This job offer is not available in your country.
Greenway Health - GRC Security Analyst
GREENWAY HEALTH INDIA PRIVATE LIMITEDBangalore30+ days ago
Job descriptionBachelors Degree, ideally in Computer Engineering, Computer Science, or Information Systems Management or equivalent work experience in the field of Cybersecurity. 3+ years of relevant work experience in : compliance / systems engineering / cybersecurity role. Experience in a healthcare setting preferred. Possess current security certifications (e.g., Security+, CISSP, CEH, SANS) or be willing to obtain within 1 year of assignment. 3 - 5 years experience in building an Information Security Risk Management program. Experience supporting the development of Disaster Recovery Plans (DRPs). Proven ability to coordinate, execute, and document Disaster Recovery Plan tests, including analysis and reporting of results. Understanding and familiarity with information system standards. Understanding and familiarity with cybersecurity frameworks (ISO, NIST, HiTrust, COBIT, etc). Assist in maturing the Information Security Risk Management Program by helping to define an IS risk register which includes identifying threats and risks to the organization. Meet with business stakeholders to identify top security risks. Assist in performing IS self-assessments to ensure systems and applications are complying with corporate policies, applicable regulatory and legal requirements, and leading industry practices. Assist in developing and driving the implementation of security best practices and standards to mature the overall IS Risk Management Program which includes defining security system and application standards of control. Provide solutions to identified issues and risks. Work with the CISO to determine the acceptable level of risk for enterprise computing platforms. Coordinate with key functional teams such as HR, IT, Marketing, Finance, Product Management, Development, General Counsel, and the Business to identify new applications and service providers in use and the associated security controls to secure the data. Assist in performing Third Party Risk Assessments for new and existing vendor tools, on premise implementations, and third parties with access to the environment. Assist in maturing the Third Party Risk Management program by defining security controls based on tiers of vendors. Articulating identified risks to the business for remediation, mitigation and sign off. Investigates incidents and events that include potential HIPAA and other data breaches, data leakage, brand reputational risks, malware propagation, system compromises etc. Mature the Data Loss Prevention Program by defining DLP rulesets in existing tools such as Varonis, CASB, Next Generation Firewalls etc. and review outputs to determine the appropriate action required. Assist with maturing the Data Governance Program which includes defining a Data Classification and Handling Program, identifying Data Owners, and assisting with the design and implementation of a Data Classification and Rights Management tool. Assist in developing and maintaining Key Performance Indicators (KPIs) and Key Risk Indicators (KRIs) for the Data Governance Security Program and initiatives. Assist in the management and maintenance of the enterprise wide IS Security Awareness Program which includes phishing simulations, computer based training, proactive communications on latest threats, workshops and newsletters. Assist in developing enterprise and functional team specific presentations to promote a security mindset. Work with the CISO to ensure the Information Security team stays abreast of new regulatory, legal and / or compliance data security requirements. Ensure compliance with HIPAA, HITRUST, and applicable legal and regulatory requirements. Strong documentation and communications skills. While at work, this position is primarily a sedentary job and requires that the associate can work in an environment where they will consistently be seated for the majority of the work day. This role requires that one can sit and regularly type on a key board the majority of their work day. This position requires the ability to observe a computer screen for long periods of time to observe their own and others work, as well as in-coming and out-going communications via the computer and / or mobile devices. The role necessitates the ability to listen and speak clearly to customers and other associates. The work environment is an open room with other associates and noise from others will be part of the regular work day.
The GRC Security Analyst will plan and implement policies, procedures, standards, and controls to govern the protection of corporate information systems, networks, and data.
The GRC security analysts will stay up-to-date on the latest cybersecurity intelligence, including hackers' methodologies, in order to modify standards and controls that govern cybersecurity across the corporation.
Essential Duties & Responsibilities :
- Performing control assessments against corporate cybersecurity frameworks.
- Perform review of policies and supporting procedures / processes.
- Perform assessments of adherence to standards.
- Customer Security Questionnaire assistance.
- Work closely with management on security practices.
- Assess 3rd party vendors for adherence to standards.
- Develop routine reports in accordance with GRC metrics.
- Stay on top of changes in the industry as it relates to security.
- Other security-related projects that may be assigned according to skills.
- Ensure compliance with policies and procedures.
- Develop and test Disaster Recover Plans.
- Help align company with HITRUST CSF.
Experience : Education :
Skills / Knowledge :
Work Environment / Physical Demands :
(ref : hirist.tech)
Create a job alert for this search
Security Analyst • Bangalore
Related jobs
%20Ltd)
)
- Promoted
Security Business Analyst
ConfidentialBengaluru / Bangalore, India At ExxonMobil, our vision is to lead in energy innovations that advance modern living and a net-zero future.As one of the world's largest publicly traded energy and chemical companies, we are power...Show moreLast updated: 8 days ago
- Promoted
Senior Analyst GRC
ConfidentialBengaluru / Bangalore, India As a Senior Security Engineer – II GRC in Governance, Risk, and Compliance (GRC) - Risk Management, you will be instrumental in the design, implementation, and enhancement of risk management and co...Show moreLast updated: 8 days ago
- Promoted
GRC Analyst
ConfidentialBengaluru / Bangalore Act as the first line of analysis (L1) to validate that a proposed cybersecurity risk meets criteria for tracking, treatment, and monitoring.
Identify and appropriately elevate proposed cybersecurit...Show moreLast updated: 30+ days ago
- Promoted
ARL Security Analayst
ConfidentialBengaluru / Bangalore Experience in security for embedded systems.Incident / Threat Management in cloud.Knowledge in Vehicle architecture and platform.
Monitoring and analysis of system to identify and analysis malicious a...Show moreLast updated: 11 days ago
- Promoted
Third Party Security Risk Analyst
ConfidentialBengaluru / Bangalore Vendor Security Documentation Review.Evaluate third-party security artifacts including SOC 2 Type II reports, ISO / IEC 27001 certificates (with Statement of Applicability), vulnerability assessments...Show moreLast updated: 11 days ago
- Promoted
Senior Analyst GRC
Tyson Foods IndiaBengaluru, Karnataka, India As a Senior Security Engineer – II GRC in Governance, Risk, and Compliance (GRC) - Risk Management, you will be instrumental in the design, implementation, and enhancement of risk management and co...Show moreLast updated: 25 days ago
- Promoted
Security GRC 2LoD
Soffit Infrastructure Services (P) LtdBengaluru, Karnataka, India Governance, Risk, and Compliance) 2nd Line of Defense (.The role involves monitoring risk remediation efforts, providing expert guidance, and supporting the first line of defense (1LoD) in achievin...Show moreLast updated: 24 days ago
- Promoted
Senior GRC Analyst - Information / Cyber Security
EthosBangalore About Ethos : Ethos was built to make it faster and easier to get life insurance for the next million families.Our approach blends industry expertise, technology, an...Show moreLast updated: 22 days ago
- Promoted
GRC - Snr Analyst
ConfidentialBengaluru / Bangalore In these roles, you are part analyst, engineer, and advisor.You have the ability to ramp up quickly into a solid, productive member of the Security GRC team.
You are organized and have the ability t...Show moreLast updated: 30+ days ago
- Promoted
Security Analyst
ConfidentialBengaluru / Bangalore, India You are someone who thrives in a high-performance environment, bringing a growth mindset and entrepreneurial spirit to tackle meaningful challenges that have a real impact.In return for your drive,...Show moreLast updated: 30+ days ago
- Promoted
SAP GRC Consultant
SaplingsHRhosur, tamil nadu, in We have a new urgent requirement pfb the JD.Excellent communication is essential as this is a customer-facing role.Below are the mandate criteria to be covered while sourcing : .GRC Access Control po...Show moreLast updated: 6 days ago
- Promoted
Oracle Cloud ERP Senior Analyst (Security and Risk Management)
Sikich Indiahosur, tamil nadu, in Oracle Cloud ERP Senior Analyst.Security and Risk Management) with 5+ years of related experience in Oracle Cloud or any other Tier 1 ERP application.
Accounting, Advisory, and Technical professiona...Show moreLast updated: 5 days ago
- Promoted
Security Technology Lifecycle Analyst
HR PLACEMENT CONSULTANTS (HRPC)Bangalore Rural, Karnataka, India Position - Analyst - Security Technology Lifecycle Analyst.Job Type - Full-time (Third party payroll •).The Security Technology Lifecycle Analyst plays a critical role in supporting the Corporate Se...Show moreLast updated: 19 days ago
- Promoted
Security Analyst
Total CollectR Virtual Collector & Debt NegotiatorBangalore, IN SaaS platform that helps businesses manage past-due debt collection accounts.We create better consumer experiences, help our customers collect more and empower our employees to succeed through cust...Show moreLast updated: 3 days ago
- Promoted
SAP Security & GRC Consutlant
Ignisov Consulting Servicesbangalore, karnataka, in Hands-on experience in Implement and manage SAP Security and GRC solutions to ensure compliance and risk mitigation.Conduct user access reviews, segregation of duties (SoD) analysis, and risk asses...Show moreLast updated: 4 days ago
- Promoted
Analyst - GRC (Governance, Risk & Compliance) : 126
ConfidentialBengaluru / Bangalore, India This role has been established to support the business in building sustainable governance andcompliance practices at Amagi.
The basic factor required to be successful in this role warrants a good un...Show moreLast updated: 8 days ago
- Promoted
GPR Analyst
G MapBengaluru, Karnataka, India Review and analyze available as-built drawings, GIS data, and existing utility maps.Conduct feasibility studies and pre-survey assessments to identify project requirements.Perform GPR surveys to de...Show moreLast updated: 6 days ago
- Promoted
Analyst, Safety & Security
ConfidentialBengaluru / Bangalore Liaises and works with other departments / functions to establish the repository and create BCP reckoner.Serves as part of a team, sometimes driving projects and following up with others for status o...Show moreLast updated: 17 days ago