Senior Software Quality Assurance

Responsibilities:

ISMS Governance

1)     Maintain and information security policy, evaluate security posture of the organization periodically, report to the stakeholders.

Audit & Compliance

1)     Manage internal, statutory and regulatory audit requirements related to information security

2)     Track open observations progress, ensure closure of observations and report to stakeholders.

Business Continuity, Disaster recovery –

Evaluate disaster recovery status of various application and infrastructure components and facilitate business continuity testing as per pre-defined test cycle.

1.         BIA-Business Impact Analysis

2.         BCRA-Business Continuity Risk Assessment

3.         FRP- Functional Recovery Plan

4.         IT DR Drill

 Data Security and Privacy Controls

Evaluate requirements for organizations data security and privacy governance controls, implement appropriate frameworks for ensuring the adequate controls and governance practices.

Benefits:

·        Flat Hierarchy

·        Flexible Work Timings

·        Young Progressive Team

·        Open Work Culture

·        Managed Career Paths

·        Mentoring

Information Security Manager shall be primarily responsible to :

• Run and manage the BAU security infosec operations
• Create and maintain ISMS Policy and Process documents
• Ensure Infosec compliance with RBI and other regulatory agencies
• Participate in IT / Infosec Audits and ensure closure of observations within given timeliness
• Conduct regular VAPT (Vulnerability Assessments) and track closure of open observations
• Identifying and evaluating new IT security technologies and services and implementing it
• Ensure cyber security related polices and technologies are in place
• Conducting regular Inforsec Awareness within users in the organization
• The person needs to work closely with the CISO and other stakeholders – Risk, IT and Audit teams.

Key Accountability:

• Ensuring adequate security controls are in place & working effectively within the organization for information & cyber security
• Ensuring effectiveness of all IT controls to prevent any unauthorized access or activities at a system administration level
• Identify potential security weaknesses through vulnerability assessments and track them to closure within the timeliness
• Tracking and reporting key risk indicators defined for IT processes
• Create and maintain the documentation for information system audits in accordance with regulatory and compliance requirements
• Create / Review ISMS policy and process
• Implement Strategic IT Infosec projects to strengthen the overall IT Security posture

At Prolifics, we are currently implementing multiple solutions on PCQA Manager for our development centre in India. This position would be based out of Hyderabad location and is a permanent position.

If you are looking for a high growth company with rock-solid stability, if you thrive in the energetic atmosphere of high profile projects, we want to talk to you today! Let’s connect and explore possibilities of having you onboard the Prolifics team!

Job Title:                    Manager - PCQA

Primary skills:                7+ years of experience

Location:                    Hyderabad

Educational Qualification:      B.Tech/BE/M.Tech/MCA/M.Sc

JD:

 The PCQA Manager is a key role to support the process improvement (CMMI V2.0) initiative that will help assess the quality of the software delivered by a growing Software Development Company to its customers. This role will be part of the PCQA team, which helps the organization sustain SEI CMMI DEV Level 5, upgrade to CMMI V2.0 and support other methodology related initiatives.

• Lead the PCQA team and be flexible to take up assignments within the team such as Coaching, Auditing, implementation, process improvement projects, QMS process improvements, agile practices implementation etc.
• Mentor the team in the development and implementation of QMS aligning to CMMI V2.0 within the organization across geographies
• Identify improvements opportunities in the existing policies, processes, procedures, templates and metrics for the organization
• Define and utilize metrics and reports to manage quality efforts
• Prepare and conduct quality assurance product reviews and prepare projects teams ready for process audits according to the audit plan
• Sound understanding of Process Frameworks/Methodologies like CMMI-Dev, SVC, AGILE SCRUM etc.
• Good understanding of various software development life cycles
• Ability to influence and drive delivery with global senior management
• Attention to detail while keeping a global perspective, willing to deep-dive for data analysis
• Good communication and interpersonal skills to interact with global stakeholders
• Very good understanding of Information security concepts and implementation experience of ISO 27001 and other security standards is a value add

About us:

Prolifics Corporation Limited is a Global Technology Solutions Provider with presence across North America (USA and Canada), Europe (UK and Germany), Middle East & Asia. In India, we have off shore development centers: 3 in Hyderabad & 1 in Pune.

For more than 40 years, Prolifics has transformed enterprises of all sizes including over 100 Fortune 1000 companies by solving their complex IT challenges. Our clients include Fortune 50 and Fortune 100 companies across a broad range of industries including Financial Services, Insurance, Government, Healthcare, Telecommunications, Manufacturing and Retail. We rank consistently in Dream Companies to Work For and Dream Employer of the Year ranking from World HRD Congress, ranked 7 in 2019.

We encourage you to visit us on www.prolifics.com or follow us on Twitter, LinkedIn, Facebook, Youtube and other social media to know more about us.

Hiring for Lead Auditor (QMS / ISMS) role.

Job description Below :

• Preparation Dept. Objective reports.
• Preparation of Internal Audit Schedule & Coordination /opening meeting and closing meeting.
• Follow up for Internal Audit closing of Observations.
• Preparation of Management review meeting Input & Output reports.
• Coordination Certification Audit and Surveillance (TUV-SUD) Audit for ISO 9001:2015 and ISO 27001:2013.
• Follow up for closing of Observations.
• To update QMS & ISMS Manual, Procedures, Policies, Risk Assessment Plan, SOA & Formats.
• Internal Audit of ISO - QMS & ISMS standards.

An enthusiastic individual with the following skills. Please do not hesitate to apply if you do not match all of it. We are open to promising candidates who are passionate about their work and are team players.

• Must have strong experience in Information Security Management system(ISMS), creation of policy, procedures and implementation.
• Operates as a key contributor to the RFP, Third-Party Risk assessment, cloud security assessment etc.
• Lead the strategic and tactical development of information security framework, risk management and new compliance initiatives
• Subject matter expertise in ISO 27001, SOC2, CCPA, CPRA, GDPR, PCI DSS and HIPAA.
• Must have a strong experience in the documentation process and reviewing MSA, SCC, SLA & DPA.
• Good knowledge of BCP/DR, Incident response, VA/PT and Audit methodologies of various compliance frameworks.
• Good knowledge of Access management, Network, Application Security, Encryption, Backup, Physical Security, ISMS Training & Awareness etc..
• Ability to deal with the customers and vendors on Security and privacy matters.
• Knowledge of Core IT processes, SDLC, network infrastructure will be useful.

• Good written, oral, and interpersonal communication skills.
• Ability to conduct research into IT security issues
• Ability to present ideas in business-friendly and user-friendly language.
• Ability to effectively prioritize and execute tasks in a high-pressure environment.
• Highly self-motivated and hardworking.

• Bachelor’s/master's degree in Security, Computer Science, Management Information Systems, Engineering or related field.
• Should be at least ISO 27001 lead auditor or lead implementer. 
• 3+ years of related work experience in information security governance, risk and compliance (GRC) or relevant compliance roles in the SaaS industry.

A wholesome opportunity in a fast-paced environment that will enable you to juggle between concepts, yet maintain the quality of content, interact, and share your ideas and have loads of learning while at work. Work with a team of highly talented young professionals and enjoy the benefits of being at Xoxoday.

Xoxoday is a rapidly growing fintech SaaS firm that propels business growth while focusing on human motivation. Backed by Giift and Apis Partners Growth Fund II, Xoxoday offers a suite of three products - Plum, Empuls, and Compass. Xoxoday works with more than 2000 clients across 10+ countries and over 2.5 million users. Headquartered in Bengaluru, Xoxoday is a 300+ strong team with four global offices in San Francisco, Dublin, Singapore, New Delhi.

We look forward to connecting with you. As you may take time to review this opportunity, we will wait for a reasonable time of around 3-5 days before we screen the collected applications and start lining up job discussions with the hiring manager. We however assure you that we will attempt to maintain a reasonable time window for successfully closing this requirement. The candidates will be kept informed and updated on the feedback and application status.

B. Aims & Goals:

You are required to work with all departments at Pelican to implement, enhance and improve ISMS, GDPR and ISAE 3402 processes. You will also be closely working with external auditor as well as top management for status and reporting.

C. Key Responsibilities:

Your primary responsibilities include:  Assist in audit planning, including the identification of processes for audit review.   Execute internal audit assignments for all locations in India, US, UK and NL. Review the effectiveness of the controls.   Identify and document audit issues and opportunities for improvement.  Prepare the audit report for internal audit assignments and discuss audit findings with senior management.   Monitor and maintain the CAPA program. Assist with follow up corrective actions and oversee timely completion.  Facilitate independent audit engagements on behalf of the company.  Assist to develop and implement process improvements and best practices across the business unit. Review policies and procedures for all areas of the business.  Develop new policies and procedures as directed or required, to improve and to collect and analyse data for review with internal stakeholders.  Take responsibility for the management and execution of internal audit assignments, production of audit reports and management of follow up actions  Involved with working across all areas of the business to ensure that processes are documented and compliant to the company’s requirements.

D. Experience level & Qualification:

a. Experience Level  4 to 5 yrs

b. Educational background  B.E / B.Sc / B.com / Bachelor’s Degree  Holds ISO 27001:2013 Certification

E. Essential Skills:  Should have participated in ISMS (ISO 27001:2013) implementation and certification process.