans to address identified technical risks.
- Collaborate with IT teams to prioritize and implement security measures, controls, and safeguards to mitigate potential threats.
- Establish and maintain an incident response plan to address technical incidents promptly and effectively.
- Coordinate with relevant stakeholders to investigate and resolve technical security incidents, ensuring lessons learned are incorporated into future risk management strategies.
- Ensure that the organization complies with relevant regulatory requirements and industry standards related to technical risk management.
- Stay informed about changes in regulations and standards, adjusting risk management processes accordingly.
- Facilitate deployment and maintenance of Technology risk and controls model with assigned Technology teams using globally known and industry standard models (e.g., COBIT5, OCTAVE, FAIR, NIST, ISO) as references.
- Manage and provide leadership on all key information security processes and procedures.
- Communicate technical risk information to both technical and non-technical stakeholders, including executives and board members.
- Provide regular reports on the status of technical risks, mitigation efforts, and key performance indicators to demonstrate the effectiveness of risk management strategies.
- Direct the activities of project managers and project teams to ensure quality and timeliness of project completion.
- Development of project business cases, charters, plans and execution approach.
- Proven strong stakeholder engagement and management capabilities.
- Develop and deliver training programs to enhance the awareness and understanding of technical risks among employees.
- Foster a culture of security awareness and responsibility throughout the organization.
- Evaluate and manage risks associated with third-party vendors and partners, ensuring they meet the organization's security standards.
- Develop and implement strategies to protect the company's cyber security. Including firewalls, security software, data encryption tools, safety protocols, etc.
- Total work experience of 6+ years with a minimum of 3 years in relevant field of work.
- Bachelor's or Master's degree in Computer Science, Information Security, Risk Management, System Resiliency & Availability & Software development practices and frameworks, Products and operations, Access and identity management, application security, assurance programs, or a related field.
- Proven experience in technical risk management, information security, or a related role.
- Industry Relevant Certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Auditor (CISA), Certified Information Security Manager (CISM), Certificate of Cloud Security Knowledge (CCSK), CPA, CIA, AWS, CIPP, CBCP, CRM or equivalent are highly desirable.
- Strong understanding of technology, information security principles, and risk management frameworks.
- Excellent analytical, communication, and interpersonal skills.
- Ability to work collaboratively with cross-functional teams and stakeholders.
- Knowledge of widely known Enterprise Architecture frameworks like TOGAF, SABSA, etc..
- Project Management Certification (PRINCE II, PMP, Agile or otherwise) and be an outcome focussed self-starter.
- Current knowledge of best practice IT controls, risk management techniques, ISO27001, SOC1/2/3 SSAE18, CSA Star (CCM), PCI DSS and familiarity with GRC tools.
- Hands-on product experience on Qualys Enterprise Tru-Risk Platform and similar leading security automation products with broad market presence shall be added advantage.
-
Analyst- Credit Risk Underwriter
5 days ago
bluCognition Pune, IndiaAnalyst- Credit Risk Underwriter · About bluCognition: · bluCognition is an AI/ML based start-up specializing in risk analytics, data conversion and data enrichment capabilities. Founded in 2017, by some very named senior professionals from the financial services industry, the ...
-
DWS Senior Risk Analyst
2 days ago
Deutsche Bank Pune, India Full timeDWS Senior Risk Analyst · Position Overview · Job Title: Risk Analyst/Senior Risk Analyst - Model Validation · Location: Pune · Role Description · DWS Group (DWS) is one of the world's leading asset managers with EUR 841bn of assets under management (as of 31 March Building on m ...
-
Risk Management Business Analyst
1 week ago
Cognizant Technology Solutions Pune, India OTHERWork Location: Chennai/Hyderabad/Kolkata · We are seeking an experienced business analyst with a strong background in Risk Management & Operational Risk domain to join our team. The ideal candidate will possess deep knowledge of the banking sector, particularly in Risk Management ...
-
E902 DWS India Private Limited, Maharashtra Branch Pune, India Full timeDescription · DWS Group (DWS) is one of the world's leading asset managers with EUR 841bn of assets under management (as of 31 March Building on more than 60 years of experience, it has a reputation for excellence in Germany, Europe, the Americas and Asia. DWS is recognised by c ...
-
Deutsche Bank Pune, India**Functional Title : Market Risk Analyst** · **Corporate Title : Associate/Sr. Analyst/ Analyst** · **Location : Pune** · **About Market Risk Management**: · Market & Valuation Risk Management (MVRM) is a department within the Risk Division. As a second line of defence function, ...
-
Deutsche Bank Pune, IndiaThe Trade and/or Transaction Analyst provides operational expertise and independent governance to achieve timely, accurate and complete transaction management for the bank and, where relevant, the bank's clients. · The Trade and/or Transaction Analyst's responsibilities include t ...
-
Patching Analyst-1
1 week ago
Ensono Pune, India**Vulnerability Management Analyst** · We are seeking an experienced Vulnerability Management Analyst who has experience with vulnerability management across an enterprise. The role focuses on helping the organization look deeper and see further into the security of the environme ...
-
Azure Sentinel 4 to 6 Years Bengaluru
2 hours ago
Capgemini Pune, IndiaMonitoring and anlysis of Cyber Security events with use of MS Sentinel as SIEM tool. · - Knowledge and hands on experince with MS Sentinel QRadar Event correlation as received form Jr SOC analyst to determine increase risk to business Recognize potential successfull and unsucess ...
-
Bc-non Fs Tr-staff-cyber + IT Controls
3 days ago
EY Pune, IndiaAt EY, you'll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we're counting on your unique voice and perspective to help EY become even better, too. Join us and build ...
-
Bc - Non Fs Tr - Staff - Itgc
1 week ago
EY Pune, IndiaAt EY, you'll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we're counting on your unique voice and perspective to help EY become even better, too. Join us and build ...
-
Cyber Security Officer
1 week ago
AkzoNobel Pune, India**Date**:Jun 7, 2023 · **Location**: Pune, IN · **Company**:AkzoNobel · We've been pioneering a world of possibilities to bring surfaces to life for well over 200 years. As experts in making coatings, there's a good chance you're only ever a few meters away from one of our produc ...
-
Cyber Security Officer
1 week ago
AkzoNobel Pune, India**Date**:Jun 7, 2023 · **Location**: Pune, IN · **Company**:AkzoNobel · We've been pioneering a world of possibilities to bring surfaces to life for well over 200 years. As experts in making coatings, there's a good chance you're only ever a few meters away from one of our produc ...
-
Pricing 6 to 12 Years Pune
3 days ago
Capgemini Pune, Maharashtra, India**Job Description**: · As a Deal Analyst within the Financial Services SBU pricing team you will play an integral role in partnering the business for financial deal related activities, delivering customer value, compelling and competitive and commercial financial models whilst en ...
-
Ba - Pune - Officer/c11
2 hours ago
Citi Pune, IndiaThe IT Business Intermediate Analyst is an intermediate-level position responsible for liaising between business users and technologists to exchange information in a concise, logical and understandable way in coordination with the Technology team. The overall objective of this ro ...
-
Tc-cs-dpp Casb-staff
5 days ago
EY Pune, Maharashtra, IndiaAt EY, you'll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we're counting on your unique voice and perspective to help EY become even better, too. Join us and build ...
-
Nct
1 week ago
Deutsche Bank Pune, India**Job Title : Analyst, NCT** · **Location : Pune** · **Role Description** · Market & Valuation Risk Management (MVRM) is a department within the Risk Division. As a second line of defence function, MVRM acts independently of business management and is responsible for oversight ac ...
-
Risk Advisory Internal Audit Executive
23 hours ago
KPMG Pune, India**Job Title : Executive** · **Function : Governance, Risk and Compliance Services (GRCS) · **>> Role & Responsibilities** · - Executives are typically project team members who will be involved in conducting process consulting/ internal audit/ risk consulting and execution of othe ...
-
Associate
3 days ago
TIAA Pune, IndiaBusiness Analyst · The Business Analyst (India) analyzes business and information needs in order to design optimal systems solutions. Working under mínimal supervision, this job designs system solutions that are appropriate for business needs and consistent with the overall desig ...
-
Associate - Application Support
1 week ago
TIAA Pune, IndiaSenior Support Analyst · The Senior Support Analyst job performs installation, configuration, and maintenance of information technology (IT) systems and hardware for multi-user server computers. Working independently under general supervision, this job maintains end user needs by ...
-
Osc Techno-fucntional
3 days ago
Jade Global Pune, IndiaID: 6116 | 8-8 yrs | Pune | careers · - 8 Years of relevant techno-functional experience in Oracle CRM and Cloud CX modules · - Techno-functional experience required in CRM/CX modules (CPQ Cloud, Sales Force Automation, Partner Relationship Management, Incentive compensation mana ...
Technology Risk Analyst - Pune, India - Qualys
Description
The Technology Risk Analyst plays a crucial role in identifying, assessing, and mitigating technical risks within an organization. Has an understanding of Enterprise Risk Management practices in a technical environment. This professional is responsible for developing and implementing risk management strategies to safeguard technology assets, systems, and operations. Technology risk analyst provides guidance on information security processes, controls, and compliance, and information security risk management to key stakeholders. The role requires a combination of technical expertise, risk analysis skills, and the ability to collaborate with cross-functional teams to ensure the effective management of technical risks.
Key Responsibilities:
Risk Identification:
Risk Assessment:
Risk Mitigation Planning:
Incident Response and Management:
Compliance and Standards:
Communication and Reporting:
Training and Awareness:
Vendor Risk Management:
Act as the change agent in the identification and execution of initiatives:
Qualifications: