About Company:
- We are a leading provider of high-end research, analytics and other customized financial services including valuation, financial modeling, research, portfolio management, etc.
- Founded in late 2006 by 2 ex-Merrill lynch bankers
- Strength is ~400 people and growing its client and revenue base at 50%
- Strong global client base - Primarily Private Equity firms, Boutique Investment Banks, Hedge Funds, Asset Managers, Corporates and Family offices
Responsibilities Assumed:
- Understanding the business and IT infrastructure including applications and servers through interactions and walkthroughs
- Collecting information and reviewing information systems policies, standards and procedures to verify that they address the organization's internal and external requirements and to identify information systems control deficiencies
- Understanding the various processes in place at the organization, such as Finance, IT, HR, PD, strategy and their integration with one another
- Performing a root cause analysis of the various risks identified and the development of solutions to mitigate the risks and the flow of data and information and performing a threat and risk analysis of each process
- Facilitating SSAE16 (SOC 2) corporate-wide examinations
- Assisting with development and implementation of corporate compliance procedures and controls
- Performing special compliance and audit related projects as assigned
- Managing and measuring the IT Security Framework and developing and maintaining a technology risk assessment program for business applications and processes
- Conducting internal VAPT audits and share the reports with the management
- Keeping the department updated with the latest technological changes and cybersecurity advancements
- Designing and producing metrics showing operational compliance with best practices
- Planning, supervising, and conducting testing to confirm continuous efficiency and effectiveness of information system controls
- Reviewing of Business Impact Analysis, Risk Assessment, Current State Network assessment, and Recovery Strategy Analysis
- Providing recommendations to the Top Management based on industry best practices to optimize IT processes and achieve business goals
Prerequisites:
- Sound understanding of auditing/ compliance
- Strong eye for detail
- Good command over written and spoken English
- Ability to meet deadlines and good time management skills
- 4-6 years- experience in Security Compliance/ IT Audit/ System review role with consulting firms - upper mid-size/ BIG 4s or with leading investment bankers, etc.
- Ability to work well under pressure with tight deadlines while delivering high quality and output
Candidate Qualification & Experience:
- University Degree (B. Com/ M. Com)
- CEH V9 or other equivalent Ethical Hacker degree is preferable
- One or more of the following information security certifications or advanced degree in information security /cybersecurity: CISSP /SSCP/CISM/CRSC/CISA/HISP or equivalent
- Knowledge of Personally Identifiable Information (PII) data security standards
Compensation:
- Commensurate with industry standards
Growth Opportunity:
- Steep learning curve and a clearly defined career path
- Subsequent promotion to AVP/ VP accompanied by a significant increase in responsibility and compensation
- Potentially, based on performance, be a part of the International compliance consulting team
Job Location:
- Hinjewadi, Pune
Didn’t find the job appropriate? Report this Job