Careers
Careers
ISACA is a global professional association that provides certification, education, and networking opportunities to information systems professionals. The organization was founded in 1969 as the EDP Auditors Association, and later became known as the Information Systems Audit and Control Association (ISACA). In 2021, the organization rebranded as ISACA to reflect its expanded focus beyond audit and control.
ISACA offers several certifications, including the Certified Information Systems Auditor (CISA), Certified in Risk and Information Systems Control (CRISC), Certified Information Security Manager (CISM), and Certified in the Governance of Enterprise IT (CGEIT). These certifications are highly regarded in the industry and can help professionals advance their careers.
In terms of career opportunities, ISACA membership and certification can help professionals in a variety of roles related to information systems, including IT audit, IT governance, risk management, cybersecurity, and compliance. Many organizations seek professionals with ISACA certifications and membership when hiring for these types of positions.
ISACA Careers
Northern Trust is committed to providing innovative solutions and exceptional service to their clients, and they believe that their employees are the key to their success. They are looking for individuals who share their passion for excellence and who are eager to grow and develop within their organization.
If you are looking for a challenging and rewarding career, this is an opportunity you won’t want to miss. Northern Trust is recruiting for following roles to join the IT Audit Services function Based in Bangalore.
Role | Experience | CTC |
Associate Auditor | 0 to 2yrs | 8 LPA |
IT Auditor | 2 to 5yrs | 16 LPA |
Sr. IT Auditor | 5 to 9yrs | 24 LPA |
The above role supports the delivery of technology internal audit projects (infrastructure, application, cybersecurity) across business units to conclude on the design and operating effectiveness of the technology internal control environment in order to improve the management of risk in support of regulatory obligations, corporate governance, and reporting requirements. Participants will gain hands-on experience and learn about technology processes and standards supporting Northern Trust’s global operations, the risks that Northern Trust faces, and the controls designed to keep our technologies and business operations safe.
If you are interested in learning more about this opportunity, Register here google form and upload your CV. All the JDs are uploaded here and you can refer to the details before applying for the role.
The recent job opening for Northern Trust is now completed, any future job opening will be published here. Keep visiting this page to check for job openings in the future.
Risk Analyst – TPRM Assessments and Control Testing
Job Title: Associate Risk Analyst – TPRM Assessments and Control Testing
Company: Maclear Global Risk Management Private Limited
Location: Remote with ability to travel pan India
Position Type: Full-Time – minimum 2 years’ experience (no freshers)
Start Date: Only immediate joiners or candidates with less than 15 days – ideal start immediate or
September 2. Latest start date September 9.
About Maclear Global:
Maclear Global is a leading provider of risk assessment and vendor information security services,
dedicated to safeguarding the confidentiality, integrity, and availability of sensitive data. We work
closely with our clients to ensure compliance with regulatory requirements and to minimize inherent
technology risks. Our commitment to excellence, integrity, and client satisfaction has earned us a solid
reputation in the industry.
Job Description:
As a Risk Analyst at Maclear Global, you will play a crucial role in evaluating and managing the security
and compliance of our clients’ risks posture. The primary role is to perform third party or vendor risk
assessments, controls testing and risk and control self-assessments. You will work closely with internal
teams and external vendors to assess, report, and mitigate risks, ensuring that data and information
security standards are met.
In depth understanding, knowledge and experience of frameworks such as CIS, NIST-CSF and ISO
together with compliance requirements pertaining to data privacy, such as GDPR, CCPA, etc. is a prerequisite.
Responsibilities:
Conduct internal controls and vendor information security risk assessments, testing and audits.
Candidates must possess previous experience in conducting risk and control assessments.
Validate the adequacy of controls, standards, policies, and procedures to protect Confidentiality,
Integrity, and Availability and ensure compliance with regulatory requirements.
Assess the level of inherent technology risks in the context of business objectives and risk appetite,
establishing residual risk based on scores.
Ability to read and decipher IT system and technical design documents to identify potential risks or
design flaws that may manifest into risks.
Classify vendors according to their access to systems, networks, and sensitive information, assessing
risks for individual vendors based on their level of access and the sensitivity of the data they handle.
Query vendors based on their responses, identify potential gaps or observations, and communicate
findings to stakeholders in a structured format, including risk descriptions, root causes, business
impacts, compensating controls, and suggested remediation plans.
Prepare and update Standard Operating Procedures for the Vendor Risk assessment process.
Organize and lead internal weekly action review calls to track the status of ongoing assessments.
Maintain, track, and follow up on the status of assessments, publishing a weekly tracker to the client.
Full training will be provided for this role.
This position is client-facing, so a strong client presence and excellent communication skills are essential.
Be highly organized and a self-starter, requiring minimal supervision.
Be able to learn software intuitively and enhance processes to take advantage of automation.
Qualifications and Skillset:
Bachelor’s degree in a relevant field or equivalent work experience.
Previous experience in conducting risk assessments is a requirement
Knowledge and experience of risk management frameworks, such as CIS, NIST-CSF or ISO is a must.
Understanding of compliance requirements related to IT audit, data privacy, including GDPR and CCPA is
a pre-requisite
Strong organizational and communication skills.
Ability to work independently and collaboratively.
Excellent client-facing skills and a professional demeanor.
If you are a self-motivated individual with a passion for risk analysis and information security, and you
want to join a dynamic team that is dedicated to ensuring the security of our clients’ sensitive data, we
encourage you to apply.
How to Apply:
Interested candidates are invited to submit their resume and cover letter to delliot@maclear-grc.com
with the subject line “Risk Analyst Application – [Your Name].” Please clearly indicate your current and
expected CTC together with availability in your cover letter. Start date should be immediate or no later
than September 9. For the avoidance of doubt, please note freshers and applicants with longer notice
periods and later start dates will not be considered or responded to.
Closing Date: August 29, 2024
Job Title: Risk Analyst
Company: Maclear Global Risk Management Private Limited
Location: Remote with ability to travel pan India
Position Type: Full-Time Start Date: Preferably immediate or within 30 days
About Maclear Global:
Maclear Global is a leading provider of risk assessment and vendor information security services, dedicated to safeguarding the confidentiality, integrity, and availability of sensitive data. We work closely with our clients to ensure compliance with regulatory requirements and to minimize inherent technology risks. Our commitment to excellence, integrity, and client satisfaction has earned us a solid reputation in the industry.
Job Description:
As a Risk Analyst at Maclear Global, you will play a crucial role in evaluating and managing the security and compliance of our clients’ vendor relationships. You will work closely with internal teams and external vendors to assess, report, and mitigate risks, ensuring that data and information security standards are met.
Responsibilities:
Conduct internal controls and vendor information security risk assessments and audits, with a preference for candidates with previous experience in conducting risk assessments.
Validate the adequacy of controls, standards, policies, and procedures to protect Confidentiality, Integrity, and Availability and ensure compliance with regulatory requirements.
Assess the level of inherent technology risks in the context of business objectives and risk appetite, establishing residual risk based on scores.
Classify vendors according to their access to systems, networks, and sensitive information, assessing risks for individual vendors based on their level of access and the sensitivity of the data they handle.
Query vendors based on their responses, identify potential gaps or observations, and communicate findings to stakeholders in a structured format, including risk descriptions, root causes, business impacts, compensating controls, and suggested remediation plans.
Prepare and update Standard Operating Procedures for the Vendor Risk assessment process.
Organize and lead internal weekly action review calls to track the status of ongoing assessments.
Utilize knowledge of frameworks like CIS, NIST-CSF or ISO and understand compliance requirements pertaining to data privacy, such as GDPR, CCPA, etc.
Maintain, track, and follow up on the status of assessments, publishing a weekly tracker to the client.
Full training will be provided for this role.
This position is client-facing, so a strong client presence and excellent communication skills are essential.
Be highly organized and a self-starter, requiring minimal supervision.
Be able to learn software intuitively and enhance processes to take advantage of automation.
Qualifications and Skillset:
Bachelor’s degree in a relevant field or equivalent work experience.
Previous experience in conducting risk assessments is a plus.
Knowledge of risk management frameworks, such as CIS, NIST-CSF or ISO.
Understanding of compliance requirements related to IT audit, data privacy, including GDPR and CCPA.
Strong organizational and communication skills.
Ability to work independently and collaboratively.
Excellent client-facing skills and a professional demeanor.
If you are a self-motivated individual with a passion for risk analysis and information security, and you want to join a dynamic team that is dedicated to ensuring the security of our clients’ sensitive data, we encourage you to apply.
How to Apply:
Interested candidates are invited to submit their resume and cover letter to delliot@maclear-grc.com with the subject line “Risk Analyst Application – [Your Name].” Please clearly indicate your current and expected CTC together with availability to start within 30 days in your cover letter.
Closing Date: October 20, 2023