Associate Lead - CIS
2d ago
  • Security Technologies Exposure ie Managing DLP, Log Mgmt, Endpoint security etc
  • Security Process Exposure like creation of polices / procedures / guidelines
  • Perform reviews of IT Process, Policies, and Procedures
  • Co-ordinate for Information Security audits and closure of audit findings with stakeholders
  • Implment compliance specific requirements across teams
  • Co-ordination for internal and external Vulnerability Assessment and Penetration test
  • Project management of deployments of File Integrity Manager and Log Manager
  • Assess compliance of company’s IT related policies, regulatory guidelines and international best practices
  • Follow-up with Auditee for status of audit recommendations till the closure on the basis of reports
  • BCP - Prepare report on findings during DR / BCP Drill test and highlights to higher management
  • Facilitate trainings on Information Security
  • Knowledge on Firewall, IPS and other security devices
  • Define, document, implements, maintain and improve information security policies & processes within organization
  • KRAs :

    Customer satisfaction- Communication , Ensuring optimum security Compliance and SLA

    Achieving 100% compliance with ISMS SLA defined and Process compliance relating to Infosec

    Ability to liaison with delivery teams, business units and various internal support units

    Ability to execute Information Security projects, hands on with security products, Exposure to SOC and other related technical areas like VA / PT engagements

    Ability to comprehend and keep updated on latest trends"

    Skills :

  • Understanding of ISO 27001 : 2013 standard Requirements and ISO 27002 : 2013 Code of practice for information security management
  • Understanding ISO20000 : 2011 standard and able to comprehend Information security requirements relating to the standard
  • Conduct Gap Analysis for ISO 27001 : 2013 implementations by meeting with departments were in scope of ISMS.
  • Preparation of Policues / procedures & guidelines inline with standard
  • Prepare Risk Assessment and Risk Treatment Plan and driving remediation with solutioning
  • Participate in Internal / External Audits
  • Implementation policies and procedures including security controls for IT, HR, Business Process and physical security.
  • Conduct awareness training programs through various examples of attacks, frauds etc.
  • Ensuring large / time based security projects
  • Excellent written and verbal communication skills, interact will all stake holders at all levels in the organization
  • Report this job

    Thank you for reporting this job!

    Your feedback will help us improve the quality of our services.

    My Email
    By clicking on "Continue", I give neuvoo consent to process my data and to send me email alerts, as detailed in neuvoo's Privacy Policy . I may withdraw my consent or unsubscribe at any time.
    Application form