.. Greetings from ALP!!! We are looking for BIOS Development Location : Bangalore Exp : 5 + Yrs Notice Period : 1 month or less Bachelor's degree in Computer Science, Electrical Engineering, or a related field. 5 years of experience in BIOS & Firmware development, with a focus on x86 architecture. Proficiency .. read more
About the Role:
Position Title: Secure by Design SME
Corporate Title: Analyst
Location: Bengaluru
Job Profile: Position details: To conduct controls testing of cybersecurity controls against industry security frameworks (e.g., SOX, ISO27001. NIST Cybersecurity Improvement framework, FFIEC):In this role, you will be responsible for cybersecurity controls testing across MUFG’s banking and securities businesses under a dual-hat arrangement. Under this arrangement, you will engage stakeholders and review documentation obtained from both the bank and the securities business, subject to the same remit and level of authority, and irrespective of the entity which employs you.
Roles and Responsibilities: Key responsibilities include, but not limited to: Interviewing business and technology stakeholders responsible for controls (technical and non-technical) Developing risk and controls matrices Assessing technical control design Developing a testing strategy for testing operating effectiveness of technical controls Identifying and reviewing the relevant evidence required to demonstrate the operating effectiveness Arriving at informed conclusions regarding gaps in control operating effectiveness Documentation of risks, gaps, findings and recommended actions Preparing accurate reports and using tools such as PowerPoint, Word, Excel, SharePoint, Open Pages Managing your time to ensure testing is completed in a timely manner
Direct Reports: None
Job Requirements: Functional / Technical Competencies: Essential (Must Have) Working knowledge as security architect (or related experience) Experience of working as an IT auditor, security auditor or governance, risk and compliance analyst Good understanding of cybersecurity/IT control frameworks including but not limited to frameworks from SOX, FFIEC, ISO27001, NIST, Cloud Security Alliance, and PCI-DS Proven understanding of current best practice approach to security assurance and the application of security frameworks Experience in project management Planning and prioritizing multiple project work streams in response to rapidly developing and changing portfolios. Experience of security risk management Broad knowledge of computer, networking and IT security systems including operating systems, databases, firewalls, SIEM, DLP etc Ability to handle ambiguity and make decisions and recommendations with limited data Solid analytical/problem-solving skills with capability to identify solutions to unusual and complex problems Good presentation, documentation and reporting skills
Work Experience: Essential: Experience in managing multiple tasks with broad scope, ambiguity, and high degree of difficulty Experience in providing assurance for cybersecurity technologies, policies, standards and procedures Demonstrable proficiency in a wide range of information IT security domains such as Security Governance, Identity and Access Management, Access Controls, Threat Intelligence, Asset Management, Risk Management, Security Assessment/Testing, Security Incident Management and Vulnerability and Patch Management Possessing high level of analytical ability where problems are typically unusual and difficult Ability to maintain a working knowledge of cybersecurity principles and elements Understand global IT risk management structure Demonstrable experience of senior stakeholder management and relevant management reporting. Ability to coach team members through knowledge transfer and constructive feedback
Education / Qualifications: Essential: Degree educated and / or equivalent experience.
Personal Requirements: You are a leader and an expert in delivery of cyber frameworks and associated key solutions A demonstrable passion for cybersecurity Excellent communication/leadership/interpersonal skills; results driven and with strong sense of accountability You are experienced in engaging and persuading teams to accept and participate in best-in-class security controls Data driven, ability to analyze data needed to effectively measure progress against the execution of objectives You successfully convey technical information in an understandable way that generates results A troubleshooter who proactively removes roadblocks and pursues solutions to problems that stand in the way You value and develop trusted relationships at every operational level The ability to operate with urgency and priorities work accordingly Strong decision making skills, the ability to demonstrate sound judgement A structured and logical approach to work; Strong problem solving skills A creative and innovative approach to work Excellent presentation skills and excellent attention to detail and accuracy The ability to manage large workloads and tight deadlines A calm approach, with the ability to perform well in a pressurized environment
Position Title: Secure by Design SME
Corporate Title: Analyst
Location: Bengaluru
Job Profile: Position details: To conduct controls testing of cybersecurity controls against industry security frameworks (e.g., SOX, ISO27001. NIST Cybersecurity Improvement framework, FFIEC):In this role, you will be responsible for cybersecurity controls testing across MUFG’s banking and securities businesses under a dual-hat arrangement. Under this arrangement, you will engage stakeholders and review documentation obtained from both the bank and the securities business, subject to the same remit and level of authority, and irrespective of the entity which employs you.
Roles and Responsibilities: Key responsibilities include, but not limited to: Interviewing business and technology stakeholders responsible for controls (technical and non-technical) Developing risk and controls matrices Assessing technical control design Developing a testing strategy for testing operating effectiveness of technical controls Identifying and reviewing the relevant evidence required to demonstrate the operating effectiveness Arriving at informed conclusions regarding gaps in control operating effectiveness Documentation of risks, gaps, findings and recommended actions Preparing accurate reports and using tools such as PowerPoint, Word, Excel, SharePoint, Open Pages Managing your time to ensure testing is completed in a timely manner
Direct Reports: None
Job Requirements: Functional / Technical Competencies: Essential (Must Have) Working knowledge as security architect (or related experience) Experience of working as an IT auditor, security auditor or governance, risk and compliance analyst Good understanding of cybersecurity/IT control frameworks including but not limited to frameworks from SOX, FFIEC, ISO27001, NIST, Cloud Security Alliance, and PCI-DS Proven understanding of current best practice approach to security assurance and the application of security frameworks Experience in project management Planning and prioritizing multiple project work streams in response to rapidly developing and changing portfolios. Experience of security risk management Broad knowledge of computer, networking and IT security systems including operating systems, databases, firewalls, SIEM, DLP etc Ability to handle ambiguity and make decisions and recommendations with limited data Solid analytical/problem-solving skills with capability to identify solutions to unusual and complex problems Good presentation, documentation and reporting skills
Work Experience: Essential: Experience in managing multiple tasks with broad scope, ambiguity, and high degree of difficulty Experience in providing assurance for cybersecurity technologies, policies, standards and procedures Demonstrable proficiency in a wide range of information IT security domains such as Security Governance, Identity and Access Management, Access Controls, Threat Intelligence, Asset Management, Risk Management, Security Assessment/Testing, Security Incident Management and Vulnerability and Patch Management Possessing high level of analytical ability where problems are typically unusual and difficult Ability to maintain a working knowledge of cybersecurity principles and elements Understand global IT risk management structure Demonstrable experience of senior stakeholder management and relevant management reporting. Ability to coach team members through knowledge transfer and constructive feedback
Education / Qualifications: Essential: Degree educated and / or equivalent experience.
Personal Requirements: You are a leader and an expert in delivery of cyber frameworks and associated key solutions A demonstrable passion for cybersecurity Excellent communication/leadership/interpersonal skills; results driven and with strong sense of accountability You are experienced in engaging and persuading teams to accept and participate in best-in-class security controls Data driven, ability to analyze data needed to effectively measure progress against the execution of objectives You successfully convey technical information in an understandable way that generates results A troubleshooter who proactively removes roadblocks and pursues solutions to problems that stand in the way You value and develop trusted relationships at every operational level The ability to operate with urgency and priorities work accordingly Strong decision making skills, the ability to demonstrate sound judgement A structured and logical approach to work; Strong problem solving skills A creative and innovative approach to work Excellent presentation skills and excellent attention to detail and accuracy The ability to manage large workloads and tight deadlines A calm approach, with the ability to perform well in a pressurized environment