Premium Employer
i
This company page is being actively managed by
Bottomline Team. If you also belong to the team, you
can get access from
here
Bottomline
Compare
All Filters
30 Bottomline Jobs
Information Security Compliance Senior
4-8 years
Kolkata, Mumbai, New Delhi + 4 more
1 vacancy
Information Security Compliance Senior
Bottomline
posted 1mon ago
Job Role Insights
Flexible timing
Key skills for the job
Job Description
Why Choose Bottomline
Are you ready to transform the way businesses pay and get paidBottomline is a global leader in business payments and cash management, with over 30 years of experience and moving more than $10 trillion in payments annually. Were looking for passionate individuals to join our team and help drive impactful results for our customers. If youre dedicated to delighting customers and promoting growth and innovation - we want you on our team!
The Bottomline IT Risk Analyst is responsible for monitoring IT systems to ensure they follow policies and practices. They must evaluate technology, identify controls, and keep throughout records. In addition to monitoring IT systems, the IT Risk Analyst shall implement policies and day-to-day functions related to cybersecurity, business continuity, disaster recovery management, compliance management/internal controls, risk management, ethics management, internal and external audits. Compliance with industry mandated standards and controls (e.g. FFIEC, ISO27001, GDPR/CCPA, PCI, etc.). Additionally, they shall act as mentors to IT staff teams to ensure they have a solid understanding of procedures and necessary independence to conduct their own investigations, and are effective planners, communicators, and teachers.
The IT Risk Analyst must retain authority, encourage problem solving, and promote a constructive work environment. They must be able to direct risk functions while understanding the risks and governance associated with current and emerging technologies. The Bottomline IT Risk Analyst shall compile a vast array of data into coherent reports for the CFO, CIO, GC, CISO and Director of Audit, Risk and Compliance
This position can be based out of an open location in the United States
Essential Job Functions:
- Participate in the development of the annual IT Risk Governance design
- Develop and implement internal policies and procedure documents to support IT compliance initiatives
- Analyze the IT environment to evaluate application and infrastructure risks and controls
- Coordinate, execute and manage the assessment and reporting phases for multiple concurrent IT Risk and Third Party Assessments
- Design, review and approve tests that identify IT Risks, and provide strategic recommendations to enhance business operations
- Present risks to senior management and negotiate suggested action plans
- Promote a risk-aware culture; ensure efficient and effective risk and compliance management practices by adhering to required standards and practices
- Mentor teams to develop skills and expertise with the IT risk process, technology, and client management
- Participate in a primary capacity in supporting compliance, and regulatory activities, including, but not limited to: PCI, SSAE16, Regulatory, Sarbanes-Oxley (SOX 404), ISO27001/9001
- Manage the ongoing effectiveness of information security controls (automated, manual, and needing development), working with a variety of control owners within the Information; Security and Technology organizations, and evaluating control design and standards in a variety of program areas
- Advise senior and executive management on the status of technology risk and compliance controls based on assessment results and information from various monitoring and control systems
- Support business initiatives with respect to resilience and Disaster Recovery BIA
- Conduct research and make recommendations on products, services, protocols and standards in support of procurement and development efforts
- Develop, implement and maintain change control and testing processes for service, application and infrastructure modifications
- Establish appropriate end-user access controls, best practices and perform transaction and security assessments
- Maintain up-to-date knowledge of the FinTech and Payments Industry and IT developments
- Build and maintain strong internal relationships by demonstrating detailed knowledge of the client s business environment
- Maintain and increase personal knowledge of the Bottomline solutions and services to enable the better execution of the role
- Deliver staff training and education in the areas of security, BCP, DR and best practice.
- Participation in special projects or other duties as required
Education and Experience:
Strong understanding and knowledge of business risks and governance related to general system controls, system/applications development, change management, logical access security, local area network and wide area network concepts, contingency and recovery:
- 4-8 years of experience in risk, governance and compliance information technology organization
- Relevant, industry recognized security certification such as CISSP, CGEIT, CRISC, CISM, CSX-P, CISA, PMP, CISM, CPP, CPA and CBCP
- BA, BS or MBA Degree
- Understanding of data management concepts
- Knowledge of FFIEC, SSAE18, ISO27001/2, BCP/DR, NIST and COBIT relevant frameworks
- Strong understanding of current regulatory expectations for financial services organizations
- Excellent analytic, oral and written communication skills
- Network Infrastructure Architecture network segmentation concepts, firewalls, routers, VPN solutions etc
- Systems Development (including SDLC, project management, BCP/DR and change control methodologies
- Infrastructure and Application Security Testing comprehension to understand risks associated with vulnerabilities
- Physical Security Data Center Environmental Controls
- Knowledge of Hosted and Windows environments, Client Server Technology, Networks,
- Experience using GRC applications
- Excellent project management skills
- High attention to detail necessary to manage, analyze and finalize artifacts and documents
- Familiarity with infrastructure, networking, security and software development processes
- Organized, responsive, and able to manage multiple initiatives and tasks in parallel
Employment Type: Full Time, Permanent
Read full job descriptionPrepare for Compliance roles with real interview advice
People are getting interviews at Bottomline through
People are getting interviews through
(based on 8 Bottomline interviews)
Job Portal
Referral
50%
25%
25% candidates got the interview through other sources.
Moderate
Confidence
?
Moderate Confidence means the data is based on a sufficient number of responses received from the candidates
What people at Bottomline are saying
What Bottomline employees are saying about work life
based on 86 employees
Flexible timing
Monday to Friday
No travel
Day Shift
Bottomline Benefits
Submitted by Company
Group Term Life and Personal Accident Insurance 
Cafeteria Work From Home Free Food Team Outings Health Insurance
Submitted by Employees
View more benefits 
Compare Bottomline with
Fiserv
Compare
FIS
Compare
ACI Worldwide
Compare
TCS
Compare
Infosys
Compare
Wipro
Compare
HCLTech
Compare
Tech Mahindra
Compare
Mphasis
Compare
Duck Creek Technologies
Compare
FinThrive
Compare
Mobileum
Compare
OnProcess Technology
Compare
AgreeYa Solutions
Compare
Yodlee
Compare
Bravura Solutions
Compare
NextGen Healthcare
Compare
NortonLifeLock's
Compare
Model N
Compare
TEOCO Software
Compare
Similar Jobs for you
Bottomline Bangalore / Bengaluru Office Location
Bangalore / Bengaluru, Karnataka Office
Ground Floor, Luxor South Block, Bagmane Capital Tech Park, BAGMANE CONSTELLATION BUSINESS PARK, Ashraya Layout, Garudachar Palya, Mahadevapura, Bengaluru, Karnataka 560048
Bangalore / Bengaluru, Karnataka
560048
560048
Information Security Compliance Senior
4-8 Yrs
Kolkata, Mumbai, New Delhi +4 more
Member Services Training and QA Program Manager
5-8 Yrs
Kolkata, Mumbai, New Delhi +4 more
Information Security Compliance Manager
5-8 Yrs
Kolkata, Mumbai, New Delhi +4 more
Share an Interview