Team Leader - Technology Services
Location
Noida | India
Job description
Team Leader - Technology Services
Position Summary
Application Risk Assessment team supports IT risk assessments for all in-scope applications. Assessment activities take place as part of new application deploymentactivities as well as per an established periodical review cycle for all in-scope applications. An iterative process to perform assessments for our applications (3500+ apps inscope) every year which generates a risk conclusion with the help of inputs that are received in EAI. Ensuring EAI certification is done respective ADPMs for their applicationsfor both new assessments and re-assessments and obtaining business approval from Senior Business leaders. Also, checks for retired/targeted for retirement applications todecommission those applications by ADPMs.
Job Responsibilities
- Conduct remote audit of processes & accordingly check for all compliance requirements.
- Highlight and report risks identified from the assessment.
- Assist the RISK assessment team on all deliverables pertaining to Information security tasks.
- Provide periodic training sessions and awareness to key participants in the certification process.
- Help in understanding the gaps /findings with respect to existing requirements of MetLife standards and accordingly ensure that the findings are addressed by the respective stakeholder.
- Perform the re-certification and work closely with regional Spoc and Leadership team.
- Understanding of Risk Management framework.
Knowledge, Skills and Abilities
Education
- A bachelor's degree from an accredited college or university with major course work in IT, Information Security, or a closely related field.
Experience
- 8 plus years of total experience and at least 5- 6 years of experience in IT risk and compliance, internal audit, or IT risk advisory with a strong understanding of Application risk assessments.
- Excellent Communication skills.
- Sound knowledge of GRC concepts to manage existing work and for providing value addition to project.
- Good to have at least one of the certificates (ISO 27001:2013/ CompTIA security +) Experience in Application assessments of IT Risk findings, risk and controls framework and IT General Controls (ITGC).
- Solid understanding of IT auditing procedures and techniques
- Working knowledge in at least one of the Governance, Risk and Compliance (GRC) tools such as OpenPages (preferred), RSA Archer, RSAM, SAP GRC, Risk Connect, ACL etc.
Knowledge and skills (general and technical)
- Knowledge of tools like Open pages, Archer, Power BI etc.
- Certifications like ISO 27001, CompTIA security +
- Individual contributor who can achieve success with minimum guidance.
- Bachelor's degree like BE/BCA/B. Tech etc.
- Willing to work in shifts.
Other Requirements (licenses, certifications, specialized training - if required)
- Excellent communication skills
- Adaptability to change.
- Customer Service Orientation - Possess desire and focus efforts on discovering, meeting, and exceeding the customer or client's needs.
Working Relationships
Internal Contacts
(and purpose of relationship):
- All Internal GOSC Stake Holders
External Contacts
(and purpose of relationship) - If Applicable
- Stateside Client/ Engineers from different regional Security teams (Such as Country/Regional Head for Monitoring/Containment)
Job tags
Salary