IT Governance Risk and Compliance

Trigent Software Private Limited

Job Location:

Pune - India

Monthly Salary: Not Disclosed

Posted on: 7 hours ago

Vacancies: 1 Vacancy

Job Summary

Job Description

Understanding applicable regulations guidelines and industry best practices to manage risk and ensure compliance.
Monitoring internal control effectiveness.
Conducting internal security assessments to ensure continued compliance.
Manages and supports Information Security Risk Management Life-cycle.
Manages and supports third party risk management life-cycle (initial assessments to remediation and reporting)
Ensures appropriate treatment of risk compliance and assurance from internal and external perspectives.
Ensures security and compliance to specific standards such as NIST 800-53 ISO 27001 SOX PCI and other regulatory requirements.
Identifies and formally documents deviations from published standards estimates risk level recommends appropriate mitigation countermeasures in operational and non-operational situations.
Developing maintaining and/or auditing security documentation such as policies standards and procedures.
Must have adequate working knowledge of various security domains like Endpoint Security Network Security SIEM SOC Advanced security tools SOAR platform Vulnerability Management etc
Identify potential areas of IT compliance vulnerability and risk; guide the accountable stakeholders to develop/implement corrective action plans for resolution and provide general guidance on how to avoid or deal with similar situations in the future.
Institute and maintain an effective IT compliance communication program for the Account including promoting (a) heightened awareness of Standards of Conduct and (b) understanding of new and existing IT compliance issues and related policies and procedures
Good knowledge of Business Continuity Management and Disaster Recovery process
Good knowledge of privacy frameworks and controls.

Minimum Eligibility

Graduate /Postgraduate with Minimum 6-12 years of relevant Cybersecurity & Risk Compliance Domain
Expertise is Security Risk Assessments and Compliance management.
Preferred expertise in BCP/DR Management privacy cloud security etc.
Excellent communication presentation skills and Stakeholder Management Skills.
Good to possess one or more professional certifications- CISSP/CISA/CRISC/CISM

Job Description Understanding applicable regulations guidelines and industry best practices to manage risk and ensure compliance. Monitoring internal control effectiveness. Conducting internal security assessments to ensure continued compliance. Manages and supports Information Security Risk Manage...

Job Description

Understanding applicable regulations guidelines and industry best practices to manage risk and ensure compliance.
Monitoring internal control effectiveness.
Conducting internal security assessments to ensure continued compliance.
Manages and supports Information Security Risk Management Life-cycle.
Manages and supports third party risk management life-cycle (initial assessments to remediation and reporting)
Ensures appropriate treatment of risk compliance and assurance from internal and external perspectives.
Ensures security and compliance to specific standards such as NIST 800-53 ISO 27001 SOX PCI and other regulatory requirements.
Identifies and formally documents deviations from published standards estimates risk level recommends appropriate mitigation countermeasures in operational and non-operational situations.
Developing maintaining and/or auditing security documentation such as policies standards and procedures.
Must have adequate working knowledge of various security domains like Endpoint Security Network Security SIEM SOC Advanced security tools SOAR platform Vulnerability Management etc
Identify potential areas of IT compliance vulnerability and risk; guide the accountable stakeholders to develop/implement corrective action plans for resolution and provide general guidance on how to avoid or deal with similar situations in the future.
Institute and maintain an effective IT compliance communication program for the Account including promoting (a) heightened awareness of Standards of Conduct and (b) understanding of new and existing IT compliance issues and related policies and procedures
Good knowledge of Business Continuity Management and Disaster Recovery process
Good knowledge of privacy frameworks and controls.

Minimum Eligibility

Graduate /Postgraduate with Minimum 6-12 years of relevant Cybersecurity & Risk Compliance Domain
Expertise is Security Risk Assessments and Compliance management.
Preferred expertise in BCP/DR Management privacy cloud security etc.
Excellent communication presentation skills and Stakeholder Management Skills.
Good to possess one or more professional certifications- CISSP/CISA/CRISC/CISM