Job description

Today, the corporate landscape is dynamic, and the world ahead is full of possibilities! None of the amazing things we do at Infosys would be possible without an equally amazing culture, the environment where ideas can flourish and where you are empowered to move forward as far as your ideas will take you.
At Infosys, we assure that your career will never stand still, we will inspire you to build what’s next and we will navigate further together. Our journey of learnability, values and trusted relationships with our clients continue to be the cornerstones of our organization and these values are upheld only because of our people.

Roles and Responsibilities:
• Support technology process owners to identify risks and assist them with designing and implementing optimal controls to mitigate risks.
• Identify cybersecurity-related risks for new business initiatives and work with the relevant control owners to implement appropriate safeguards to protect Booking.com assets
• Document, agree and release security policies and procedures together with Technology stakeholders
• Perform policy gaps assessments and define risks from identified gaps
• Expand Technology risk register with all identified risks from policy gaps, policy exception, internal and external assessments
• Stay flexible to meet the dynamic business needs, while maintaining robust solutions that strengthen the IT control environment.
• Support with identifying risk associated with technology policy exceptions as part of the exception management process.
• Able to split large tasks into logical, manageable and decoupled actions which are managed effectively and delivered on time.
• Build and maintain strong relationships with stakeholders across central tech.

Skills /Competencies
• Professional level proficiency in English language.
• Work experience in business analysis, IT auditing, IT governance, risk management or IT internal controls
• Strong understanding of risk and IT controls
• Energized by change and solution oriented
• Good communicator, quick thinker & confident in decision making
• Can work independently, while still a strong team player
• Enthusiastic, self-starting and thrives in changing, agile environments
• Able to self-motivate, organise and take responsibility for own workload to ensure that deadlines and objectives are met
• Able to multitask and prioritize work effectively.
• Good organizational and time management skills.
• Accuracy and attention to detail.
• An understanding of the latest trends and their role in a Cyber-sec environment.
• Self-development attitude to keep up to date with fast-changing trends

Preferred
• Work experience in business analysis, IT auditing, IT governance, risk management or IT internal controls
• Strong understanding of risk management and IT controls
• Knowledge of Regulatory and Compliance frameworks affecting Technology - SOX, PCI, NIST, COSO, COBIT, ACFE, HITRUST
• Knowledge of privacy regulations such as GDPR, CCPA is a plus, but not mandatory
• Familiar with ServiceNow, Google Suite, Jira tools (or similar) and DevOps environment is a plus, but not mandatory
• Desirable: CISSP or Security+ or any other cyber security certification, but not mandatory.

Educational Qualifications:
• Bachelor’s Degree in Engineering or Equivalent.

About Us
Infosys is a global leader in next-generation digital services and consulting. We enable clients in more than 50 countries to navigate their digital transformation. With over four decades of experience in managing the systems and workings of global enterprises, we expertly steer our clients through their digital journey. We do it by enabling the enterprise with an AI-powered core that helps prioritize the execution of change. We also empower the business with agile digital at scale to deliver unprecedented levels of performance and customer delight. Our always-on learning agenda drives their continuous improvement through building and transferring digital skills, expertise, and ideas from our innovation ecosystem.

Infosys is an equal opportunity employer and all qualified applicants will receive consideration without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, spouse of protected veteran, or disability.