'%3e%3cpath d='M15.3069 13.1535H1' stroke='%23333333' stroke-width='1.4' stroke-linecap='round' stroke-linejoin='round'/%3e%3cpath d='M15.3069 8.15347H1' stroke='%23333333' stroke-width='1.4' stroke-linecap='round' stroke-linejoin='round'/%3e%3cpath d='M15.3069 3.30693H1' stroke='%23333333' stroke-width='1.4' stroke-linecap='round' stroke-linejoin='round'/%3e%3c/g%3e%3cdefs%3e%3cclipPath id='clip0_126_10407'%3e%3crect width='16' height='16' fill='white'/%3e%3c/clipPath%3e%3c/defs%3e%3c/svg%3e){kind=small}
Analyst - Third Party Assessment - Information Security & Risk Management Function
HyderabadRole: 3PA Assessor
Service information:
The Third Party Assessment (3PA) team within Information Security and Risk Management function is responsible for assessments of third party security posture, including assessing third party security programs and ensuring protections for all aspects of security for the third party landscape. The Third Party Security and IT Compliance Assessor will conduct information security assessments of vendors providing services to Novartis .
Job Description:
- The assessor should be highly motivated and possess strong, hands-on, technical knowledge of a wide range of information security and IT process controls used for evaluating their design and effectiveness.
- The assessor should also possess strong written and verbal communication skills including ability to communicate clearly and concisely to various levels, and explain the need for key controls to technical and non-technical resources .
Technical skills include the domains of information security and IT process controls including:
- Information Security Areas and controls (Infrastructure Security, IAM / Access Management, Physical Security, Vulnerability Management, Application Security, Cloud Security etc.)
- IT Compliance, Data Privacy / GDPR Compliance and SOX Compliance
- IT Operations - Change, Incident, Patch and Problem Management etc.,
- Enterprise Risk Management
- Very good understanding of NIST, ISO 27001, CIS Benchmarks, SDLC, COBIT standards etc.,
Required Skills:
- Previous information technology/security audit/assessment experience preferred.
- Ensure the security process is governed by organizational policies and practices that are consistently applied.
- Enforce compliance with the security program in a balanced and consistent manner across the organization.
- Ability to leverage attention to detail and analytical skills,
- Ability to multi-task and work both independently as well as part of an assessment team.
- Ability to plan, execute and document assessment activities following established processes and procedures
- CISSP and/or CISA certifications are preferred with five to ten years of experience in information security area.
Location: NKC Hyderabad
Exp: 5 to 10 Years
Notice Period: Immediate or within 30 Days
Didn’t find the job appropriate? Report this Job
'%3e %3cpath d='M24 48C37.2548 48 48 37.2548 48 24C48 10.7452 37.2548 0 24 0C10.7452 0 0 10.7452 0 24C0 37.2548 10.7452 48 24 48Z' fill='%23333333' fill-opacity='0.8'/%3e %3cpath fill-rule='evenodd' clip-rule='evenodd' d='M22.5299 19.0115V19.5849V29.0154V31.5316C22.5299 32.3403 23.1967 33 24.004 33C24.8114 33 25.4784 32.3358 25.4784 31.5316V29.0154V19.5849V19.013L29.4885 23.0077C30.0627 23.5795 31.0044 23.5743 31.5733 23.0077C32.1421 22.441 32.1423 21.4975 31.5735 20.9308L30.1054 19.4684C30.0891 19.4504 30.0724 19.4329 30.0551 19.4156L25.0837 14.4634L25.0479 14.4264C24.9234 14.3024 24.7807 14.2055 24.6281 14.1358L24.5952 14.1212C24.5751 14.1126 24.549 14.1022 24.5286 14.0946C24.0039 13.8983 23.3839 14.0068 22.9622 14.4268L22.9533 14.436L21.4743 15.9093C21.4615 15.9211 21.449 15.933 21.4367 15.9452L16.4286 20.934C15.8598 21.5008 15.8545 22.4389 16.4286 23.0108C17.0027 23.5826 17.9394 23.5827 18.5135 23.0109L20.0019 21.5283C20.0147 21.5164 20.0274 21.5043 20.0399 21.492L22.5299 19.0115ZM24.5952 14.1212C24.5751 14.1126 24.549 14.1022 24.5286 14.0946L24.5952 14.1212Z' fill='white'/%3e %3c/g%3e %3cdefs%3e %3cclipPath id='clip0_99_1825'%3e %3crect width='48' height='48' fill='white'/%3e %3c/clipPath%3e %3c/defs%3e%3c/svg%3e "Scroll Up"){kind=small}