This job ad has been posted over 30 days ago...

89

applicants

Cyber Security Analyst Full-time

at Adobe India Pvt Ltd in Banglore (Published at 09-04-2019)

Job Description:
Adobe’s Global Internal Audit team mission is to provide independent, objective internal audit, assurance and advisory services designed to add value and improve the operations of Adobe. Our objective is to provide in-house assurance and advisory services to management that will assist in improving the organization’s governance, risk management and control processes.
Adobe is seeking a dynamic Security Auditor/Analyst to join our Global Internal Audit (Risk Advisory & Assurance Services) team. This position will be based in Adobe’s Bangalore Office and will report to the Manager of Risk Advisory & Assurance Services (RAAS) team.

What you’ll do
• Work under the supervision and guidance of the Risk Advisory & Assurance Services (RAAS) Manager to plan, scope, and evaluate the design and effectiveness of the internal controls
• Perform Technology & Cybersecurity audits across BU’s.
• Security process design/operational reviews and risk assessments across Adobe and 3rd party service providers.
• Conduct Information Security related assessments and audits to cover domains like User Access management, Network & Infrastructure Security, Encryption and Cryptography, Change Management, Backup Management etc.
• Evaluate and review the Security Architectures and Designs
• Evaluate the design and effectiveness of Cloud Security controls
• Conduct security review of the Cloud platform and supporting technologies
• Conduct Vulnerability Assessment & Penetration Testing (VAPT) on need basis
• Support in conducting annual and periodic Security Risk Assessments
• Proactively engage with business and teams across Adobe to identify changes in Technology landscape which might have an impact on the security posture
• Support reviews involving PCI, ISO, GDPR and other compliance requirements
• Deliver on specialized engagements involving forensic analysis and other due diligence
• Develop project plans which include risk assessment, research and analysis that outlines the scope, objectives and key business risks
• Stay abreast of Security trends, emerging technology, and cybersecurity field developments.
What you need to succeed
• Bachelor's/Master’s Degree in Information Systems, Computer Science, Information Technology.
• Minimum 2-5 years of Information Systems (Cybersecurity) audit experience in Big 4 accounting firms and/or related industry.
• Candidate should hold a relevant credential such as CISSP or CISA. Other credentials such as AWS/Azure Architect, CISM, ISO 27001 LA, CFE and or CEH are a plus.
• Experience in one or more of the following areas: Application security, Linux/Windows system security, Network Security (Firewalls, switches, Routers, LAN, WAN Security), mobile device security, wireless security, cloud technologies (IaaS, SaaS environments, etc.), and web technologies.
• Experience with implementing and auditing security controls for Cloud environments such as AWS, Azure and Google Cloud etc. is a must.
• Knowledge of Vulnerability assessment and penetration testing (Infrastructure & Web Application).
• Experience with implementing and auditing controls from the regulatory frameworks and standards (e.g., SOC2, NIST, ISO, PCI-DSS, FedRAMP, OWASP, ITIL, etc.).
• Strong communications skills to be able to interact with technical and non-technical colleagues.
• Good understanding of core IT processes and underlying technologies (e.g., logical and physical access, program development, change control, IT operations, Oracle Database and Windows/UNIX/Linux server environments etc.) is preferred.
• Experience in using and auditing ERP systems
• Acquaintance of Robotic Process Automation (RPA) risks and security best practices.
• Knowledge of GRC tools like SAP GRC and RSA Archer is a plus
• Knowledge of governance frameworks like COBIT, ITIL, ISO, NIST, COSO, etc. required.
• Ability to take direction, learn quickly, work independently, and maintain a level of professional skepticism.
• Demonstrate basic research capabilities with strong analytical and creative problem-solving skills.
• Strong project management/organizational and planning skills; ability to manage multiple projects simultaneously and prioritize tasks to meet project deadlines.
• Excellent interpersonal, oral, written and presentation skills with the ability to comfortably communicate to all levels of management and demonstrate a high degree of professionalism and integrity in all interactions.
• It is essential that the candidate be a team-player.
• Self-motivated and positive can-do attitude.
• Ability and willingness to travel (approx. 20%).


Viewed: 547 times
« Go back to category
Is this job ad fake? Report it!   
Recommend to a friend