4,243 Security Protocols jobs in India
Security Architecture Reviewer
Hyderabad, Andhra Pradesh
Genpact
Posted today
Job Viewed
Job Description
Solution Architect ASRB Security Engineer
Location: Hyderabad
Experience: 5=10 years
Immediate joiners Preferred.
Kindly share profile to with Sub of "ASRB Security Engineer" along with notice period.
An ASRB is a governing organization that examines and confirms compliance for hardware and software projects, both new and updated. The aim of the ASRB is to convey business requirements to interested parties and encourage uniform technology stacks and designs among cloud initiatives.
Responsibilities:
- Experience in managing the Security Architecture engagement review request.
- Work directly with application teams and solution architects to review proposed architectures to ensure alignment with approved design patterns and security control requirements.
- Recommend and/or approve designs and/or platform services which align with defined best practices. Provide list of security recommendations to the application team based on the architecture/security review checklist provided.
- Prepare Architecture & Security Review Board (ASRB) and/or Architecture Design Review (ADR) artifacts ensuring inclusion of necessary project information and architectural diagrams sufficient to disposition the design proposal, working collaboratively with the application team and solution architect.
- Hosting and/or supporting Cyber in these meetings with an intent, to strategically assess project proposals containing network, cloud platform/services and application architecture, with a purpose of identifying and highlighting both cyber risk and compliance control gaps that the project teams will then have to remediate prior to project go-live.
- Document security gaps or non-compliant patterns/components (i.E., ports/protocols/services/integrations) and track these to closure with the application teams.
- Develop and Maintain Security Standards for Azure/AWS Cloud Services
- Cloud Security Configuration and management, rules creation and configuration
- Good years of experience in Infrastructure Security and Operations
- Good years of experience in Securing AWS Cloud
- Mandatory knowledge off foundation Cloud Services Compute, Database, Network, Security Groups, Network Access List (NACL), Firewall rules and Storage.
- Understand threat modelling of applications.
- Knowledge of AZURE AND AWS products and services: EKS, S3, SQS, SNS, Cloud Watch, Elastic Cache, Kinesis, Cloud Trail, KMS, WAF, Guard Duty, IAM, Lambda, Connect, RDS
- Knowledge of AZURE AND AWS products and services: AZURE AND AWS AD, VM, BLOB, Key Vault, Log Analytics, Monitor, AZURE AND AWS Databases (SQL, PostgreSQL, MySQL), Key Vault, Security Center, Activity log
- Security certifications from AWS/Azure.
- Understand latest trends.
- Understand top key risks.
- Have Strong Knowledge in Networking in Cloud.
- Strong communication and written skills
- Experience creating technical documentation.
- Hands on experience Securing solutions on Azure/AWS
- Knowledge of security controls for the public cloud
- Knowledge of Industry Security standards (HIPPA, SOX, PCI-DSS)
- Knowledge of Compliance standards (NIST, CIS)
- Securing Linux and Windows OS
- Experience with Open-Source Cloud and configuration management tools (Terraform Ansible, etc.)
- Experience with alternate cloud providers (e.G. AWS)
This advertiser has chosen not to accept applicants from your region.
0
Senior Architect - Security Architecture, IDAM
Hyderabad, Andhra Pradesh
UnitedHealth Group
Posted 2 days ago
Job Viewed
Job Description
Optum is a global organization that delivers care, aided by technology to help millions of people live healthier lives. The work you do with our team will directly improve health outcomes by connecting people with the care, pharmacy benefits, data and resources they need to feel their best. Here, you will find a culture guided by inclusion, talented peers, comprehensive benefits and career development opportunities. Come make an impact on the communities we serve as you help us advance health optimization on a global scale. Join us to start **Caring. Connecting. Growing together.**
Provide expert level strategic direction and advice across all domains including, but not limited to, AI, application, compute, network, productivity, storage, and data protection domains from an Information Security lens. This person will be considered the expert and go-to person for technical security items and be able to communicate at all levels of leadership the importance of the technology, software, platform, or service chosen.
**Primary Responsibilities:**
+ Provide expert level security assessments and reviews across all domains and technology functions while consulting with business and IT projects to provide holistic security requirements
+ Lead, mentor and advise services to Infosec, business, and project teams to ensure that solutions are in line with the architecture direction and business strategies
+ Play a key role in defining the technology, software, and platform engineering lifecycle and providing requirements to project teams (tools, capabilities, processes, etc.)
+ Develop architecture documents/standards and pattern artifacts to security advisement teams consulting in enterprise projects
+ Influence key leaders in the organization on security principles that may be controversial and difficult to implement in order to protect customers and company data
+ Comply with the terms and conditions of the employment contract, company policies and procedures, and any and all directives (such as, but not limited to, transfer and/or re-assignment to different work locations, change in teams and/or work shifts, policies in regard to flexibility of work benefits and/or work environment, alternative work arrangements, and other decisions that may arise due to the changing business environment). The Company may adopt, vary or rescind these policies and directives in its absolute discretion and without any limitation (implied or otherwise) on its ability to do so
**Required Qualifications:**
+ Undergraduate degree or equivalent experience
+ 6+ years of related Network, Application, System, Storage, and Security Architecture experience
+ 6+ years of experience implementing security solutions within Azure, AWS, or GCP
+ 2+ years of providing technical guidance and mentoring to engineers, designers and developers
+ 1+ years of experience with architecting and designing security infrastructures
+ Knowledge of common IaaS, PaaS, and SaaS components and how to secure them by design
**Preferred Qualifications:**
+ Knowledge of HIPAA, PCI-DSS, ISO 2700X and proper application of the Security and Privacy Rules. Preferred knowledge of the HITRUST
+ Common Security Framework and NIST 800-53
+ Knowledge of world class protections against current and future cyber threats in order to keep company information secure (Risk Based Authentication, DLP, FW, IPS, Encryption, Proxies, Sandboxing, Full Packet Forensics, Fraud Solutions, PKI, big data security, etc.)
_At UnitedHealth Group, our mission is to help people live healthier lives and make the health system work better for everyone. We believe everyone - of every race, gender, sexuality, age, location and income - deserves the opportunity to live their healthiest life. Today, however, there are still far too many barriers to good health which are disproportionately experienced by people of color, historically marginalized groups and those with lower incomes. We are committed to mitigating our impact on the environment and enabling and delivering equitable care that addresses health disparities and improves health outcomes - an enterprise priority reflected in our mission._
#njp #SSTech
Provide expert level strategic direction and advice across all domains including, but not limited to, AI, application, compute, network, productivity, storage, and data protection domains from an Information Security lens. This person will be considered the expert and go-to person for technical security items and be able to communicate at all levels of leadership the importance of the technology, software, platform, or service chosen.
**Primary Responsibilities:**
+ Provide expert level security assessments and reviews across all domains and technology functions while consulting with business and IT projects to provide holistic security requirements
+ Lead, mentor and advise services to Infosec, business, and project teams to ensure that solutions are in line with the architecture direction and business strategies
+ Play a key role in defining the technology, software, and platform engineering lifecycle and providing requirements to project teams (tools, capabilities, processes, etc.)
+ Develop architecture documents/standards and pattern artifacts to security advisement teams consulting in enterprise projects
+ Influence key leaders in the organization on security principles that may be controversial and difficult to implement in order to protect customers and company data
+ Comply with the terms and conditions of the employment contract, company policies and procedures, and any and all directives (such as, but not limited to, transfer and/or re-assignment to different work locations, change in teams and/or work shifts, policies in regard to flexibility of work benefits and/or work environment, alternative work arrangements, and other decisions that may arise due to the changing business environment). The Company may adopt, vary or rescind these policies and directives in its absolute discretion and without any limitation (implied or otherwise) on its ability to do so
**Required Qualifications:**
+ Undergraduate degree or equivalent experience
+ 6+ years of related Network, Application, System, Storage, and Security Architecture experience
+ 6+ years of experience implementing security solutions within Azure, AWS, or GCP
+ 2+ years of providing technical guidance and mentoring to engineers, designers and developers
+ 1+ years of experience with architecting and designing security infrastructures
+ Knowledge of common IaaS, PaaS, and SaaS components and how to secure them by design
**Preferred Qualifications:**
+ Knowledge of HIPAA, PCI-DSS, ISO 2700X and proper application of the Security and Privacy Rules. Preferred knowledge of the HITRUST
+ Common Security Framework and NIST 800-53
+ Knowledge of world class protections against current and future cyber threats in order to keep company information secure (Risk Based Authentication, DLP, FW, IPS, Encryption, Proxies, Sandboxing, Full Packet Forensics, Fraud Solutions, PKI, big data security, etc.)
_At UnitedHealth Group, our mission is to help people live healthier lives and make the health system work better for everyone. We believe everyone - of every race, gender, sexuality, age, location and income - deserves the opportunity to live their healthiest life. Today, however, there are still far too many barriers to good health which are disproportionately experienced by people of color, historically marginalized groups and those with lower incomes. We are committed to mitigating our impact on the environment and enabling and delivering equitable care that addresses health disparities and improves health outcomes - an enterprise priority reflected in our mission._
#njp #SSTech
This advertiser has chosen not to accept applicants from your region.
1
Cloud Security & GRC Specialist (FinTech/ Security Architecture)
Pune, Maharashtra
PeopleGene
Posted 1 day ago
Job Viewed
Job Description
About the role:
We are seeking a hands-on Security & Compliance Lead to own and execute end-to-end security audits and compliance initiatives across applications, infrastructure, and organizational processes. This role ensures systems, applications, and business operations are secure, compliant, and aligned with both internal policies and regulatory requirements (e.g., RBI, ISO 27001, SOC 2 Type II).
Responsibilities:
- Conduct technical assessments (e.g., VRA, security checklists) required by new BFSI clients.
- Analyse and complete detailed cloud infrastructure security and compliance questionnaires.
- Assist in mapping customer security and regulatory requirements (e.g., ISO 27001, RBI, SOC 2 type II) to internal controls.
- Maintain documentation and templates for commonly requested BFSI assessment artifacts.
- Manage and complete security questionnaires from clients, vendors, and partners.
- Evaluate vendor security and compliance by reviewing their responses and
- supporting documentation.
- Identify security risks within the company’s IT infrastructure, applications and services.
- Ensure compliance with security standards such as ISO 27001, GDPR, SOC 2, or any other relevant frameworks.
- Work with internal teams to maintain compliance with legal and regulatory requirements.
- Collaborate with the IT security, legal, and procurement teams to address concerns identified in the security assessments.
- Develop and maintain internal security policies and procedures related to vendor assessments and third-party risk management.
- Prepare detailed reports summarizing findings from security assessments and risk analysis.
- Provide recommendations to improve security measures and compliance.
- Educate internal staff and external partners about security best practices and compliance requirements
- Support pre-sales and onboarding teams with timely delivery of assessment documentation.
- Stay updated with AWS best practices, shared responsibility model, and emerging cloud security trends.
Good to Have:
- Bachelor’s degree in computer science, Information Security, Data Science, or a related field
- 5+ years of experience working with Audit/compliance, application security assessments, AWS cloud security preferably BFSI domain
- 2+ yrs. of experience on AWS cloud security and risk assessments.
- Strong exposure to AWS cloud infrastructure (Guard Duty, security hub, inspector, Firewall, IAM, EC2, VPC, S3, Security Groups, etc.).
- Familiarity with secure coding practices, vulnerability management, and threat modelling.
- Experience with VRA templates, cloud security checklists, and assessment responses for enterprise or regulated clients.
- Familiarity with information security standards such as ISO 27001, SOC 2, RBI cybersecurity framework.
- Strong understanding of data protection, encryptions methodologies
- Ability to interpret and explain security configurations and policies in layman's terms.
- Experience with security controls, vulnerability scanning tools (e.g., Nessus, wire shark), or SIEM.
- Exposure with security tools such as network firewall, IPS/IDS is plus
This advertiser has chosen not to accept applicants from your region.
2
Cloud Security & GRC Specialist (FinTech/ Security Architecture)
Pune, Maharashtra
PeopleGene
Posted today
Job Viewed
Job Description
About the role:
We are seeking a hands-on Security & Compliance Lead to own and execute end-to-end security audits and compliance initiatives across applications, infrastructure, and organizational processes. This role ensures systems, applications, and business operations are secure, compliant, and aligned with both internal policies and regulatory requirements (e.g., RBI, ISO 27001, SOC 2 Type II).
Responsibilities:
Conduct technical assessments (e.g., VRA, security checklists) required by new BFSI clients.
Analyse and complete detailed cloud infrastructure security and compliance questionnaires.
Assist in mapping customer security and regulatory requirements (e.g., ISO 27001, RBI, SOC 2 type II) to internal controls.
Maintain documentation and templates for commonly requested BFSI assessment artifacts.
Manage and complete security questionnaires from clients, vendors, and partners.
Evaluate vendor security and compliance by reviewing their responses and
supporting documentation.
Identify security risks within the company’s IT infrastructure, applications and services.
Ensure compliance with security standards such as ISO 27001, GDPR, SOC 2, or any other relevant frameworks.
Work with internal teams to maintain compliance with legal and regulatory requirements.
Collaborate with the IT security, legal, and procurement teams to address concerns identified in the security assessments.
Develop and maintain internal security policies and procedures related to vendor assessments and third-party risk management.
Prepare detailed reports summarizing findings from security assessments and risk analysis.
Provide recommendations to improve security measures and compliance.
Educate internal staff and external partners about security best practices and compliance requirements
Support pre-sales and onboarding teams with timely delivery of assessment documentation.
Stay updated with AWS best practices, shared responsibility model, and emerging cloud security trends.
Good to Have:
Bachelor’s degree in computer science, Information Security, Data Science, or a related field
5+ years of experience working with Audit/compliance, application security assessments, AWS cloud security preferably BFSI domain
2+ yrs. of experience on AWS cloud security and risk assessments.
Strong exposure to AWS cloud infrastructure (Guard Duty, security hub, inspector, Firewall, IAM, EC2, VPC, S3, Security Groups, etc.).
Familiarity with secure coding practices, vulnerability management, and threat modelling.
Experience with VRA templates, cloud security checklists, and assessment responses for enterprise or regulated clients.
Familiarity with information security standards such as ISO 27001, SOC 2, RBI cybersecurity framework.
Strong understanding of data protection, encryptions methodologies
Ability to interpret and explain security configurations and policies in layman's terms.
Experience with security controls, vulnerability scanning tools (e.g., Nessus, wire shark), or SIEM.
Exposure with security tools such as network firewall, IPS/IDS is plus
We are seeking a hands-on Security & Compliance Lead to own and execute end-to-end security audits and compliance initiatives across applications, infrastructure, and organizational processes. This role ensures systems, applications, and business operations are secure, compliant, and aligned with both internal policies and regulatory requirements (e.g., RBI, ISO 27001, SOC 2 Type II).
Responsibilities:
Conduct technical assessments (e.g., VRA, security checklists) required by new BFSI clients.
Analyse and complete detailed cloud infrastructure security and compliance questionnaires.
Assist in mapping customer security and regulatory requirements (e.g., ISO 27001, RBI, SOC 2 type II) to internal controls.
Maintain documentation and templates for commonly requested BFSI assessment artifacts.
Manage and complete security questionnaires from clients, vendors, and partners.
Evaluate vendor security and compliance by reviewing their responses and
supporting documentation.
Identify security risks within the company’s IT infrastructure, applications and services.
Ensure compliance with security standards such as ISO 27001, GDPR, SOC 2, or any other relevant frameworks.
Work with internal teams to maintain compliance with legal and regulatory requirements.
Collaborate with the IT security, legal, and procurement teams to address concerns identified in the security assessments.
Develop and maintain internal security policies and procedures related to vendor assessments and third-party risk management.
Prepare detailed reports summarizing findings from security assessments and risk analysis.
Provide recommendations to improve security measures and compliance.
Educate internal staff and external partners about security best practices and compliance requirements
Support pre-sales and onboarding teams with timely delivery of assessment documentation.
Stay updated with AWS best practices, shared responsibility model, and emerging cloud security trends.
Good to Have:
Bachelor’s degree in computer science, Information Security, Data Science, or a related field
5+ years of experience working with Audit/compliance, application security assessments, AWS cloud security preferably BFSI domain
2+ yrs. of experience on AWS cloud security and risk assessments.
Strong exposure to AWS cloud infrastructure (Guard Duty, security hub, inspector, Firewall, IAM, EC2, VPC, S3, Security Groups, etc.).
Familiarity with secure coding practices, vulnerability management, and threat modelling.
Experience with VRA templates, cloud security checklists, and assessment responses for enterprise or regulated clients.
Familiarity with information security standards such as ISO 27001, SOC 2, RBI cybersecurity framework.
Strong understanding of data protection, encryptions methodologies
Ability to interpret and explain security configurations and policies in layman's terms.
Experience with security controls, vulnerability scanning tools (e.g., Nessus, wire shark), or SIEM.
Exposure with security tools such as network firewall, IPS/IDS is plus
This advertiser has chosen not to accept applicants from your region.
3
Cloud security & grc specialist (fintech/ security architecture)
Alwar, Rajasthan
PeopleGene
Posted today
Job Viewed
Job Description
About the role:We are seeking a hands-on Security & Compliance Lead to own and execute end-to-end security audits and compliance initiatives across applications, infrastructure, and organizational processes. This role ensures systems, applications, and business operations are secure, compliant, and aligned with both internal policies and regulatory requirements (e.g., RBI, ISO 27001, SOC 2 Type II).Responsibilities:Conduct technical assessments (e.g., VRA, security checklists) required by new BFSI clients.Analyse and complete detailed cloud infrastructure security and compliance questionnaires.Assist in mapping customer security and regulatory requirements (e.g., ISO 27001, RBI, SOC 2 type II) to internal controls.Maintain documentation and templates for commonly requested BFSI assessment artifacts.Manage and complete security questionnaires from clients, vendors, and partners.Evaluate vendor security and compliance by reviewing their responses andsupporting documentation.Identify security risks within the company’s IT infrastructure, applications and services.Ensure compliance with security standards such as ISO 27001, GDPR, SOC 2, or any other relevant frameworks.Work with internal teams to maintain compliance with legal and regulatory requirements.Collaborate with the IT security, legal, and procurement teams to address concerns identified in the security assessments.Develop and maintain internal security policies and procedures related to vendor assessments and third-party risk management.Prepare detailed reports summarizing findings from security assessments and risk analysis.Provide recommendations to improve security measures and compliance.Educate internal staff and external partners about security best practices and compliance requirementsSupport pre-sales and onboarding teams with timely delivery of assessment documentation.Stay updated with AWS best practices, shared responsibility model, and emerging cloud security trends.Good to Have:Bachelor’s degree in computer science, Information Security, Data Science, or a related field5+ years of experience working with Audit/compliance, application security assessments, AWS cloud security preferably BFSI domain2+ yrs. of experience on AWS cloud security and risk assessments.Strong exposure to AWS cloud infrastructure (Guard Duty, security hub, inspector, Firewall, IAM, EC2, VPC, S3, Security Groups, etc.).Familiarity with secure coding practices, vulnerability management, and threat modelling.Experience with VRA templates, cloud security checklists, and assessment responses for enterprise or regulated clients.Familiarity with information security standards such as ISO 27001, SOC 2, RBI cybersecurity framework.Strong understanding of data protection, encryptions methodologiesAbility to interpret and explain security configurations and policies in layman's terms.Experience with security controls, vulnerability scanning tools (e.g., Nessus, wire shark), or SIEM.Exposure with security tools such as network firewall, IPS/IDS is plus
This advertiser has chosen not to accept applicants from your region.
4
Cloud security & grc specialist (fintech/ security architecture)
Visakhapatnam, Andhra Pradesh
PeopleGene
Posted today
Job Viewed
Job Description
About the role:We are seeking a hands-on Security & Compliance Lead to own and execute end-to-end security audits and compliance initiatives across applications, infrastructure, and organizational processes. This role ensures systems, applications, and business operations are secure, compliant, and aligned with both internal policies and regulatory requirements (e.g., RBI, ISO 27001, SOC 2 Type II).Responsibilities:Conduct technical assessments (e.g., VRA, security checklists) required by new BFSI clients.Analyse and complete detailed cloud infrastructure security and compliance questionnaires.Assist in mapping customer security and regulatory requirements (e.g., ISO 27001, RBI, SOC 2 type II) to internal controls.Maintain documentation and templates for commonly requested BFSI assessment artifacts.Manage and complete security questionnaires from clients, vendors, and partners.Evaluate vendor security and compliance by reviewing their responses andsupporting documentation.Identify security risks within the company’s IT infrastructure, applications and services.Ensure compliance with security standards such as ISO 27001, GDPR, SOC 2, or any other relevant frameworks.Work with internal teams to maintain compliance with legal and regulatory requirements.Collaborate with the IT security, legal, and procurement teams to address concerns identified in the security assessments.Develop and maintain internal security policies and procedures related to vendor assessments and third-party risk management.Prepare detailed reports summarizing findings from security assessments and risk analysis.Provide recommendations to improve security measures and compliance.Educate internal staff and external partners about security best practices and compliance requirementsSupport pre-sales and onboarding teams with timely delivery of assessment documentation.Stay updated with AWS best practices, shared responsibility model, and emerging cloud security trends.Good to Have:Bachelor’s degree in computer science, Information Security, Data Science, or a related field5+ years of experience working with Audit/compliance, application security assessments, AWS cloud security preferably BFSI domain2+ yrs. of experience on AWS cloud security and risk assessments.Strong exposure to AWS cloud infrastructure (Guard Duty, security hub, inspector, Firewall, IAM, EC2, VPC, S3, Security Groups, etc.).Familiarity with secure coding practices, vulnerability management, and threat modelling.Experience with VRA templates, cloud security checklists, and assessment responses for enterprise or regulated clients.Familiarity with information security standards such as ISO 27001, SOC 2, RBI cybersecurity framework.Strong understanding of data protection, encryptions methodologiesAbility to interpret and explain security configurations and policies in layman's terms.Experience with security controls, vulnerability scanning tools (e.g., Nessus, wire shark), or SIEM.Exposure with security tools such as network firewall, IPS/IDS is plus
This advertiser has chosen not to accept applicants from your region.
5
Cloud security & grc specialist (fintech/ security architecture)
Ghaziabad, Uttar Pradesh
PeopleGene
Posted today
Job Viewed
Job Description
About the role:We are seeking a hands-on Security & Compliance Lead to own and execute end-to-end security audits and compliance initiatives across applications, infrastructure, and organizational processes. This role ensures systems, applications, and business operations are secure, compliant, and aligned with both internal policies and regulatory requirements (e.g., RBI, ISO 27001, SOC 2 Type II).Responsibilities:Conduct technical assessments (e.g., VRA, security checklists) required by new BFSI clients.Analyse and complete detailed cloud infrastructure security and compliance questionnaires.Assist in mapping customer security and regulatory requirements (e.g., ISO 27001, RBI, SOC 2 type II) to internal controls.Maintain documentation and templates for commonly requested BFSI assessment artifacts.Manage and complete security questionnaires from clients, vendors, and partners.Evaluate vendor security and compliance by reviewing their responses andsupporting documentation.Identify security risks within the company’s IT infrastructure, applications and services.Ensure compliance with security standards such as ISO 27001, GDPR, SOC 2, or any other relevant frameworks.Work with internal teams to maintain compliance with legal and regulatory requirements.Collaborate with the IT security, legal, and procurement teams to address concerns identified in the security assessments.Develop and maintain internal security policies and procedures related to vendor assessments and third-party risk management.Prepare detailed reports summarizing findings from security assessments and risk analysis.Provide recommendations to improve security measures and compliance.Educate internal staff and external partners about security best practices and compliance requirementsSupport pre-sales and onboarding teams with timely delivery of assessment documentation.Stay updated with AWS best practices, shared responsibility model, and emerging cloud security trends.Good to Have:Bachelor’s degree in computer science, Information Security, Data Science, or a related field5+ years of experience working with Audit/compliance, application security assessments, AWS cloud security preferably BFSI domain2+ yrs. of experience on AWS cloud security and risk assessments.Strong exposure to AWS cloud infrastructure (Guard Duty, security hub, inspector, Firewall, IAM, EC2, VPC, S3, Security Groups, etc.).Familiarity with secure coding practices, vulnerability management, and threat modelling.Experience with VRA templates, cloud security checklists, and assessment responses for enterprise or regulated clients.Familiarity with information security standards such as ISO 27001, SOC 2, RBI cybersecurity framework.Strong understanding of data protection, encryptions methodologiesAbility to interpret and explain security configurations and policies in layman's terms.Experience with security controls, vulnerability scanning tools (e.g., Nessus, wire shark), or SIEM.Exposure with security tools such as network firewall, IPS/IDS is plus
This advertiser has chosen not to accept applicants from your region.
Be The First To Know
About the latest Security protocols Jobs in India !
6
Cloud Security & GRC Specialist (FinTech/ Security Architecture)
Pune, Maharashtra
PeopleGene
Posted 1 day ago
Job Viewed
Job Description
About the role:
We are seeking a hands-on Security & Compliance Lead to own and execute end-to-end security audits and compliance initiatives across applications, infrastructure, and organizational processes. This role ensures systems, applications, and business operations are secure, compliant, and aligned with both internal policies and regulatory requirements (e.g., RBI, ISO 27001, SOC 2 Type II).
Responsibilities:
- Conduct technical assessments (e.g., VRA, security checklists) required by new BFSI clients.
- Analyse and complete detailed cloud infrastructure security and compliance questionnaires.
- Assist in mapping customer security and regulatory requirements (e.g., ISO 27001, RBI, SOC 2 type II) to internal controls.
- Maintain documentation and templates for commonly requested BFSI assessment artifacts.
- Manage and complete security questionnaires from clients, vendors, and partners.
- Evaluate vendor security and compliance by reviewing their responses and
- supporting documentation.
- Identify security risks within the company’s IT infrastructure, applications and services.
- Ensure compliance with security standards such as ISO 27001, GDPR, SOC 2, or any other relevant frameworks.
- Work with internal teams to maintain compliance with legal and regulatory requirements.
- Collaborate with the IT security, legal, and procurement teams to address concerns identified in the security assessments.
- Develop and maintain internal security policies and procedures related to vendor assessments and third-party risk management.
- Prepare detailed reports summarizing findings from security assessments and risk analysis.
- Provide recommendations to improve security measures and compliance.
- Educate internal staff and external partners about security best practices and compliance requirements
- Support pre-sales and onboarding teams with timely delivery of assessment documentation.
- Stay updated with AWS best practices, shared responsibility model, and emerging cloud security trends.
Good to Have:
- Bachelor’s degree in computer science, Information Security, Data Science, or a related field
- 5+ years of experience working with Audit/compliance, application security assessments, AWS cloud security preferably BFSI domain
- 2+ yrs. of experience on AWS cloud security and risk assessments.
- Strong exposure to AWS cloud infrastructure (Guard Duty, security hub, inspector, Firewall, IAM, EC2, VPC, S3, Security Groups, etc.).
- Familiarity with secure coding practices, vulnerability management, and threat modelling.
- Experience with VRA templates, cloud security checklists, and assessment responses for enterprise or regulated clients.
- Familiarity with information security standards such as ISO 27001, SOC 2, RBI cybersecurity framework.
- Strong understanding of data protection, encryptions methodologies
- Ability to interpret and explain security configurations and policies in layman's terms.
- Experience with security controls, vulnerability scanning tools (e.g., Nessus, wire shark), or SIEM.
- Exposure with security tools such as network firewall, IPS/IDS is plus
This advertiser has chosen not to accept applicants from your region.
7
Cloud Security & GRC Specialist (FinTech/ Security Architecture)
New Delhi, Delhi
PeopleGene
Posted today
Job Viewed
Job Description
About the role: We are seeking a hands-on Security & Compliance Lead to own and execute end-to-end security audits and compliance initiatives across applications, infrastructure, and organizational processes. This role ensures systems, applications, and business operations are secure, compliant, and aligned with both internal policies and regulatory requirements (e.g., RBI, ISO 27001, SOC 2 Type II).
Responsibilities: Conduct technical assessments (e.g., VRA, security checklists) required by new BFSI clients. Analyse and complete detailed cloud infrastructure security and compliance questionnaires. Assist in mapping customer security and regulatory requirements (e.g., ISO 27001, RBI, SOC 2 type II) to internal controls. Maintain documentation and templates for commonly requested BFSI assessment artifacts. Manage and complete security questionnaires from clients, vendors, and partners. Evaluate vendor security and compliance by reviewing their responses and supporting documentation. Identify security risks within the company’s IT infrastructure, applications and services. Ensure compliance with security standards such as ISO 27001, GDPR, SOC 2, or any other relevant frameworks. Work with internal teams to maintain compliance with legal and regulatory requirements. Collaborate with the IT security, legal, and procurement teams to address concerns identified in the security assessments. Develop and maintain internal security policies and procedures related to vendor assessments and third-party risk management. Prepare detailed reports summarizing findings from security assessments and risk analysis. Provide recommendations to improve security measures and compliance. Educate internal staff and external partners about security best practices and compliance requirements Support pre-sales and onboarding teams with timely delivery of assessment documentation. Stay updated with AWS best practices, shared responsibility model, and emerging cloud security trends.
Good to Have: Bachelor’s degree in computer science, Information Security, Data Science, or a related field 5+ years of experience working with Audit/compliance, application security assessments, AWS cloud security preferably BFSI domain 2+ yrs. of experience on AWS cloud security and risk assessments. Strong exposure to AWS cloud infrastructure (Guard Duty, security hub, inspector, Firewall, IAM, EC2, VPC, S3, Security Groups, etc.). Familiarity with secure coding practices, vulnerability management, and threat modelling. Experience with VRA templates, cloud security checklists, and assessment responses for enterprise or regulated clients. Familiarity with information security standards such as ISO 27001, SOC 2, RBI cybersecurity framework. Strong understanding of data protection, encryptions methodologies Ability to interpret and explain security configurations and policies in layman's terms. Experience with security controls, vulnerability scanning tools (e.g., Nessus, wire shark), or SIEM. Exposure with security tools such as network firewall, IPS/IDS is plus
Responsibilities: Conduct technical assessments (e.g., VRA, security checklists) required by new BFSI clients. Analyse and complete detailed cloud infrastructure security and compliance questionnaires. Assist in mapping customer security and regulatory requirements (e.g., ISO 27001, RBI, SOC 2 type II) to internal controls. Maintain documentation and templates for commonly requested BFSI assessment artifacts. Manage and complete security questionnaires from clients, vendors, and partners. Evaluate vendor security and compliance by reviewing their responses and supporting documentation. Identify security risks within the company’s IT infrastructure, applications and services. Ensure compliance with security standards such as ISO 27001, GDPR, SOC 2, or any other relevant frameworks. Work with internal teams to maintain compliance with legal and regulatory requirements. Collaborate with the IT security, legal, and procurement teams to address concerns identified in the security assessments. Develop and maintain internal security policies and procedures related to vendor assessments and third-party risk management. Prepare detailed reports summarizing findings from security assessments and risk analysis. Provide recommendations to improve security measures and compliance. Educate internal staff and external partners about security best practices and compliance requirements Support pre-sales and onboarding teams with timely delivery of assessment documentation. Stay updated with AWS best practices, shared responsibility model, and emerging cloud security trends.
Good to Have: Bachelor’s degree in computer science, Information Security, Data Science, or a related field 5+ years of experience working with Audit/compliance, application security assessments, AWS cloud security preferably BFSI domain 2+ yrs. of experience on AWS cloud security and risk assessments. Strong exposure to AWS cloud infrastructure (Guard Duty, security hub, inspector, Firewall, IAM, EC2, VPC, S3, Security Groups, etc.). Familiarity with secure coding practices, vulnerability management, and threat modelling. Experience with VRA templates, cloud security checklists, and assessment responses for enterprise or regulated clients. Familiarity with information security standards such as ISO 27001, SOC 2, RBI cybersecurity framework. Strong understanding of data protection, encryptions methodologies Ability to interpret and explain security configurations and policies in layman's terms. Experience with security controls, vulnerability scanning tools (e.g., Nessus, wire shark), or SIEM. Exposure with security tools such as network firewall, IPS/IDS is plus
This advertiser has chosen not to accept applicants from your region.
8
Cloud Security & Grc Specialist (Fintech/ Security Architecture)
PeopleGene
Posted today
Job Viewed
Job Description
About the role:
We are seeking a hands-on Security & Compliance Lead to own and execute end-to-end security audits and compliance initiatives across applications, infrastructure, and organizational processes. This role ensures systems, applications, and business operations are secure, compliant, and aligned with both internal policies and regulatory requirements (e.G., RBI, ISO 27001, SOC 2 Type II).
Responsibilities:
- Conduct technical assessments (e.G., VRA, security checklists) required by new BFSI clients.
- Analyse and complete detailed cloud infrastructure security and compliance questionnaires.
- Assist in mapping customer security and regulatory requirements (e.G., ISO 27001, RBI, SOC 2 type II) to internal controls.
- Maintain documentation and templates for commonly requested BFSI assessment artifacts.
- Manage and complete security questionnaires from clients, vendors, and partners.
- Evaluate vendor security and compliance by reviewing their responses and
- supporting documentation.
- Identify security risks within the company’s IT infrastructure, applications and services.
- Ensure compliance with security standards such as ISO 27001, GDPR, SOC 2, or any other relevant frameworks.
- Work with internal teams to maintain compliance with legal and regulatory requirements.
- Collaborate with the IT security, legal, and procurement teams to address concerns identified in the security assessments.
- Develop and maintain internal security policies and procedures related to vendor assessments and third-party risk management.
- Prepare detailed reports summarizing findings from security assessments and risk analysis.
- Provide recommendations to improve security measures and compliance.
- Educate internal staff and external partners about security best practices and compliance requirements
- Support pre-sales and onboarding teams with timely delivery of assessment documentation.
- Stay updated with AWS best practices, shared responsibility model, and emerging cloud security trends.
Good to Have:
- Bachelor’s degree in computer science, Information Security, Data Science, or a related field
- 5+ years of experience working with Audit/compliance, application security assessments, AWS cloud security preferably BFSI domain
- 2+ yrs. of experience on AWS cloud security and risk assessments.
- Strong exposure to AWS cloud infrastructure (Guard Duty, security hub, inspector, Firewall, IAM, EC2, VPC, S3, Security Groups, etc.).
- Familiarity with secure coding practices, vulnerability management, and threat modelling.
- Experience with VRA templates, cloud security checklists, and assessment responses for enterprise or regulated clients.
- Familiarity with information security standards such as ISO 27001, SOC 2, RBI cybersecurity framework.
- Strong understanding of data protection, encryptions methodologies
- Ability to interpret and explain security configurations and policies in layman's terms.
- Experience with security controls, vulnerability scanning tools (e.G., Nessus, wire shark), or SIEM.
- Exposure with security tools such as network firewall, IPS/IDS is plus
This advertiser has chosen not to accept applicants from your region.
9