Desired skills1. In-depth technical knowledge of Information Security domain2. Strategic planning & Management capabilities3. Good analytical and problem-solving skills4. Excellent communication & interpersonal skills5. Ability to handle high pressure situations6. Adaptability &flexibilityResponsibilities Lead 24x7 delivery team, foster innovation, and drive accountability within Security Operation & Engineering. Strategic planning for 24x7 Security Operation Management, administration & maintenance of security devices under the purview Primarily responsible for security event monitoring, management, and response Ensure incident identification, assessment, quantification, reporting, communication, mitigation, and monitoring Ensure compliance to SLA, process adherence and process improvisation to achieve operational objectives Revise and develop processes to strengthen the current Security Operations Framework, Review policies and highlight the challenges in managing SLAs Responsible for team & vendor management, overall use of resources and initiation of corrective action where required Define goals & objectives of Security Operation as per Business needs/objectives Define and measurement of key performance indicators Define policies, processes, and procedures for SOC, evaluate & review effectiveness Assist to develop, maintain, review and improve strategic information security and risk management plan Vulnerability analysis & impact analysis, Identification and implementation of controls for risk mitigation Responsible for Business Continuity Plan (BCP), conduct mock drill to evaluate effectiveness of BCP Disposal of storage media when not required as per organization policy Ensure all information systems with organization are adequately patched and updated In-depth familiarity with security policies based on industry standards and best practices Oversee technical delivery, assessing and continually improving output and ensuring processes are developed and adhered to in order to drive operational excellence. Provide administrative direction and support for daily operational activities Develop and maintain an educational environment where the knowledge and performance of the group is constantly advancing Communication to all stakeholders about new/existing vulnerabilities / threats Identify resource requirements, oversee hiring and training needs
Desired skills1. In-depth technical knowledge of Information Security domain2. Strategic planning & Management capabilities3. Good analytical and problem-solving skills4. Excellent communication & interpersonal skills5. Ability to handle high pressure situations6. Adaptability &flexibilityResponsibilities Lead 24x7 delivery team, foster innovation, and drive accountability within Security Operation & Engineering. Strategic planning for 24x7 Security Operation Management, administration & maintenance of security devices under the purview Primarily responsible for security event monitoring, management, and response Ensure incident identification, assessment, quantification, reporting, communication, mitigation, and monitoring Ensure compliance to SLA, process adherence and process improvisation to achieve operational objectives Revise and develop processes to strengthen the current Security Operations Framework, Review policies and highlight the challenges in managing SLAs Responsible for team & vendor management, overall use of resources and initiation of corrective action where required Define goals & objectives of Security Operation as per Business needs/objectives Define and measurement of key performance indicators Define policies, processes, and procedures for SOC, evaluate & review effectiveness Assist to develop, maintain, review and improve strategic information security and risk management plan Vulnerability analysis & impact analysis, Identification and implementation of controls for risk mitigation Responsible for Business Continuity Plan (BCP), conduct mock drill to evaluate effectiveness of BCP Disposal of storage media when not required as per organization policy Ensure all information systems with organization are adequately patched and updated In-depth familiarity with security policies based on industry standards and best practices Oversee technical delivery, assessing and continually improving output and ensuring processes are developed and adhered to in order to drive operational excellence. Provide administrative direction and support for daily operational activities Develop and maintain an educational environment where the knowledge and performance of the group is constantly advancing Communication to all stakeholders about new/existing vulnerabilities / threats Identify resource requirements, oversee hiring and training needs
Job Role:Grant Thornton is seeking individuals with sound experience in Internal audit and Internalcontrols, Concurrent Audits, Risk assessment, Enterprise Risk management, Compliance riskand regulatory services, Financial risks and other related solutions Job Description: The job responsibilities include: Assisting in the preparation of engagement planning memorandum. Identifying and evaluating key risks and contributing to establishing engagement scopebased on client’s requirements. Assessing applicable regulatory environment and impact of key regulations from RBI, SEBI,IRDAI on the client’s processes Leading walkthrough meetings and discussions with the purpose of developing testprograms/ working papers and identifying control issues. Executing engagements in line with test programs and within time budgets and leadingcertain aspects of audits/reviews. Appropriately assessing potential findings for significance. Able to assess practices being followed by peers and identifying recommendations based onsuch leading practices Drafting reports; writing clear and concise findings Review work done by sub-ordinates (if any) and provide qualitative inputs beforesubmission of deliverables to seniors/client (as the case may be) Communicating findings/ gaps to the project manager and client management; assist withnegotiating finalization of issues with senior client management. Track implementation of recommended processes designed to strengthen internal controls. Developing strong working relationship with clientsSkills/Qualification Requirements Having at least 2 years of experience in financial services, with a preference for those withexperience of auditing banking treasury, credit, trade finance, insurance and NBFCs Working knowledge of the financial services regulatory environment with an emphasis onCompliance activities and rules and regulations pertaining to RBI, SEBI, IRDAI Understands the business and operational risks associated with banking, NBFC, Insurancecompanies Understanding of financial risks – credit risk, market risk, liquidity risk, operational risk CA, CFA, FRM, MBA or Post Graduate degree preferred. Big 4 experience preferred. Good with Excel, word, and PowerPoint use. Strong analytical skills. Able to process information quickly. Motivated and a self-starter Good interpersonal and communication skills. Proven ability to manage projects. Ability to manage work assignments with deadlines, while multi-tasking
Job Role:Grant Thornton is seeking individuals with sound experience in Internal audit and Internalcontrols, Concurrent Audits, Risk assessment, Enterprise Risk management, Compliance riskand regulatory services, Financial risks and other related solutions Job Description: The job responsibilities include: Assisting in the preparation of engagement planning memorandum. Identifying and evaluating key risks and contributing to establishing engagement scopebased on client’s requirements. Assessing applicable regulatory environment and impact of key regulations from RBI, SEBI,IRDAI on the client’s processes Leading walkthrough meetings and discussions with the purpose of developing testprograms/ working papers and identifying control issues. Executing engagements in line with test programs and within time budgets and leadingcertain aspects of audits/reviews. Appropriately assessing potential findings for significance. Able to assess practices being followed by peers and identifying recommendations based onsuch leading practices Drafting reports; writing clear and concise findings Review work done by sub-ordinates (if any) and provide qualitative inputs beforesubmission of deliverables to seniors/client (as the case may be) Communicating findings/ gaps to the project manager and client management; assist withnegotiating finalization of issues with senior client management. Track implementation of recommended processes designed to strengthen internal controls. Developing strong working relationship with clientsSkills/Qualification Requirements Having at least 2 years of experience in financial services, with a preference for those withexperience of auditing banking treasury, credit, trade finance, insurance and NBFCs Working knowledge of the financial services regulatory environment with an emphasis onCompliance activities and rules and regulations pertaining to RBI, SEBI, IRDAI Understands the business and operational risks associated with banking, NBFC, Insurancecompanies Understanding of financial risks – credit risk, market risk, liquidity risk, operational risk CA, CFA, FRM, MBA or Post Graduate degree preferred. Big 4 experience preferred. Good with Excel, word, and PowerPoint use. Strong analytical skills. Able to process information quickly. Motivated and a self-starter Good interpersonal and communication skills. Proven ability to manage projects. Ability to manage work assignments with deadlines, while multi-tasking
Job Description The Cyber Security Engineer will have an opportunity to own and lead a charter to implement cyber security best practices and drive change within the organization. He/She will work closely with Product Engineering, Cyber security, Risk Management and Research and Threat Intelligence teams to architect, implement and manage the various cyber security initiatives within the company.Role and ResponsibilitiesThe Senior Cyber Security Engineer will Design, evaluate, deploy, manage, and fine tune the security infrastructure services and tools within the organizationAssess and automate cyber security processes for on-premises as well as cloud infrastructure and applicationsManage, monitor and mitigate cyber risks by implementing industry best practices, solutions and processes around cloud infrastructure security, network security, application security as well as data securityKeep UpToDate with advanced threats, vulnerabilities, latest security solutions and risk mitigation strategies used in cybersecurity operations.Contribute to various internal security initiatives such as Dev-sec-ops, security orchestration and automation etcQualifications and Education Requirements Degree in Computer Science or any Technical Discipline (B. E, B. Tech, BCA, MCA, B.Sc. (IT)) Knowledge, Skills and ExperienceAt least 8 years of experience in Network Security (Firewalls, IDS, IPS, Endpoint Security)Must have hands-on experience in at least 3 or more of the following - cloud security configuration, security monitoring for cloud workloads (AWS, GCP, Azure) and O365 environmentsinstalling, configuring SIEM (such as Splunk, QRadar, or any cloud SIEM, Azure Sentinel, AWS Cloud Watch, GuardDuty, Google Chronicle etc)Vulnerability Assessment Tools such as Nessus, QualysWeb Application Firewalls, CDN securityApplication security tools such as SAST, DAST, source code review tools such as Checkmarx etc.Detailed knowledge of securing operating systems, containers and databasesFamiliarity with Identity and Access Management Concepts (IAM, SSO etc)Experience in setting up Dev-Sec-Ops processes successfully using various tools such as Jenkins, Ansible, Puppet, Chef etc will be a huge plusAbility to automate repeatable security tasks through scripts and custom codeSelf-motivated and results-oriented, agile mindset, with excellent interpersonal and communication skills.Prior experience working with startups in a dynamic environment and SaaS companies would be an added advantageCertifications (desirable, but not mandatory)AWS / Azure /GCP security certification (any)SIEM Certification (any)
Job Description The Cyber Security Engineer will have an opportunity to own and lead a charter to implement cyber security best practices and drive change within the organization. He/She will work closely with Product Engineering, Cyber security, Risk Management and Research and Threat Intelligence teams to architect, implement and manage the various cyber security initiatives within the company.Role and ResponsibilitiesThe Senior Cyber Security Engineer will Design, evaluate, deploy, manage, and fine tune the security infrastructure services and tools within the organizationAssess and automate cyber security processes for on-premises as well as cloud infrastructure and applicationsManage, monitor and mitigate cyber risks by implementing industry best practices, solutions and processes around cloud infrastructure security, network security, application security as well as data securityKeep UpToDate with advanced threats, vulnerabilities, latest security solutions and risk mitigation strategies used in cybersecurity operations.Contribute to various internal security initiatives such as Dev-sec-ops, security orchestration and automation etcQualifications and Education Requirements Degree in Computer Science or any Technical Discipline (B. E, B. Tech, BCA, MCA, B.Sc. (IT)) Knowledge, Skills and ExperienceAt least 8 years of experience in Network Security (Firewalls, IDS, IPS, Endpoint Security)Must have hands-on experience in at least 3 or more of the following - cloud security configuration, security monitoring for cloud workloads (AWS, GCP, Azure) and O365 environmentsinstalling, configuring SIEM (such as Splunk, QRadar, or any cloud SIEM, Azure Sentinel, AWS Cloud Watch, GuardDuty, Google Chronicle etc)Vulnerability Assessment Tools such as Nessus, QualysWeb Application Firewalls, CDN securityApplication security tools such as SAST, DAST, source code review tools such as Checkmarx etc.Detailed knowledge of securing operating systems, containers and databasesFamiliarity with Identity and Access Management Concepts (IAM, SSO etc)Experience in setting up Dev-Sec-Ops processes successfully using various tools such as Jenkins, Ansible, Puppet, Chef etc will be a huge plusAbility to automate repeatable security tasks through scripts and custom codeSelf-motivated and results-oriented, agile mindset, with excellent interpersonal and communication skills.Prior experience working with startups in a dynamic environment and SaaS companies would be an added advantageCertifications (desirable, but not mandatory)AWS / Azure /GCP security certification (any)SIEM Certification (any)
