ZS’s India Capability & Expertise Center (CEC) houses more than 60% of ZS people across three offices in New Delhi, Pune and Bengaluru. Our teams work with colleagues across North America, Europe and East Asia to create and deliver real world solutions to the clients who drive our business. The CEC maintains standards of analytical, operational and technological excellence across our capability groups. Together, our collective knowledge enables each ZS team to deliver superior results to our clients.
:
Manager –Compliance and Audit
We are currently seeking applicants for the position of Manager –Compliance Risk Management and Audit to join our India IT Governance, Risk and Compliance team. The position will support various management directed, IT risk governance initiatives which include following job requirements:
Manage a team of top-notch Compliance and Audit Administartors to Ensure risk and control activities are completed in a timely and appropriate manner
Provide technical expertise to your team and the entire organization. Our managers have a large say in the technologies and practices of the group and anyone can make a difference
Lead Security Framework Implementations (Like ISO 27001, NIST, etc.)
Provide first line of defense support in assessing risk and reviewing control issues
Documentation of control procedures, standards and guidelines, etc.
Report control issues and follow up on non-compliances with Functional leadership to mitigate and close the issues
Audit event co-ordination, Audit liaison and issue closure oversight (SOC 2 Type 2, ISO 27001, etc.)
Lead pre-audit preparation activities with stakeholders (SOC 2 Type 2, ISO 27001, etc.)
Work with internal stakeholders, Partners to ensure that we create secuirty frameworks for Audit and compliance.
Control conformance monitoring
Identification and application of required governance for risk and control issues using appropriate toolsets
Generate regular reports for Senior Management
Ensure that Risk and Compliance activities associated are regularly reviewed to drive continuous improvement: providing Subject advice, making recommendations and interventions as appropriate
Responsibilities:
Asist in prioritizing and planning risk management activities
Working with Risk Lead to review, prioritize and assign identified control gaps
Support Risk Owners and Tech teams in documenting control procedures, guidelines, etc.
Audit / Regulator engagement & issue management (SOC 2 Type 2, ISO 27001, etc.)
Technology Infrastructure Specific Risk/Compliance Metrics reporting
Control Execution / Control remediation oversight and escalation
Risk acceptance / Deviation review
Ensure risk and control activities are completed in a timely and appropriate manner applying the correct governance route
Act as SME supporting functional units in understanding and applying responsibilities towards risk and compliance providing recommendations as appropriate.
Retain oversight of all active governance activity across all relevant key risks under Technology Infrastructure Operations. Create / review/ continuous update of the risk library
Report and publish control issues and active non-compliances to senior leadership inclusive of providing content for Senior Leadership risk and control review forums/Committees.
Ensure all governance attestations and sign-off from Senior leadership are completed including the conduct risk measures
Champion and lead a culture of customer service and continuous improvement ensuring that opportunities for process and service Improvements Monitor performance and identify areas for improvement Actively look for ways of smoothing peaks and troughs and reducing time scales.
Qualifications:
Atleast 12-14 Years of experience in Information Security Area
Good Risk / Control / Compliance and Information Security skills
Knowledge and Experience of Technology Infrastructure. Understanding of Infrastructure Security
Working knowledge of group risk frameworks, policies and standards
Stakeholder management
Advanced Communication skills (Speaking/ Writing/Listening)
CISSP / CISM / CISA/ CRISC certification preferred
Proficient in MS Office productivity suite (e.g. Word, Excel, PowerPoint, SharePoint). Advanced Excel skills strongly preferred
Basic working knowledge of following (Majority of the points, if not all):
COBIT – Control Objectives for Information and Related Technology
ISO/IEC 27001:2013 – Code of Practice for Information Security Management
NIST SP 800-53
NIST CSF
SOC1/SOC2/SOC3
HIPAA/HITECH Security and Privacy Audit Protocol
Shared Assessments Standard Information Gathering (SIG) framework
US SOx – Sarbanes Oxley Act
US HIPAA/HITECH Act
EU GDPR – General Data Protection Regulation
US EU Privacy Shield
India Companies Act
:
ZS is a global consulting firm. Fluency in English is required; additional fluency in at least one European or Asian language is desirable.
Candidates must possess or be able to obtain work authorization for their intended country of employment. An on-line application, including a full set of transcripts (official or unofficial), is required to be considered.
ZS offers a competitive compensation package with salary and bonus incentives, plus an attractive benefits package. ZS is an equal opportunity employer and is committed to providing equal employment and advancement opportunities without regard to any class protected by applicable law.
ZS is committed to providing and maintaining a safe workplace. Must have received or be willing to receive the COVID-19 vaccination by date of hire to be considered. Proof of vaccination will be required. Religious/Medical Exemptions can be requested on a limited basis upon hire.
NO AGENCY CALLS, PLEASE.
We’re hiring IT & Digitalization Support Engineer for one of our Leading MNC in Oil & Gas to join their...
Apply For This JobJob Title Project Controller Job Code BEL/PC/03 Department/ BU Power Transmission Location Sion Office Reporting To Execution Head Organizational Description...
Apply For This JobBoston Scientific’s hybrid workplace includes remote and onsite roles. By applying to this position, you will have the opportunity to...
Apply For This Job1. Managing projects for Automation using DigitalXC platform for Enterprise customers globally specifically in the domain of Managed IT Infrastructure...
Apply For This JobHiring for Android developer profile for IT Company in Panchkula Posted on -February 18, 2020 Designation : – Android developer...
Apply For This JobJob Summary Ours is an agribusiness start-up, comprising 17 service Divisions, internally divided into 10 functional verticals viz. HR, Finance,...
Apply For This Job