knowledge transfer and constructive feedback SKILLS AND EXPERIENCE Functional/Technical Competencies Essential: Good understanding of cybersecurity/IT control frameworks including but not limited to frameworks from SOX, FFIEC, ISO27001, NIST, Cloud Security Alliance, and PCI-DSS Good managerial skills Experience of working as an IT auditor, security auditor or governance, risk and compliance analyst Proven understanding of current More ❯
performing security risk assessments 5+ years experience in security automation and integrating security into software development pipelines 5+ years experience working with industry frameworks and compliance requirements (NIST CSF, FFIEC CAT, CIS RAM, FAIR, PCI DSS) 2+ years experience with information technology audit or compliance management 2+ years in payment security including securing digital payments and payment cryptography 2+ years More ❯
performing security risk assessments 5+ years experience in security automation and integrating security into software development pipelines 5+ years experience working with industry frameworks and compliance requirements (NIST CSF, FFIEC CAT, CIS RAM, FAIR, PCI DSS) 2+ years experience with information technology audit or compliance management 2+ years in payment security including securing digital payments and payment cryptography 2+ years More ❯
performing security risk assessments 5+ years experience in security automation and integrating security into software development pipelines 5+ years experience working with industry frameworks and compliance requirements (NIST CSF, FFIEC CAT, CIS RAM, FAIR, PCI DSS) 2+ years experience with information technology audit or compliance management 2+ years in payment security including securing digital payments and payment cryptography 2+ years More ❯
performing security risk assessments 5+ years experience in security automation and integrating security into software development pipelines 5+ years experience working with industry frameworks and compliance requirements (NIST CSF, FFIEC CAT, CIS RAM, FAIR, PCI DSS) 2+ years experience with information technology audit or compliance management 2+ years in payment security including securing digital payments and payment cryptography 2+ years More ❯
performing security risk assessments 5+ years experience in security automation and integrating security into software development pipelines 5+ years experience working with industry frameworks and compliance requirements (NIST CSF, FFIEC CAT, CIS RAM, FAIR, PCI DSS) 2+ years experience with information technology audit or compliance management 2+ years in payment security including securing digital payments and payment cryptography 2+ years More ❯
performing security risk assessments 5+ years experience in security automation and integrating security into software development pipelines 5+ years experience working with industry frameworks and compliance requirements (NIST CSF, FFIEC CAT, CIS RAM, FAIR, PCI DSS) 2+ years experience with information technology audit or compliance management 2+ years in payment security including securing digital payments and payment cryptography 2+ years More ❯
performing security risk assessments 5+ years experience in security automation and integrating security into software development pipelines 5+ years experience working with industry frameworks and compliance requirements (NIST CSF, FFIEC CAT, CIS RAM, FAIR, PCI DSS) 2+ years experience with information technology audit or compliance management 2+ years in payment security including securing digital payments and payment cryptography 2+ years More ❯
performing security risk assessments 5+ years experience in security automation and integrating security into software development pipelines 5+ years experience working with industry frameworks and compliance requirements (NIST CSF, FFIEC CAT, CIS RAM, FAIR, PCI DSS) 2+ years experience with information technology audit or compliance management 2+ years in payment security including securing digital payments and payment cryptography 2+ years More ❯
performing security risk assessments 5+ years experience in security automation and integrating security into software development pipelines 5+ years experience working with industry frameworks and compliance requirements (NIST CSF, FFIEC CAT, CIS RAM, FAIR, PCI DSS) 2+ years experience with information technology audit or compliance management 2+ years in payment security including securing digital payments and payment cryptography 2+ years More ❯
performing security risk assessments 5+ years experience in security automation and integrating security into software development pipelines 5+ years experience working with industry frameworks and compliance requirements (NIST CSF, FFIEC CAT, CIS RAM, FAIR, PCI DSS) 2+ years experience with information technology audit or compliance management 2+ years in payment security including securing digital payments and payment cryptography 2+ years More ❯
CISM) or Business Continuity (e.g., ABCP, CBCP) or Risk Management (e.g., CRISC) or Physical Security (e.g., CPP). Proven experience working with and applying Risk, Security or Audit frameworks (FFIEC, COBIT, COSO, ISO 27001/2, NIST 800-53, SSAE16). Knowledge of applicable laws, rules, and regulations applicable to financial institutions. Experience making data-driven decisions. Experience working with More ❯
CISM) or Business Continuity (e.g., ABCP, CBCP) or Risk Management (e.g., CRISC) or Physical Security (e.g., CPP). Proven experience working with and applying Risk, Security or Audit frameworks (FFIEC, COBIT, COSO, ISO 27001/2, NIST 800-53, SSAE16). Knowledge of applicable laws, rules, and regulations applicable to financial institutions. Experience making data-driven decisions. Experience working with More ❯
CISM) or Business Continuity (e.g., ABCP, CBCP) or Risk Management (e.g., CRISC) or Physical Security (e.g., CPP). Proven experience working with and applying Risk, Security or Audit frameworks (FFIEC, COBIT, COSO, ISO 27001/2, NIST 800-53, SSAE16). Knowledge of applicable laws, rules, and regulations applicable to financial institutions. Experience making data-driven decisions. Experience working with More ❯
CISM) or Business Continuity (e.g., ABCP, CBCP) or Risk Management (e.g., CRISC) or Physical Security (e.g., CPP). Demonstrated experience working with and applying Risk, Security or Audit frameworks (FFIEC, COBIT, COSO, ISO 27001/2, NIST 800-53, SSAE16). Knowledge of applicable laws, rules, and regulations applicable to financial institutions. Experience making data-driven decisions. Experience working with More ❯
CISM) or Business Continuity (e.g., ABCP, CBCP) or Risk Management (e.g., CRISC) or Physical Security (e.g., CPP). Demonstrated experience working with and applying Risk, Security or Audit frameworks (FFIEC, COBIT, COSO, ISO 27001/2, NIST 800-53, SSAE16). Knowledge of applicable laws, rules, and regulations applicable to financial institutions. Experience making data-driven decisions. Experience working with More ❯
CISM) or Business Continuity (e.g., ABCP, CBCP) or Risk Management (e.g., CRISC) or Physical Security (e.g., CPP). Demonstrated experience working with and applying Risk, Security or Audit frameworks (FFIEC, COBIT, COSO, ISO 27001/2, NIST 800-53, SSAE16). Knowledge of applicable laws, rules, and regulations applicable to financial institutions. Experience making data-driven decisions. Experience working with More ❯
de-provisioning. - Develop/configure SailPoint modules (audit, compliance, lifecycle, service account - Design, test, and troubleshoot custom connectors. Build IAM dashboards/reports and support internal/external audits (FFIEC, PCI, SOC, SOX, GDPR, HIPAA - Provide training/guidance on IAM best practices. - Collaborate with cross-functional teams to deliver scalable IAM solutions. More ❯
Edinburgh, Midlothian, United Kingdom Hybrid/Remote Options
Kosli Enterprise
Go, YAML, JSON etc.) A background in financial services or similar regulated industries. Familiarity with compliance frameworks, and security requirements (e.g., ISO 27001, SOC 2, SOX, PCI DSS, FedRAMP, FFIEC, NYDFS, and SEC compliance requirements) A track record in consulting, solutions architecture, or technical coaching. Interest in technical sales and supporting go-to-market strategies. Excellent written and verbal communication More ❯
of the team Understanding and knowledge of common industry cyber security frameworks, standards and methodologies, including; OWASP, ISO2700x series, PCI DSS, GLBA, GDPR, Global data security and privacy acts, FFIEC guidelines, CIS and NIST standards. Windows and Linux Servers administration Strong Documentation skills More details available on successful application. More ❯
preferred. 1. Platform Architecture & Strategy • Define and maintain the ServiceNow architectural blueprint and roadmap for the bank. • Align ServiceNow implementations with banking security, risk, and compliance frameworks (e.g., SOX, FFIEC, GLBA). • Evaluate new ServiceNow products and releases for applicability to financial services use cases. 2. Solution Design & Delivery • Lead the end-to-end design & development for modules such as More ❯
key contributor in the preparation, review, and analysis of reports compiled for regulatory agencies to include the FR Y-9C, FR Y-9LP, FR Y-11, FR 2314, and FFIEC 009/009a. You will be responsible for preparing highly technical components of the reports and/or schedules and conducting detailed reviews of reports and/or schedules prepared More ❯
key contributor in the preparation, review, and analysis of reports compiled for regulatory agencies to include the FR Y-9C, FR Y-9LP, FR Y-11, FR 2314, and FFIEC 009/009a. You will be responsible for preparing highly technical components of the reports and/or schedules and conducting detailed reviews of reports and/or schedules prepared More ❯
r5, NIST CSF2.0, CIS, ISO27K • Designing solutions related to advisory & consulting engagements around regulatory risk & compliances such as DORA, NIS2, GDPR, SOX ITGC, PCI-DSS, HIPAA, Data Privacy, NHS, FFIEC etc. • Develop knowledge base, re-usable components for GRC advisory services. • Responsible for development and enhancements of GRC services, team and delivery capabilities. • Manage local partners and develop partner sales … engagements. • Technical Knowledge around information security, business continuity and technology risk assessments. ISO 27K, NIST, AI Governance, CIS etc. • Good compliance understanding of industry domains such as BFSI – (SOX, FFIEC, PCI-DSS, BASEL, MAS etc.), Healthcare & Life-sciences – (HIPAA, Hi-Trust, FDA CFR, GxP Compliance), Telecom, Retail, Data Privacy (GDPR, CCPA) Energy & Utilities (NERC, FERC) Information Security (ISO 27000, NIST More ❯
r5, NIST CSF2.0, CIS, ISO27K • Designing solutions related to advisory & consulting engagements around regulatory risk & compliances such as DORA, NIS2, GDPR, SOX ITGC, PCI-DSS, HIPAA, Data Privacy, NHS, FFIEC etc. • Develop knowledge base, re-usable components for GRC advisory services. • Responsible for development and enhancements of GRC services, team and delivery capabilities. • Manage local partners and develop partner sales … engagements. • Technical Knowledge around information security, business continuity and technology risk assessments. ISO 27K, NIST, AI Governance, CIS etc. • Good compliance understanding of industry domains such as BFSI – (SOX, FFIEC, PCI-DSS, BASEL, MAS etc.), Healthcare & Life-sciences – (HIPAA, Hi-Trust, FDA CFR, GxP Compliance), Telecom, Retail, Data Privacy (GDPR, CCPA) Energy & Utilities (NERC, FERC) Information Security (ISO 27000, NIST More ❯
