Plant Finance Analyst jobs at Ge Healthcare in India, Bengaluru

Essential Responsibilities

Roles and Responsibilities :

3. Product cybersecurity development responsibilities:

• Assess the privacy and cybersecurity state of the product and define product roadmapfeatures/enhancementswith stakeholder approval
• Responsible for security architecture and coordination of product development for cybersecurity features and enhancements
• Assess product components and SBoM integrated into the product
• Perform defect management for cybersecurity issues
• Identify operational responsibilities and adherence to cloud standards for cloud- based products
• Responsible for Product and Security Manual and MDS2 documentation

4. In coordination with the PSL, own and deliver GEHC Product Cybersecurity Standard artifacts, which includes:

• Design input activities to identify, evaluate, roadmap, and drive cybersecurity and privacy features and enhancements within product development programs
• Create Design Engineering Privacy and Security (DEPS) artifacts for privacy and security risk assessments to engage in domain-specific product threat modeling, attack surface analysis, risk management and reduction
• Coordinates with the PSL to support the product team in scheduling and performing vulnerability scans and cybersecurity assessments
• Lead product Security Technical Design Reviews
• Along with the product LSD, responsible for the GEHC Product Cybersecurity Standard compliance and other pertinent standards and process.

6. Works with the GEHC Product Security team and QARA on released product life-cycle, including:

• Participate in post-market product vulnerability monitoring
• Participate as an Subject Matter Expertise to determine product vulnerability impact, investigation, and risk assessment.
• Responsible for product vulnerability mitigation and design change.
• Responsible for GEHC vulnerability tool update to ensure accurate customer communication.

8. Provide technical expertise on customer concerns, complaints, and CSO escalations.

9. Create/Maintain responsible product records within GEHC product cybersecurity tools.

10. Active involvement in DoD RMF submission process and maintenance.

Educational Qualifications:

• Bachelor's Degree in a relevant field (e.g. Computer Engineering, Computer Science, Information Security) or in a STEM major (Science, Technology, Engineering, or Math)
• 3+ years of progressive experience as adevelopment/cybersecurityengineer or scientist/researcher working with a cybersecurity skill set.

Desired Characteristics:

• Sound technical and domain experience in at least two cybersecurity functional technology areas.
• Technical assessment (system/web application vulnerability assessment, penetration testing, white-box code analysis, etc.) and security architecture (design of security controls, secure system design, understanding of identity and authentication management, etc.).

Inclusion and Diversity

Ourare designed to unlock your ambition by giving you the boost and flexibility you need to turn your ideas into world-changing realities. Our salary and benefits are everything you’d expect from an organization with global strength and scale, and you’ll be surrounded by career opportunities in a culture that fosters care, collaboration and support.

Job Summary

Responsibilities

• Own the product vision, roadmap, and backlog for software subscription finance capabilities.

• Collaborate with Finance and IT stakeholders to gather requirements and define product features.

• Translate complex financial and accounting needs into clear, actionable product specifications.

• Drive end-to-end delivery of finance enhancements and new features, ensuring alignment with business priorities.

• Partner with technical teams to design, test, and deploy solutions across AR, AP, GL, Billing, and Revenue Recognition in Oracle Fusion.

• Design and implement technical solutions to support functional requirements and resolve operational issues.

• Monitor system performance and user feedback to continuously improve product functionality and user experience.

• Ensure compliance with financial regulations, audit requirements, and internal controls .

• Lead User Acceptance Testing (UAT) , training, and change management for new releases.

• Liaise with internal IT and vendor support teams to resolve issues and implement solutions.

Qualifications

• Bachelor's degree in computer science, information technology, or a related field (Master's degree preferred).
• Proven experience (5+ years) as a technical product manager or similar role, preferably in the healthcare/medical device industry.
• Strong understanding of software development processes, Agile methodologies, and project management techniques.
• Excellent communication skills, both written and verbal, with the ability to convey complex technical concepts to non-technical stakeholders.
• Ability to work independently and collaboratively in a fast-paced environment.
• Knowledge of regulatory requirements and compliance frameworks relevant to medical devices and/or SaaS products.
• Experience working with cloud platforms (e.g., AWS, Azure, Google Cloud Platform).
• Familiarity with DevOps tools and practices.
• Understanding of data privacy and security best practices.
• Ability to manage multiple concurrent projects and priorities effectively.

Personal Attributes:

• Able to effectively direct and mentor others in critical thinking skills. Proactively engages with cross-functional teams to resolve issues and design solutions using critical thinking and analysis skills and best practices. Finds important patterns in seemingly unrelated information.

• Influences and energizes other toward the common vision and goal. Maintains excitement for a process and drives to new directions of meeting the goal even when odds and setbacks render one path impassable.

• Innovates and integrates new processes and/or technology to significantly add value to GE. Identifies how the cost of change weighs against the benefits and advises accordingly. Proactively learns new solutions and processes to address seemingly unanswerable problems.

Inclusion and Diversity

Ourare designed to unlock your ambition by giving you the boost and flexibility you need to turn your ideas into world-changing realities. Our salary and benefits are everything you’d expect from an organization with global strength and scale, and you’ll be surrounded by career opportunities in a culture that fosters care, collaboration and support.

Roles and Responsibilities

In this role, you will:

•Work with product managers, independent researchers, and in-house researchers to identify, rate, report and manage product vulnerabilities and incidents.
•Be responsible for providing technical leadership and defining, developing, and evolving security within software in a fast-paced and agile development environment using the latest secure software development technologies and infrastructure.
•Work with Cyber Security Leaders and SMEs to understand product requirements
•Translate security requirements / vision into a prioritized list of user stories, completing work according to required timelines and quality standards
•Assist security champions in completing Threat Modeling and Architecture Risk Analysis on product features
•Perform Security Code Reviews, Vulnerability Analysis and research on application code
•Coach and mentor developers to implement cryptography solutions securely (PKI, Code Signing, Stored Secrets, et cetera)
•Engage subject matter experts in successful transfer of complex domain knowledge
•Apply principles of Secure SDLC and methodologies like Lean/Agile/XP, CI, Software and Product Security
•Provide guidance and advice on writing secure code that meets standards and delivers desired functionality, using the technology selected for the project
•Understand application security methodologies and frameworks
•Leverage GE Digital's tailored Secure SDL practice into specific engineering engagements
•Research new application security technologies and implement them to improve application security.
•Maintaining a backlog of security-related tools that will improve the maintainability and security of our code and the pace of development
•Promote best practices based on OWASP, SANS Top 25, and the GE Digital SDL.

•Write fuzz scenarios to see the break network protocol suites such as TCP/IP, IPv6, UDP, TLS, DTLS

•Ability to automate attack scenarios to avoid repetitive work.

•Good to have experience in Bluetooth/Wifi or any radio based attacks.

•Good to have experience in Rest API security testing and recommending best practices while opting for OAuth or OpenId connect

•Having experience working on IoT platform will be beneficial.

Required Skills

•Professional expertise with Kali Linux, Metasploit, Meterpreter.

•Hands-on experience in Windows/Linux and network security.

•Execute Scans using tools such as Nessus, Burp, Fortify/Coverity, Splunk etc.

Education Qualification

Bachelor's Degree in Computer Science or “STEM” Majors (Science, Technology, Engineering and Math) with a minimum of 3+ years of experience in systems security, product / OT security and application security.

Desired Characteristics

•Certifications – OSCP, CCSP.

•Languages – C/C++/Java/Python/Ruby

•Proven experience in breaking the vulnerable boxes.

•Adaptable to learn new skills or technologies as per business needs.

•Detailed working knowledge of two modern programming languages, such as java, python, or ruby
•Good written and oral communication skills and successful security consulting background.
•At least 2 years of security consulting involvement with development team(s) that delivered software-based services
•Experience in developing secure applications
•A high energy and a result-oriented attitude/approach, with an understanding of release timelines and the need to enable development teams, not slow them down
•Experience with Security Development Lifecycle processes such as Threat Modeling desired
•Contribute to and lead discussions and communications within the team and outside, including customers and other business units
•Excellent knowledge of Object Oriented Analysis and Design, Software Design Patterns and coding principles
•Hands-on Experience with developing cloud-deployed applications that utilize oath 2
•Hands-on experience with developing RESTful web services
•Mobile Architecture experience, designing, developing, and integrating solutions.
•Experience with penetration testing tools, ability to replicate security defects uncovered by groups such as GE's red team
•Good understanding of security tools and technologies to facilitate secure development

Inclusion and Diversity

Ourare designed to unlock your ambition by giving you the boost and flexibility you need to turn your ideas into world-changing realities. Our salary and benefits are everything you’d expect from an organization with global strength and scale, and you’ll be surrounded by career opportunities in a culture that fosters care, collaboration and support.

Roles and Responsibilities

• Site/region strategy and execution of manufacturing finance activities, coordinating planning, pacing, and closing activities. Own P&L and balance sheet activities, including cost accounting, inventory controls (PI, Revals, standards, variances, etc.), product fulfillment and COGS booking, functional costs, VCP/BCP, P&E, etc.

• Broadening knowledge of theories, practices and procedures in own discipline to execute functional policy/strategy; still developing functional knowledge and skills.

• Basic understanding of key business drivers; uses this understanding to accomplish own work. Good understanding of how work of own team integrates with other teams and contributes to the area.

• May have some autonomy to make decisions within a defined framework. Resolves issues in situations that require good knowledge and judgment within established procedures. Consults more senior team members for issues outside of defined policy/parameters.

• A job at this level requires good interpersonal skills. For customer facing roles, develops strong customer relationships and serves as the interface between customer and GE. Explains technical information to others.

Required Qualifications

• For roles outside of the USA- This role requires basic experience in the Finance & Manufacturing Operations. Knowledge level is comparable to a Bachelor's degree from an accredited university or college ( or a high school diploma with relevant experience).

• For roles in USA - Bachelor's degree from an accredited university or college (or a high school diploma / GED with at least 6 years of experience in Job Family Group(s)/Function(s)).

Desired Characteristics

• Strong oral and written communication skills. Ability to document, plan, market, and execute programs.

are designed to unlock your ambition by giving you the boost and flexibility you need to turn your ideas into world-changing realities. Our salary and benefits are everything you’d expect from an organization with global strength and scale, and you’ll be surrounded by career opportunities in a culture that fosters care, collaboration and support.

Roles and Responsibilities

• Own development of cyber security artifacts including threat model and lead discussion on identifying mitigations.
• Assist the Engineering teams in triaging and identification of fix for detected product vulnerabilities.
• Interact with internal / external teams to co-ordinate security and privacy assessments which includes VAPT to determine compliance and security posture.
• Regularly monitor the cyber security vulnerabilities in the 3rd part libraries used in the product and ensure those vulnerabilities are addressed in a timely manner
• Respond to Cyber Security Inquiries for GE HealthCare and OEM Products
• Respond to customer complaints related to Cyber Security issues in the products
• Document security artifacts based on GE HealthCare Quality System
• Assess the security for software/Product architecture – guide the product architects to ensure security is built into at the design level itself.
• Verify that security and privacy requirements defined in the security plans, policies, and procedures are followed and protection measures are functioning as intended.
• Assist business units in the development and implementation of product security and Privacy practices including policies, standards, guidelines, and procedures.
• Assess SAST and DAST reports, analyse the findings and work with development teams to fix the findings
• Security Point of Contact for development teams to ensure GEHC SDLC principles are adhered

Desired Experience

• Bachelor’s degree in engineering
• Should have 7+ years of development and security experience which includes application security, mobile security, network security, OS security and Cloud Security.
• Product/Information security experience in all phases of service/product development and deployment including architecture, design, development, testing and deployment.
• Good understanding of AWS services, specifically related to security.
• Experience in designing security solutions.
• Strong knowledge of Microsoft STRIDE Threat Model tool and framework
• Hands-on experience in execution and review of Static & Dynamic Code Analysis reports and ability to discuss with development teams for true positives.
• Experience and knowledge of penetration testing methodologies and tools.
• Knowledge of information system architecture and security controls (e.g., firewall, specialized appliances)
• Sound understanding of Cryptography, various Encryption Algorithms, Public key Infrastructure (PKI) and Certificate Authority (CA), OAUTH authentication, 2FA
• Willingness to learn new technologies and work on security for varied products.
• Understanding of NIST 800-53, NIST CSF, ISO27001 standards

Preferred Skills

• Exposure to privacy requirements - HIPAA, GDPR, DPDP Act
• Excellent Cyber Security capabilities
• Strong knowledge of secure software development lifecycle and practices such as threat modelling, security reviews, penetration tests, and security incident response
• Understanding of security by design principles and architecture level security concepts
• Up to date knowledge of current and emerging security threats and techniques for exploiting security vulnerabilities
• Ability to relate cyber security incidents from cross-industries.
• Good to have security certifications like CompTIA Security+, CEH

Roles and Responsibilities

• For all assigned controls, schedule and attend walkthroughs to develop a deeper understanding of Company’s IT assets and how they support Business Processes, test, and document the results based on work paper guidance or review as assigned.
• Take responsibility of the quality of deliverables to ensure they meet or exceed established standards. Overall accountability of the quality of the documentation the Role holder produces will rest with the Role holder.
• Escalate all identified defect to the IT SOx Manager. Participate in the discussion with the Control/ Process Owners in confirming if identified defects are control deficiencies and agreeing with remediation actions and timelines.
• Ensure, impact is assessed for all identified deficiencies, including identifying mitigating controls, if any.
• Support report out to Leadership teams regarding the status of the progress vs plan as requested.
• Ensure, all assigned deficiency remediation testing is completed, and remediated control is evaluated for the design and operational effectiveness and is reviewed before it could be closed.
• Anything else that the IT SOx Manager requests in furtherance of program execution and/ or enhancement.

Required Qualifications

• 5 plus years of experience in IT audit, IT SOX compliance, or a related field.
• Bachelor's degree from an accredited university in Information Systems, Accounting, Finance, Computer Science, or a related field.
• In-depth knowledge of IT general controls and related scoping and testing techniques, including the following control areas:
  • Access management
  • Change management,
  • IT operations,
  • System development life cycle (SDLC),
  • Third-party SOC reports,
  • Application controls,
  • System interface controls,
  • Key report / IPE validation testing.
• Familiarity with risk and control frameworks (e.g., COSO, COBIT, NIST, ISO).
• Experience drafting IT risks, controls, testing procedures, deficiencies, and remediation recommendations.
• Experience participating in the annual SOX compliance cycle, including process walkthroughs, control testing, workpaper quality assurance, control remediation and certification processes.
• Experience reviewing control testing work for quality assurance.
• Integrity: Accepting and adhering to high moral, ethical, and personal values in decisions, communications, actions and when dealing with others.
• Self-starter/Independent- shows initiative and works responsibly even without close supervision
• Quick learner- shows ability to absorb and apply new knowledge.
• Is fluent in English, both written and verbal.

Desired Characteristics

• Progressing toward receiving Certified Information Systems Auditor (CISA) or equivalent certification.
• Experience with project planning, status tracking, and reporting.
• Strong communication, interpersonal, analytical, and problem-solving skills, with service and collaborative attitude
• Has very good understanding of risks and controls and is able to apply it in the context of achieving business objectives and overall SOx certification requirements.
• Adaptable/ Flexible: Ability to work beyond role boundaries or with uncertainty & fluid situations- able to embrace change in response to new information, unexpected or different circumstances and ambiguous situation.

Inclusion and Diversity

Ourare designed to unlock your ambition by giving you the boost and flexibility you need to turn your ideas into world-changing realities. Our salary and benefits are everything you’d expect from an organization with global strength and scale, and you’ll be surrounded by career opportunities in a culture that fosters care, collaboration and support

Roles and Responsibilities

• Selling to or through partners and distributors. May include channel sales support and channel development duties.

• Developing conceptual knowledge of own discipline. Developing knowledge of own sales territory, product lines, markets, sales processes or customer groups. May include support roles with specialized expertise or technical knowledge in broad area.

• Applies general knowledge of business developed through education or past experience. Understands how work of own team contributes to the area.

• Resolves issues using established procedures. Consults supervisor or more senior team members for issues outside of defined instructions/parameters.

• Collaborates with others to solve issues. For customer facing roles, develops strong customer relationships and serves as the interface between customer and GE. Exchanges technical information asks questions and checks for understanding.

Required Qualifications

• Knowledge level is comparable to a Bachelor's degree from an accredited university or college (or a high school diploma with relevant experience).

• This role requires 3 plus years of experience as Business Analyst

• Experience in Excel, Salesforce (SFDC), Oracle etc

Desired Characteristics

• Strong oral and written communication skills. Ability to document, plan, market, and execute programs.

total rewardsare designed to unlock your ambition by giving you the boost and flexibility you need to turn your ideas into world-changing realities. Our salary and benefits are everything you’d expect from an organization with global strength and scale, and you’ll be surrounded by career opportunities in a culture that fosters care, collaboration and support.