Reserve Bank Information Technology Pvt. Ltd., ReBIT

• B. Tech or MCA or CA

Exp. : 

• 10-12 years of experience in Security Audits and Security Risk assessment services
• At least 5 years of experience in projects Management of Information Security Audit
• At least 2 years of experience in Security risk assessment services
• Must have practical hands-on Auditing experience in Three or more of the following areas: IT General Controls, Application controls, User Access controls, Data Security Controls and Governance, Risk & Compliance processes
• Knowledge in auditing of Financials systems including banking products and services will be a big plus
• Must have experience in project Management stream
• Must have experience in people management & performance evaluation
• Strong interpersonal, Organizational and communication, written and oral communication skills

Certifications : 

• CISA/CISM/CISSP
• ISO Lead Audito

• B. Tech/MCA or CA

Exp. : 

• 14-16 years of experience in Information Security Audits and Security Risk assessment services
• At least 5 years of experience in program management of Information Security Audit
• At least 4 years of experience in Information Security risk assessment services
• Must have strong Security subject matter expertise and hands-on experience in Information Security Audit processes design/framework and implementation
• Must have experience in program managing the audit work for high quality deliverables.
• Must have data analytics experience including AI/ML areas
• Knowledge of financial systems including SWIFT, banking products such as Mortgages, deposits, lending is highly desirable
• Experience in managing payment systems audit and fraud risk management is a big plus
• Must have experience in people management and performance evaluation
• Strong interpersonal, Organizational and communication skills
• Excellent written, oral communication and presentation skills

Certifications : 

• PMP
• CISA/CISM/CISSP
• ISO Lead auditor certified

• Graduate in Computer Science/IT or B. Tech

Exp. : 

• 5-8 years of experience as a cyber-security consultant
• In-depth understanding of information security governance management
• Hands-on consulting/advisory engagements in technology and the supporting processes
• Strong knowledge and expertise in risk assessment techniques, framework and concepts
• Familiarity with various cyber security controls and certifications (ISO, CSA, PCI, SOC, etc.)
• Working experience on cyber security domains in Banking and Financial Services sector
• Understanding of banking functional knowledge will be a big plus
• Understanding of the amalgamation of technology, banking and audit processes
• Must have experience in preparing quality deliverables such as thought leadership articles, research reports, presentations, etc.
• Excellent written, oral communication and presentation skills
• Excellent organizational and interpersonal skills
• Ability to work independently or as part of a team

Certifications : 

• CISA/CISSP/CISM
• ISO 27001 Lead Auditor/Lead Implementer

• Graduate in Computer Science or B. Tech

Exp.: 

• 5-8 years of experience in the field of Information Systems (IS) Audit with focus on payment systems such as SWIFT, UPI, IMPS, ATM, Internet Banking, Mobile Banking, Core Banking System

• Should have security technologies implementation or security audit experience in the payment systems
• Preparing checklist for review of payment systems for information security risk
• Conducting reviews of business processes to identify material information security risks
• Performing root cause analysis on identified risk events to recommend improvements to prevent these risk events from re-occurring in future
• Review the action plans for mitigating the identified risks and track the closure
• Maintaining a register for the identified risks
• Experience in Audits and Risk assessment services of IT infrastructure, Applications, IT processes, Business Continuity and Governance
• Candidate should have hands-on experience in Test of design controls and Test of operating effectiveness review of IT operational controls
• Candidate should be familiar with Technical Security controls of Identity & Access Management, Network, Server, Application and process controls reviews
• Must have experience in conducting risk assessment of business and support applications
• Must have undertaken PCI-DSS security assessment or consulting engagements with in depth expertise
• Experience in assessing security controls of wearables technologies, contactless cards, PPIs, payment aggregators, payment fraud risk controls is highly preferred

• Must have experience in preparing quality deliverables such as audit reports, presentations etc.
• Excellent written, oral communication and presentation skills
• Excellent organizational and interpersonal skills
• Ability to work independently or as part of a team

Certifications: 

• PCI-QSA, CPISI
• CISA/CISSP
• ISO 27001 Lead Auditor/Lead Implementer

• Graduate in Computer Science/IT or B. Tech

Exp. : 

• 3-5 years of experience in cyber security consulting, Risk assessment or ISMS Management
• Must have handled client/internal projects in Governance, risk and compliance areas of cyber security 
• Must have data analytics experience using Audit command language – ACL/MS-Excel
• Must have experience in implementation or consulting engagements on ISO 27001 framework
• Experience in data analytics tools – Python, SAS & R will be a big plus
• Understanding of information security Governance management & metrics
• Know-how and understanding of risk assessment techniques, framework and concepts
• Familiarity with PCI-DSS and cloud security preferred
• Familiarity in cyber security domains in Banking and Financial Services sector
• Excellent written, oral communication and presentation skills
• Ability to work independently or as part of a team

Certifications : 

• CISA/CISSP
• ISO 27001 Lead Auditor/Lead Implementer

• Graduate in IT/Computer Science or B. Tech

Exp. : 

• 5-8 years of experience in audits and Risk assessment services of Databases
• Must have hands on experience in implementing and managing databases like MS SQL, Oracle, etc.
• Must have experience in implementation and/or Auditing of Database Activity Monitoring tools
• Knowledge of major computing platforms, database management systems and internet technologies, security standards and control concepts are preferred
• Experience in Big data platform is a plus
• Excellent written, oral communication and presentation skills
• Excellent organizational, communication and interpersonal skills
• Ability to work independently or as part of a team

Certifications : The following certifications will be preferred:

• CISA
• MCDBA
• Oracle database
• Certification in big data/analytics

• Graduate in Computer Science/IT or B. Tech

Exp. : 

• 5-8 years of experience in Information Security, out of which 3 years in Cloud.
• In-depth understanding of different Cloud Service Models such as IAAS, PAAS and SAAS.
• Hands-on implementation experience of different Cloud Deployment Models such as Public, Private and Hybrid.
• Strong knowledge and expertise in information security risks and governance management across different Cloud Models.
• Hands on experience with securing/auditing Cloud infrastructure and applications.
• In-depth understanding of Vendor Risk Management.
• Familiarity with risk assessment techniques, framework and concepts.
• Familiarity with various security controls and certifications (ISO, CSA, PCI, SOC, etc.)
• Must have experience in preparing quality deliverables such as audit reports, presentations etc.
• Excellent written, oral communication and presentation skills
• Excellent organizational and interpersonal skills
• Ability to work independently or as part of a team

Certifications : 

• CCSK/CCSP
• CISA/CISSP/CISM
• ISO 27001 Lead Auditor/Lead Implementer

• Graduate in Computer Science or B. Tech

Exp. : 

• 5-8 years of experience in Audits and Risk assessment services of web and client based applications
• Must have experience in conducting risk assessment of business and support applications
• At least 2 years of experience in mobile applications assessment/audits in a medium to large enterprise
• Must have hands-on experience in evaluating OWASP security practices for applications
• Must have experience in implementing or consulting engagements in Secure SDLC projects
• Must have experience in Coding and application development
• Strong knowledge of programming languages for application and mobile
• Experience in carrying out code review and black/grey/white box testing is a plus 
• Excellent written, oral communication and presentation skills
• Excellent organizational, communication and interpersonal skills
• Ability to work independently or as part of a team

Certifications : 

• MCSD
• Certification in Mobile Application Security testing
• CISA
• Oracle certified, Java certifications

• Graduate in B.E. or B. Tech or BCA or Computer Science/IT

Exp. : 

• 5 + years of experience in Audits and Risk assessment services of IT infrastructure, Applications, IT processes, Business Continuity and Governance
• Must  have at least 2 years of ISO 27001 and/or PCI-DSS audits of Information Systems in a medium to large sized enterprises
• Experience in reviewing business process for information security risk will be a plus
• Candidate should have hands-on experience in Test of design controls and Test of operating effectiveness review of IT operational controls
• Candidate should be familiar with Technical Security controls of Identity & Access Management, Network, Server, Application and process controls reviews
• Must have experience in conducting risk assessment of business and support applications
• Must have experience in preparing quality audit reports
• Excellent written, oral communication and presentation skills
• Excellent organizational, communication and interpersonal skills
• Ability to work independently or as part of a team

Certifications : 

• CISA, CISSP, CEH, ITIL preferred