The Job logo

What

Where

Lead Governance, Risk & Compliance Firewall Analyst

ApplyJoin for More Updates

You must Sign In before continuing to the company website to apply.

As a Lead GRC Firewall Analyst, you'll support Baker Hughes Governance, Risk, and Compliance (GRC) Firewall Governance team with policy/rule reviews associated with operations, projects, and initiatives. As a member of the GRC Firewall Governance team, the individual will collaborate with technical and teams across the organization to support the business.
 

As a Lead GRC Firewall Analyst, you will be responsible for:
 

  • Leading firewall policy/compliance team. Support application security & vulnerability reviews
  • Supporting URL filtering and unblock process.
  • Identifying risks across network infrastructure that would lead to the exposure of sensitive data, unauthorized access, or loss of availability and prioritize remediation efforts to address gaps.
  • Working with customers, vendors, and project managers on understanding business requirements and translating those into technical requirements.


Fuel your passion
 

To be successful in this role you will:
 

  • Have a Bachelor's Degree in Computer Engineering or in a STEM field (Science, Technology, Engineering, Math) from an accredited college or university.
  • Have In-depth understanding of networking technologies, including TCP/IP, networking, routing protocols, subnetting, switching, LAN, WAN, Load-Balancing, SD-WAN, DHCP, DNS, OT/IoT, etc.
  • Have In-depth understanding of security technologies, including VPN, IPSec, WAF, PKI, SSH, SSL/TLS, IAM, SSO, basic/modern auth, MFA, etc.
  • Have In-depth understanding of next-generation firewalls such as Palo Alto and associated capabilities, including Panorama, Threat, URL Filtering, Global Protect, App-ID, etc.
  • Have In-depth understanding of cloud technologies & associated architectures, including AWS, Azure, OCI, GCP, etc.
  • Have In-depth understanding of operating systems including Windows, Linux, Unix, & MacOS.
  • Have Understanding of firewall policy/compliance management platforms such as Algosec, Tufin, FireMon, etc.
  • Have Understanding of technologies, architectures, and protocols used in oilfield services and Natural Gas/LNG/Turbo Machinery sectors.
Set alert for similar jobsLead Governance, Risk & Compliance Firewall Analyst role in Mumbai, India
Baker Hughes Logo

Company

Baker Hughes

Job Posted

a year ago

Job Type

Full-time

WorkMode

On-site

Experience Level

3-7 Years

Category

Technology

Locations

Mumbai, Maharashtra, India

Qualification

Bachelor

Applicants

Be an early applicant

Related Jobs

JPMorgan Chase & Co. Logo

Risk& Compliance, Business Management

JPMorgan Chase & Co.

Mumbai, Maharashtra, India

Posted: a year ago

We are looking for an Associate in Business Management to join our team. As an Associate, you will be responsible for project management, presentation development, and business analysis. You will need to have strong organizational and communication skills, as well as proficiency in Excel and PowerPoint. Attention to detail and the ability to work with different stakeholder groups are essential. If you have prior experience in Business Management or a COO role, we would love to hear from you.

Baker Hughes Logo

Lead Software Engineer

Baker Hughes

Mumbai, Maharashtra, India

Posted: a year ago

Senior Software Architect, you will develop high performing, scaling and innovative end-to-end applications. You will collaborate extensively with system engineers, product owners, subject matter experts and various product stakeholders to create unique products. You will implement solutions that are aligned with our future and extend shared platforms and solutions.   As a Senior Software Architect, you will be responsible for: Developing high performing, scaling and innovative end-to-end applications to create exceptional products for our business Developing technical interfaces, specifications, and architecture with strong attention to detail Collaborating with cross-functional technical teams to implement solutions that extend shared platforms. Applying software development life-cycle principles and methodologies such as Agile and Kanban, to continuously improve our code and processes. Writing solid code to meet our standards and to deliver functionality and enhancements Building features such as services and queries on existing tables to improve availability. Implementing core data structures and algorithms through effective and robust coding Fuel your passion To be successful in this role you will: Have minimum 14 years of working  experience  in developing web applications with technologies Java Script/Type Script. Have an experience in MEAN/MERN stack, SQ L Server and design/architectural patterns (e.g. Model-View-Controller (MVC) Have an experience in writing scalable code for software applications Have an experience in architecture styles/APIs (REST, RPC ) Have an experience in reviewing and debugging software applications. Have an experience in MEAN/MERN stack, Front End ( AngularJS/React JS/VUE), Backend (NodeJS ) Have an experience in data Layer ( Mongo DB/Postgres/MySQ L), Cloud ( AWS/Azure/GCP) etc.

Snowflake Logo

Senior Security Compliance Risk Analyst

Snowflake

Pune, Maharashtra, India

Posted: a year ago

JOB DESCRIPTION Build the future of data. Join the Snowflake team. AS THE Senior Security Compliance Specialist (SOX - ITGC), YOU WILL Support Snowflake business teams to achieve and maintain their security and compliance posture in accordance with regulatory requirements including for example Service Organization Control (SOC), FedRAMP, PCI-DSS, Sarbanes Oxley (SOX) etc. Validate on-going compliance of policies and process / procedures in support of requirements and ensure that controls are operating effectively. Responsible for quality and on-time execution of periodic audit activities such as user access reviews, cloud security group review, etc. Collaborate closely with internal stakeholders to ensure compliance across various systems as well as interact with auditors to provide audit assurance Assist with development of technical security risk and compliance documentation to create repeatable audit artifacts. Support and monitor remediation efforts of audit findings and validate the closure by reviewing relevant evidence. Assist with other GRC activities as required. Review, develop, execute, and maintain security policies and procedures for compliance Document and Communicate status and compliance effectiveness to management on a regular basis. OUR IDEAL Sr Security Compliance Specialist WILL HAVE: 8+ years of Compliance, Security or Audit experience in a cloud environment Must have proven experience supporting and driving assessments or audits for cloud platforms (AWS, Azure, and GCP) and major front and middle-office SaaS platforms Prior experience with managing other security compliance audits of cloud environments against security frameworks like SOC1 & 2,SOX, ISO 27001, PCI DSS, FedRAMP, NIST 800-53 etc. is a plus. Ability to organize, conduct and drive meetings and outcomes with little to no manager involvement. Must be aware of and deliver quality stakeholder engagement experience. Ability to work efficiently and independently in a fast-paced, innovative environment. Excellent written and verbal communication skills. Effective analytical and problem solving skills. Proactive and detail oriented team player. Experience working with Internal and External Audit teams Ability to learn, understand, and work with new emerging technologies, methodologies, and solutions in the Cloud/IT technology space. BONUS POINTS FOR EXPERIENCE WITH THE FOLLOWING Certification preferred in one or more of the following: CISA, CISSP, CISM, Cloud platforms such as AWS, Azure or GCP Proficiency in use of JIRA, Confluence.

Atos Logo

Governance Risk And Compliance Consultant(2-3yrs)

Atos

Bangalore Urban, Karnataka, India

Posted: a year ago

JOB DESCRIPTION Eviden is an Atos Group business with an annual revenue of circa € 5 billion and a global leader in data-driven, trusted and sustainable digital transformation. As a next generation digital business with worldwide leading positions in digital, cloud, data, advanced computing and security, it brings deep expertise for all industries in more than 47 countries. By uniting unique high-end technologies across the full digital continuum with 55,000 world-class talents, Eviden expands the possibilities of data and technology, now and for generations to come. Associate Engineer PROFESSIONAL SERVICES Experienced in Information Security Risk Management with experience in implementing and maintaining Risk Management frameworks (ISO 31000 & ISO 27001) • Should have executed and managed consulting and audit assignments for clients in the areas such as internal audit, operational risk management and compliance management. • Should be adept at conducting gap analysis, risk assessments to identify vulnerabilities. • Have worked with organizations to develop Business Continuity Plans and Disaster Recovery related processes. • Should be able to understand and explain technical vulnerabilities • Basic knowledge on Active directory, firewalls, SCCM, MacAfee security products, DLP, Secure coding practices and product security • Should have Knowledge on information security incident management. Specific Duties and Responsibilities Include: • Proactively protect the organizations information by ensuring appropriate information security controls are in existence and enforced • Conduct audits to verify the compliance to organizations security standards • Assist in Business Continuity Planning and Implementation. • Metrics collection & reporting Must Have Skills • Excellent communication and presentation skills. • Able to effectively interact with various functions. • Good to have Skills / Certification Minimum: ISO27001:2013 Lead Auditor course • Good to have: CISSP, CISA, CISM, ISO22301QualificationBE/ BTech, MCA, MBA with specialization in Information Security

Baker Hughes Logo

OT Security Engineer & Incident Response Lead

Baker Hughes

Mumbai, Maharashtra, India

Posted: a year ago

As an OT Security Engineer/Incident Response Lead at Baker Hughes, your role is central to safeguarding our operational technology (OT) environments from cyber threats. You will be responsible for implementing OT security measures, leading incident response efforts, validating security controls, and ensuring the resilience of our OT systems.   As a OT Security Engineer/Incident Response Lead you will be responsible for: Implementing and managing Security Implementation: OT security controls, measures, and technologies to protect critical assets and systems, drawing from your hands-on experience Leading incident response activities within the OT environment, including detection, investigation, and mitigation of security incidents Overseeing vulnerability assessment and management processes for OT systems, ensuring timely remediation. Monitoring continuously OT networks and systems for signs of compromise, applying practical knowledge to detect and respond to threats. Promoting a culture of security awareness among OT personnel and stakeholders, leveraging your experience to educate and train teams. Ensuring compliance with relevant industry standards and regulations specific to OT security, based on your practical understanding. Maintaining detailed documentation of security configurations, incident reports, and response plans, reflecting your real-world expertise. Working closely with cross-functional teams, including network engineers, system administrators, and external cybersecurity teams, to align security efforts with broader organizational objectives. Managing security tools and technologies used within the OT security program, applying your hands-on experience to optimize their effectiveness. Driving continuous improvement initiatives to enhance OT security and incident response capabilities based on evolving threats and industry developments. Fuel your passion   To be successful in this role you will: Have a Bachelor’s degree in a relevant field with minimum 5 years of relevant on-the-job work experience. Have Hands-on experience in OT security engineering, incident response, or a related field. Have Strong understanding of industrial control systems (ICS) and SCADA systems, gained through practical application Have Proven experience with OT and IT security technologies, including firewalls, intrusion detection systems (IDS), vulnerability detection, network discovery, log collection systems, and security information and event management (SIEM) solutions. Have Knowledge of OT security principles and best practices. Strong problem-solving abilities developed through on-the-job experience. Have Familiarity with the MITRE ATT&CK framework and adversary tactics, techniques, and processes with in the OT/ICS space. Have Effective communication skills and the ability to collaborate across teams. Have Relevant certifications (e.g., CISSP, GICSP, GCIH, GRID, Certified Incident Handler) that complement your practical expertise.