- Subject matter expert on information and cyber security governance, risk and compliance – services and solutions
- Plans and executes information technology security assessments of on-premise/cloud IT assets by understanding organization objectives, structure, policies, processes, internal controls, and external regulations; identifies risk areas; prepares scope and objectives; prepares internal controls review programs
- Tests all IT security controls, creates - assessment work programs, current state posture assessment model, and customized reports
- Completes assessment work papers and memoranda by documenting assessment tests and findings.
- Understanding of Digital Personal Data Protection Act, 2023.
- Familiarity working with and/or managing Governance, Risk, and Compliance (GRC) tools.
- Hands on security controls testing experience for web applications, mobile applications, and corporate systems
- Good understanding of Security Risk Management tools and processes
- Third party risk management (TPRM) exposure
- Support in sales pursuits and proposals and assist in building practice eminence
- Deliver complex projects in a fast-paced, team environment
- Promote and participate in forums for sharing expertise, strengthening firm's collective knowledge, and helping resolve our clients' challenges
- Provide leadership to the enterprise's information security organization
- Constantly update the cyber security strategy to leverage new technology and threat information
- Establish strong client relationships to help progress the Services portfolio.
- Bachelor's degree in Engineering or closely related coursework in technology development disciplines
- Certifications – ISO 27001 Lead Implementer/Lead Auditor
- One or more security certifications: Certified Information Systems Security Professional (CISSP)/Certified Information Systems Auditor (CISA)/Certified Information Privacy Professional (CIPP) etc.
- One or more cloud security certifications: Certification in Public Cloud Technology from one of the major Cloud Service Providers (e.g. AWS Certified Solutions Architect, Microsoft Azure Architect, Google Cloud Architect), or Certified Cloud Security Professional (CCSP)/ Certificate of Cloud Security Knowledge (CCSK) etc.
- Total Experience – 8+ years
- Good understanding of information security principles, the relating of compliance controls to those principles, and articulating the relevance of controls to stakeholders.
- Expertise in delivery of IT risk and compliance advisory services
- Experience in management consulting and IT security audits
- Excellent capabilities around technology risk assessments
- Knowledge of IT and cyber security regulations
- Knowledge and working experience of IT risk management based on ISO 31000/ISO 27005, NIST Cyber Security Framework, ISO 27001/27002, GDPR, PCI DSS, SOC 1/SOC 2, COBIT
- Expertise in GRC project & program management
- Knowledge of security tool and process, which include vulnerability scanning, code review, application scanning, container security, software composition analysis, security testing and other security automation tools
- Expertise in cloud security implementations
- Proficient in preparation of reports, dashboards and documentation
- Experience in effective vendor/partner management
- Experience in client management
- Ability to research and develop new security risk-based offerings
- Comfortable working in a project based / client serving model
- Ability to lead and shape client expectations
- Self-starter and quick learner requiring minimal ramp-up
- Excellent written, oral, and interpersonal communication skills
- Highly self-motivated, self-directed, and attentive to detail
- Ability to effectively prioritize and execute tasks in a high-pressure environment
-
Grc-appsec-seniormanager
1 week ago
EY Hyderabad, Telangana, IndiaAt EY, you'll have the chance to build a career as unique as you are, with the global scale, support, inclusive culture and technology to become the best version of you. And we're counting on your unique voice and perspective to help EY become even better, too. Join us and build ...
-
Ibm Openpages Tester QA
2 days ago
Findability Sciences Hyderabad, IndiaRole : IBM Open Pages tester - QA · Location: Hyderabad / Pune · Full Time / contract / consultant / freelance · Testing 3+ years · Automation Tester · Test Lead on IBM Open Pages /Java experience - To create test strategy, collaborate with the business and stakeholders, · Lead t ...
-
Contractor - SAP Qm
2 days ago
Yash Technologies Hyderabad, India FreelanceDate: Jul 7, 2023- Job Requisition Id: Location: Hyderabad, INYASH Technologies is a leading technology integrator specializing in helping clients reimagine operating models, enhance competitiveness, optimize costs, foster exceptional stakeholder experiences, and drive business t ...
-
SAP Security with Audit Control
7 hours ago
Mygo Hyderabad, IndiaExperience developing security solutions that address Sarbanes-Oxley requirements. · Strong expertise in designing and building highly automated SAP security frameworks. · SAP Security Audit - experience in analyzing issues and conducting remediation activities. · Basic knowledge ...
-
SAP Security Consultant
1 week ago
System Soft Technologies Hyderabad, IndiaSummary: · Our client is looking for SAP Security Consultant for its rapidly growing team, please review the list of responsibilities and qualifications. · Responsibilities: · SAP security troubleshooting and end user support · Support of SAP security in different projects stages ...
-
ServiceNow SME
6 days ago
Mergen IT | Your Trusted ServiceNow Partner Hyderabad, IndiaSkills: ServiceNow Senior Consultant, IRM/GRC, (P&C, Risk, Adv Risk, Audit, VRM, VM, BCM, RCM, OpRes, Privacy, ESG, Accelerators), Workflow, Flow Designer, Configure and manage GRC/IRM Workspace, OOB Scripting, XML and structural programming concepts, Agile methodology · Responsi ...
-
Sr. Risk and Compliance Analyst
6 days ago
Head Digital Works Hyderabad, IndiaWe are looking for an experienced risk and compliance lead. The ideal candidate will play a critical · role in overseeing all aspects of risk management and compliance initiatives at Head Digital · Works. · Roles & Responsibilities: · ● Responsible for the oversight and coordinat ...
-
Risk & Compliance Lead
1 week ago
Head Digital Works Hyderabad, IndiaWe are looking for an experienced risk and compliance lead. The ideal candidate will play a critical · role in overseeing all aspects of risk management and compliance initiatives at Head Digital · Works. · Roles & Responsibilities: · ● Responsible for the oversight and coordinat ...
-
ServiceNow Architect
1 hour ago
Tezo Hyderabad, IndiaTezo is a new generation Digital & AI solutions providers, with a history of creating remarkable outcomes for our customers. We bring exceptional experiences using cutting-edge analytics, data proficiency, technology, and digital excellence. · Job Description · As an architect, y ...
-
Information Security Lead
1 week ago
NxtWave Hyderabad, IndiaAbout Nxtwave: · NxtWave is founded by Rahul Attuluri (Ex-Amazon, IIIT Hyderabad), Sashank Reddy (IIT Bombay), and Anupam Pedarla (IIT Kharagpur). In February 2023, NxtWave raised ₹275 crore led by Greater Pacific Capital, a leading international private equity firm. The startup ...
-
Wipro Hyderabad, IndiaDear Candidates, · Wipro is currently hiring for Service Now GRC · Location: PAN INDIA · NP-preferably Immediate Joiners, 0-45 days (90 days notice period please donot apply) · Please refer requested details in trail mail and JD as follows. · Detailed Job Description: · The job h ...
-
Senior Security Consultant
4 days ago
Nityo Infotech Telangana, IndiaSenior Security Consultant (Audit & Compliance) - Internal requirementExperience: 6+ yearsLocation : Pune NP-30 Days Budget -11 LPA Mandatory Skills : ISMS, PCI DSS, Compliance, GRC, Data privacy, ISO 27001 Lead Auditor, Risk Assessment 1) Establish, Implement, Maintain and Impro ...
-
Information Security Lead
6 days ago
NxtWave Hyderabad, IndiaAbout Nxtwave: · NxtWave is founded by Rahul Attuluri (Ex-Amazon, IIIT Hyderabad), Sashank Reddy (IIT Bombay), and Anupam Pedarla (IIT Kharagpur). In February 2023, NxtWave raised ₹275 crore led by Greater Pacific Capital, a leading international private equity firm. The startup ...
-
ServiceNow ITSM Lead Developer
1 week ago
SPG Consulting Hyderabad, IndiaServiceNow ITSM LeadDeveloperMustHaveHands on experience on Inbound actions client scriptsUI Policies Business rules UI actions Import sets Transform MapsNotifications scriptIncludesHands onExperience on flow designer orWorkflowsWorked onAgilemethodologyGoodKnowledge on Integrati ...
-
SAP Security Lead
1 day ago
WARNERMEDIA Hyderabad, India Full timeWelcome to Warner Bros. Discovery... the stuff dreams are made of. · Who We Are... · When we say, "the stuff dreams are made of," we're not just referring to the world of wizards, dragons and superheroes, or even to the wonders of Planet Earth. Behind WBD's vast portfolio of ico ...
-
Sr. Engineering Program Manager
3 days ago
Providence India Hyderabad, IndiaHow is this team contributing to the vision of Providence? · Providence Cybersecurity (CYBR) is committed to appropriately protecting all information relating to its caregivers and affiliates, as well as protecting its confidential business information (including information rela ...
-
SAP Security Lead
1 week ago
WARNERMEDIA Hyderabad, India Full timeEvery great story has a new beginning, and yours starts here. · Welcome to Warner Bros. Discovery... the stuff dreams are made of. · Who We Are... · When we say, "the stuff dreams are made of," we're not just referring to the world of wizards, dragons and superheroes, or even to ...
-
Sr. SAP Security Administrator
3 days ago
WARNERMEDIA Hyderabad, India Full timeEvery great story has a new beginning, and yours starts here. · Welcome to Warner Bros. Discovery... the stuff dreams are made of. · Who We Are... · When we say, "the stuff dreams are made of," we're not just referring to the world of wizards, dragons and superheroes, or even to ...
-
Cyber Security Director
1 day ago
Evernorth Hyderabad, IndiaABOUT EVERNORTH: · Evernorth exists to elevate health for all, because we believe health is the starting point for human potential and progress. As champions for affordable, predictable and simple health care, · we solve the problems others dont, wont or cant. Our innovation hub ...
-
Senior IT Auditor
5 days ago
International Flavors & Fragrances Hyderabad, IndiaReq ID: 497561 · Job Description · Are you inspired to contribute your expertise to a global leading Ingredients organization? We are a global leader in taste, scent and nutrition, offering our customers a broader range of solutions for the food & beverage industry. · We are lo ...
Manager / Lead - GRC - Hyderabad, India - NopalCyber
Description
Job Statement:
NopalCyber makes cybersecurity manageable, affordable, reliable, and powerful for companies that need to be resilient and compliant. Managed extended detection and response (MXDR), attack surface management (ASM), breach and attack simulation (BAS), and advisory services fortify your cybersecurity across both offense and defense. AI-driven intelligence in our Nopal360° platform, our NopalGo mobile app, and our proprietary Cyber Intelligence Quotient (CIQ) lets anyone quantify, track, and visualize their cybersecurity posture in real-time. Our service packages, which are each tailored to a client's needs and budget, and external threat analysis, which provides critical intelligence at no-cost, help to democratize cybersecurity by making enterprise-grade defenses and security operations available to organizations of all sizes. NopalCyber lowers the barrier to entry while raising the bar for security and service.
We are looking for a proven, high energy, results oriented GRC professional, where you will be a key advisor for our clients, analyzing business requirements to design and implement ideal security solutions for their needs. As an established GRC Professional, you will span operational, tactical, and strategic levels as well as tasks that tackle difficult problems that businesses are facing when building out and improving their security and compliance posture.
Job responsibilities:
Job specifications:
1. Qualification:
2. Experience:
3. Desired Skills:
Knowledge and Experience:
Personal Attributes