Cyber Risk Assurance Services - Bengaluru, India - NetConnect Private Limited

NetConnect Private Limited

Verified Company

Bengaluru, India

1 week ago

Posted by:

Deepika Kaur

beBee Recuiter

Description

Job Overview:

looking for information and guidance on regulatory compliance, IT General Controls (ITGC), SOX (Sarbanes-Oxley Act) compliance, and various domains related to information technology and business processes.

Let's break down each domain and discuss the key aspects you need to consider for risk assessment, controls, and documentation, as well as specific compliance audits and testing.

Identify potential risks to business operations.
Assess the impact of disasters on IT systems and business processes.
Implement a comprehensive disaster recovery plan.
Establish business continuity measures to ensure mínimal disruption.
Document the disaster recovery plan and business continuity measures.
Keep documentation uptodate and regularly test the plans.
Identify personal data and assess privacy risks.
Understand applicable data protection regulations (e.g., GDPR, CCPA).
Implement data encryption, access controls, and data anonymization.
Develop and enforce privacy policies.
Maintain records of data processing activities.
Document privacy policies and procedures.
Identify relevant regulations (e.g., RBI, SEBI, SOC1, SOC2, PCI DSS, HITRUST, IRDA, UIDAI).
Assess compliance risks associated with each regulation.
Implement controls specific to each regulatory requirement.
Regularly update controls based on changes in regulations.
Maintain documentation demonstrating compliance with each regulation.
Conduct periodic internal audits to ensure ongoing compliance.
Identify and assess risks related to information security.
Consider potential impacts on business objectives.
Controls:
Implement risk mitigation strategies.
Establish risk monitoring and reporting mechanisms.
Document the risk management framework.
Maintain a risk register and update it regularly.
Information Security and Information Assurance:
Identify potential security threats and vulnerabilities.
Assess the impact of security incidents on information assets.
Implement robust security measures (firewalls, antivirus, intrusion detection).
Conduct regular security awareness training.
Documentation:
Document security policies and procedures.
Keep an inventory of information assets and their security classifications.
Identify risks associated with financial systems and processes.
Assess the impact of IT failures on financial reporting.
Implement IT controls specific to financial systems.
Ensure segregation of duties and access controls.
Document IT controls and their effectiveness.
Maintain documentation for audit purposes.
Document and report any control deficiencies.
Ensure compliance with Sarbanes-Oxley Act requirements.
Conduct regular audits of financial reporting controls.
Comply with the Statement on Standards for Attestation Engagements.
Provide assurance on controls over financial information.
Understand industryspecific regulations (e.g., RBI for banking).
Implement controls tailored to financial services.
Address supply chain risks and regulatory requirements.
Implement controls specific to manufacturing processes.
Good Analytical skills, Able to articulate and correlate. Sound Technical

- knowledge,

Desirable: Able to work for long extended hours
Willingness to Travel

Benefits and About NETConnect Global:
Why NCG?

Joining NCG means contributing to a shared ambition for reliable work culture, tackling extraordinary technological challenges in multicultural teams, preserving your work/life balance, and more At NCG, you can explore excellent benefits designed to uplift and a solid community to upskill you.

We have more benefits for you. Apart from our excellent work culture, we believe in flexibility and freedom. As a part of NCG, you will enjoy exclusive benefits that keep growing

What We Offer: