The Job logo

What

Where

Sr Staff Risk Advisor

ApplyJoin for More Updates

You must Sign In before continuing to the company website to apply.

Job Description

Essential Responsibilities:

  • Area of Responsibility (AoR) - Asia
  • Act as Operational Technology (OT) Liaison for the BISO team
  • Partner with GE Aerospace Enterprise Cybersecurity, manage the strategic roadmap for cybersecurity initiatives and measure program effectiveness for the business, with a focus on managing cybersecurity and compliance risk as it relates to the product portfolio and business
  • Be responsible for identifying and communicating regional cyber risk along with regional requirements for cyber security and compliance to the appropriate Business Unit BISOs, business leaders and Enterprise Cybersecurity teams and collaborate on creating and implementing risk response plans.
  • Drive consistency across all business units in the design and implementation of cybersecurity and compliance risk management
  • Collaborate with other BISOs to create standard work and share best practices roadmap for cybersecurity initiatives and measure program effectiveness for the business, with a focus on managing cybersecurity and compliance risk as it relates to the product portfolio and business
  • Develop business domain expertise to inform the cybersecurity and compliance risk management strategy
  • Provide regular program updates and risk briefings to DT leadership, BISOs,
    CISO, program teams, CIO and other business focals
  • Serve as a cybersecurity and technology risk subject matter expert for the business (DT and functional stakeholders)
  • Provide guidance and advocacy regarding the prioritization of investments that impact information security
  • Advise on risk issues related to cybersecurity, compliance & technology and
    recommend actions in support of the businesses’ wider risk management and
    compliance programs
  • Aid in the vetting, implementation, and enforcement of GE Aerospace policies & standards
  • Maintain documentation of the Cybersecurity program and requirements for
    regulatory compliance
  • Partner with the business and DT leadership teams to define the business risk
    management and risk treatment strategies
  • Coordinate cybersecurity and technology risk remediation activities, inclusive of responding to code reds and developing standard work to address cybersecurity and compliance risks
  • Increase the cybersecurity and compliance awareness of the DT organization via security awareness and training campaigns
  • Work under the direction of the primary BISO for each Business Unit as needed
  • Other duties as assigned

​​Qualifications / Requirements:

  • Bachelor's Degree in Computer Science or STEM” Majors (Science, Technology, Engineering and Math) with minimum years of experience 8 years.

 

Set alert for similar jobsSr Staff Risk Advisor role in Bengaluru, India
GE (General Electric) Logo

Company

GE (General Electric)

Job Posted

a year ago

Job Type

Full-time

WorkMode

On-site

Experience Level

8-12 Years

Category

Technology

Locations

Bengaluru, Karnataka, India

Qualification

Bachelor

Applicants

Be an early applicant

Related Jobs

GE (General Electric) Logo

Staff Risk Analyst

GE (General Electric)

Bengaluru, Karnataka, India

Posted: 7 months ago

As a Staff Risk Analyst at GE, you will collaborate with stakeholders, prepare internal audit documentation, support SOX and GRC teams, implement IAM controls, manage audits, conduct risk assessments, and drive IAM audit readiness efforts.

Netskope Logo

Staff/Sr. Staff Engineer (Productivity Engineering)

Netskope

Bengaluru, Karnataka, India

Posted: a year ago

Job Overview We are looking for a Staff Engineer to join our team of experts to build applications that help improve the engineering productivity at Netskope. You will be part of an agile, fast-paced engineering team focused on CICD, Developer experience and tools. You will be well suited to this role if you are driven by high quality, high-velocity software delivery challenges and using innovative and cutting-edge solutions to achieve these goals. We use the most modern technologies and toolchains to accomplish our goals.  The functions to be undertaken in this position are as follows: 70% Coding, debugging and Unit testing - you test your code thoroughly and automate it 15% Innovate - explore, research, prototype new ideas that help propel the team goals 15% monitor, manage and scale the deployment of various applications developed by the team Job Responsibilities Work with a cross-section of engineering teams to develop and implement best-in-class CI/CD system Design and code tools, applications and dashboards to improve productivity of engineering as well as non-engineering teams. Take complete ownership of the work done and mentor junior engineers to deliver world-class, reliable applications Ensure the infrastructure for CI/CD, Tools and Applications is elastic, reliable and resilient. Preferred Qualifications B.E /B.Tech /M.Tech degree from a recognised and accredited university/college.  Minimum 12+ years of work experience in IT industry Minimum of 5 years in DevOps and/or CI/CD  Preferred Technical Skills: 8 years+ experience with building web/cloud scale applications using modern Web 2.0 technologies Solid understanding of Virtualization and Container technologies and experience in working with Docker and Kubernetes is required Demonstrated Python/GoLang development experience, preferably with 4+ years’ experience in the language Experience with one or more database technologies such as MongoDB, MySQL or Postgres, Cassandra is critical Strong knowledge of automating systems and deployments using tools such as Jenkins, Git, Jira, Spinnaker and Ansible.  Expert level understanding of Linux/Ubuntu is a must Strong understanding of static code analysis, unit testing, and test-driven development, security testing, automated test frameworks Proven track record of delivering high quality, reliable systems and environments for development teams. Desired Technical Skills: Experience with frameworks such as NodeJS, Angular or Bootstrap and other modern UI/Backend technologies will be a big advantage Experience in programming with Golang will be a plus Additional Skills Ability to multi-task; working on multiple project teams and wearing multiple hats is very common at Netskope Strong written, verbal and presentation skills are important in our fast-paced environment Drive: Self-motivated engineer with intellectual curiosity and a strong go-getter attitude. Passion and energy to implement quality technical solutions. Communication: Superior communication skills. Ability to clearly articulate problems, solutions, risks, rewards etc. (written and verbal) Analytical: Able to see gaps and areas of improvement in process as well as technologies, providing recommendations and taking the initiative to fix issues are qualities we love to see in our teams.

Netskope Logo

Staff/Sr. Staff Engineer, Productivity Engineering

Netskope

Bengaluru, Karnataka, India

Posted: a year ago

About the role Please note, this team is hiring across all levels and candidates are individually assessed and appropriately leveled based upon their skills and experience. The Productivity Engineering Team at Netskope owns Engineering Productivity spanning DevSecOPS, CICD and many services for our 500+ engineer product development organization. We design, develop and evolve Dev Sec Ops as a service in the cloud, and tooling/systems that  increase the productivity of Netskope Engineering, and allow us to quickly and efficiently build, test, deploy and monitor world-class cloud security products at scale. The services and tooling you develop will span the end-to-end software development lifecycle, including Developer Experience. What’s in it for you We are looking for an experienced Staff Software Engineer to join our team of experts to build Automation and Dev Sec Services in an agile, fast-paced engineering team. You will be well suited to this role if you are driven by high quality, high-velocity software delivery challenges, and using innovative and cutting edge solutions to achieve these goals. What you will be doing Lead and contribute to engineering efforts from design to implementation, solving complex technical challenges around developer and engineering productivity and velocity. Build and/or procure and extend services to support Secure Software Development Lifecycle (SSDLC) Implement service mesh architecture involving a mix of micro-service and monolithic services. Build integrations between CI and CD frameworks with other platforms like Observability, Test-Automation, GitHub, etc. Extend and customize Enterprise class platforms like Artifactory from JFrog’s Artifactory and Xray, GitHub, Sonarqube, Cycode etc. for NetSkope Required skills and experience 10+ years of experience with significant exposure to Productivity Engineering and related areas like Automation, CI/CD, Developer-Experience, DevOps, Cloud, etc. Top-notch Python or GoLang programming and code review skills Advanced level understanding of Kubernetes constructs, microservices architecture, and design patterns for Enterprise SAAS class scale & success. Intimate knowledge of distribution systems Apt, Artifactory, Docker Registry, Helm, etc. In-depth knowledge of DevOps tools like Terraform, Ansible, Salt, Spinnaker, OpenStack, etc. Strong written, verbal, and presentation skills Education B.E /B.Tech /M.Tech degree from a recognized and accredited university/college.

Shell Logo

Senior Risk and Control Advisor

Shell

Bengaluru, Karnataka, India

Posted: a year ago

Where you fit in The Information Risk Management function is accountable for Information Risks and Information Security in the RDS Group as an independent function within the IDT function. With more than 45,000 sites in around 80 countries, Shell is the world’s largest mobility retailer and one of the largest single-branded retailers of any kind on the planet. Retail is the face of Shell, touching the lives of 30 million customers every single day. Serving all our customers is only possible if they trust Shell. Most customers use their credit card to pay for Shell products. It is our job to continue to earn the trust of our customers by ensuring credit card transactions are safe and secure. The IRM PCI team provides assurance that all required controls are in place to meet the payment card industry (PCI) requirements. What’s your role Act as the functional specialist for IT Information Risk Management (IRM) within the Retail Class of Business (COB) Proactively review Shell’s information security and related risks, threats and vulnerabilities, legal and regulatory and Payment Card Industry (PCI) compliance Support in development of tooling to support IRM and PCI processes and ensuring this is fit for purpose Active participation in the Assurance and Architecture level discussions in the engagements Ensure and support that PCI Attestations of Compliance (AoC’s) and Reports on Compliance (RoC’s) are created and reviewed where relevant. This includes supporting Market Self-Assessment Questionnaires and external assessments where relevant Actively participate in IRM team and community meetings, representing IRM and Business interests in applying setting standards and policies for the Group and the businesses, leading to a fit for purpose, evergreen IRM framework Support maintenance and development of the PCI Control Framework and related processes and procedures What we need from you Minimum 10 years in IRM or security functions, preferably aligned with the IT control framework best practices and risk management related to PCI Knowledge in PCI DSS 3.2.1 or 4.0 Certification in ISO27001, PCI professional (PCIP) or PCI ISA/QSA Bachelor's Degree related to IT or equivalent Good understanding of, and experience with Information Risk Management, Audit (internal and external), and Business (IT) Controls Advanced understanding of internal and external IT security standards, PCI standards and relevant legal compliance aspects Robust understanding of, and solid experiences with the impact of IRM on application development and operations as well as the IT Infrastructure Solid understanding of Downstream and Retail business processes Ability to balance IRM/PCI needs and standards in light of risk and affordability to the Business as well as business impact Ability to promote high performance teams, working with inclusiveness and cultural diversity, across organizational boundaries Ability to interface with different groups (Third parties, Business and IT) internal and external to IT (security) and to network globally across Group businesses, as well as with external groups Technical knowledge & relevant experience in security domains /technologies related to Infrastructure/Network security, Identity and Access Management, Business Impact Assessment, Application security, Data Leakage Prevention, End Point Protection, Web filtering technologies, Proxies and firewalls, Vulnerability Assessment / Penetration Testing, or Cloud security.