2+ Risk assessment Jobs in Mumbai | Risk assessment Job openings in Mumbai

Policies, Systems, Processes & Procedures

•  Review and ensure the India information security policies are aligned with group policies and practices.
•  Review and provide recommendations to India policies, standards, guidelines/ processes concerning RBI (Reserve Bank of India) regulatory requirements
•  Coordinate with business units to define SLA for India
• Formulate the security strategy and roadmap for India

Information Security

•  Identify and ensure compliance to unique security requirements for RBI (Reserve Bank of India) related to RBI cyber security framework and RBI Guidelines on Information security.
•  Establish contacts with RBI (Reserve Bank of India) regulators to receive security updates, circulars
•  Coordinate for the group for various regulatory security audits at the Singapore location.
•  Monitor and track all India open issues with IT and concerned international SPOCS
•  Assist the GSO office and BU in attaining information security compliance objectives.
•  Identify issues that could impact the bank and escalate any serious issues/ breaches/ violations; develop/monitor action plans for its closure in liaison with local, and overseas branches, and business groups.
•  With the support of the Head office GSO team, perform risk assessments for locally implemented IT solutions and track open issues to closure
•  Instigate and maintain contact with RBI Regulatory Authorities, Regulatory compliance department, and ensure good & healthy working relationships.
•  Review new regulatory legislations; promptly communicate all regulatory notices/circulars to all concerned areas, provide interpretations if necessary; develop/monitor action plans towards its implementation.
•  Assist Head office during Regulatory Examinations; ensure implementation/regularization of observations linked to compliance while meeting the deadline(s).
• Respond to queries that are sought by local Regulatory Authorities / Law Enforcement Agencies Head Office & Overseas branches, in a timely manner with complete and accurate information.

Job Context

•  Security Compliance requirements at the India location.
•  Highlight security status & concerns to management.
•  Consult with IT and information security staff to ensure that an implementation plan is established.
•  Actively participate and contribute to GSO initiatives
•  Track open Audit issues on information security to closure
•  Risk assessments for local implementations
• Inform HO of any new 3rd party technology vendor for vendor assessment

Qualifications & Responsibilities

Year of Experience : 3- 8 yrs

Location : Bangalore, Delhi, Mumbai, Pune

Work on ISO 27001 & NIST based Information Security Management System implementation and sustenance.

-          Responsible for SOX (IT Security Controls) and track the monthly/quarterly/annual control reports and drive effectiveness of SOX controls.

-          Work on Business Continuity Planning, IT Disaster Recovery as per ISO27001 & NIST requirements

-          Assess information security posture, identify the gaps/risks in the existing environment and develop solutions to mitigate the identified gaps/risk

-          Conduct Information Systems audits covering IT infrastructure assets

-          Working knowledge in security domains such as: security governance policies and procedures, risk management, compliance, access control, network security, security architecture, security incident response, disaster recovery, business continuity management, privacy and data protection

-          Experience in leveraging industry standards and frameworks such as ISO/IEC 27001, NIST CSF/800-171, etc.

-          Possesses certifications such as ISO27001 LA. CISSP, CISA certification- preferred

Why NCG?

WHO WE ARE DRIVES WHAT WE DO!

We Don't build the organization; we create an everlasting family. Our people express a sense of winning together when times are good and sticking together when times are tough.

Are you a Doer or Achiever?

Well, at NCG, our doors are Open for Doers and Achievers alike. We are a Cult where we create, innovate, learn and Contribute in a comfortable, transparent, and fair environment.

Joining NCG means contributing to a shared ambition for reliable work culture, tackling extraordinary technological challenges in multicultural teams, preserving your work/life balance, and more!